AIR/static-file-server
1
0
Fork 0
mirror of https://github.com/halverneus/static-file-server.git synced 2024-11-24 09:05:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

Dockerfile: Don't run as root

Browse Source 
Following security best practices, the server shouldn't run as `root` inside the container.
This commit is contained in:
Frederic Hemberger 2020-01-24 11:53:28 +01:00
parent 3ddb069d05
commit 8710bde7e1
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
Dockerfile
View File

@ -16,6 +16,8 @@ COPY . .
RUN go test -cover ./...
RUN CGO_ENABLED=0 go build -a -tags netgo -installsuffix netgo -ldflags "-X github.com/halverneus/static-file-server/cli/version.version=${VERSION}" -o /serve /build/bin/serve
RUN adduser --system --no-create-home --uid 1000 --shell /usr/sbin/nologin static
################################################################################
## DEPLOYMENT CONTAINER
################################################################################
@ -23,6 +25,9 @@ FROM scratch
EXPOSE 8080
COPY --from=builder /serve /
COPY --from=builder /etc/passwd /etc/passwd
USER static
ENTRYPOINT ["/serve"]
CMD []