From b428a536cc762b876e1973a92e1881a003252d69 Mon Sep 17 00:00:00 2001
From: Vitaly Shunkov <v.shunkov@picodata.io>
Date: Fri, 4 Oct 2024 15:40:50 +0300
Subject: [PATCH] refactor: change user name and homedir in docker image

---
 helm/picodata.Dockerfile | 15 ++++++++-------
 1 file changed, 8 insertions(+), 7 deletions(-)

diff --git a/helm/picodata.Dockerfile b/helm/picodata.Dockerfile
index 57d7b38927..70005b58e1 100644
--- a/helm/picodata.Dockerfile
+++ b/helm/picodata.Dockerfile
@@ -23,16 +23,17 @@ RUN cargo build --locked --release --features webui
 FROM rockylinux:8
 
 COPY --from=builder /build/picodata/target/release/picodata /usr/bin/picodata
-COPY helm/entrypoint.sh /home/picouser/entrypoint.sh
+COPY helm/entrypoint.sh /entrypoint.sh
 
 RUN chmod 755 /usr/bin/picodata \
-    && chmod 755 /home/picouser/entrypoint.sh \
-    && groupadd -g 1000 picouser \
-    && useradd -u 1000 -g 1000 picouser \
-    && chown 1000:1000 -R /home/picouser
+    && mkdir -p /var/lib/picodata && mkdir -p /var/run/picodata \
+    && chmod 755 /entrypoint.sh \
+    && groupadd -g 1000 picodata \
+    && useradd -u 1000 -g 1000 picodata -s /usr/sbin/nologin \
+    && chown 1000:1000 -R /var/lib/picodata
 
 USER 1000:1000
 
-WORKDIR /home/picouser
+WORKDIR /var/lib/picodata
 
-ENTRYPOINT ["/home/picouser/entrypoint.sh"]
+ENTRYPOINT ["/entrypoint.sh"]
-- 
GitLab