From a83911a9cfe8956cd620350c0b306c977e52b22a Mon Sep 17 00:00:00 2001
From: Clemens Klug <clemens.klug@uni-bamberg.de>
Date: Wed, 4 Dec 2019 16:10:21 +0100
Subject: [PATCH] run django as non-root

---
 docker-compose.yml | 2 +-
 partdoc/Dockerfile | 4 +++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index b45a374..cce2ca9 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -2,7 +2,7 @@ version: "2"
 
 services:
  web:
-  image: docker.clkl.de/partdoc/web:0.1
+  image: docker.clkl.de/partdoc/web:0.2
   build: partdoc
   env_file: postgres.env
   volumes:
diff --git a/partdoc/Dockerfile b/partdoc/Dockerfile
index 50bdd2c..01acf19 100644
--- a/partdoc/Dockerfile
+++ b/partdoc/Dockerfile
@@ -3,4 +3,6 @@ FROM alpine:3.7
 ADD requirements.txt /
 RUN apk add --update --no-cache python3 py3-psycopg2 && \
 	sed -i 's/psycopg2/#psycopg2/' /requirements.txt && \
-	pip3 install -r /requirements.txt && rm /requirements.txt
\ No newline at end of file
+	pip3 install -r /requirements.txt && rm /requirements.txt && \
+	adduser -D django
+USER django
\ No newline at end of file