adebaumann/Thinkcentre-watchdog
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Run Docker container as non-root user with uid 1000

Browse Source
This commit is contained in:
Adrian A. Baumann
2025-12-05 23:06:24 +01:00
parent f4c5b19b5c
commit 1011213c06
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
Dockerfile
View File

@@ -13,10 +13,17 @@ WORKDIR /app
COPY thinkcenter_monitor.sh /app/thinkcenter_monitor.sh COPY thinkcenter_monitor.sh /app/thinkcenter_monitor.sh
# Create log directory # Create log directory
RUN mkdir -p /var/log RUN mkdir -p /var/log && chmod 755 /var/log
# Make script executable # Make script executable
RUN chmod +x /app/thinkcenter_monitor.sh RUN chmod +x /app/thinkcenter_monitor.sh
# Create a non-root user with uid 1000
RUN adduser -u 1000 -s /sbin/nologin -D appuser && \
chown -R appuser:appuser /app
# Switch to non-root user
USER appuser
# Set the entrypoint # Set the entrypoint
CMD ["/app/thinkcenter_monitor.sh"] CMD ["/app/thinkcenter_monitor.sh"]