From b9d288e8bd9127b088c225b0727d4678de621f4d Mon Sep 17 00:00:00 2001
From: Chris Ball <cmball1@users.noreply.github.com>
Date: Tue, 31 Jul 2018 17:19:58 -0400
Subject: [PATCH] Create user to run as non-root

---
 Dockerfile | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index 684ca86..5566281 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -35,3 +35,13 @@ RUN cp /root/bamUtil/bin/bam /usr/bin/bam-non-primary-dedup
 RUN git --git-dir=/root/bamUtil/.git --work-tree=/root/bamUtil checkout b6e4a7de6b7ce08d488f539ada4f1717cd4d12e4 #ExternalMemorySortManager
 RUN make -C /root/bamUtil
 RUN cp /root/bamUtil/bin/bam /usr/bin/bam-ext-mem-sort-manager
+
+RUN groupadd datacommons; groupadd docker \
+    && useradd -m dockeruser -g docker -s /bin/bash \
+    && echo "dockeruser ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/docker
+
+RUN chmod 777 -R /root
+RUN chmod 777 -R /usr
+RUN chown dockeruser:docker /tmp; chown dockeruser:docker /usr
+USER dockeruser
+WORKDIR /home/dockeruser