запуск shell команд под отдельным юзером
This commit is contained in:
parent
745512aa4b
commit
a1235cf255
4 changed files with 114 additions and 12 deletions
13
Dockerfile
13
Dockerfile
|
|
@ -6,6 +6,11 @@ ENV PYTHONDONTWRITEBYTECODE=1 \
|
|||
WORKDIR /app
|
||||
RUN apt update && apt install make -y
|
||||
|
||||
ENV AGENT_USER="agent"
|
||||
RUN useradd --shell /bin/bash agent
|
||||
ENV WORKSPACE_DIR="/workspace/"
|
||||
RUN mkdir -p $WORKSPACE_DIR && chown $AGENT_USER:$AGENT_USER $WORKSPACE_DIR
|
||||
|
||||
FROM base as builder
|
||||
|
||||
RUN apt install git -y
|
||||
|
|
@ -24,12 +29,6 @@ COPY src/ /app/src/
|
|||
COPY Makefile ./
|
||||
COPY .mk/ ./.mk/
|
||||
|
||||
RUN useradd --shell /bin/bash appuser
|
||||
USER appuser
|
||||
|
||||
ENV WORKSPACE_DIR="/workspace/"
|
||||
RUN mkdir -p $WORKSPACE_DIR && chown appuser:appuser $WORKSPACE_DIR
|
||||
|
||||
EXPOSE 8000
|
||||
|
||||
CMD ["make", "uvicorn-prod"]
|
||||
|
|
@ -49,8 +48,6 @@ ENV PATH="/app/.venv/bin:$PATH"
|
|||
COPY Makefile ./
|
||||
COPY .mk/ ./.mk/
|
||||
|
||||
ENV WORKSPACE_DIR="/workspace/"
|
||||
|
||||
EXPOSE 8000
|
||||
|
||||
CMD ["make", "uvicorn-dev"]
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue