Modify docker file

author yangyan <yangyanyj@chinamobile.com>

Tue, 9 Apr 2019 03:04:24 +0000 (11:04 +0800)

committer yangyan <yangyanyj@chinamobile.com>

Tue, 9 Apr 2019 03:04:53 +0000 (11:04 +0800)
author yangyan <yangyanyj@chinamobile.com>
Tue, 9 Apr 2019 03:04:24 +0000 (11:04 +0800)
committer yangyan <yangyanyj@chinamobile.com>
Tue, 9 Apr 2019 03:04:53 +0000 (11:04 +0800)
diff --git a/docker/Dockerfile b/docker/Dockerfile

index 46565d5..08c269d 100755 (executable)
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@@ -22,7 +22,11 @@ RUN apt-get update && \
      apt-get install -y curl && \
      apt-get install -y build-essential && \
      apt-get install -y libssl-dev && \
-    apt-get install -y libffi-dev
+    apt-get install -y libffi-dev && \
+    groupadd -r onap && useradd -r -g onap onap && \
+    chmod u+w /etc/sudoers && \
+    sed -i '/User privilege/a\\onap    ALL=(ALL:ALL) NOPASSWD:ALL' /etc/sudoers && \
+    chmod u-x /etc/sudoers
  
  ADD . /service
  WORKDIR /service
@@ -30,13 +34,14 @@ WORKDIR /service
  # get binary zip from nexus - vfc-nfvo-catalog
  RUN wget -q -O vfc-nfvo-catalog.zip 'https://nexus.onap.org/service/local/artifact/maven/redirect?r=snapshots&g=org.onap.vfc.nfvo.catalog&a=vfc-nfvo-catalog&v=LATEST&e=zip' && \
      unzip vfc-nfvo-catalog.zip && \
-    rm -rf vfc-nfvo-catalog.zip
+    rm -rf vfc-nfvo-catalog.zip && \
+    chown onap:onap /service -R
  
  WORKDIR /service/vfc/nfvo/catalog
  RUN pip install --upgrade setuptools pip && \
      pip install --pre -r requirements.txt
  
  EXPOSE 8806
-
+USER onap
  WORKDIR /service
  ENTRYPOINT vfc/nfvo/catalog/docker/docker-entrypoint.sh
author	yangyan <yangyanyj@chinamobile.com>
	Tue, 9 Apr 2019 03:04:24 +0000 (11:04 +0800)
committer	yangyan <yangyanyj@chinamobile.com>
	Tue, 9 Apr 2019 03:04:53 +0000 (11:04 +0800)