2ddb6f262f
-there is one issue with the mimir hostname not being resolved from spark workers. may switch to stateful setfor mimir to resolve.
54 lines
2.3 KiB
Docker
54 lines
2.3 KiB
Docker
FROM nginx:alpine
|
|
|
|
ENV VIZIER_CONFIG="vizier_ecs.conf"
|
|
ENV VIZIER_DOMAIN="vizier.app"
|
|
ENV ACME_HOSTS="demo.vizier.app api.vizier.app vizier.vizier.app mimir.vizier.app spark.vizier.app hdfs.vizier.app proxy.vizier.app analytics.vizier.app"
|
|
|
|
EXPOSE 80
|
|
EXPOSE 443
|
|
EXPOSE 22
|
|
EXPOSE 9001
|
|
|
|
COPY nginx.conf /etc/nginx/nginx.conf
|
|
COPY mime.types /etc/nginx/mime.types
|
|
COPY acme-client /etc/periodic/weekly/acme-client
|
|
|
|
RUN apk add nginx nginx-mod-http-headers-more acme-client libressl openssh yarn supervisor git \
|
|
&& chmod +x /etc/periodic/weekly/acme-client \
|
|
&& rm /etc/nginx/conf.d/default.conf
|
|
|
|
#setup ssh
|
|
RUN echo 'root:odinlab' |chpasswd
|
|
RUN sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config \
|
|
&& sed -ri 's/UsePAM yes/#UsePAM yes/g' /etc/ssh/sshd_config \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_rsa_key -N '' -t rsa \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_dsa_key -N '' -t dsa \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_ecdsa_key -N '' -t ecdsa \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_ed25519_key -N '' -t ed25519
|
|
|
|
COPY fullchain-ui.pem /etc/ssl/acme/demo.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/demo.vizier.app/privkey.pem
|
|
COPY fullchain-api.pem /etc/ssl/acme/api.vizier.app/fullchain.pem
|
|
COPY api.pem /etc/ssl/acme/private/api.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/vizier.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/vizier.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/mimir.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/mimir.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/spark.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/spark.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/hdfs.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/hdfs.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/analytics.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/analytics.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/proxy.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/proxy.vizier.app/privkey.pem
|
|
|
|
COPY vizier_ecs.conf /usr/local/vizier_ecs.conf
|
|
COPY vizier_k8s.conf /usr/local/vizier_k8s.conf
|
|
COPY entrypoint.sh /usr/local/entrypoint.sh
|
|
COPY supervisord.conf /etc/supervisord.conf
|
|
|
|
RUN chmod +x /usr/local/entrypoint.sh
|
|
|
|
ENTRYPOINT ["\/bin\/sh", "-c", "/usr/local/entrypoint.sh"]
|