katzenbergeran87461/EinfuehrungInDocker_Pipeline2
2
0
Fork 0
forked from freudenreichan/EinfuehrungInDocker_Pipeline2
Code Pull Requests Activity

Run as non root user
Some checks reported errors
continuous-integration/drone/push Build was killed
Details

Browse Source
This commit is contained in:
Andreas Katzenberger 2026-04-15 16:10:46 +02:00
parent 63d7683d18
commit 1bf9339f1c
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
Dockerfile
View File

@ -24,14 +24,14 @@ WORKDIR /app
RUN apk update && apk upgrade --no-cache
# Non-Root User anlegen
# RUN addgroup -S appgroup
# RUN adduser -S appuser -G appgroup
RUN addgroup -S appgroup
RUN adduser -S appuser -G appgroup
# Verzeichnis für Ausgabe anlegen
RUN mkdir -p /output
# Dem User die Rechte für die Ordner /app und /output geben
# RUN chown -R appuser:appgroup /app /output
RUN chown -R appuser:appgroup /app /output
# nur die fertige Binärdatei aus der "builder"-Stage kopieren
COPY --from=builder /build/deployment /app/
@ -41,7 +41,7 @@ COPY --from=builder /build/deployment /app/
VOLUME ["/output"]
# 4. Ab hier läuft alles als sicherer Non-Root User
# USER appuser
USER appuser
# 5. Healthcheck implementieren
# Da das C-Programm alle 10 Sekunden etwas schreibt, prüfen wir alle 15 Sekunden,