-
Notifications
You must be signed in to change notification settings - Fork 26
/
Copy pathDockerfile.mTLS
83 lines (68 loc) · 2.85 KB
/
Dockerfile.mTLS
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
# Copyright 2020 HAProxy Technologies
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http:#www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
################################################################################
## BUILD ARGS ##
################################################################################
# The golang image is used to build the DataPlane API.
ARG GOLANG_IMAGE=golang:1.14.1
################################################################################
## BUILD DATAPLANE API STAGE ##
################################################################################
FROM ${GOLANG_IMAGE} as builder
# The Git repo used to build the DataPlane API binary.
ARG DATAPLANEAPI_URL
ENV DATAPLANEAPI_URL ${DATAPLANEAPI_URL:-https://github.com/haproxytech/dataplaneapi.git}
# The Git ref used to build the DataPlane API binary.
ARG DATAPLANEAPI_REF
ENV DATAPLANEAPI_REF ${DATAPLANEAPI_REF:-494f9b817842d9e28f7b75c4c32a59395794636c}
WORKDIR /
RUN git clone "${DATAPLANEAPI_URL}" && \
cd dataplaneapi && \
git checkout -b build-me "${DATAPLANEAPI_REF}" && \
make build
################################################################################
## MAIN STAGE ##
################################################################################
FROM photon:3.0 as main
LABEL "maintainer" "Andrew Kutz <[email protected]>"
WORKDIR /
COPY --from=builder /dataplaneapi/build/dataplaneapi /usr/local/bin/dataplaneapi
RUN chmod 0755 /usr/local/bin/dataplaneapi
RUN tdnf install -y \
awk \
curl \
inotify-tools\
iproute2 \
iputils \
lsof \
pcre \
rpm \
shadow \
systemd \
vim
RUN tdnf install -y haproxy && \
useradd --system --home-dir=/var/lib/haproxy --user-group haproxy && \
mkdir -p /var/lib/haproxy && \
chown -R haproxy:haproxy /var/lib/haproxy
COPY ansible/roles/haproxy/files/etc/haproxy/haproxy.cfg \
example/ca.crt example/server.crt example/server.key \
/etc/haproxy/
RUN chmod 0640 /etc/haproxy/haproxy.cfg /etc/haproxy/*.crt && \
chmod 0440 /etc/haproxy/*.key
RUN mkdir -p /etc/vmware /var/lib/vmware
COPY ansible/roles/vmware/files/var/lib/vmware/*.sh \
/var/lib/vmware
RUN chmod 0744 /var/lib/vmware/*.sh
CMD [ "-f", "/etc/haproxy/haproxy.cfg" ]
ENTRYPOINT [ "/usr/sbin/haproxy" ]