From 5d7c77878e827ef5d0aabb9c4758baae61bb69f5 Mon Sep 17 00:00:00 2001
From: Christophe Tafani-Dereeper <christophe.tafanidereeper@datadoghq.com>
Date: Tue, 22 Aug 2023 14:29:06 +0200
Subject: [PATCH] Fix permission error in Docker image (closes #276)

---
 Dockerfile | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 2b2199aa..682ab4e4 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,8 +1,8 @@
 FROM python:3.10-slim-bullseye AS base
 LABEL org.opencontainers.image.source="https://github.com/DataDog/guarddog/"
 
-RUN addgroup --system --gid 1000 app \
-    && adduser --system --shell /bin/bash --uid 1000 --ingroup app app
+RUN addgroup --system --gid 1000 guarddog \
+    && adduser --system --shell /bin/bash --uid 1000 --ingroup guarddog guarddog
 
 RUN mkdir /app
 WORKDIR /app
@@ -22,6 +22,6 @@ RUN --mount=type=cache,mode=0755,id=pip,target=/root/.cache/pip \
 FROM base as app
 # copy built deps from builder
 COPY --from=builder /usr/local/bin/ /usr/local/bin/
-COPY --from=builder /usr/local/lib/python3.10/site-packages /usr/local/lib/python3.10/site-packages
-USER app
+COPY --from=builder --chown=guarddog /usr/local/lib/python3.10/site-packages /usr/local/lib/python3.10/site-packages
+USER guarddog
 ENTRYPOINT ["guarddog"]