flakybit/mongodb-docker
0
Fork 0
Code

Added user/group

Browse Source 
fixed config and directories permissions
This commit is contained in:
0x1def 2023-11-09 08:31:17 +03:00
parent 746e651e63
commit f6ee39f9ff
Signed by: 0x1def
GPG Key ID: D7D7D9B5E72B6AA2
2 changed files with 11 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
Dockerfile
View File

@ -8,7 +8,9 @@ LABEL org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \
ENV HOME="/" \ ENV HOME="/" \
OS_ARCH="amd64" \ OS_ARCH="amd64" \
OS_FLAVOUR="debian-12" \ OS_FLAVOUR="debian-12" \
OS_NAME="linux" OS_NAME="linux" \
UID=1001 \
GID=1001
COPY prebuildfs / COPY prebuildfs /
SHELL ["/bin/bash", "-o", "pipefail", "-c"] SHELL ["/bin/bash", "-o", "pipefail", "-c"]
@ -43,6 +45,8 @@ RUN apt-get autoremove --purge -y curl && \
RUN chmod g+rwX /opt/bitnami RUN chmod g+rwX /opt/bitnami
COPY rootfs / COPY rootfs /
RUN groupadd --gid $GID mongo && \
useradd --uid $UID --gid $GID --no-create-home --home-dir /opt/bitnami/mongodb mongo
RUN /opt/bitnami/scripts/mongodb/postunpack.sh RUN /opt/bitnami/scripts/mongodb/postunpack.sh
ENV APP_VERSION="${VERSION}" \ ENV APP_VERSION="${VERSION}" \
BITNAMI_APP_NAME="mongodb" \ BITNAMI_APP_NAME="mongodb" \
@ -50,6 +54,6 @@ ENV APP_VERSION="${VERSION}" \
EXPOSE 27017 EXPOSE 27017
USER 1001 USER $UID:$GID
ENTRYPOINT [ "/opt/bitnami/scripts/mongodb/entrypoint.sh" ] ENTRYPOINT [ "/opt/bitnami/scripts/mongodb/entrypoint.sh" ]
CMD [ "/opt/bitnami/scripts/mongodb/run.sh" ] CMD [ "/opt/bitnami/scripts/mongodb/run.sh" ]

5
rootfs/opt/bitnami/scripts/mongodb/postunpack.sh
View File

@ -21,6 +21,7 @@ for dir in "$MONGODB_TMP_DIR" "$MONGODB_LOG_DIR" "$MONGODB_CONF_DIR" "$MONGODB_D
ensure_dir_exists "$dir" ensure_dir_exists "$dir"
done done
chmod -R g+rwX "$MONGODB_TMP_DIR" "$MONGODB_LOG_DIR" "$MONGODB_CONF_DIR" "$MONGODB_DATA_DIR" "$MONGODB_VOLUME_DIR" "$MONGODB_INITSCRIPTS_DIR" chmod -R g+rwX "$MONGODB_TMP_DIR" "$MONGODB_LOG_DIR" "$MONGODB_CONF_DIR" "$MONGODB_DATA_DIR" "$MONGODB_VOLUME_DIR" "$MONGODB_INITSCRIPTS_DIR"
chown -R $UID:$GID "$MONGODB_TMP_DIR" "$MONGODB_LOG_DIR" "$MONGODB_CONF_DIR" "$MONGODB_DATA_DIR" "$MONGODB_VOLUME_DIR"
render-template "$MONGODB_MONGOD_TEMPLATES_FILE" >"$MONGODB_CONF_FILE" render-template "$MONGODB_MONGOD_TEMPLATES_FILE" >"$MONGODB_CONF_FILE"
@ -33,7 +34,11 @@ touch "$MONGOSH_RC_FILE" && chmod g+rw "$MONGOSH_RC_FILE"
# Create .mongodb folder to avoid error message # Create .mongodb folder to avoid error message
mkdir "$MONGOSH_DIR" && chmod g+rwX "$MONGOSH_DIR" mkdir "$MONGOSH_DIR" && chmod g+rwX "$MONGOSH_DIR"
chown $UID:$GID "$MONGODB_CONF_FILE"
chmod 660 "$MONGODB_CONF_FILE" chmod 660 "$MONGODB_CONF_FILE"
# Redirect all logging to stdout # Redirect all logging to stdout
ln -sf /dev/stdout "$MONGODB_LOG_FILE" ln -sf /dev/stdout "$MONGODB_LOG_FILE"
chown -R $UID:$GID "$MONGODB_TMP_DIR" "$MONGODB_LOG_DIR" "$MONGODB_CONF_DIR" "$MONGODB_DATA_DIR" "$MONGODB_VOLUME_DIR" "$MONGOSH_DIR"
chown $UID:$GID "$MONGODB_DB_SHELL_FILE" "$MONGODB_RC_FILE" "$MONGOSH_RC_FILE"