pcmt/Containerfile

# syntax=docker/dockerfile-upstream:master-labs
# Copyright 2023 wanderer <a_mirre at utb dot cz>
# SPDX-License-Identifier: AGPL-3.0-only

FROM docker.io/library/alpine:3.18.0 as dhall-cache
# https://stackoverflow.com/questions/53681522/share-variable-in-multi-stage-dockerfile-arg-before-from-not-substituted
# https://docs.docker.com/engine/reference/builder/#arg
ARG VERSION
ARG BUILD_DATE
ARG VCS_REF
ENV XDG_CACHE_HOME=/var/cache
ENV DHALL_VERSION=1.42.0

ADD https://git.dotya.ml/mirre-mt/pcmt/raw/branch/development/exampleConfig.dhall /tmp
ADD https://github.com/dhall-lang/dhall-haskell/releases/download/${DHALL_VERSION}/dhall-${DHALL_VERSION}-x86_64-linux.tar.bz2 /tmp/dhall.tar.bz2

WORKDIR /tmp

RUN tar xf /tmp/dhall.tar.bz2 \
    && mv /tmp/bin/dhall /usr/bin \
    && echo "Normalise exampleConfig.dhall (saving the result in cache)" \
    && time dhall --file /tmp/exampleConfig.dhall


FROM docker.io/library/golang:1.20.6-alpine3.18 as go-build
ARG VERSION
ARG BUILD_DATE
ARG VCS_REF

COPY . /go/pcmt

WORKDIR /go/pcmt

RUN apk add --no-cache npm=9.6.6-r0 \
    && go generate -v . \
    && CGO_ENABLED=0 \
    go build -v -trimpath -ldflags="-s -w -X main.version=${VERSION:-prod}" .


FROM docker.io/immawanderer/scratch-cacerts:linux-amd64
ARG BUILD_DATE
ARG VCS_REF
ENV XDG_CACHE_HOME=/root/.cache

COPY --from=dhall-cache /var/cache/dhall-haskell /root/.cache/dhall-haskell
COPY --from=dhall-cache /var/cache/dhall         /root/.cache/dhall
COPY --from=dhall-cache /tmp/exampleConfig.dhall /etc/pcmt/config.dhall
COPY --from=go-build    /go/pcmt/pcmt            /bin/pcmt

LABEL description="Password Compromise Monitoring Tool" \
      org.label-schema.build-date=$BUILD_DATE \
      org.label-schema.vcs-url="https://git.dotya.ml/mirre-mt/pcmt.git" \
      org.label-schema.vcs-ref=$VCS_REF \
      org.label-schema.license=AGPL-3.0-only

ENTRYPOINT ["/bin/pcmt"]
CMD ["-help"]

#  vim: set ts=4 ft=dockerfile fenc=utf-8 ff=unix :
ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00			`# syntax=docker/dockerfile-upstream:master-labs`
feat: add license headers (+spdx id) 2023-05-20 20:15:57 +02:00			`# Copyright 2023 wanderer <a_mirre at utb dot cz>`
			`# SPDX-License-Identifier: AGPL-3.0-only`

ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00			`FROM docker.io/library/alpine:3.18.0 as dhall-cache`
go,containerfile: fix embedding version, add flag * handle build args correctly in the multi-stage Containerfile * use -ldflags instead of GOLDFLAGS in the Containerfile * add version flag * print version when the application starts 2023-07-29 23:37:30 +02:00			`# https://stackoverflow.com/questions/53681522/share-variable-in-multi-stage-dockerfile-arg-before-from-not-substituted`
			`# https://docs.docker.com/engine/reference/builder/#arg`
			`ARG VERSION`
			`ARG BUILD_DATE`
			`ARG VCS_REF`
ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00			`ENV XDG_CACHE_HOME=/var/cache`
			`ENV DHALL_VERSION=1.42.0`

			`ADD https://git.dotya.ml/mirre-mt/pcmt/raw/branch/development/exampleConfig.dhall /tmp`
			`ADD https://github.com/dhall-lang/dhall-haskell/releases/download/${DHALL_VERSION}/dhall-${DHALL_VERSION}-x86_64-linux.tar.bz2 /tmp/dhall.tar.bz2`

			`WORKDIR /tmp`

			`RUN tar xf /tmp/dhall.tar.bz2 \`
			`&& mv /tmp/bin/dhall /usr/bin \`
			`&& echo "Normalise exampleConfig.dhall (saving the result in cache)" \`
			`&& time dhall --file /tmp/exampleConfig.dhall`


containerfile: bump base to alpine3.18 (also npm) 2023-08-08 13:33:50 +02:00			`FROM docker.io/library/golang:1.20.6-alpine3.18 as go-build`
ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00			`ARG VERSION`
go,containerfile: fix embedding version, add flag * handle build args correctly in the multi-stage Containerfile * use -ldflags instead of GOLDFLAGS in the Containerfile * add version flag * print version when the application starts 2023-07-29 23:37:30 +02:00			`ARG BUILD_DATE`
			`ARG VCS_REF`
ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00
			`COPY . /go/pcmt`

			`WORKDIR /go/pcmt`

containerfile: bump base to alpine3.18 (also npm) 2023-08-08 13:33:50 +02:00			`RUN apk add --no-cache npm=9.6.6-r0 \`
containerfile: install npm, gen stylesheet [skip ci] 2023-05-28 20:05:01 +02:00			`&& go generate -v . \`
go,containerfile: fix embedding version, add flag * handle build args correctly in the multi-stage Containerfile * use -ldflags instead of GOLDFLAGS in the Containerfile * add version flag * print version when the application starts 2023-07-29 23:37:30 +02:00			`&& CGO_ENABLED=0 \`
			`go build -v -trimpath -ldflags="-s -w -X main.version=${VERSION:-prod}" .`
ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00

			`FROM docker.io/immawanderer/scratch-cacerts:linux-amd64`
go,containerfile: fix embedding version, add flag * handle build args correctly in the multi-stage Containerfile * use -ldflags instead of GOLDFLAGS in the Containerfile * add version flag * print version when the application starts 2023-07-29 23:37:30 +02:00			`ARG BUILD_DATE`
			`ARG VCS_REF`
			`ENV XDG_CACHE_HOME=/root/.cache`
ci,just,pre-commit: add Containerfile * lint in pre-commit, ci, justfile * build on feature branches and PRs and publish on tags. * add a symlink to Dockerfile 2023-05-20 18:05:26 +02:00
			`COPY --from=dhall-cache /var/cache/dhall-haskell /root/.cache/dhall-haskell`
			`COPY --from=dhall-cache /var/cache/dhall /root/.cache/dhall`
			`COPY --from=dhall-cache /tmp/exampleConfig.dhall /etc/pcmt/config.dhall`
			`COPY --from=go-build /go/pcmt/pcmt /bin/pcmt`

			`LABEL description="Password Compromise Monitoring Tool" \`
			`org.label-schema.build-date=$BUILD_DATE \`
			`org.label-schema.vcs-url="https://git.dotya.ml/mirre-mt/pcmt.git" \`
			`org.label-schema.vcs-ref=$VCS_REF \`
			`org.label-schema.license=AGPL-3.0-only`

			`ENTRYPOINT ["/bin/pcmt"]`
			`CMD ["-help"]`

			`# vim: set ts=4 ft=dockerfile fenc=utf-8 ff=unix :`