From edebaff8d9225b23adac727b983e2c3890cd7ee1 Mon Sep 17 00:00:00 2001
From: Pawel Wieczorek <p.wieczorek2@samsung.com>
Date: Mon, 30 Mar 2020 11:50:46 +0200
Subject: [PATCH] Migrate Dockerfile.widgetms to unprivileged user

Issue-ID: PORTAL-849
Change-Id: Ia6e96c72a0a7f4a7d7693688365c683227bef6d3
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
---
 deliveries/Dockerfile.widgetms | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/deliveries/Dockerfile.widgetms b/deliveries/Dockerfile.widgetms
index 82a2e4c6..8f4b1072 100644
--- a/deliveries/Dockerfile.widgetms
+++ b/deliveries/Dockerfile.widgetms
@@ -14,7 +14,9 @@ RUN sh -c 'touch /app.jar'
 # Launch script
 COPY start-wms.sh /
 
+# Switch to unprivileged user
 RUN addgroup -g 1000 -S portal && adduser -u 1000 -S portal -G portal && mkdir logs / && chown -R portal:portal /start-wms.sh /tmp /etc/ssl/certs/java /logs && chmod -R 755 /start-wms.sh /etc/ssl/certs/java /logs /tmp
+USER portal
 
 # Define default command
 CMD /start-wms.sh
-- 
2.16.6