From dfd883dcb34858403f8f286d71bef4131bb9bc84 Mon Sep 17 00:00:00 2001 From: MouT Date: Sat, 30 May 2026 21:43:27 +0800 Subject: [PATCH] Revert "fix(deploy): chown volume at runtime so containers work with root-owned mounts" This reverts commit f32655d9c2e9ae6a1695ef248c3db450b0b4af7c. --- deploy/Dockerfile | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/deploy/Dockerfile b/deploy/Dockerfile index 63ff97f0f..ffced3af9 100644 --- a/deploy/Dockerfile +++ b/deploy/Dockerfile @@ -80,7 +80,7 @@ COPY plugins/_official ./plugins/_official FROM ${RUNTIME_IMAGE} -RUN apk add --no-cache tini su-exec poppler-utils && \ +RUN apk add --no-cache tini poppler-utils && \ addgroup -S -g 1001 open-design && \ adduser -S -D -H -u 1001 -G open-design open-design @@ -110,8 +110,6 @@ ENV OD_PORT=7456 EXPOSE 7456 -# Stay as root so the entrypoint can fix volume permissions (Railway -# and similar platforms mount volumes as root). Privileges are dropped -# to open-design right before the daemon starts. +USER open-design ENTRYPOINT ["/sbin/tini", "--"] -CMD ["sh", "-c", "chown -R open-design:open-design /app/.od 2>/dev/null || true && exec su-exec open-design node apps/daemon/dist/cli.js --no-open"] +CMD ["node", "apps/daemon/dist/cli.js", "--no-open"]