fix: do not run as custom user

2024-02-20 15:34:56 +01:00 · 2024-02-20 15:34:56 +01:00 · ee3f7df6eb
parent 3727938ec0
commit ee3f7df6eb
1 changed files with 1 additions and 9 deletions
--- a/10
+++ b/10
@ -141,15 +141,7 @@ RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true

 # GeoServer user => restrict access to $CATALINA_HOME and GeoServer directories
 # See also CIS Docker benchmark and docker best practices
-RUN chmod +x /opt/*.sh \
-    && groupadd geoserver  \
-    && useradd --no-log-init -u 2000 -r -g geoserver geoserver \
-    && chown -R geoserver:geoserver $CATALINA_HOME \
-    && chmod g-w,o-rwx $CATALINA_HOME \
-    && chown -R geoserver:geoserver $GEOSERVER_DATA_DIR \
-    && chown -R geoserver:geoserver $GEOSERVER_LIB_DIR
-
-USER geoserver
+RUN chmod +x /opt/*.sh

 ENTRYPOINT ["/opt/startup.sh"]