Dockerfile: Explictly create volume paths and set permissions #909
Commits on Jun 22, 2022
-
Dockerfile: Explictly create volume paths and set permissions
This allows running the docker image with a non-root user (--user 2000) with named/anonymous volumes (-v isso-db:/db). When an empty volume is mounted into a container (non-bind mount), it is prepopulated with the files at the mount path, including owners and permissions. The issue is that since /db does not exist at docker build time, the volume defaults to root ownership with 0755 permissions, which prevents non-root users from creating the sqlite database. This change explicitly creates the /config and /db directories with 1777 permissions to allow any user to write to them. Note that this has no impact on bind mounts, since these always use permissions of the host filesystem.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.