Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

container runs as root user

See original GitHub issue

The docker container is run with the root user. The kubernetes platform where I wanted to deploy this service prohibits containers from running as root user, logging in with some low-privileged user instead. This leads to some directories being inaccessible (/app/allure-report/history for example) and therefore the app can’t function fully. I believe it is considered more secure to not run as root (which is probably also why the platform is prohibiting it)

Issue Analytics

State:
Created 4 years ago
Comments:12 (7 by maintainers)

Top GitHub Comments

1reaction

nicodevriescommented, Jan 23, 2020

The main thing would be adding

RUN groupadd -g 999 appuser && \
    useradd -r -u 999 -g appuser appuser
USER appuser

to your dockerfile, but that’s just the start. Then you need to chown the appropriate files and directories. I am not sure how big of an impact that would have on your codebase

0reactions

fescobarcommented, Feb 5, 2020

@nicodevries did you try overriding the user/group -u 1000:1000 ? version: 2.13.1

https://github.com/DevExpress/testcafe/issues/2875#issuecomment-422730288