chore(redis): premission denied

Author: duanhongyi

charts/redis/templates/redis-statefulset.yaml

@@ -32,7 +32,10 @@ spec:
             memory: {{.Values.limitsMemory}}
             {{- end}}
         {{- end}}
-        command: ["/bin/boot", "--port", "6379"]
+        args:
+        - "/bin/boot"
+        - "--port"
+        - "6379"
         ports:
         - containerPort: 6379
         volumeMounts:
@@ -42,6 +45,10 @@ spec:
         - name: redis-data
           mountPath: /data
         {{- end }}
+      securityContext:
+        fsGroup: 1001
+        runAsGroup: 1001
+        runAsUser: 1001
       volumes:
       - name: redis-creds
         secret:

rootfs/Dockerfile

@@ -1,11 +1,11 @@
 FROM docker.io/drycc/base:bullseye
 
-RUN adduser --system \
-   --shell /bin/bash \
-   --disabled-password \
-   --home /data \
-   --group \
-   redis
+ARG DRYCC_UID=1001
+ARG DRYCC_GID=1001
+ARG DRYCC_HOME_DIR=/data
+
+RUN groupadd drycc --gid ${DRYCC_GID} \
+  && useradd drycc -u ${DRYCC_UID} -g ${DRYCC_GID} -s /bin/bash -m -d ${DRYCC_HOME_DIR}
 
 COPY bin/boot /bin/boot
 COPY etc/redis/redis.conf /etc/redis/redis.conf
@@ -26,8 +26,9 @@ RUN install-stack redis $REDIS_VERSION \
       /usr/lib/`echo $(uname -m)`-linux-gnu/gconv/IBM* \
       /usr/lib/`echo $(uname -m)`-linux-gnu/gconv/EBC* \
   && bash -c "mkdir -p /usr/share/man/man{1..8}" \
-  && chown -R redis:redis /etc/redis /data
+  && chown -R drycc:drycc /etc/redis ${DRYCC_HOME_DIR}
 
-USER redis
+USER drycc
+WORKDIR ${DRYCC_HOME_DIR}
 CMD ["/bin/boot"]
 EXPOSE 6379