-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathDockerfile
80 lines (66 loc) · 2.73 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
FROM golang:1.18-alpine as doclig-build
COPY tools/doclig /doclig
WORKDIR /doclig
RUN set +x && \
apk add --no-cache upx && \
go get -u all && \
CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -ldflags="-s -w" -o doclig ./src && \
upx doclig && \
set x
FROM debian:bullseye-slim
ENV PHP_VERSION=7.4
LABEL maintainer="Thorsten Winkler"
LABEL description="http-over-all"
# os part
ENV WEBDAV=/var/www/dav
ENV DEBIAN_FRONTEND=noninteractive
ENV TZ=Europe/Berlin
RUN set -x && \
apt-get update -y && \
apt-get dist-upgrade -y && \
APT_SYSTEM="sudo tzdata ca-certificates" && \
APT_HTTP="nginx nginx-extras" && \
APT_PHP="php-curl php-fpm php-mbstring" && \
APT_SERVICES="openssl sshfs nfs-common davfs2 cifs-utils git" && \
APT_TOOLS="iputils-ping curl rsync" && \
APT_ETC="nano" && \
apt-get install -y --no-install-recommends ${APT_SYSTEM} ${APT_HTTP} ${APT_PHP} ${APT_SERVICES} ${APT_TOOLS} ${APT_ETC} && \
rm -f /var/www/html/index.nginx-debian.html ; rm -f /etc/nginx/mime.types && \
# debian cleanup \
apt-get autoremove -y && \
rm -rf /var/lib/apt/lists/* ; rm -f /var/lib/dpkg/*-old ; rm -rf /usr/share/doc && \
echo "OS part successfully terminated" && \
set +x
COPY --from=doclig-build /doclig/doclig /usr/local/bin
ENV LANG C.UTF-8
ENV LC_ALL C.UTF-8
ENV PHP7_ETC=/etc/php/$PHP_VERSION
ENV PHP7_SERVICE=php${PHP_VERSION}-fpm
ENV PHP7_SOCK=/var/run/php/php${PHP_VERSION}-fpm.sock
ENV PHP_LOG_SYSOUT=true
# http-over-all part
ARG RELEASE="1.1.15-01"
ARG SSL_COUNTRY=DE
ARG SSL_STATE=Berlin
ARG SSL_LOCALITY=Berlin
ARG SSL_ORGANIZATION=http-over-all
ARG SSL_ORGANIZATIONALUNIT=IT
ARG SSL_COMMONNAME=http-over-all
ENV HTDOCS=/var/www/html
ENV START_CMD="/bin/bash http-over-all.sh"
ENV DATA=/remote
ADD incontainer /scripts
WORKDIR /scripts
RUN set -x && \
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx.key -out /etc/ssl/certs/nginx.crt -subj "/C=${SSL_COUNTRY}/ST=${SSL_STATE}/L=${SSL_LOCALITY}/O=${SSL_ORGANIZATION}/OU=${SSL_ORGANIZATIONALUNIT}/CN=${SSL_COMMONNAME}/emailAddress=${SSL_EMAILADDRESS}" && \
# https://wiki.ubuntuusers.de/sudo/Konfiguration/
# https://kofler.info/sudo-ohne-passwort/
printf '\nwww-data ALL=(ALL) NOPASSWD: /scripts/force-update.sh\n' >> /etc/sudoers && \
find /scripts -name "*.sh" -exec sed -i 's/\r$//' {} + && \
echo "\nexport RELEASE=${RELEASE}\n" >> /scripts/system-helper.sh && \
echo "source /scripts/system-helper.sh" >> /etc/bash.bashrc && \
echo "http-over-all part successfully terminated" && \
set +x
HEALTHCHECK --interval=30s --timeout=30s --start-period=5s --retries=3 CMD [ "/scripts/healthcheck.sh" ]
ENTRYPOINT [ "./http-over-all.sh" ]