FROM registry.yandex.net/platform-base-images/porto-trusty-skynet:latest

# prevent services to start by package manager | https://jpetazzo.github.io/2013/10/06/policy-rc-d-do-not-start-services-automatically/
ADD do_not_start_services.sh /
RUN /do_not_start_services.sh && rm /do_not_start_services.sh

# https://st.yandex-team.ru/QLOUDOPS-1527
ADD create_user.sh /root/.profile
ADD sudo_without_password /etc/sudoers.d

# https://st.yandex-team.ru/QLOUDOPS-1526
RUN sed -i.bak "s|DHOME=/home|DHOME=/storage|" /etc/adduser.conf
RUN sed -i.bak "s|# HOME=/home|HOME=/storage|" /etc/default/useradd

# https://st.yandex-team.ru/QLOUDOPS-1527#1515503791000
RUN sed -i.bak "s|session    required     pam_loginuid.so|#session    required     pam_loginuid.so|" /etc/pam.d/login

ADD provision.tgz /
RUN /provision.sh && rm /provision*.sh
CMD /sbin/init
