aboutsummaryrefslogtreecommitdiffstats
path: root/docker
diff options
context:
space:
mode:
authorGravatar Christopher Baklid <[email protected]>2018-05-28 10:51:53 +0200
committerGravatar Christopher Baklid <[email protected]>2018-05-28 10:51:53 +0200
commit1cfdaa4a37a4be3f6e21f99b0f3b4e9f3a0aa955 (patch)
tree720b88b25daa628992ef107a5bb9a5516bd05352 /docker
parentkill long running processes after x seconds (diff)
run as non-priv user in snekbox
Diffstat (limited to 'docker')
-rw-r--r--docker/Dockerfile4
1 files changed, 4 insertions, 0 deletions
diff --git a/docker/Dockerfile b/docker/Dockerfile
index 88d1919..cb25d34 100644
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@@ -2,6 +2,7 @@ FROM python:3.6-alpine3.7
RUN apk add --update tini
RUN apk add --update build-base
+RUN addgroup -g 1000 -S snek && adduser -u 1000 -S snek -G snek
ENV PIPENV_VENV_IN_PROJECT=1
ENV PIPENV_IGNORE_VIRTUALENVS=1
@@ -19,5 +20,8 @@ WORKDIR /snekbox
RUN pipenv sync
+RUN chown -R snek:snek /snekbox
+USER snek
+
ENTRYPOINT ["/sbin/tini", "--"]
CMD ["pipenv", "run", "snekbox"]
generated by cgit v1.2.3 (git 2.39.1) at 2025-10-19 17:25:49 +0000