generated from system76/copy_cat
-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathDockerfile
83 lines (66 loc) · 2.21 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
FROM elixir:1.14-slim as build
# Install deps
RUN set -xe; \
apt-get update && \
apt-get install -y \
ca-certificates \
build-essential \
git ;
# Use the standard /usr/local/src destination
RUN mkdir -p /usr/local/src/bullhorn
COPY . /usr/local/src/bullhorn/
# ARG is available during the build and not in the final container
# https://vsupalov.com/docker-arg-vs-env/
ARG MIX_ENV=prod
ARG APP_NAME=bullhorn
# Use `set -xe;` to enable debugging and exit on error
# More verbose but that is often beneficial for builds
RUN set -xe; \
cd /usr/local/src/bullhorn/; \
mix local.hex --force; \
mix local.rebar --force; \
mix deps.get; \
mix deps.compile --all; \
mix release
FROM debian:11.6-slim as release
RUN set -xe; \
apt-get update && \
apt-get install -y \
ca-certificates \
libmcrypt4 \
openssl \
wkhtmltopdf;
# Create a `bullhorn` group & user
# I've been told before it's generally a good practice to reserve ids < 1000 for the system
RUN set -xe; \
adduser --uid 1000 --system --home /bullhorn --shell /bin/sh --group bullhorn;
ARG APP_NAME=bullhorn
# Copy the release artifact and set `bullhorn` ownership
COPY --chown=bullhorn:bullhorn --from=build /usr/local/src/bullhorn/_build/prod/rel/${APP_NAME} /bullhorn
# These are fed in from the build script
ARG VCS_REF
ARG BUILD_DATE
ARG VERSION
# `Maintainer` has been deprecated in favor of Labels / Metadata
# https://docs.docker.com/engine/reference/builder/#maintainer-deprecated
LABEL \
org.opencontainers.image.created="${BUILD_DATE}" \
org.opencontainers.image.description="bullhorn" \
org.opencontainers.image.revision="${VCS_REF}" \
org.opencontainers.image.source="https://github.com/system76/bullhorn" \
org.opencontainers.image.title="bullhorn" \
org.opencontainers.image.vendor="system76" \
org.opencontainers.image.version="${VERSION}"
ENV \
PATH="/usr/local/bin:$PATH" \
VERSION="${VERSION}" \
MIX_APP="bullhorn" \
MIX_ENV="prod" \
SHELL="/bin/bash" \
LANG="C.UTF-8"
# Drop down to our unprivileged `bullhorn` user
USER bullhorn
WORKDIR /bullhorn
EXPOSE 8080
ENTRYPOINT ["/bullhorn/bin/bullhorn"]
CMD ["start"]