From e7b89ae44f86e72feddd00b948df4c6413e1384e Mon Sep 17 00:00:00 2001
From: kolaente <k@knt.li>
Date: Sat, 11 Mar 2023 21:16:31 +0100
Subject: [PATCH] fix(docker): add cap_net_bind to the nginx binary in the
 docker container

---
 Dockerfile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index 199cba529..e5701bc48 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -66,5 +66,7 @@ RUN chmod 0755 /docker-entrypoint.d/*.sh /etc/nginx/templates && \
     chmod -R 0644 /etc/nginx/nginx.conf && \
     chown -R nginx:nginx ./ /etc/nginx/conf.d /etc/nginx/templates && \
     rm -f /docker-entrypoint.d/10-listen-on-ipv6-by-default.sh
+# Allow the unprivileged user to run nginx on port 80 
+RUN apk add libcap && setcap cap_net_bind_service=+ep /usr/sbin/nginx
 # unprivileged user
 USER nginx