Update container permissions
This commit is contained in:
13
dockerfile
13
dockerfile
@@ -13,25 +13,20 @@ RUN apt-get update && apt-get install -y \
|
|||||||
# Copy requirements first to leverage Docker cache
|
# Copy requirements first to leverage Docker cache
|
||||||
COPY requirements.txt .
|
COPY requirements.txt .
|
||||||
|
|
||||||
# Create a user with given UID.
|
|
||||||
RUN useradd -m -u 5000 bot
|
|
||||||
USER bot
|
|
||||||
RUN id
|
|
||||||
|
|
||||||
# Install Python dependencies
|
# Install Python dependencies
|
||||||
RUN pip install --no-cache-dir -r requirements.txt
|
RUN pip install --no-cache-dir -r requirements.txt
|
||||||
|
|
||||||
# Copy the rest of the application
|
# Copy the rest of the application
|
||||||
COPY . .
|
COPY . .
|
||||||
|
|
||||||
|
# Create a non-root user and switch to it
|
||||||
|
RUN useradd -m bot
|
||||||
|
USER bot
|
||||||
|
|
||||||
# Create directories for persistent storage
|
# Create directories for persistent storage
|
||||||
RUN mkdir -p /app/logs
|
RUN mkdir -p /app/logs
|
||||||
RUN chown -R bot:bot /app
|
RUN chown -R bot:bot /app
|
||||||
|
|
||||||
# Create a non-root user and switch to it
|
|
||||||
RUN useradd -m botuser && chown -R botuser:botuser /app
|
|
||||||
USER botuser
|
|
||||||
|
|
||||||
# Set environment variables for configuration
|
# Set environment variables for configuration
|
||||||
ENV PYTHONUNBUFFERED=1
|
ENV PYTHONUNBUFFERED=1
|
||||||
ENV CONFIG_PATH=/app/config.ini
|
ENV CONFIG_PATH=/app/config.ini
|
||||||
|
|||||||
Reference in New Issue
Block a user