fix(handouts): use only root user in env image

Author: boray-tw

src/build-handouts/build-handouts.sh

@@ -27,8 +27,9 @@ if [ "$ALWAYS_REBUILD_IMAGE" = "y" ]; then
 fi
 
 docker run --rm -it \
+  --user $(id -u):$(id -g) \
   --name "$CONTAINER_NAME" \
+  --hostname "$CONTAINER_NAME" \
   --mount type=bind,source="${REPO_ROOT}/src/handouts",target=/app/src/handouts,readonly \
   --mount type=bind,source="$BUILD_PATH",target=/app/build \
-  --hostname "$CONTAINER_NAME" \
   "${IMAGE_NAME}:${IMAGE_TAG}"

src/build-handouts/env-image/Dockerfile

@@ -2,60 +2,45 @@ ARG UBUNTU_IMAGE_TAG=noble-20250127
 
 FROM ubuntu:${UBUNTU_IMAGE_TAG}
 
-ARG UID_USER=1000
-ARG GID_USER=1000
-ARG USERNAME=user
-ARG HOME_DIR=/home/"${USERNAME}"
-
 # set timezone and install TeX Live dependencies
 # reference: https://stackoverflow.com/a/40235306
 RUN ln -fs /usr/share/zoneinfo/Asia/Taipei /etc/localtime && \
     apt -qqy update && \
     apt -qqy install wget perl tzdata && \
-    apt clean
-
-# create a normal user
-RUN groupadd -g $GID_USER "${USERNAME}" && \
-    useradd -m -g "${USERNAME}" -u $UID_USER -s /bin/bash "${USERNAME}"
+    rm -rf /var/lib/apt/lists/*
 
-# install TeX Live and dependencies with a normal user
-USER ${USERNAME}
-ENV HOME="$HOME_DIR"
-ENV PATH="$HOME/.texlive/bin/x86_64-linux/:$PATH"
+# install TeX Live and dependencies
+ENV TL_ROOT="/opt/texlive"
+ENV PATH="$TL_ROOT/bin/x86_64-linux/:$PATH"
 ARG INSTALL_TL_URL="https://mirror.ctan.org/systems/texlive/tlnet/install-tl-unx.tar.gz"
-ARG TL_DOC_PATH=$HOME/.texlive/texmf-dist/doc/
+ARG TL_DOC_PATH="$TL_ROOT/texmf-dist/doc/"
 RUN cd /tmp && \
     echo "Downloading TeX Live installer..." && \
     wget -qO- "$INSTALL_TL_URL" --no-check-certificate | tar -xz && \
     cd install-tl-* && \
     echo "Installing TeX Live with basic scheme..." && \
-    perl ./install-tl -scheme=scheme-basic --no-interaction -texdir="~/.texlive" -no-doc-install -no-src-install && \
+    perl ./install-tl -scheme=scheme-basic --no-interaction -texdir="$TL_ROOT" -no-doc-install -no-src-install && \
     tlmgr backup -q --all --clean=0 && \
     rm -rf "$TL_DOC_PATH" && \
-    find ~/.texlive -name *src* -exec rm {} \; && \
+    find "$TL_ROOT" -name *src* -exec rm {} \; && \
     cd /tmp && \
-    rm -rf ./*
+    rm -rf *
 
 # install required packages to build the handouts
 ARG PACKAGES=mathtools
 RUN echo "Installing TeX Live packages: ${PACKAGES}" && \
     tlmgr install ${PACKAGES} && \
     tlmgr backup -q --all --clean=0 && \
     rm -rf "$TL_DOC_PATH" && \
-    find ~/.texlive -name *src* -exec rm {} \;
+    find "$TL_ROOT" -name *src* -exec rm {} \;
 
 # patch missing fonts
 ARG SCRIPT_PATCH_FONTS=/tmp/patch-missing-fonts.sh
-COPY --chown=$USERNAME:$USERNAME ./patch-missing-fonts.sh $SCRIPT_PATCH_FONTS
-RUN $SCRIPT_PATCH_FONTS && \
+COPY ./patch-missing-fonts.sh /tmp/patch.sh
+RUN /tmp/patch.sh && \
     rm -rf /tmp/*
 
-USER root
+# prepare container startup
 WORKDIR /app
 COPY entrypoint.sh ./entrypoint.sh
-RUN chmod +x ./entrypoint.sh && \
-    apt autopurge -qqy wget perl
-# after uninstalling perl, you can not use tlmgr command any more
-
-USER ${USERNAME}
 ENTRYPOINT [ "./entrypoint.sh" ]