From 1b548a33bf279b6d22b7a1a49a672151974706d7 Mon Sep 17 00:00:00 2001
From: MichaelMorris <michael.morris@est.tech>
Date: Tue, 10 Mar 2020 17:02:34 +0000
Subject: Run pods as non-root user

Signed-off-by: MichaelMorris <michael.morris@est.tech>
Issue-ID: SDC-2798
Change-Id: Ic50b8663f278b97185c471a4113de29b3e53e023
---
 sdc-workflow-designer-ui/docker/Dockerfile | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'sdc-workflow-designer-ui')

diff --git a/sdc-workflow-designer-ui/docker/Dockerfile b/sdc-workflow-designer-ui/docker/Dockerfile
index 58130888..7a54b615 100644
--- a/sdc-workflow-designer-ui/docker/Dockerfile
+++ b/sdc-workflow-designer-ui/docker/Dockerfile
@@ -9,10 +9,11 @@ ARG ARTIFACT
 
 COPY org.onap.sdc.p12 org.onap.sdc.trust.jks ${JETTY_BASE}/etc/
 
-ADD ${ARTIFACT} ${JETTY_BASE}/webapps/
+ADD --chown=jetty:jetty ${ARTIFACT} ${JETTY_BASE}/webapps/
 RUN chown -R jetty:jetty ${JETTY_BASE}/webapps ${JETTY_BASE}/etc/
 
-COPY startup.sh .
+COPY --chown=jetty:jetty startup.sh .
 RUN chmod 744 startup.sh
 
+USER jetty 
 ENTRYPOINT [ "./startup.sh" ]
-- 
cgit 1.2.3-korg