Skip to content
Snippets Groups Projects

build (docker): run as unpriviledged user duniter

Closed build (docker): run as unpriviledged user duniter
docker-user into master
Closed pini requested to merge docker-user into master
Compare
and
2 files
+ 8
3
Compare changes
  • Side-by-side
  • Inline
Files
2
docker/Dockerfile
+ 6
3
@@ -35,12 +35,15 @@ LABEL maintainer="Gilles Filippini <gilles.filippini@pini.fr>"
@@ -35,12 +35,15 @@ LABEL maintainer="Gilles Filippini <gilles.filippini@pini.fr>"
LABEL version="0.0.0"
LABEL version="0.0.0"
LABEL description="Crypto-currency software (based on Substrate framework) to operate Ğ1 libre currency"
LABEL description="Crypto-currency software (based on Substrate framework) to operate Ğ1 libre currency"
# Intall
RUN adduser --home /var/lib/duniter duniter
COPY --from=build /root/build/duniter /usr/local/bin/duniter
COPY docker/docker-entrypoint /usr/local/bin/
# Configuration
# Configuration
# rpc, rpc-ws, p2p, telemetry
# rpc, rpc-ws, p2p, telemetry
EXPOSE 9933 9944 30333 9615
EXPOSE 9933 9944 30333 9615
VOLUME /var/lib/duniter
VOLUME /var/lib/duniter
ENTRYPOINT ["docker-entrypoint"]
ENTRYPOINT ["docker-entrypoint"]
 
USER duniter
 
 
# Intall
 
COPY --from=build /root/build/duniter /usr/local/bin/duniter
 
COPY docker/docker-entrypoint /usr/local/bin/