forked from cartsnitch/app
fix: add explicit USER 101 to prod stage Dockerfile
Kubernetes runAsNonRoot validation requires the USER directive to be explicitly set in the image metadata. nginx-unprivileged runs as UID 101 internally, but without the explicit USER directive Kubernetes cannot verify this from the image config and fails with CreateContainerConfigError. Fixes CAR-231. Co-Authored-By: Paperclip <noreply@paperclip.ing>
This commit is contained in:
Frontend Frankie
@@ -15,6 +15,7 @@ FROM nginxinc/nginx-unprivileged:stable-alpine AS prod
|
||||
COPY --from=build /app/dist /usr/share/nginx/html
|
||||
COPY nginx.conf /etc/nginx/conf.d/default.conf
|
||||
|
||||
USER 101
|
||||
EXPOSE 8080
|
||||
|
||||
HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
|
||||
|
||||
Reference in New Issue
Block a user