commit a2abf6ea18d512d367277bacaf7476754dc0eff5
author MichaelMorris <michael.morris@est.tech> Tue Mar 10 12:37:48 2020 +0000
committer Ofir Sonsino <ofir.sonsino@intl.att.com> Mon Mar 16 08:45:20 2020 +0000
tree 595dbda50b67c33936b754b0930416e892ff3ea2
parent 1dcbd56c897602f15f6659e113fd4c8011227fc2

Run pods as non-root user

Summary of changes:
sdc-cassandra-init
	Added user sdc (in base image base_sdc-cqlsh - https://gerrit.onap.org/r/103436)
	Run entrypoint as user sdc
	Moved relevant files from /root/ to /home/sdc/

sdc-backend-init
	Added user sdc (in base image base_sdc-python - https://gerrit.onap.org/r/103436)
	Run entrypoint as user sdc
	Moved relevant files from /root/ to /home/sdc/

sdc-backend
	Run entrypoint as user jetty
	Moved relevant files from /root/ to /var/lib/jetty/
	Moved cadi & cert files from /opt/app/jetty to /var/lib/jetty/
	Moved ready_probe from /var/lib/read-probe.sh to /var/lib/jetty/read-probe.sh

sdc-frontend
	Run entrypoint as user jetty
	Moved relevant files from /root/ to /var/lib/jetty/
	Moved ready_probe from /var/lib/read-probe.sh to /var/lib/jetty/read-probe.sh

sdc-onboard-backend-docker
	Run entrypoint as user jetty
	Moved relevant files from /root/ to /var/lib/jetty/
	Moved ready_probe from /var/lib/read-probe.sh to /var/lib/jetty/read-probe.sh

sdc-onboard-db-init-docker
	Run entrypoint as user sdc
	Added user sdc (in base image base_sdc-cqlsh - https://gerrit.onap.org/r/103436)
	Moved relevant files from /root/ to /home/sdc/

Signed-off-by: MichaelMorris <michael.morris@est.tech>
Issue-ID: SDC-2798
Change-Id: I85be320a4a5e1cc5aeebbb98c4484d5d6fd06dfc

catalog-be/src/main/resources/cadi.properties

diff --git a/catalog-be/src/main/resources/cadi.properties b/catalog-be/src/main/resources/cadi.properties
index 0d6aee1..bbce361 100644
--- a/catalog-be/src/main/resources/cadi.properties
+++ b/catalog-be/src/main/resources/cadi.properties
@@ -13,7 +13,7 @@
 csp_domain=PROD
 
 # Add Absolute path to Keyfile
-cadi_keyfile=/opt/app/jetty/base/be/etc/keyfile
+cadi_keyfile=/var/lib/jetty/opt/be/etc/keyfile
 
 
 # This is required to accept Certificate Authentication from Certman certificates.
@@ -31,7 +31,7 @@
 # Default TrustStore - REQUIRED for changing PROTOCOL Defaults for DME2
 # Read https://wiki.web.att.com/pages/viewpage.action?pageId=574623569#URGENT:SolvingSSL2-3/TLSv1removalissues-Up-to-dateTruststore
 # Add Absolute path to truststore2018.jks
-cadi_truststore=/opt/app/jetty/base/be/etc/cadi_truststore.jks
+cadi_truststore=/var/lib/jetty/base/be/etc/cadi_truststore.jks
 # Note: This is the ONLY password that doesn't have to be encrypted. All Java's TrustStores are this passcode by default, because they are public certs
 cadi_truststore_password=changeit
 
@@ -52,4 +52,4 @@
 cadi_longitude=-96.800451
 
 aaf_root_ns=com.att.aaf
-aaf_api_version=2.0
\ No newline at end of file
+aaf_api_version=2.0