Don't run as root. Set env to production.
This commit is contained in:
parent
36c1aa8281
commit
8e22b8e346
|
|
@ -0,0 +1,2 @@
|
||||||
|
resources
|
||||||
|
.hugo_build.lock
|
||||||
|
|
@ -1,5 +1,17 @@
|
||||||
FROM alpine
|
FROM alpine
|
||||||
RUN apk add git hugo
|
|
||||||
|
ENV HUGO_ENVIRONMENT=production
|
||||||
|
|
||||||
WORKDIR /app
|
WORKDIR /app
|
||||||
COPY . /app
|
RUN apk add git hugo
|
||||||
|
|
||||||
|
RUN adduser \
|
||||||
|
--disabled-password \
|
||||||
|
--gecos "" \
|
||||||
|
--uid 1000 \
|
||||||
|
hugo
|
||||||
|
RUN chown hugo:hugo /app
|
||||||
|
USER hugo
|
||||||
|
|
||||||
CMD hugo server --bind 0.0.0.0
|
CMD hugo server --bind 0.0.0.0
|
||||||
|
COPY . /app
|
||||||
|
|
|
||||||
|
|
@ -1,6 +1,6 @@
|
||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
|
|
||||||
version="0.1.1"
|
version="0.2.0"
|
||||||
script_dir=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
|
script_dir=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
|
||||||
tmp_dir="$(mktemp -d --suffix=-web)"
|
tmp_dir="$(mktemp -d --suffix=-web)"
|
||||||
cleanup () { rm -Rfv "$tmp_dir"; }
|
cleanup () { rm -Rfv "$tmp_dir"; }
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue