Code Review / appc / deployment.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 4ea528f)
Run cdt nodejs as non-root user 48/102448/4
authorPatrick Brady <patrick.brady@att.com>
Wed, 26 Feb 2020 22:38:57 +0000 (14:38 -0800)
committerPatrick Brady <patrick.brady@att.com>
Wed, 26 Feb 2020 23:28:52 +0000 (23:28 +0000)
Modify the dockerfile so that the nodejs process
that hosts cdt runs as a non-root user.

Change-Id: If64cb915c626897f8815acc3a2007f54adc0e03b
Signed-off-by: Patrick Brady <patrick.brady@att.com>
Issue-ID: APPC-1837

cdt/src/main/docker/Dockerfile patch | blob | history

diff --git a/cdt/src/main/docker/Dockerfile b/cdt/src/main/docker/Dockerfile
index 26efda4..a826052 100644 (file)
--- a/cdt/src/main/docker/Dockerfile
+++ b/cdt/src/main/docker/Dockerfile
@@ -23,8 +23,11 @@
 FROM node:10.15.3-alpine
 MAINTAINER APP-C Team (appc@lists.openecomp.org)
 
-COPY config-design-tool /opt/cdt
-COPY startCdt.sh /opt/startCdt.sh
-COPY cert /opt/cert
-RUN mkdir /opt/cdt/logs
+USER root
+COPY --chown=node:node config-design-tool /opt/cdt
+COPY --chown=node:node startCdt.sh /opt/startCdt.sh
+COPY --chown=node:node cert /opt/cert
 RUN npm install express --save
+USER node
+RUN mkdir /opt/cdt/logs
+
APPC docker deployment