Migrate Dockerfile.widgetms to unprivileged user

author Pawel Wieczorek <p.wieczorek2@samsung.com>

Mon, 30 Mar 2020 09:50:46 +0000 (11:50 +0200)

committer Sunder Tattavarada <statta@research.att.com>

Fri, 3 Apr 2020 16:48:02 +0000 (16:48 +0000)
author Pawel Wieczorek <p.wieczorek2@samsung.com>
Mon, 30 Mar 2020 09:50:46 +0000 (11:50 +0200)
committer Sunder Tattavarada <statta@research.att.com>
Fri, 3 Apr 2020 16:48:02 +0000 (16:48 +0000)
diff --git a/deliveries/Dockerfile.widgetms b/deliveries/Dockerfile.widgetms

index 82a2e4c..8f4b107 100644 (file)
--- a/deliveries/Dockerfile.widgetms
+++ b/deliveries/Dockerfile.widgetms
@@ -14,7 +14,9 @@ RUN sh -c 'touch /app.jar'
  # Launch script
  COPY start-wms.sh /
  
+# Switch to unprivileged user
  RUN addgroup -g 1000 -S portal && adduser -u 1000 -S portal -G portal && mkdir logs / && chown -R portal:portal /start-wms.sh /tmp /etc/ssl/certs/java /logs && chmod -R 755 /start-wms.sh /etc/ssl/certs/java /logs /tmp
+USER portal
  
  # Define default command
  CMD /start-wms.sh
author	Pawel Wieczorek <p.wieczorek2@samsung.com>
	Mon, 30 Mar 2020 09:50:46 +0000 (11:50 +0200)
committer	Sunder Tattavarada <statta@research.att.com>
	Fri, 3 Apr 2020 16:48:02 +0000 (16:48 +0000)