From c6c0a325ef99892ef880eea6894b8c08aecefee2 Mon Sep 17 00:00:00 2001
From: Sviatoslav Boichuk <boichuk.sv@gmail.com>
Date: Wed, 15 May 2024 17:36:40 +0300
Subject: [PATCH] Added non-root user to CGW Image

---
 Dockerfile | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index f406b02..3c49e48 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -15,6 +15,10 @@ RUN apt-get update -q -y  && apt-get install -q -y \
 CMD ["make", "-C", "/usr/src/openlan-cgw", "cgw-app"]
 
 FROM rust:1.77.0 as cgw-img
+RUN adduser cgw_runner && addgroup cgw_users_group
+RUN usermod -a -G cgw_users_group cgw_runner
+RUN chown cgw_runner:cgw_users_group "/var"
+USER cgw_runner
 COPY --from=builder /lib/x86_64-linux-gnu/ /lib/x86_64-linux-gnu/
 COPY output/bin/ucentral-cgw /usr/local/bin/ucentral-cgw
 CMD ["ucentral-cgw"]