mirror of
https://github.com/containers/udica
synced 2025-02-04 22:31:37 +01:00
aa3561d4de
Move udica policy templates to container-selinux package so that administrators can deploy udica-generated policies on OpenShift nodes without installing udica everywhere. Signed-off-by: Vit Mojzis <vmojzis@redhat.com>
33 lines
664 B
Docker
33 lines
664 B
Docker
FROM fedora:30
|
|
|
|
USER root
|
|
|
|
# Update image
|
|
RUN dnf update --disableplugin=subscription-manager -y && \
|
|
rm -rf /var/cache/yum
|
|
|
|
# Install dependencies
|
|
RUN dnf install --disableplugin=subscription-manager -y \
|
|
container-selinux \
|
|
python3 \
|
|
python3-setools \
|
|
systemd-devel \
|
|
policycoreutils \
|
|
policycoreutils-python-utils \
|
|
&& rm -rf /var/cache/yum
|
|
|
|
# build udica
|
|
WORKDIR /tmp
|
|
COPY udica/ udica/udica/
|
|
COPY LICENSE udica/
|
|
COPY README.md udica/
|
|
COPY setup.py udica/
|
|
WORKDIR /tmp/udica
|
|
RUN python3 setup.py install
|
|
WORKDIR /
|
|
|
|
# Clean up
|
|
RUN rm -rf /tmp/udica/
|
|
|
|
ENTRYPOINT ["/usr/bin/udica"]
|