Mercurial > gemma
view docker/Dockerfile.backend @ 5025:4c658a8f34da
Fix row level security policies for waterway admin
Since 'staging_done OR' was added to the conditions to improve
performance for read access, it was also allowed to delete and partly
update entries with staging_done set to true but otherwise being
outside the country of the respective waterway admin. Using an extra
policy for each command and using the 'staging_done OR' tweak only
FOR SELECT should fix authorization while keeping performance.
author | Tom Gottfried <tom@intevation.de> |
---|---|
date | Wed, 18 Mar 2020 12:16:42 +0100 |
parents | b61979b74d82 |
children |
line wrap: on
line source
FROM ubuntu:bionic LABEL authors="tom.gottfried@intevation.de" LABEL description="Contains software from gemma, for right holders and\ licensing infos, see https://hg.intevation.de/gemma ." RUN sed -i 's/\(deb.*\)$/\1 universe/' /etc/apt/sources.list RUN apt-get update && apt-get install -y software-properties-common RUN add-apt-repository -y ppa:longsleep/golang-backports &&\ apt-get update &&\ apt-get -y install --no-install-recommends libxml2-utils\ make git golang-go \ ca-certificates WORKDIR /opt/gemma # Copy only backend stuff COPY go.mod ./ COPY go.sum ./ COPY pkg ./pkg/ COPY cmd ./cmd/ COPY Makefile ./ COPY example_conf.toml ./ RUN make install EXPOSE 8000 CMD ["/usr/local/bin/gemma", "-c", "/opt/gemma/example_conf.toml"]