diff options
author | yangyan <yangyanyj@chinamobile.com> | 2020-03-04 10:53:49 +0800 |
---|---|---|
committer | yangyan <yangyanyj@chinamobile.com> | 2020-03-04 10:54:05 +0800 |
commit | 49cf6c962e524260c3a11dd0456a6ff1c26721a9 (patch) | |
tree | 5839fba77aa3a735debe0ad2828974b8ff4b8dcc /activiti-extension/src/main/docker | |
parent | bc470293e272cfe9381f42b162eea7cfc9f90f23 (diff) |
Change wfengigne pod startup to non root
Change-Id: I15295be19b31d5ca8b757d171cc6afc4dca1e72e
Issue-ID: VFC-1637
Signed-off-by: yangyan <yangyanyj@chinamobile.com>
Diffstat (limited to 'activiti-extension/src/main/docker')
-rw-r--r-- | activiti-extension/src/main/docker/Dockerfile | 17 |
1 files changed, 10 insertions, 7 deletions
diff --git a/activiti-extension/src/main/docker/Dockerfile b/activiti-extension/src/main/docker/Dockerfile index 6a5bed4..dd207cd 100644 --- a/activiti-extension/src/main/docker/Dockerfile +++ b/activiti-extension/src/main/docker/Dockerfile @@ -5,15 +5,18 @@ WORKDIR /home/onap/workflow/wfengineactiviti EXPOSE 8080 RUN apk add --update curl && \ + apk --no-cache add sudo && \ + addgroup -g 1000 -S onap && \ + adduser onap -D -G onap -u 1000 && \ + chmod u+w /etc/sudoers && \ + sed -i '/User privilege/a\\onap ALL=(ALL:ALL) NOPASSWD:ALL' /etc/sudoers && \ + chmod u-x /etc/sudoers && \ rm -rf /var/cache/apk/* ADD apache-tomcat /home/onap/workflow/wfengineactiviti/ -RUN chmod 755 /home/onap/workflow/wfengineactiviti/bin/*.sh +RUN chmod 755 /home/onap/workflow/wfengineactiviti/bin/*.sh && chown onap:onap -R /home/onap -ENTRYPOINT ["./bin/entrypoint.sh"] +USER onap +WORKDIR /home/onap/workflow/wfengineactiviti +ENTRYPOINT ["./bin/entrypoint.sh"] CMD ["start"] - - - - - |