sr2/protonmail-bridge-docker
5
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages 1 Wiki Activity Actions

run as non-root in docker

Browse source
This commit is contained in:
Thibault Godouet 2021-07-25 17:28:31 +01:00
parent 8fa301b5a3
commit cb432015b5
2 changed files with 12 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

7
build/Dockerfile
View file

@ -25,4 +25,11 @@ COPY gpgparams entrypoint.sh /protonmail/
# Copy protonmail # Copy protonmail
COPY --from=build /build/proton-bridge/proton-bridge /protonmail/ COPY --from=build /build/proton-bridge/proton-bridge /protonmail/
# Add a user 'protonmail' with UID 8535
RUN useradd -u 8535 -d /home/protonmail protonmail \
&& mkdir -p /home/protonmail \
&& chown protonmail: /home/protonmail
# change to non-privileged user for extra security
USER protonmail
ENTRYPOINT ["bash", "/protonmail/entrypoint.sh"] ENTRYPOINT ["bash", "/protonmail/entrypoint.sh"]

5
build/entrypoint.sh
View file

@ -2,6 +2,11 @@
set -ex set -ex
id
# Go to current user's homedir
cd
echo $PWD
# Initialize # Initialize
if [[ $1 == init ]]; then if [[ $1 == init ]]; then