2020-10-08 19:43:13 +00:00
|
|
|
FROM golang:1.15 as builder
|
2020-10-04 21:42:33 +00:00
|
|
|
|
|
|
|
|
ENV GOFLAGS="-mod=readonly"
|
|
|
|
|
|
|
|
|
|
RUN mkdir -p /workspace
|
|
|
|
|
WORKDIR /workspace
|
|
|
|
|
|
|
|
|
|
ARG GOPROXY
|
|
|
|
|
|
|
|
|
|
COPY go.mod go.sum ./
|
|
|
|
|
RUN go mod download
|
|
|
|
|
|
2020-10-04 22:17:17 +00:00
|
|
|
ARG COMMIT_SHA
|
|
|
|
|
|
2020-10-07 18:04:02 +00:00
|
|
|
# This ARG allows to disable some optional features and it might be useful if you build the image yourself.
|
|
|
|
|
# For example you can disable S3 and GCS support like this:
|
|
|
|
|
# --build-arg FEATURES=nos3,nogcs
|
|
|
|
|
ARG FEATURES
|
|
|
|
|
|
2020-10-04 21:42:33 +00:00
|
|
|
COPY . .
|
|
|
|
|
|
2020-10-04 22:17:17 +00:00
|
|
|
RUN set -xe && \
|
|
|
|
|
export COMMIT_SHA=${COMMIT_SHA:-$(git describe --always --dirty)} && \
|
2020-10-07 18:04:02 +00:00
|
|
|
go build $(if [ -n "${FEATURES}" ]; then echo "-tags ${FEATURES}"; fi) -ldflags "-s -w -X github.com/drakkan/sftpgo/version.commit=${COMMIT_SHA} -X github.com/drakkan/sftpgo/version.date=`date -u +%FT%TZ`" -v -o sftpgo
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-11-10 22:11:57 +00:00
|
|
|
# install gosu
|
|
|
|
|
ENV GOSU_VERSION 1.12
|
|
|
|
|
|
|
|
|
|
RUN set -eux; \
|
|
|
|
|
# save list of currently installed packages for later so we can clean up
|
|
|
|
|
savedAptMark="$(apt-mark showmanual)"; \
|
|
|
|
|
apt-get update; \
|
|
|
|
|
apt-get install -y --no-install-recommends ca-certificates wget; \
|
|
|
|
|
if ! command -v gpg; then \
|
|
|
|
|
apt-get install -y --no-install-recommends gnupg2 dirmngr; \
|
|
|
|
|
elif gpg --version | grep -q '^gpg (GnuPG) 1\.'; then \
|
|
|
|
|
# "This package provides support for HKPS keyservers." (GnuPG 1.x only)
|
|
|
|
|
apt-get install -y --no-install-recommends gnupg-curl; \
|
|
|
|
|
fi; \
|
|
|
|
|
rm -rf /var/lib/apt/lists/*; \
|
|
|
|
|
\
|
|
|
|
|
dpkgArch="$(dpkg --print-architecture | awk -F- '{ print $NF }')"; \
|
|
|
|
|
wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch"; \
|
|
|
|
|
wget -O /usr/local/bin/gosu.asc "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch.asc"; \
|
|
|
|
|
\
|
|
|
|
|
# verify the signature
|
|
|
|
|
export GNUPGHOME="$(mktemp -d)"; \
|
|
|
|
|
gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4; \
|
|
|
|
|
gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \
|
|
|
|
|
command -v gpgconf && gpgconf --kill all || :; \
|
|
|
|
|
rm -rf "$GNUPGHOME" /usr/local/bin/gosu.asc; \
|
|
|
|
|
\
|
|
|
|
|
# clean up fetch dependencies
|
|
|
|
|
apt-mark auto '.*' > /dev/null; \
|
|
|
|
|
[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; \
|
|
|
|
|
apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \
|
|
|
|
|
\
|
|
|
|
|
chmod +x /usr/local/bin/gosu; \
|
|
|
|
|
# verify that the binary works
|
|
|
|
|
gosu --version; \
|
|
|
|
|
gosu nobody true
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-11-10 22:11:57 +00:00
