-
Notifications
You must be signed in to change notification settings - Fork 4
Expand file tree
/
Copy pathDockerfile
More file actions
40 lines (31 loc) · 1.3 KB
/
Dockerfile
File metadata and controls
40 lines (31 loc) · 1.3 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
ARG VERSION
ARG CODENAME
FROM registry.drycc.cc/drycc/go-dev:latest AS build
ADD . /workspace
RUN export GO111MODULE=on \
&& cd /workspace \
&& sed -i "s#canary#$VERSION#g" version/version.go \
&& CGO_ENABLED=0 init-stack go build -o /usr/local/bin/drycc drycc.go
FROM registry.drycc.cc/drycc/base:$CODENAME
ENV DRYCC_UID=1001 \
DRYCC_GID=1001 \
DRYCC_HOME_DIR=/workspace
COPY --from=build /usr/local/bin/drycc /usr/local/bin/drycc
ADD docker/rootfs /
RUN install-packages bash-completion git vim-tiny \
&& groupadd drycc --gid ${DRYCC_GID} \
&& useradd drycc -u ${DRYCC_UID} -g ${DRYCC_GID} -s /bin/bash -m -d ${DRYCC_HOME_DIR} \
&& mkdir -p /etc/wait \
&& chown ${DRYCC_GID}:${DRYCC_UID} /etc/wait /usr/local/bin \
&& echo 'alias cd="echo \"cd: restricted\"; false"' > ${DRYCC_HOME_DIR}/.bash_aliases \
&& echo 'alias unalias="echo \"unalias: restricted\"; false"' >> ${DRYCC_HOME_DIR}/.bash_aliases \
&& for cmd in ls git date vi cat sed clear find flock bash mkdir sleep dircolors; do \
ln -f "$(readlink -f "/usr/bin/$cmd")" "/usr/local/bin/$cmd"; \
done \
&& apt autoremove python3 -yq \
&& rm -rf /var/lib/apt/lists/* /sbin /usr/sbin /usr/bin
ENTRYPOINT [ "/entrypoint.sh" ]
ENV PATH=/usr/local/bin
ENV DRYCC_PROFILE=/tmp/drycc.json
USER ${DRYCC_UID}
WORKDIR ${DRYCC_HOME_DIR}