From 0118cff82a0102a86f89bd9b99c2a9b7dae35a13 Mon Sep 17 00:00:00 2001
From: Dmitry Smirnov <dmitry.smirnov@transactcampus.com>
Date: Tue, 11 Feb 2025 13:23:49 +0200
Subject: [PATCH] fix(docker): remove unnecessary sudo access for worker user

- Remove sudo access configuration as it's not required
- Container already runs as non-root user (UID 500) by default
- Maintain principle of least privilege for container security
---
 Dockerfile | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index be71763..1ed22e6 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -104,10 +104,7 @@ RUN ARCH=$(uname -m) && \
 
 # Create a new user and group with specific UID and GID, and set permissions
 RUN groupadd -g ${GID} ${USER} && \
-    useradd -l -m -u ${UID} -g ${GID} -s /bin/bash ${USER} && \
-    mkdir -p /etc/sudoers.d && \
-    echo "${USER} ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/${USER} && \
-    chmod 0440 /etc/sudoers.d/${USER}
+    useradd -l -m -u ${UID} -g ${GID} -s /bin/bash ${USER}
 
 # Create the Supervisor log directory and set permissions
 RUN mkdir -p /var/log/supervisor /var/run/supervisor && \