forked from tarampampam/mikrotik-hosts-parser
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Dockerfile
85 lines (67 loc) · 2.71 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
# syntax=docker/dockerfile:1.2
# Image page: <https://hub.docker.com/_/golang>
FROM golang:1.22-alpine as builder
# can be passed with any prefix (like `v1.2.3@GITHASH`)
# e.g.: `docker build --build-arg "APP_VERSION=v1.2.3@GITHASH" .`
ARG APP_VERSION="undefined@docker"
RUN set -x \
&& mkdir /src \
# SSL ca certificates (ca-certificates is required to call HTTPS endpoints)
# packages mailcap and apache2 is needed for /etc/mime.types and /etc/apache2/mime.types files respectively
&& apk add --no-cache mailcap apache2 ca-certificates \
&& update-ca-certificates
WORKDIR /src
COPY . .
# arguments to pass on each go tool link invocation
ENV LDFLAGS="-s -w -X gh.tarampamp.am/mikrotik-hosts-parser/v4/internal/pkg/version.version=$APP_VERSION"
RUN set -x \
&& go version \
&& CGO_ENABLED=0 go build -trimpath -ldflags "$LDFLAGS" -o /tmp/mikrotik-hosts-parser ./cmd/mikrotik-hosts-parser/ \
&& /tmp/mikrotik-hosts-parser version \
&& /tmp/mikrotik-hosts-parser -h
# prepare rootfs for runtime
RUN mkdir -p /tmp/rootfs
WORKDIR /tmp/rootfs
RUN set -x \
&& mkdir -p \
./etc/ssl \
./etc/apache2 \
./bin \
./opt/mikrotik-hosts-parser \
&& cp -R /etc/ssl/certs ./etc/ssl/certs \
&& cp /etc/mime.types ./etc/mime.types \
&& cp /etc/apache2/mime.types ./etc/apache2/mime.types \
&& cp -R /src/web ./opt/mikrotik-hosts-parser/web \
&& cp /src/configs/config.yml ./etc/config.yml \
&& echo 'appuser:x:10001:10001::/nonexistent:/sbin/nologin' > ./etc/passwd \
&& echo 'appuser:x:10001:' > ./etc/group \
&& mv /tmp/mikrotik-hosts-parser ./bin/mikrotik-hosts-parser
# use empty filesystem
FROM scratch
ARG APP_VERSION="undefined@docker"
LABEL \
org.opencontainers.image.title="mikrotik-hosts-parser" \
org.opencontainers.image.description="Docker image with mikrotik hosts parser" \
org.opencontainers.image.url="https://github.com/tarampampam/mikrotik-hosts-parser" \
org.opencontainers.image.source="https://github.com/tarampampam/mikrotik-hosts-parser" \
org.opencontainers.image.vendor="Tarampampam" \
org.opencontainers.image.version="$APP_VERSION" \
org.opencontainers.image.licenses="MIT"
# Import from builder
COPY --from=builder /tmp/rootfs /
# Use an unprivileged user
USER appuser:appuser
# Docs: <https://docs.docker.com/engine/reference/builder/#healthcheck>
HEALTHCHECK --interval=15s --timeout=3s --start-period=1s CMD [ \
"/bin/mikrotik-hosts-parser", "healthcheck", \
"--log-json", \
"--port", "8080" \
]
ENTRYPOINT ["/bin/mikrotik-hosts-parser"]
CMD [ \
"serve", \
"--log-json", \
"--config", "/etc/config.yml", \
"--port", "8080", \
"--resources-dir", "/opt/mikrotik-hosts-parser/web" \
]