From 5025c720191319ef69bf7e206715b3ee8c471e05 Mon Sep 17 00:00:00 2001
From: Pavol Stefanec <pavol.stefanec@dataquest.sk>
Date: Thu, 20 Nov 2025 13:18:15 +0100
Subject: [PATCH 1/2] new user dspace is created

---
 Dockerfile | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index bad53de8dd64..50cefbe4d613 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -81,7 +81,8 @@ RUN ln -s $DSPACE_INSTALL/webapps/server   /usr/local/tomcat/webapps/server
 WORKDIR /usr/local/tomcat/bin
 RUN chmod u+x redebug.sh undebug.sh custom_run.sh
 
-# For security reason (requirement on some cloud platforms) we want run dspace as non-root user.
-RUN chown -R ubuntu:ubuntu /dspace /usr/local/tomcat
+# We create a 'dspace' user to run DSpace instead of running as root
+RUN useradd -u 1100 -m -s /bin/bash dspace \
+    && chown -Rv dspace: /dspace /usr/local/tomcat
 
-USER ubuntu
+USER dspace

From b56357a75f5e0be3b288993b869b6ab751693b46 Mon Sep 17 00:00:00 2001
From: pStefanec <44786481+pStefanec@users.noreply.github.com>
Date: Thu, 20 Nov 2025 15:03:17 +0100
Subject: [PATCH 2/2] Update comment for 'dspace' user creation in Dockerfile

Clarified comment about creating 'dspace' user for DSpace with UID requirement for Kubernetes.
---
 Dockerfile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 50cefbe4d613..c8f71239b0c6 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -81,7 +81,8 @@ RUN ln -s $DSPACE_INSTALL/webapps/server   /usr/local/tomcat/webapps/server
 WORKDIR /usr/local/tomcat/bin
 RUN chmod u+x redebug.sh undebug.sh custom_run.sh
 
-# We create a 'dspace' user to run DSpace instead of running as root
+# We create a 'dspace' user to run DSpace instead of running as root. An explicit UID is required 
+# because Kubernetes deployment accepts only numeric user IDs when specifying the container user.
 RUN useradd -u 1100 -m -s /bin/bash dspace \
     && chown -Rv dspace: /dspace /usr/local/tomcat