diff options
| author | Yuqian Yang <crupest@crupest.life> | 2025-02-28 16:18:56 +0800 |
|---|---|---|
| committer | Yuqian Yang <crupest@crupest.life> | 2025-02-28 16:33:19 +0800 |
| commit | fdd3c05228e9bf4aa2d134bfdfd3f2689b92fbe9 (patch) | |
| tree | f2a93ccf645164ce1cc16527d4a0ec8ef9397785 /services/docker/git-server/Dockerfile | |
| parent | fda45d5a11822fa84abf30dbf4b1ff05d2e45c53 (diff) | |
| download | crupest-fdd3c05228e9bf4aa2d134bfdfd3f2689b92fbe9.tar.gz crupest-fdd3c05228e9bf4aa2d134bfdfd3f2689b92fbe9.tar.bz2 crupest-fdd3c05228e9bf4aa2d134bfdfd3f2689b92fbe9.zip | |
feat(git): use non-root and add robots.
Diffstat (limited to 'services/docker/git-server/Dockerfile')
| -rw-r--r-- | services/docker/git-server/Dockerfile | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/services/docker/git-server/Dockerfile b/services/docker/git-server/Dockerfile index b725122..274ba6a 100644 --- a/services/docker/git-server/Dockerfile +++ b/services/docker/git-server/Dockerfile @@ -3,13 +3,14 @@ RUN apt-get update && apt-get install -y \ git cgit lighttpd apache2-utils python3-pygments python3-markdown \ tar gzip bzip2 zip unzip tini && \ rm -rf /var/lib/apt/lists/* +RUN groupadd -g 1000 git && useradd -m -u 1000 -g 1000 -s /usr/bin/bash git ENV GIT_CONFIG_SYSTEM=/etc/gitconfig GIT_CONFIG_GLOBAL=/git/private/gitconfig ADD gitconfig /etc/gitconfig -ADD --chmod=755 hooks/* /etc/git/hooks/ -ADD git-lighttpd.conf git-auth.conf /app/ -ADD --chmod=755 lighttpd-wrapper.bash /app/ +ADD hooks/* /etc/git/hooks/ +ADD git-lighttpd.conf git-auth.conf lighttpd-wrapper.bash /app/ +USER git:git VOLUME [ "/git" ] CMD [ "tini", "--", "/app/lighttpd-wrapper.bash" ] |