From 6fe8d60acbb8b736498e7e546e696c1e37e25b0c Mon Sep 17 00:00:00 2001
From: Michael Gasch <mgasch@vmware.com>
Date: Fri, 16 Apr 2021 17:20:56 +0200
Subject: [PATCH] Fix folder write for govc container

Closes: #2366
Signed-off-by: Michael Gasch <mgasch@vmware.com>
---
 Dockerfile.govc | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/Dockerfile.govc b/Dockerfile.govc
index 386ce4c20..df4b56831 100644
--- a/Dockerfile.govc
+++ b/Dockerfile.govc
@@ -10,7 +10,6 @@ ENV UID=10001
 RUN adduser \
     --disabled-password \
     --gecos "" \
-    --home "/nonexistent" \
     --shell "/sbin/nologin" \
     --no-create-home \
     --uid "${UID}" \
@@ -23,9 +22,6 @@ RUN mkdir /temporary-tmp-directory && chmod 777 /temporary-tmp-directory
 # Final stage
 FROM scratch
 
-# Run all commands as non-root
-USER appuser:appuser
-
 # Allow container to use latest TLS certificates
 COPY --from=build /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
 
@@ -39,5 +35,11 @@ COPY --chown=appuser --from=build /temporary-tmp-directory /tmp
 # Copy application from external build
 COPY govc /govc
 
+# Run all commands as non-root
+USER appuser:appuser
+
+# session cache, etc
+ENV GOVMOMI_HOME=/tmp
+
 # Set CMD to application with container defaults
 CMD ["/govc"]