From c2b8550855c68fb8ee6398c358a3e00399359942 Mon Sep 17 00:00:00 2001
From: "sunil.unnava" <sunil.unnava@att.com>
Date: Mon, 8 Apr 2019 19:31:14 -0400
Subject: run as non root user

Issue-ID: DMAAP-1040
Change-Id: I3966b02e33b589c766a688100b8ec33b40a01187
Signed-off-by: sunil.unnava <sunil.unnava@att.com>
---
 src/main/docker/Dockerfile | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/src/main/docker/Dockerfile b/src/main/docker/Dockerfile
index 3e0652e..f21b236 100644
--- a/src/main/docker/Dockerfile
+++ b/src/main/docker/Dockerfile
@@ -1,7 +1,6 @@
 FROM ubuntu:16.04
 
-ENV ZK_USER=root \
-    ZK_DATA_DIR=/var/lib/zookeeper/data \
+ENV ZK_DATA_DIR=/var/lib/zookeeper/data \
     ZK_LOG_DIR=/var/log/zookeeper \
     JAVA_HOME=/usr/lib/jvm/java-8-openjdk-amd64
 
@@ -43,7 +42,6 @@ COPY scripts /opt/zookeeper/bin/
 # for necessary directories and symlink the distribution as a user executable
 RUN set -x \
     && mkdir -p $ZK_DATA_DIR  $ZK_LOG_DIR /usr/share/zookeeper /tmp/zookeeper /usr/etc/ \
-    && chown -R "$ZK_USER:$ZK_USER" /opt/$ZK_DIST $ZK_DATA_DIR $ZK_LOG_DIR  /tmp/zookeeper \
     && ln -s /opt/zookeeper/conf/ /usr/etc/zookeeper \
     && ln -s /opt/zookeeper/bin/* /usr/bin \
     && ln -s /opt/zookeeper/$ZK_DIST.jar /usr/share/zookeeper/ \
@@ -52,3 +50,10 @@ RUN set -x \
 RUN chmod -R 777 /opt/zookeeper/bin
 ENTRYPOINT /opt/zookeeper/bin/start-zookeeper.sh
 EXPOSE 2181 2888 3888
+
+RUN addgroup  onap \
+    && adduser  mrzookeeper -ingroup onap \
+    && chown -R mrzookeeper:onap /opt/$ZK_DIST/ /opt/zookeeper/ /var/lib/ /var/log/ /tmp/zookeeper/
+
+USER mrzookeeper
+
-- 
cgit 1.2.3-korg