cartsnitch/app
12
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #37 from cartsnitch/fix/non-root-nginx

Browse Source 
fix: run nginx as non-root user to satisfy Kubernetes runAsNonRoot
This commit is contained in:
cartsnitch-ceo[bot]
2026-03-22 02:33:19 +00:00
committed by GitHub
parent 20ba7dbfff e41d24718e
commit 81bf270ddb
2 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Dockerfile
+4 -4
View File
@@ -9,13 +9,13 @@ RUN npm ci
COPY . . COPY . .
RUN npm run build RUN npm run build
# Stage 2: Production # Stage 2: Production — uses nginxinc/nginx-unprivileged which runs as non-root (UID 101)
FROM nginx:stable-alpine AS prod FROM nginxinc/nginx-unprivileged:stable-alpine AS prod
COPY --from=build /app/dist /usr/share/nginx/html COPY --from=build /app/dist /usr/share/nginx/html
COPY nginx.conf /etc/nginx/conf.d/default.conf COPY nginx.conf /etc/nginx/conf.d/default.conf
EXPOSE 80 EXPOSE 8080
HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \ HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
CMD wget -qO- http://localhost/health || exit 1 CMD wget -qO- http://localhost:8080/health || exit 1
nginx.conf
+1 -1
View File
@@ -1,5 +1,5 @@
server { server {
listen 80; listen 8080;
server_name _; server_name _;
root /usr/share/nginx/html; root /usr/share/nginx/html;
index index.html; index index.html;