forked from uselagoon/build-deploy-tool
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Dockerfile
118 lines (89 loc) · 4.47 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
ARG UPSTREAM_REPO
ARG UPSTREAM_TAG
ARG GO_VER
FROM ${UPSTREAM_REPO:-uselagoon}/commons:${UPSTREAM_TAG:-latest} AS commons
FROM golang:${GO_VER:-1.22}-alpine3.20 AS golang
RUN apk add --no-cache git
RUN go install github.com/a8m/envsubst/cmd/[email protected]
WORKDIR /app
COPY . ./
ARG BUILD
ARG GO_VER
ARG VERSION
ENV BUILD=${BUILD} \
GO_VER=${GO_VER} \
VERSION=${VERSION}
RUN --mount=type=cache,target=/go/pkg/mod \
go mod download
# Do not force rebuild of up-to-date packages (do not use -a) and use the compiler cache folder
RUN --mount=type=cache,target=/root/.cache/go-build \
--mount=type=cache,target=/go/pkg/mod \
CGO_ENABLED=0 GOOS=linux GOARCH=${ARCH} go build \
-ldflags="-s -w \
-X github.com/uselagoon/build-deploy-tool/cmd.bdtBuild=${BUILD} \
-X github.com/uselagoon/build-deploy-tool/cmd.goVersion=${GO_VER} \
-X github.com/uselagoon/build-deploy-tool/cmd.bdtVersion=${VERSION} \
-extldflags '-static'" \
-o /app/build-deploy-tool .
# RUN go mod download
# RUN go build -o /app/build-deploy-tool
FROM docker:27.1.1-alpine3.20
LABEL org.opencontainers.image.authors="The Lagoon Authors" maintainer="The Lagoon Authors"
LABEL org.opencontainers.image.source="https://github.com/uselagoon/build-deploy-tool" repository="https://github.com/uselagoon/build-deploy-tool"
ENV LAGOON=build-deploy-image
COPY --from=golang /go/bin/envsubst /bin/envsubst
ARG LAGOON_VERSION
ENV LAGOON_VERSION=$LAGOON_VERSION
# Copy commons files
COPY --from=commons /lagoon /lagoon
COPY --from=commons /bin/fix-permissions /bin/ep /bin/docker-sleep /bin/
COPY --from=commons /sbin/tini /sbin/
COPY --from=commons /home /home
RUN chmod g+w /etc/passwd \
&& mkdir -p /home
ENV TMPDIR=/tmp \
TMP=/tmp \
HOME=/home \
# When Bash is invoked via `sh` it behaves like the old Bourne Shell and sources a file that is given in `ENV`
ENV=/home/.bashrc \
# When Bash is invoked as non-interactive (like `bash -c command`) it sources a file that is given in `BASH_ENV`
BASH_ENV=/home/.bashrc
# Defining Versions
ENV KUBECTL_VERSION=v1.30.3 \
HELM_VERSION=v3.15.3
RUN apk add -U --repository http://dl-cdn.alpinelinux.org/alpine/edge/testing aufs-util \
&& apk upgrade --no-cache openssh openssh-keygen openssh-client-common openssh-client-default \
&& apk add --no-cache openssl curl jq parallel bash git py-pip skopeo \
&& git config --global user.email "[email protected]" && git config --global user.name lagoon \
&& pip install --break-system-packages shyaml yq
RUN architecture=$(case $(uname -m) in x86_64 | amd64) echo "amd64" ;; aarch64 | arm64 | armv8) echo "arm64" ;; *) echo "amd64" ;; esac) \
&& curl -Lo /usr/bin/kubectl https://dl.k8s.io/release/$KUBECTL_VERSION/bin/linux/${architecture}/kubectl \
&& chmod +x /usr/bin/kubectl \
&& curl -Lo /usr/bin/yq3 https://github.com/mikefarah/yq/releases/download/3.3.2/yq_linux_${architecture} \
&& chmod +x /usr/bin/yq3 \
&& curl -Lo /usr/bin/yq https://github.com/mikefarah/yq/releases/download/v4.35.2/yq_linux_${architecture} \
&& chmod +x /usr/bin/yq \
&& curl -Lo /tmp/helm.tar.gz https://get.helm.sh/helm-${HELM_VERSION}-linux-${architecture}.tar.gz \
&& mkdir /tmp/helm \
&& tar -xzf /tmp/helm.tar.gz -C /tmp/helm --strip-components=1 \
&& mv /tmp/helm/helm /usr/bin/helm \
&& chmod +x /usr/bin/helm \
&& rm -rf /tmp/helm*
RUN mkdir -p /kubectl-build-deploy/git
RUN mkdir -p /kubectl-build-deploy/lagoon
WORKDIR /kubectl-build-deploy/git
COPY legacy/docker-entrypoint.sh /lagoon/entrypoints/100-docker-entrypoint.sh
COPY legacy/build-deploy.sh /kubectl-build-deploy/build-deploy.sh
COPY legacy/build-deploy-docker-compose.sh /kubectl-build-deploy/build-deploy-docker-compose.sh
COPY legacy/scripts /kubectl-build-deploy/scripts
COPY legacy/helmcharts /kubectl-build-deploy/helmcharts
ENV DBAAS_OPERATOR_HTTP=dbaas.lagoon.svc:5000
ENV DOCKER_HOST=docker-host.lagoon.svc
RUN architecture=$(case $(uname -m) in x86_64 | amd64) echo "amd64" ;; aarch64 | arm64 | armv8) echo "arm64" ;; *) echo "amd64" ;; esac) \
&& curl -sSL https://github.com/uselagoon/lagoon-linter/releases/download/v0.8.0/lagoon-linter_0.8.0_linux_${architecture}.tar.gz \
| tar -xz -C /usr/local/bin lagoon-linter
COPY --from=golang /app/build-deploy-tool /usr/local/bin/build-deploy-tool
# enable running unprivileged
RUN fix-permissions /home && fix-permissions /kubectl-build-deploy
ENTRYPOINT ["/sbin/tini", "--", "/lagoon/entrypoints.sh"]
CMD ["/kubectl-build-deploy/build-deploy.sh"]