Set the pgo-backrest-repo container to run as OS user "2000"

Jonathan S. Katz · jkatz · commit 945a009105e1 · 2019-11-10T09:50:19.000-05:00
A container instantiated with the "runAsNonRoot" is unable to
verify that the "pgbackrest"  user is a non-root OS user. The fix for
this is to explicitly specify the numeric ID associated with the user
account in order for "runAsNonRoot" to verify that this is not a root
account.

Issue: [ch5510]
diff --git a/centos7/Dockerfile.pgo-backrest-repo.centos7 b/centos7/Dockerfile.pgo-backrest-repo.centos7
@@ -35,7 +35,7 @@ RUN chmod g=u /etc/passwd && \
 
 RUN mkdir /.ssh && chown pgbackrest:pgbackrest /.ssh && chmod o+rwx /.ssh
 
-USER pgbackrest
+USER 2000
 
 ENTRYPOINT ["/opt/cpm/bin/uid_pgbackrest.sh"]
 
diff --git a/rhel7/Dockerfile.pgo-backrest-repo.rhel7 b/rhel7/Dockerfile.pgo-backrest-repo.rhel7
@@ -34,7 +34,7 @@ RUN chmod g=u /etc/passwd && \
 
 RUN mkdir /.ssh && chown pgbackrest:pgbackrest /.ssh && chmod o+rwx /.ssh
 
-USER pgbackrest
+USER 2000
 
 ENTRYPOINT ["/opt/cpm/bin/uid_pgbackrest.sh"]
 VOLUME ["/sshd", "/backrestrepo" ]
diff --git a/ubi7/Dockerfile.pgo-backrest-repo.ubi7 b/ubi7/Dockerfile.pgo-backrest-repo.ubi7
@@ -34,7 +34,7 @@ RUN chmod g=u /etc/passwd && \
 
 RUN mkdir /.ssh && chown pgbackrest:pgbackrest /.ssh && chmod o+rwx /.ssh
 
-USER pgbackrest
+USER 2000
 
 ENTRYPOINT ["/opt/cpm/bin/uid_pgbackrest.sh"]
 VOLUME ["/sshd", "/backrestrepo" ]