|
|
|
FROM debian:buster-slim
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-11-10 22:11:57 +00:00
|
|
|
RUN apt-get update && apt-get install --no-install-recommends -y ca-certificates mime-support && rm -rf /var/lib/apt/lists/*
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-10-14 05:46:36 +00:00
|
|
|
RUN mkdir -p /etc/sftpgo /var/lib/sftpgo /usr/share/sftpgo /srv/sftpgo
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-10-09 18:25:42 +00:00
|
|
|
RUN groupadd --system -g 1000 sftpgo && \
|
|
|
|
|
useradd --system --gid sftpgo --no-create-home \
|
2020-10-08 19:43:13 +00:00
|
|
|
--home-dir /var/lib/sftpgo --shell /usr/sbin/nologin \
|
|
|
|
|
--comment "SFTPGo user" --uid 1000 sftpgo
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-10-06 16:03:55 +00:00
|
|
|
# Install some optional packages used by SFTPGo features
|
2020-11-10 22:11:57 +00:00
|
|
|
RUN apt-get update && apt-get install --no-install-recommends -y git rsync && apt-get clean && rm -rf /var/lib/apt/lists/*
|
2020-10-06 16:03:55 +00:00
|
|
|
|
2020-10-04 21:42:33 +00:00
|
|
|
COPY --from=builder /workspace/sftpgo.json /etc/sftpgo/sftpgo.json
|
2020-10-05 14:31:22 +00:00
|
|
|
COPY --from=builder /workspace/templates /usr/share/sftpgo/templates
|
|
|
|
|
COPY --from=builder /workspace/static /usr/share/sftpgo/static
|
2020-10-04 21:42:33 +00:00
|
|
|
COPY --from=builder /workspace/sftpgo /usr/local/bin/
|
2020-11-10 22:11:57 +00:00
|
|
|
COPY --from=builder /usr/local/bin/gosu /usr/local/bin/
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-10-14 05:46:36 +00:00
|
|
|
# Log to the stdout so the logs will be available using docker logs
|
|
|
|
|
ENV SFTPGO_LOG_FILE_PATH=""
|
|
|
|
|
# templates and static paths are inside the container
|
|
|
|
|
ENV SFTPGO_HTTPD__TEMPLATES_PATH=/usr/share/sftpgo/templates
|
|
|
|
|
ENV SFTPGO_HTTPD__STATIC_FILES_PATH=/usr/share/sftpgo/static
|
|
|
|
|
|
|
|
|
|
# Modify the default configuration file
|
|
|
|
|
RUN sed -i "s|\"users_base_dir\": \"\",|\"users_base_dir\": \"/srv/sftpgo/data\",|" /etc/sftpgo/sftpgo.json && \
|
|
|
|
|
sed -i "s|\"backups\"|\"/srv/sftpgo/backups\"|" /etc/sftpgo/sftpgo.json && \
|
|
|
|
|
sed -i "s|\"bind_address\": \"127.0.0.1\",|\"bind_address\": \"\",|" /etc/sftpgo/sftpgo.json
|
2020-10-05 13:12:10 +00:00
|
|
|
|
2020-11-10 22:11:57 +00:00
|
|
|
COPY ./docker/scripts/entrypoint.sh /docker-entrypoint.sh
|
|
|
|
|
|
|
|
|
|
RUN chown -R sftpgo:sftpgo /etc/sftpgo && chown sftpgo:sftpgo /var/lib/sftpgo /srv/sftpgo && \
|
|
|
|
|
chmod 755 /docker-entrypoint.sh
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-10-14 05:46:36 +00:00
|
|
|
WORKDIR /var/lib/sftpgo
|
2020-10-04 21:42:33 +00:00
|
|
|
|
2020-10-14 05:46:36 +00:00
|
|
|
VOLUME [ "/var/lib/sftpgo", "/srv/sftpgo" ]
|
2020-10-05 10:43:10 +00:00
|
|
|
|
2020-11-10 22:11:57 +00:00
|
|
|
ENTRYPOINT ["/docker-entrypoint.sh"]
|
|
|
|
|
CMD ["sftpgo", "serve"]
|
