#234 - Set user by id in Dockerfile

- do not create a new user "feasibility" with group but use user with id 10001 instead
- adapt check in github action

.github/scripts/check-if-running-as-user-10001.sh

@@ -0,0 +1,10 @@
+#!/bin/bash -e
+
+if docker exec -u0 feasibility-gui-backend pgrep -u 10001 java > /dev/null
+then
+    echo "Java process is running as 10001"
+    exit 0
+else
+    echo "Java process is not running as 10001"
+    exit 1
+fi

.github/workflows/ci.yml

@@ -149,7 +149,7 @@ jobs:
         run: .github/scripts/wait-for-url.sh  http://localhost:8091/actuator/health
 
       - name: Check if Feasibility Backend is correctly running with the feasibility user
-        run: .github/scripts/check-if-running-as-feasibility-user.sh
+        run: .github/scripts/check-if-running-as-user-10001.sh
 
       - name: Wait for Blaze
         run: .github/scripts/wait-for-url.sh  http://localhost:8082/health

Dockerfile

@@ -7,11 +7,10 @@ WORKDIR /opt/codex-feasibility-backend
 COPY ./target/*.jar ./feasibility-gui-backend.jar
 COPY ontology ontology
 
-RUN addgroup --system feasibility && adduser --system feasibility --ingroup feasibility
 RUN mkdir logging
-RUN chown -R feasibility:feasibility /opt/codex-feasibility-backend
+RUN chown -R 10001:10001 /opt/codex-feasibility-backend
 
-USER feasibility:feasibility
+USER 10001
 
 ARG VERSION=2.1.0
 ENV APP_VERSION=${VERSION}
@@ -24,7 +23,7 @@ ENV TRUSTSTORE_PATH=/opt/codex-feasibility-backend/truststore
 ENV TRUSTSTORE_FILE=self-signed-truststore.jks
 
 RUN mkdir -p $CERTIFICATE_PATH $TRUSTSTORE_PATH
-RUN chown feasibility:feasibility $CERTIFICATE_PATH $TRUSTSTORE_PATH
+RUN chown 10001:10001 $CERTIFICATE_PATH $TRUSTSTORE_PATH
 
 HEALTHCHECK --interval=5s --start-period=10s CMD curl -s -f http://localhost:8090/actuator/health || exit 1