From 94ebd337473075e2050e79bd53fe9a8d85c43e98 Mon Sep 17 00:00:00 2001
From: "Oliver B. Fischer" <o.b.fischer@swe-blog.net>
Date: Tue, 12 Sep 2017 22:21:13 +0200
Subject: [PATCH] Issue a warning from launch script when app will run as root

See gh-10275
---
 .../org/springframework/boot/loader/tools/launch.script        | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/spring-boot-project/spring-boot-tools/spring-boot-loader-tools/src/main/resources/org/springframework/boot/loader/tools/launch.script b/spring-boot-project/spring-boot-tools/spring-boot-loader-tools/src/main/resources/org/springframework/boot/loader/tools/launch.script
index 30e6ca41c7..2ab9e71ecd 100755
--- a/spring-boot-project/spring-boot-tools/spring-boot-loader-tools/src/main/resources/org/springframework/boot/loader/tools/launch.script
+++ b/spring-boot-project/spring-boot-tools/spring-boot-loader-tools/src/main/resources/org/springframework/boot/loader/tools/launch.script
@@ -128,6 +128,9 @@ log_file="$LOG_FOLDER/$LOG_FILENAME"
 # shellcheck disable=SC2012
 [[ $(id -u) == "0" ]] && run_user=$(ls -ld "$jarfile" | awk '{print $3}')
 
+# Issue an warning if the application will run as root
+[[ $(id -u ${run_user}) == "0" ]] && { echoYellow "Application is running as root (UID 0). This is considered insecure."; }
+
 # Find Java
 if [[ -n "$JAVA_HOME" ]] && [[ -x "$JAVA_HOME/bin/java" ]]; then
     javaexe="$JAVA_HOME/bin/java"