From f2d6f09671be69ce533343d93136e876a720945d Mon Sep 17 00:00:00 2001 From: Adam Rahja Date: Thu, 30 Nov 2023 08:08:52 -0600 Subject: [PATCH] Added non-root user to docker images. This gives you the ability to run ntfy as a non-root user. resolves #966 --- Dockerfile | 3 ++- Dockerfile-arm | 1 + Dockerfile-build | 1 + 3 files changed, 4 insertions(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 45dad05d..154a98ed 100644 --- a/Dockerfile +++ b/Dockerfile @@ -9,7 +9,8 @@ LABEL org.opencontainers.image.licenses="Apache-2.0, GPL-2.0" LABEL org.opencontainers.image.title="ntfy" LABEL org.opencontainers.image.description="Send push notifications to your phone or desktop using PUT/POST" -RUN apk add --no-cache tzdata +RUN apk add --no-cache tzdata \ + && adduser -D -u 1000 ntfy COPY ntfy /usr/bin EXPOSE 80/tcp diff --git a/Dockerfile-arm b/Dockerfile-arm index 755092fd..05b56fb1 100644 --- a/Dockerfile-arm +++ b/Dockerfile-arm @@ -12,6 +12,7 @@ LABEL org.opencontainers.image.description="Send push notifications to your phon # Alpine does not support adding "tzdata" on ARM anymore, see # https://github.com/binwiederhier/ntfy/issues/894 +RUN adduser -D -u 1000 ntfy COPY ntfy /usr/bin EXPOSE 80/tcp diff --git a/Dockerfile-build b/Dockerfile-build index cd03a2ff..f454284b 100644 --- a/Dockerfile-build +++ b/Dockerfile-build @@ -53,6 +53,7 @@ LABEL org.opencontainers.image.licenses="Apache-2.0, GPL-2.0" LABEL org.opencontainers.image.title="ntfy" LABEL org.opencontainers.image.description="Send push notifications to your phone or desktop using PUT/POST" +RUN adduser -D -u 1000 ntfy COPY --from=builder /app/dist/ntfy_linux_server/ntfy /usr/bin/ntfy EXPOSE 80/tcp