aboutsummaryrefslogtreecommitdiffstats
path: root/docker
diff options
context:
space:
mode:
authorGravatar Johannes Christ <[email protected]>2018-09-20 23:18:02 +0200
committerGravatar Johannes Christ <[email protected]>2018-09-20 23:18:02 +0200
commitf1bcb58cbffecd4a1b11f31d5901379e8cfbcc70 (patch)
treeb3e462cd2e70d9b7e9c533adf2b8ee1d9dd3f44e /docker
parentRequire application, set procnames. (diff)
Drop privileges in UWSGI.
Diffstat (limited to 'docker')
-rw-r--r--docker/app/alpine/3.6/Dockerfile2
-rw-r--r--docker/app/alpine/3.7/Dockerfile2
-rw-r--r--docker/app/stretch/3.6/Dockerfile2
-rw-r--r--docker/app/stretch/3.7/Dockerfile2
-rw-r--r--docker/app/uwsgi.ini1
5 files changed, 5 insertions, 4 deletions
diff --git a/docker/app/alpine/3.6/Dockerfile b/docker/app/alpine/3.6/Dockerfile
index 1f8d629b..af40b9d1 100644
--- a/docker/app/alpine/3.6/Dockerfile
+++ b/docker/app/alpine/3.6/Dockerfile
@@ -5,6 +5,7 @@ ARG EXTRAS=deploy
RUN adduser \
-D \
-H \
+ -u 1500 \
pysite
RUN apk add --no-cache --virtual build \
@@ -23,5 +24,4 @@ RUN apk del --purge build
COPY . .
-USER pysite
CMD ["uwsgi", "--ini", "docker/app/uwsgi.ini"]
diff --git a/docker/app/alpine/3.7/Dockerfile b/docker/app/alpine/3.7/Dockerfile
index cbbdac28..a2852d0d 100644
--- a/docker/app/alpine/3.7/Dockerfile
+++ b/docker/app/alpine/3.7/Dockerfile
@@ -5,6 +5,7 @@ ARG EXTRAS=deploy
RUN adduser \
-D \
-H \
+ -u 1500 \
pysite
RUN apk add --no-cache --virtual build \
@@ -23,5 +24,4 @@ RUN apk del --purge build
COPY . .
-USER pysite
CMD ["uwsgi", "--ini", "docker/app/uwsgi.ini"]
diff --git a/docker/app/stretch/3.6/Dockerfile b/docker/app/stretch/3.6/Dockerfile
index 365ea451..41e50ed9 100644
--- a/docker/app/stretch/3.6/Dockerfile
+++ b/docker/app/stretch/3.6/Dockerfile
@@ -5,6 +5,7 @@ ARG EXTRAS=deploy
RUN adduser \
--disabled-login \
--no-create-home \
+ --uid 1500 \
pysite
RUN apt-get update -y \
@@ -28,5 +29,4 @@ RUN apt-get purge -y \
libc-dev \
libpq-dev
-USER pysite
CMD ["uwsgi", "--ini", "docker/app/uwsgi.ini"]
diff --git a/docker/app/stretch/3.7/Dockerfile b/docker/app/stretch/3.7/Dockerfile
index f0069716..7cc8f6ad 100644
--- a/docker/app/stretch/3.7/Dockerfile
+++ b/docker/app/stretch/3.7/Dockerfile
@@ -5,6 +5,7 @@ ARG EXTRAS=deploy
RUN adduser \
--disabled-login \
--no-create-home \
+ --uid 1500 \
pysite
RUN apt-get update -y \
@@ -28,5 +29,4 @@ RUN apt-get purge -y \
libc-dev \
libpq-dev
-USER pysite
CMD ["uwsgi", "--ini", "docker/app/uwsgi.ini"]
diff --git a/docker/app/uwsgi.ini b/docker/app/uwsgi.ini
index 7aa63ae7..f47b28d5 100644
--- a/docker/app/uwsgi.ini
+++ b/docker/app/uwsgi.ini
@@ -13,3 +13,4 @@ auto-procname = true
# Startup settings
need-app = true
+uid = 1500
generated by cgit v1.2.3 (git 2.39.1) at 2025-10-17 14:12:01 +0000