From: Pawel Wieczorek <p.wieczorek2@samsung.com>
Date: Mon, 30 Mar 2020 09:50:46 +0000 (+0200)
Subject: Migrate Dockerfile.widgetms to unprivileged user
X-Git-Tag: 3.2.0~6^2
X-Git-Url: https://gerrit.onap.org/r/gitweb?p=portal.git;a=commitdiff_plain;h=fa08f47c5fd09a55ff33cf9e3fe857dcf41ff30a

Migrate Dockerfile.widgetms to unprivileged user

Issue-ID: PORTAL-849
Change-Id: Ia6e96c72a0a7f4a7d7693688365c683227bef6d3
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
(cherry picked from commit edebaff8d9225b23adac727b983e2c3890cd7ee1)
---

diff --git a/deliveries/Dockerfile.widgetms b/deliveries/Dockerfile.widgetms
index 82a2e4c6..8f4b1072 100644
--- a/deliveries/Dockerfile.widgetms
+++ b/deliveries/Dockerfile.widgetms
@@ -14,7 +14,9 @@ RUN sh -c 'touch /app.jar'
 # Launch script
 COPY start-wms.sh /
 
+# Switch to unprivileged user
 RUN addgroup -g 1000 -S portal && adduser -u 1000 -S portal -G portal && mkdir logs / && chown -R portal:portal /start-wms.sh /tmp /etc/ssl/certs/java /logs && chmod -R 755 /start-wms.sh /etc/ssl/certs/java /logs /tmp
+USER portal
 
 # Define default command
 CMD /start-wms.sh