From 4f438a4c4c753e3cd49e4dbaa68ee7f72628b548 Mon Sep 17 00:00:00 2001 From: Niranjana Date: Wed, 24 Feb 2021 14:19:20 +0000 Subject: Use non-root user to access datalake-feeder database and update the base image to align with ONAP Issue-ID: DCAEGEN2-2329 Issue-ID: DCAEGEN2-2420 Signed-off-by: Niranjana Change-Id: I26da297dcc4563a25d3cd6f558cc92627b17647b --- components/datalake-handler/feeder/Dockerfile | 22 ++++++++++------------ 1 file changed, 10 insertions(+), 12 deletions(-) (limited to 'components/datalake-handler/feeder/Dockerfile') diff --git a/components/datalake-handler/feeder/Dockerfile b/components/datalake-handler/feeder/Dockerfile index 1a853986..9d79f7ef 100644 --- a/components/datalake-handler/feeder/Dockerfile +++ b/components/datalake-handler/feeder/Dockerfile @@ -1,14 +1,14 @@ -FROM openjdk:11-jre-slim +FROM nexus3.onap.org:10001/onap/integration-java11:8.0.0 MAINTAINER Guobiao Mo EXPOSE 1680 -RUN groupadd -r datalake && useradd -r -g datalake datalake -RUN mkdir /home/datalake +USER root + +RUN addgroup datalake && adduser -G datalake -h /home/datalake -D datalake +RUN mkdir /home/datalake/db_init -USER datalake - WORKDIR /home/datalake #add the fat jar @@ -17,17 +17,15 @@ COPY src/assembly/run.sh /home/datalake/ WORKDIR /home/datalake/db_init ADD src/assembly/init_db/scripts/db_init . -USER root -RUN chmod 0755 ./* WORKDIR /home/datalake COPY src/assembly/init_db/db_scripts/init_db.sql . COPY src/assembly/init_db/db_scripts/init_db_data.sql . -RUN apt update && \ - apt install -y mariadb-client && \ - apt install -y curl +RUN chmod -R 0755 ./* && \ + chown -R datalake:datalake /home/datalake -USER datalake +RUN apk --update add postgresql-client curl -CMD ["sh", "run.sh"] +USER datalake +ENTRYPOINT /home/datalake/run.sh -- cgit 1.2.3-korg