Code Review / sdc / sdc-workflow-designer.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | inline | side by side
Run pods as non-root user
[sdc/sdc-workflow-designer.git] / sdc-workflow-designer-ui / docker / Dockerfile
diff --git a/sdc-workflow-designer-ui/docker/Dockerfile b/sdc-workflow-designer-ui/docker/Dockerfile
index 5813088..7a54b61 100644 (file)
--- a/sdc-workflow-designer-ui/docker/Dockerfile
+++ b/sdc-workflow-designer-ui/docker/Dockerfile
@@ -9,10 +9,11 @@ ARG ARTIFACT
 
 COPY org.onap.sdc.p12 org.onap.sdc.trust.jks ${JETTY_BASE}/etc/
 
-ADD ${ARTIFACT} ${JETTY_BASE}/webapps/
+ADD --chown=jetty:jetty ${ARTIFACT} ${JETTY_BASE}/webapps/
 RUN chown -R jetty:jetty ${JETTY_BASE}/webapps ${JETTY_BASE}/etc/
 
-COPY startup.sh .
+COPY --chown=jetty:jetty startup.sh .
 RUN chmod 744 startup.sh
 
+USER jetty 
 ENTRYPOINT [ "./startup.sh" ]
A graphic design tool for service life cycle management workflow design.