Merge "Migrate Dockerfile.widgetms to unprivileged user" into release-3.2.0

author Sunder Tattavarada <statta@research.att.com>

Mon, 6 Apr 2020 19:12:33 +0000 (19:12 +0000)

committer Gerrit Code Review <gerrit@onap.org>

Mon, 6 Apr 2020 19:12:33 +0000 (19:12 +0000)
author Sunder Tattavarada <statta@research.att.com>
Mon, 6 Apr 2020 19:12:33 +0000 (19:12 +0000)
committer Gerrit Code Review <gerrit@onap.org>
Mon, 6 Apr 2020 19:12:33 +0000 (19:12 +0000)
diff --git a/deliveries/Dockerfile.be b/deliveries/Dockerfile.be

index afc3981..21bb1a2 100644 (file)
--- a/deliveries/Dockerfile.be
+++ b/deliveries/Dockerfile.be
@@ -39,7 +39,9 @@ RUN cd ${PORTALCONTEXT} && unzip -q *.war && rm *.war
  
  VOLUME ${TOMCATHOME}/logs
  
+# Switch to unprivileged user
  RUN addgroup -g 1000 -S portal && adduser -u 1000 -S portal -G portal && chown -R portal:portal . && chmod -R 777 /etc/ssl/certs/java /var/
+USER portal
  
  # Switch back to root
  WORKDIR /
author	Sunder Tattavarada <statta@research.att.com>
	Mon, 6 Apr 2020 19:12:33 +0000 (19:12 +0000)
committer	Gerrit Code Review <gerrit@onap.org>
	Mon, 6 Apr 2020 19:12:33 +0000 (19:12 +0000)