diff --git a/backend/Dockerfile b/backend/Dockerfile index 9e43d74..c9c35c5 100644 --- a/backend/Dockerfile +++ b/backend/Dockerfile @@ -36,9 +36,9 @@ COPY --from=builder /app/node_modules/.prisma ./node_modules/.prisma # Copy compiled application COPY --from=builder /app/dist ./dist -# Run as non-root user -RUN addgroup -S appgroup && adduser -S appuser -G appgroup -USER appuser +# Run as non-root user (numeric UID required by Kubernetes runAsNonRoot) +RUN addgroup -S -g 1001 appgroup && adduser -S -u 1001 -G appgroup appuser +USER 1001 EXPOSE 3001 diff --git a/timetracker-chart/Chart.yaml b/timetracker-chart/Chart.yaml index 764c8a5..f17b1d5 100644 --- a/timetracker-chart/Chart.yaml +++ b/timetracker-chart/Chart.yaml @@ -2,6 +2,6 @@ apiVersion: v2 name: timetracker description: A Helm chart for the TimeTracker application type: application -version: 1.0.0 +version: 1.0.3 appVersion: "1.0.0" -dependencies: [] \ No newline at end of file +dependencies: [] diff --git a/timetracker-chart/templates/frontend-deployment.yaml b/timetracker-chart/templates/frontend-deployment.yaml index 0740409..09caaa0 100644 --- a/timetracker-chart/templates/frontend-deployment.yaml +++ b/timetracker-chart/templates/frontend-deployment.yaml @@ -27,7 +27,7 @@ spec: imagePullPolicy: {{ .Values.frontend.image.pullPolicy }} ports: - name: http - containerPort: 80 + containerPort: 8080 protocol: TCP livenessProbe: httpGet: diff --git a/timetracker-chart/templates/ingress.yaml b/timetracker-chart/templates/ingress.yaml index 2ec334c..8e3ea36 100644 --- a/timetracker-chart/templates/ingress.yaml +++ b/timetracker-chart/templates/ingress.yaml @@ -26,14 +26,6 @@ spec: name: {{ include "timetracker.fullname" $ }}-backend port: number: {{ $.Values.backend.service.port }} - # Auth routes - - path: /auth - pathType: Prefix - backend: - service: - name: {{ include "timetracker.fullname" $ }}-backend - port: - number: {{ $.Values.backend.service.port }} # Frontend (catch-all) - path: / pathType: Prefix