From 3aed18c233679a5c546185c0ad01ed905130cc46 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Micha=C5=82=20Socho=C5=84?= <kaszpir@gmail.com>
Date: Tue, 5 Apr 2022 14:07:39 +0200
Subject: [PATCH] Disable running app as root

---
 .dockerignore | 5 +++++
 Dockerfile    | 4 +++-
 2 files changed, 8 insertions(+), 1 deletion(-)
 create mode 100644 .dockerignore

diff --git a/.dockerignore b/.dockerignore
new file mode 100644
index 0000000..e1bd780
--- /dev/null
+++ b/.dockerignore
@@ -0,0 +1,5 @@
+.git
+.gitignore
+.dockerignore
+Dockerfile
+k8s
diff --git a/Dockerfile b/Dockerfile
index 3ca7182..e4a26a5 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -2,7 +2,9 @@ FROM python:3-alpine
 LABEL org.opencontainers.image.source github.com/akpw/mktxp
 WORKDIR /mktxp
 COPY . .
-RUN pip install ./ && apk add nano 
+RUN pip install ./ && apk add nano
 EXPOSE 49090
+RUN addgroup -S mktxp && adduser -S mktxp -G mktxp
+USER mktxp
 ENTRYPOINT ["/usr/local/bin/mktxp"]
 CMD ["export"]