mirror of
https://github.com/harness/drone.git
synced 2025-05-06 11:01:20 +08:00
64 lines
1.5 KiB
Docker
64 lines
1.5 KiB
Docker
### Build operator
|
|
FROM golang:1.19-alpine as builder
|
|
|
|
RUN apk update \
|
|
&& apk add --no-cache protoc build-base git
|
|
|
|
# Setup workig dir
|
|
WORKDIR /app
|
|
|
|
# Access to private repos
|
|
ARG GITHUB_ACCESS_TOKEN
|
|
RUN git config --global url."https://${GITHUB_ACCESS_TOKEN}:x-oauth-basic@github.com/harness".insteadOf "https://github.com/harness"
|
|
RUN git config --global --add safe.directory '/app'
|
|
RUN go env -w GOPRIVATE=github.com/harness/*
|
|
|
|
# Get dependancies - will also be cached if we won't change mod/sum
|
|
COPY go.mod .
|
|
COPY go.sum .
|
|
COPY Makefile .
|
|
RUN make dep
|
|
RUN make tools
|
|
# COPY the source code as the last step
|
|
COPY . .
|
|
# set required build flags
|
|
ENV CGO_ENABLED=0 \
|
|
GOOS=linux \
|
|
GOARCH=amd64
|
|
|
|
# build
|
|
ARG GIT_COMMIT
|
|
ARG GITNESS_VERSION_MAJOR
|
|
ARG GITNESS_VERSION_MINOR
|
|
ARG GITNESS_VERSION_PATCH
|
|
RUN make build-gitrpc
|
|
RUN make build-githook
|
|
|
|
### Pull CA Certs
|
|
FROM alpine:latest as cert-image
|
|
|
|
RUN apk --update add ca-certificates
|
|
|
|
### Create final image
|
|
FROM alpine/git:2.36.3 as final
|
|
|
|
RUN adduser -u 1001 -D -h /app iamuser
|
|
|
|
WORKDIR /app
|
|
|
|
COPY --from=cert-image /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
|
|
COPY --from=builder /app/gitrpcserver /app/gitrpcserver
|
|
COPY --from=builder /app/githook /app/githook
|
|
|
|
RUN chown -R 1001:1001 /app
|
|
RUN chmod -R 700 /app/gitrpcserver
|
|
RUN chmod -R 700 /app/githook
|
|
|
|
EXPOSE 3001
|
|
|
|
USER 1001
|
|
|
|
# configure gitrpc to use githook (as they come bundled in the image)
|
|
ENV GITRPC_SERVER_GIT_HOOK_PATH="/app/githook"
|
|
|
|
ENTRYPOINT [ "/app/gitrpcserver" ] |