-
-
Notifications
You must be signed in to change notification settings - Fork 9
/
Dockerfile
61 lines (52 loc) · 3.28 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
# Copyright (c) 2017-2024 Alexander Todorov <atodorov@otb.bg>
#
# Licensed under GNU Affero General Public License v3 or later (AGPLv3+)
# https://www.gnu.org/licenses/agpl-3.0.html
# checkov:skip=CKV_DOCKER_2:Ensure that HEALTHCHECK instructions have been added to container images
ARG KIWI_VERSION=latest
FROM quay.io/kiwitcms/version:$KIWI_VERSION
USER 0
RUN curl https://openresty.org/package/rhel/openresty2.repo > /etc/yum.repos.d/openresty2.repo
# WARNING: in case there are permission issues with the newly created directories
# see: https://github.com/openresty/docker-openresty/issues/119
RUN microdnf -y --nodocs install augeas-libs krb5-libs psmisc xmlsec1 xmlsec1-openssl && \
microdnf -y remove "nginx-*" && microdnf -y --nodocs install openresty && \
mkdir /etc/nginx && \
mkdir --mode 770 /var/lib/nginx && \
mkdir --mode 770 /var/lib/nginx/tmp && \
chown -R 1001:root /var/lib/nginx && \
mkdir -p /usr/share/nginx/modules/ && \
ln -s /usr/bin/openresty /usr/sbin/nginx && \
ln -s /usr/local/openresty/nginx/conf/mime.types /etc/nginx/mime.types && \
ln -s /usr/local/openresty/nginx/conf/uwsgi_params /etc/nginx/uwsgi_params && \
ln -sf /Kiwi/etc/nginx.conf /usr/local/openresty/nginx/conf/nginx.conf && \
ln -sf /Kiwi/etc/nginx.conf /usr/local/openresty/nginx/conf/nginx.conf.default && \
/usr/lib/systemd/systemd-update-helper remove-system-units openresty.service && \
microdnf -y --nodocs update && \
microdnf clean all
HEALTHCHECK CMD [ -d /proc/$(cat /tmp/nginx.pid) ] && [ -d /proc/$(cat /tmp/kiwitcms.pid) ]
USER 1001
# override OpenResty's configuration
COPY ./etc/nginx.openresty /Kiwi/etc/nginx.conf
COPY ./etc/*.lua /Kiwi/etc/
# other admin utilities
COPY ./bin/* /Kiwi/bin/
COPY ./dist/ /Kiwi/dist/
RUN pip install --no-cache-dir --find-links /Kiwi/dist/ /Kiwi/dist/kiwitcms_enterprise*.whl
# workaround broken CSS which will break collectstatic
# because they refer to non-existing ../fonts/glyphicons-halflings-regular.eot (no fonts/ directory)
# remove django_tenants/templates/admin/index.html b/c it is ugly and b/c we use grapelli
RUN rm -rf /venv/lib64/python3.11/site-packages/tcms/node_modules/c3/htdocs/ \
/venv/lib64/python3.11/site-packages/tcms/node_modules/eonasdan-bootstrap-datetimepicker/build/css/bootstrap-datetimepicker-standalone.css \
/venv/lib64/python3.11/site-packages/tcms/node_modules/bootstrap-touchspin/demo/ \
/venv/lib64/python3.11/site-packages/django_tenants/templates/admin/index.html
# create missing source-map files. Not critical for UI functionality, see:
# https://developer.mozilla.org/en-US/docs/Tools/Debugger/How_to/Use_a_source_map
RUN touch /venv/lib64/python3.11/site-packages/tcms/node_modules/bootstrap-slider/dependencies/js/jquery.min.map \
/venv/lib64/python3.11/site-packages/tcms/node_modules/pdfmake/build/FileSaver.min.js.map \
/venv/lib64/python3.11/site-packages/tcms/node_modules/pdfmake/build/main.cjs.map
# collect static files again
RUN cp /Kiwi/static/ca.crt /Kiwi/ssl/ && \
/Kiwi/manage.py collectstatic --clear --link --noinput && \
mv /Kiwi/ssl/ca.crt /Kiwi/static/ && \
mkdir -p /Kiwi/static/.well-known/acme-challenge/