【Docker】Dockerfile 之 USER



  1. virtual box 6.1
  2. centos 7.8
  3. docker 19.03


USER <user>[:<group>]



The USER instruction sets the user name (or UID) and optionally the user group (or GID) to use when running the image and for any RUN, CMD and ENTRYPOINT instructions that follow it in the Dockerfile.

USER 指令设置运行镜像时要使用的用户名(或 UID)以及可选的用户组(或 GID),以及 Dockerfile 中跟随该镜像的所有 RUNCMDENTRYPOINT 指令。

Note that when specifying a group for the user, the user will have only the specified group membership. Any other configured group memberships will be ignored.



When the user doesn’t have a primary group then the image (or the next instructions) will be run with the root group.

On Windows, the user must be created first if it’s not a built-in account. This can be done with the net user command called as part of a Dockerfile.


当用户没有主要组时,该镜像(或后续指令)将与 root 组一起运行。

在 Windows 上,如果不是内置帐户,则必须首先创建该用户。这可以通过作为 Dockerfile 的一部分调用的e net user 命令来完成。

FROM microsoft/windowsservercore
# Create Windows user in the container
RUN net user /add patrick
# Set it for subsequent commands
USER patrick


介绍了 Dockerfile 中 USER 指令的用法和注意事项。

