From c28b188749e93f1883db978c911c3fbe49afd1fc Mon Sep 17 00:00:00 2001
From: Bitnami Bot <containers-bot@bitnami.com>
Date: Sat, 16 Jan 2021 06:44:38 +0000
Subject: [PATCH] 2.1.3-debian-10-r4 release

---
 .../harbor-registry/2/debian-10/Dockerfile    |  2 +-
 .../prebuildfs/opt/bitnami/scripts/libos.sh   | 68 +++++++++++++++++--
 bitnami/harbor-registry/README.md             |  2 +-
 3 files changed, 65 insertions(+), 7 deletions(-)

diff --git a/bitnami/harbor-registry/2/debian-10/Dockerfile b/bitnami/harbor-registry/2/debian-10/Dockerfile
index 7e6ec8aca4e2..dd76ab54cb6b 100644
--- a/bitnami/harbor-registry/2/debian-10/Dockerfile
+++ b/bitnami/harbor-registry/2/debian-10/Dockerfile
@@ -18,7 +18,7 @@ RUN chmod g+rwX /opt/bitnami
 COPY rootfs /
 RUN /opt/bitnami/scripts/harbor-registry/postunpack.sh
 ENV BITNAMI_APP_NAME="harbor-registry" \
-    BITNAMI_IMAGE_VERSION="2.1.3-debian-10-r3" \
+    BITNAMI_IMAGE_VERSION="2.1.3-debian-10-r4" \
     PATH="/opt/bitnami/harbor-registry/bin:/opt/bitnami/common/bin:$PATH"
 
 VOLUME [ "/etc/registry", "/storage", "/var/lib/registry" ]
diff --git a/bitnami/harbor-registry/2/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh b/bitnami/harbor-registry/2/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh
index cc45a19ce099..f38437a1d407 100644
--- a/bitnami/harbor-registry/2/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh
+++ b/bitnami/harbor-registry/2/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh
@@ -37,14 +37,34 @@ group_exists() {
 # Create a group in the system if it does not exist already
 # Arguments:
 #   $1 - group
+# Flags:
+#   -s|--system - Whether to create new user as system user (uid <= 999)
 # Returns:
 #   None
 #########################
 ensure_group_exists() {
     local group="${1:?group is missing}"
+    local is_system_user=false
+
+    # Validate arguments
+    shift 1
+    while [ "$#" -gt 0 ]; do
+        case "$1" in
+            -s|--system)
+                is_system_user=true
+                ;;
+            *)
+                echo "Invalid command line flag $1" >&2
+                return 1
+                ;;
+        esac
+        shift
+    done
 
     if ! group_exists "$group"; then
-        groupadd "$group" >/dev/null 2>&1
+        local -a args=("$group")
+        $is_system_user && args+=("--system")
+        groupadd "${args[@]}" >/dev/null 2>&1
     fi
 }
 
@@ -52,22 +72,60 @@ ensure_group_exists() {
 # Create an user in the system if it does not exist already
 # Arguments:
 #   $1 - user
-#   $2 - group
+# Flags:
+#   -g|--group - the group the new user should belong to
+#   -h|--home - the home directory for the new user
+#   -s|--system - whether to create new user as system user (uid <= 999)
 # Returns:
 #   None
 #########################
 ensure_user_exists() {
     local user="${1:?user is missing}"
-    local group="${2:-}"
+    local group=""
+    local home=""
+    local is_system_user=false
+
+    # Validate arguments
+    shift 1
+    while [ "$#" -gt 0 ]; do
+        case "$1" in
+            -g|--group)
+                shift
+                group="${1:?missing group}"
+                ;;
+            -h|--home)
+                shift
+                home="${1:?missing home directory}"
+                ;;
+            -s|--system)
+                is_system_user=true
+                ;;
+            *)
+                echo "Invalid command line flag $1" >&2
+                return 1
+                ;;
+        esac
+        shift
+    done
 
     if ! user_exists "$user"; then
-        useradd "$user" >/dev/null 2>&1
+        local -a user_args=("-N" "$user")
+        $is_system_user && user_args+=("--system")
+        useradd "${user_args[@]}" >/dev/null 2>&1
     fi
 
     if [[ -n "$group" ]]; then
-        ensure_group_exists "$group"
+        local -a group_args=("$group")
+        $is_system_user && group_args+=("--system")
+        ensure_group_exists "${group_args[@]}"
         usermod -a -G "$group" "$user" >/dev/null 2>&1
     fi
+
+    if [[ -n "$home" ]]; then
+        mkdir -p "$home"
+        usermod -d "$home" "$user" >/dev/null 2>&1
+        configure_permissions_ownership "$home" -d "775" -f "664" -u "$user" -g "$group"
+    fi
 }
 
 ########################
diff --git a/bitnami/harbor-registry/README.md b/bitnami/harbor-registry/README.md
index 97ae3f63abf8..66715af8f3e1 100644
--- a/bitnami/harbor-registry/README.md
+++ b/bitnami/harbor-registry/README.md
@@ -42,7 +42,7 @@ Non-root container images add an extra layer of security and are generally recom
 Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.bitnami.com/tutorials/understand-rolling-tags-containers/).
 
 
-* [`2`, `2-debian-10`, `2.1.3`, `2.1.3-debian-10-r3`, `latest` (2/debian-10/Dockerfile)](https://github.com/bitnami/bitnami-docker-harbor-registry/blob/2.1.3-debian-10-r3/2/debian-10/Dockerfile)
+* [`2`, `2-debian-10`, `2.1.3`, `2.1.3-debian-10-r4`, `latest` (2/debian-10/Dockerfile)](https://github.com/bitnami/bitnami-docker-harbor-registry/blob/2.1.3-debian-10-r4/2/debian-10/Dockerfile)
 
 # Configuration