65 lines
2.6 KiB
Docker
65 lines
2.6 KiB
Docker
FROM nginx:alpine
|
|
|
|
# Metadata
|
|
LABEL base.image="docker.mimirdb.info/alpine_oraclejdk8_nginx"
|
|
LABEL version="0.3"
|
|
LABEL software="Vizier"
|
|
LABEL software.version="0.2.20190509"
|
|
|
|
ENV VIZIER_CONFIG="vizier_ecs.conf"
|
|
ENV VIZIER_DOMAIN="vizier.app"
|
|
ENV VIZIER_API_APP_PATH="/vizier-db/api/v1/"
|
|
ENV VIZIER_API_PROXY_PATH=""
|
|
ENV ACME_HOSTS="demo.vizier.app api.vizier.app vizier.vizier.app mimir.vizier.app spark.vizier.app hdfs.vizier.app proxy.vizier.app analytics.vizier.app"
|
|
ENV API_BASIC_AUTH=false
|
|
|
|
EXPOSE 80
|
|
EXPOSE 443
|
|
EXPOSE 22
|
|
EXPOSE 9001
|
|
|
|
COPY nginx.conf /etc/nginx/nginx.conf
|
|
COPY mime.types /etc/nginx/mime.types
|
|
COPY acme-client /etc/periodic/weekly/acme-client
|
|
|
|
RUN apk add nginx nginx-mod-http-headers-more acme-client libressl openssh yarn supervisor git \
|
|
&& chmod +x /etc/periodic/weekly/acme-client \
|
|
&& rm /etc/nginx/conf.d/default.conf
|
|
|
|
#setup ssh
|
|
RUN echo 'root:odinlab' |chpasswd
|
|
RUN sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config \
|
|
&& sed -ri 's/UsePAM yes/#UsePAM yes/g' /etc/ssh/sshd_config \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_rsa_key -N '' -t rsa \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_dsa_key -N '' -t dsa \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_ecdsa_key -N '' -t ecdsa \
|
|
&& ssh-keygen -f /etc/ssh/ssh_host_ed25519_key -N '' -t ed25519
|
|
|
|
COPY fullchain-ui.pem /etc/ssl/acme/demo.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/demo.vizier.app/privkey.pem
|
|
COPY fullchain-api.pem /etc/ssl/acme/api.vizier.app/fullchain.pem
|
|
COPY api.pem /etc/ssl/acme/private/api.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/vizier.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/vizier.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/mimir.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/mimir.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/spark.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/spark.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/hdfs.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/hdfs.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/analytics.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/analytics.vizier.app/privkey.pem
|
|
COPY fullchain-ui.pem /etc/ssl/acme/proxy.vizier.app/fullchain.pem
|
|
COPY ui.pem /etc/ssl/acme/private/proxy.vizier.app/privkey.pem
|
|
|
|
COPY vizier_ecs.conf /usr/local/vizier_ecs.conf
|
|
COPY vizier_k8s.conf /usr/local/vizier_k8s.conf
|
|
COPY entrypoint.sh /usr/local/entrypoint.sh
|
|
COPY supervisord.conf /etc/supervisord.conf
|
|
COPY .htpasswd /etc/nginx/.htpasswd
|
|
COPY .htpasswd /etc/nginx/.htpasswd_api
|
|
|
|
RUN chmod +x /usr/local/entrypoint.sh
|
|
|
|
ENTRYPOINT ["\/bin\/sh", "-c", "/usr/local/entrypoint.sh"]
|