Use user nobody in Dockerfile

Signed-off-by: Goutham Veeramachaneni <cs14btech11014@iith.ac.in>
This commit is contained in:
Goutham Veeramachaneni 2017-06-19 15:03:39 +05:30
parent 721ed3fb41
commit b2f7c8d842
No known key found for this signature in database
GPG Key ID: F1C217E8E9023CAD

View File

@ -7,17 +7,15 @@ COPY documentation/examples/prometheus.yml /etc/prometheus/prometheus.yml
COPY console_libraries/ /usr/share/prometheus/console_libraries/ COPY console_libraries/ /usr/share/prometheus/console_libraries/
COPY consoles/ /usr/share/prometheus/consoles/ COPY consoles/ /usr/share/prometheus/consoles/
RUN ln -s /usr/share/prometheus/console_libraries /usr/share/prometheus/consoles/ /etc/prometheus/ && \ RUN ln -s /usr/share/prometheus/console_libraries /usr/share/prometheus/consoles/ /etc/prometheus/
addgroup -g 1000 prometheus && \ RUN mkdir -p /prometheus && \
adduser -s /bin/sh -S -H -u 1000 -G prometheus prometheus && \ chown -R nobody:nogroup etc/prometheus /prometheus
mkdir -p /prometheus && \
chown -R prometheus:prometheus /etc/prometheus /prometheus
USER nobody
EXPOSE 9090 EXPOSE 9090
VOLUME [ "/prometheus" ] VOLUME [ "/prometheus" ]
WORKDIR /prometheus WORKDIR /prometheus
ENTRYPOINT [ "/bin/prometheus" ] ENTRYPOINT [ "/bin/prometheus" ]
USER prometheus
CMD [ "-config.file=/etc/prometheus/prometheus.yml", \ CMD [ "-config.file=/etc/prometheus/prometheus.yml", \
"-storage.local.path=/prometheus", \ "-storage.local.path=/prometheus", \
"-web.console.libraries=/usr/share/prometheus/console_libraries", \ "-web.console.libraries=/usr/share/prometheus/console_libraries", \