ACTIVATE_SUDO to disable sudo by default

Vorlent · Aug 13, 2022 · 3b01e7f · 3b01e7f
1 parent 93b117b
commit 3b01e7f
Show file tree

Hide file tree

Showing 2 changed files with 11 additions and 5 deletions.
diff --git a/cozycast-worker/Dockerfile b/cozycast-worker/Dockerfile
@@ -13,11 +13,7 @@ RUN export UNAME=$UNAME UID=1000 GID=1000 && \
     mkdir -p "/home/${UNAME}" && \
     echo "${UNAME}:x:${UID}:${GID}:${UNAME} User,,,:/home/${UNAME}:/bin/bash" >> /etc/passwd && \
     echo "${UNAME}:x:${UID}:" >> /etc/group && \
-    mkdir -p /etc/sudoers.d && \
-    echo "${UNAME} ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/${UNAME} && \
-    chmod 0440 /etc/sudoers.d/${UNAME} && \
-    chown ${UID}:${GID} -R /home/${UNAME} && \
-    gpasswd -a ${UNAME} audio
+    mkdir -p /etc/sudoers.d
 
 ENV TINI_VERSION="v0.19.0"
 ADD https://github.com/krallin/tini/releases/download/v0.19.0/tini /tini

diff --git a/cozycast-worker/entrypoint.sh b/cozycast-worker/entrypoint.sh
@@ -1,4 +1,14 @@
 #!/bin/bash
+
+if test -z "$ACTIVATE_SUDO"; then
+    echo "no sudo"
+else
+    echo "${UNAME} ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/${UNAME}
+    chmod 0440 /etc/sudoers.d/${UNAME}
+    chown ${UID}:${GID} -R /home/${UNAME}
+    gpasswd -a ${UNAME} audio
+fi
+
 export DISPLAY=":$RANDOM"
 sudo chown cozycast:cozycast /home/cozycast