aboutsummaryrefslogtreecommitdiffstats
path: root/sdc-workflow-designer-init
diff options
context:
space:
mode:
authorMichaelMorris <michael.morris@est.tech>2020-03-10 17:02:34 +0000
committerMichael Morris <michael.morris@est.tech>2020-03-15 18:14:43 +0000
commit1b548a33bf279b6d22b7a1a49a672151974706d7 (patch)
treee57059614a9112b805a96d53df7ace784d8b3b24 /sdc-workflow-designer-init
parent6dc58fd625279f8ffe1060170418686034db0af4 (diff)
Run pods as non-root user
Signed-off-by: MichaelMorris <michael.morris@est.tech> Issue-ID: SDC-2798 Change-Id: Ic50b8663f278b97185c471a4113de29b3e53e023
Diffstat (limited to 'sdc-workflow-designer-init')
-rw-r--r--sdc-workflow-designer-init/src/main/docker/Dockerfile15
1 files changed, 11 insertions, 4 deletions
diff --git a/sdc-workflow-designer-init/src/main/docker/Dockerfile b/sdc-workflow-designer-init/src/main/docker/Dockerfile
index b5ee15ad..656a84ca 100644
--- a/sdc-workflow-designer-init/src/main/docker/Dockerfile
+++ b/sdc-workflow-designer-init/src/main/docker/Dockerfile
@@ -1,12 +1,19 @@
FROM python:2.7-alpine3.8
-RUN pip install cqlsh==5.0.4 && \
- mkdir ~/.cassandra/ && \
+RUN pip install cqlsh==5.0.4
+
+RUN addgroup -g 1000 sdc && adduser -S -u 1000 -G sdc -s /bin/sh sdc
+USER sdc
+RUN mkdir ~/.cassandra/ && \
echo '[cql]' > ~/.cassandra/cqlshrc && \
echo 'version=3.4.4' >> ~/.cassandra/cqlshrc
+USER root
COPY create_keyspaces.cql create_tables.cql start.sh ./
+RUN chown sdc:sdc create_keyspaces.cql && \
+ chown sdc:sdc create_tables.cql && \
+ chown sdc:sdc start.sh && \
+ chmod 744 start.sh
-RUN chmod 744 start.sh
-
+USER sdc
ENTRYPOINT ["./start.sh"]