From 2f2f281da7304232cb94723f9c2ada32df884da5 Mon Sep 17 00:00:00 2001
From: "Lovett, Trevor" <trevor.lovett@att.com>
Date: Thu, 21 Feb 2019 12:56:03 -0600
Subject: [PATCH] [VVP] Ensure VVP Docker runs as non-root

Also ensures VVP only executes the heat tests and ignores
app_tests

Change-Id: I59ba2f72ac694dee4e705787d24a78ac983afa3a
Issue-ID: VVP-175
Signed-off-by: Lovett, Trevor <trevor.lovett@att.com>
---
 Dockerfile | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index fe626fa..8d24022 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -42,8 +42,11 @@ COPY requirements.txt /
 RUN pip install --upgrade pip
 RUN pip install --no-use-pep517 -r /requirements.txt
 
-COPY ice_validator/ /vvp
+RUN adduser -D vvpuser
+USER vvpuser
+
+COPY --chown=vvpuser ice_validator/ /vvp
 
 WORKDIR /vvp
 
-ENTRYPOINT ["pytest"]
+ENTRYPOINT ["pytest", "tests"]
-- 
2.16.6