Skip to content

Commit

Permalink
chore: Dockerfile-alpine - Add commentary
Browse files Browse the repository at this point in the history
  • Loading branch information
@polarathene
polarathene authored Jan 5, 2025
1 parent 4ada680 commit 90f2518
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions .docker/Dockerfile-alpine
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@ RUN <<HEREDOC
apk add --no-cache --upgrade ca-certificates

# Add a user/group for Ory with a stable UID + GID:
# NOTE: This only appears relevant for supporting hydra as non-root, otherwise unnecessary.
addgroup --system --gid 500 ory
adduser --system --uid 500 \
--gecos "Ory User" \
Expand All @@ -15,6 +16,9 @@ RUN <<HEREDOC

# Create the sqlite directory with ownership to that user and group:
# NOTE: This is required for read/write by SQLite.
# - Path may be a default value somewhere, or only explicitly provided via DSN?
# - Owner/Group is only relevant to permissions allowing the hydra process to read/write to the location.
# - Bind mount volumes will replace the ownership with that of the host directory, requiring correction.
install --owner ory --group ory --directory /var/lib/sqlite
HEREDOC

Expand Down

0 comments on commit 90f2518

Please sign in to comment.