OPS-268: Setups user in Dockerfile (#6)

* Bumps valitydev/erlang-workflows/.github/workflows/erlang-parallel-build.yml@v1.0.12
* OPS-268: Adds default logger permissions
This commit is contained in:
Aleksey Kashapov 2023-07-13 15:28:07 +03:00 committed by GitHub
parent 30ff7527ae
commit 092f7d5655
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 12 additions and 1 deletions

View File

@ -30,7 +30,7 @@ jobs:
run: run:
name: Run checks name: Run checks
needs: setup needs: setup
uses: valitydev/erlang-workflows/.github/workflows/erlang-parallel-build.yml@v1.0.9 uses: valitydev/erlang-workflows/.github/workflows/erlang-parallel-build.yml@v1.0.12
with: with:
otp-version: ${{ needs.setup.outputs.otp-version }} otp-version: ${{ needs.setup.outputs.otp-version }}
rebar-version: ${{ needs.setup.outputs.rebar-version }} rebar-version: ${{ needs.setup.outputs.rebar-version }}

View File

@ -23,6 +23,8 @@ RUN rebar3 compile && \
FROM docker.io/library/erlang:${OTP_VERSION}-slim FROM docker.io/library/erlang:${OTP_VERSION}-slim
ARG SERVICE_NAME ARG SERVICE_NAME
ARG USER_UID=1001
ARG USER_GID=$USER_UID
# Set env # Set env
ENV CHARSET=UTF-8 ENV CHARSET=UTF-8
@ -36,6 +38,15 @@ COPY --from=builder /build/_build/prod/rel/${SERVICE_NAME} /opt/${SERVICE_NAME}
RUN echo "#!/bin/sh" >> /entrypoint.sh && \ RUN echo "#!/bin/sh" >> /entrypoint.sh && \
echo "exec /opt/${SERVICE_NAME}/bin/${SERVICE_NAME} foreground" >> /entrypoint.sh && \ echo "exec /opt/${SERVICE_NAME}/bin/${SERVICE_NAME} foreground" >> /entrypoint.sh && \
chmod +x /entrypoint.sh chmod +x /entrypoint.sh
# Setup user
RUN groupadd --gid ${USER_GID} ${SERVICE_NAME} && \
mkdir /var/log/${SERVICE_NAME} && \
chown ${USER_UID}:${USER_GID} /var/log/${SERVICE_NAME} && \
useradd --uid ${USER_UID} --gid ${USER_GID} -M ${SERVICE_NAME}
USER ${SERVICE_NAME}
ENTRYPOINT [] ENTRYPOINT []
CMD ["/entrypoint.sh"] CMD ["/entrypoint.sh"]