diff options
| author |   Pawel Wieczorek <p.wieczorek2@samsung.com> | 2020-03-30 11:40:12 +0200 |
|---|---|---|
| committer |   Sunder Tattavarada <statta@research.att.com> | 2020-04-03 16:48:25 +0000 |
| commit | 9ddf2819db0994ddbaab97159e78b1758718cd2b (patch) | |
| tree | 9572fde895d183e3abe4e1a6203c9caa9702e962 | |
| parent | ae737cbbbe7c602e46a6093db9ae924900e603e5 (diff) | |
Migrate Dockerfile.be to unprivileged user
Issue-ID: PORTAL-849
Change-Id: I58fe742980a24039114033a82fe785a1093391bf
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
(cherry picked from commit 047385e55632a1dd6398e414aa82397f380e449f)
| -rw-r--r-- | deliveries/Dockerfile.be | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/deliveries/Dockerfile.be b/deliveries/Dockerfile.be index afc39816..21bb1a2c 100644 --- a/deliveries/Dockerfile.be +++ b/deliveries/Dockerfile.be @@ -39,7 +39,9 @@ RUN cd ${PORTALCONTEXT} && unzip -q *.war && rm *.war VOLUME ${TOMCATHOME}/logs +# Switch to unprivileged user RUN addgroup -g 1000 -S portal && adduser -u 1000 -S portal -G portal && chown -R portal:portal . && chmod -R 777 /etc/ssl/certs/java /var/ +USER portal # Switch back to root WORKDIR / |