feat: docker non-root uid and gid

2023-06-17 13:45:38 +09:00 · 2023-06-17 13:45:38 +09:00 · fa03e7d5e7
commit fa03e7d5e7
parent 04244af997
11 changed files with 184 additions and 157 deletions
--- a/docker/amd64-slim/Dockerfile
+++ b/docker/amd64-slim/Dockerfile
@ -1,45 +0,0 @@
-########################################
-FROM messense/rust-musl-cross:x86_64-musl as builder
-
-ENV TARGET_DIR=x86_64-unknown-linux-musl
-ENV CFLAGS=-Ofast
-
-WORKDIR /tmp
-
-COPY . /tmp/
-
-ENV RUSTFLAGS "-C link-arg=-s"
-
-RUN echo "Building rpxy from source" && \
-  cargo build --release && \
-  musl-strip --strip-all /tmp/target/${TARGET_DIR}/release/rpxy
-
-########################################
-FROM alpine:latest as runner
-LABEL maintainer="Jun Kurihara"
-
-ENV TAG_NAME=amd64-slim
-ENV TARGET_DIR=x86_64-unknown-linux-musl
-ENV RUNTIME_DEPS logrotate ca-certificates
-
-RUN apk add --no-cache ${RUNTIME_DEPS} && \
-  update-ca-certificates && \
-  mkdir -p /opt/rpxy/sbin &&\
-  mkdir -p /var/log/rpxy && \
-  touch /var/log/rpxy/rpxy.log
-
-COPY --from=builder /tmp/target/${TARGET_DIR}/release/rpxy /opt/rpxy/sbin/rpxy
-COPY ./docker/${TAG_NAME}/run.sh /
-COPY ./docker/entrypoint.sh /
-
-RUN chmod 755 /run.sh && \
-  chmod 755 /entrypoint.sh
-
-ENV SSL_CERT_FILE=/etc/ssl/certs/ca-certificates.crt
-ENV SSL_CERT_DIR=/etc/ssl/certs
-
-EXPOSE 80 443
-
-CMD ["/entrypoint.sh"]
-
-ENTRYPOINT ["/entrypoint.sh"]