70 lines
2.4 KiB
Docker
70 lines
2.4 KiB
Docker
FROM golang:1.15 as builder
|
|
|
|
ENV GOFLAGS="-mod=readonly"
|
|
|
|
RUN mkdir -p /workspace
|
|
WORKDIR /workspace
|
|
|
|
ARG GOPROXY
|
|
|
|
COPY go.mod go.sum ./
|
|
RUN go mod download
|
|
|
|
ARG COMMIT_SHA
|
|
|
|
# This ARG allows to disable some optional features and it might be useful if you build the image yourself.
|
|
# For example you can disable S3 and GCS support like this:
|
|
# --build-arg FEATURES=nos3,nogcs
|
|
ARG FEATURES
|
|
|
|
COPY . .
|
|
|
|
RUN set -xe && \
|
|
export COMMIT_SHA=${COMMIT_SHA:-$(git describe --always --dirty)} && \
|
|
go build $(if [ -n "${FEATURES}" ]; then echo "-tags ${FEATURES}"; fi) -ldflags "-s -w -X github.com/drakkan/sftpgo/version.commit=${COMMIT_SHA} -X github.com/drakkan/sftpgo/version.date=`date -u +%FT%TZ`" -v -o sftpgo
|
|
|
|
FROM debian:buster-slim
|
|
|
|
RUN apt-get update && apt-get install --no-install-recommends -y ca-certificates mime-support && apt-get clean
|
|
|
|
SHELL ["/bin/bash", "-c"]
|
|
|
|
RUN mkdir -p /etc/sftpgo /var/lib/sftpgo /usr/share/sftpgo
|
|
|
|
RUN groupadd --system -g 1000 sftpgo
|
|
RUN useradd --system --gid sftpgo --no-create-home \
|
|
--home-dir /var/lib/sftpgo --shell /usr/sbin/nologin \
|
|
--comment "SFTPGo user" --uid 1000 sftpgo
|
|
|
|
# Install some optional packages used by SFTPGo features
|
|
RUN apt-get update && apt-get install --no-install-recommends -y git rsync && apt-get clean
|
|
|
|
# Override some configuration details
|
|
ENV SFTPGO_CONFIG_DIR=/etc/sftpgo
|
|
ENV SFTPGO_LOG_FILE_PATH=""
|
|
ENV SFTPGO_HTTPD__TEMPLATES_PATH=/usr/share/sftpgo/templates
|
|
ENV SFTPGO_HTTPD__STATIC_FILES_PATH=/usr/share/sftpgo/static
|
|
|
|
# Sane defaults, but users should still be able to override this from env vars
|
|
ENV SFTPGO_DATA_PROVIDER__USERS_BASE_DIR=/var/lib/sftpgo/users
|
|
ENV SFTPGO_DATA_PROVIDER__CREDENTIALS_PATH=/var/lib/sftpgo/credentials
|
|
ENV SFTPGO_HTTPD__BACKUPS_PATH=/var/lib/sftpgo/backups
|
|
ENV SFTPGO_SFTPD__HOST_KEYS=/var/lib/sftpgo/host_keys/id_rsa,/var/lib/sftpgo/host_keys/id_ecdsa
|
|
ENV SFTPGO_HTTPD__BIND_ADDRESS=""
|
|
|
|
COPY --from=builder /workspace/sftpgo.json /etc/sftpgo/sftpgo.json
|
|
COPY --from=builder /workspace/templates /usr/share/sftpgo/templates
|
|
COPY --from=builder /workspace/static /usr/share/sftpgo/static
|
|
COPY --from=builder /workspace/sftpgo /usr/local/bin/
|
|
|
|
RUN sed -i "s|sftpgo.db|/var/lib/sftpgo/sftpgo.db|" /etc/sftpgo/sftpgo.json
|
|
|
|
RUN chown -R sftpgo:sftpgo /etc/sftpgo && chown sftpgo:sftpgo /var/lib/sftpgo && \
|
|
chmod 640 /etc/sftpgo/sftpgo.json && \
|
|
chmod 750 /etc/sftpgo /var/lib/sftpgo
|
|
|
|
USER sftpgo
|
|
|
|
VOLUME /var/lib/sftpgo
|
|
|
|
CMD sftpgo serve
|