Code Review / aai / aai-common.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 0a57f83)
Ensure Non-root user for haproxy 02/110202/1
authorHarish Venkata Kajur <vk250x@att.com>
Wed, 15 Jul 2020 16:07:57 +0000 (12:07 -0400)
committerHarish Venkata Kajur <vk250x@att.com>
Wed, 15 Jul 2020 16:08:07 +0000 (12:08 -0400)
Issue-ID: AAI-2822
Change-Id: Ic5ea276e4f344ef9e2c321069ba8b4ffeb38312f
Signed-off-by: Harish Venkata Kajur <vk250x@att.com>
aai-common-docker/aai-haproxy-image/src/main/docker/Dockerfile patch | blob | history

diff --git a/aai-common-docker/aai-haproxy-image/src/main/docker/Dockerfile b/aai-common-docker/aai-haproxy-image/src/main/docker/Dockerfile
index 7bf9b20..a96c364 100644 (file)
--- a/aai-common-docker/aai-haproxy-image/src/main/docker/Dockerfile
+++ b/aai-common-docker/aai-haproxy-image/src/main/docker/Dockerfile
@@ -9,7 +9,11 @@ ENV https_proxy  ""
 RUN apk add --no-cache \
     ca-certificates \
     curl \
-    openssl
+    openssl \
+    shadow \
+    util-linux && \
+    groupadd haproxy -g 1000 && \
+    adduser -u 1000 -S -D -G haproxy -s /bin/bash haproxy
 
 RUN mkdir -p /etc/ssl/certs/ && mkdir -p /etc/ssl/private
 
This holds the model, annotations and common modules used across the Resources and Traversal micro services