Compare commits
13 Commits
deef046350
...
master
| Author | SHA1 | Date | |
|---|---|---|---|
9c1b07e0a9
|
|||
|
e942e937fa
|
|||
|
57332a566a
|
|||
|
00a89ef592
|
|||
|
c7975b76e5
|
|||
|
bf1db33bf9
|
|||
|
f7b3aa3099
|
|||
|
41ca98f36f
|
|||
|
f57fd4c5c2
|
|||
|
c699f5919e
|
|||
|
a3991e1273
|
|||
|
b7ea7f9c01
|
|||
|
8b7a469fc4
|
8
autovault/Dockerfile
Normal file
8
autovault/Dockerfile
Normal file
@@ -0,0 +1,8 @@
|
||||
FROM almalinux:9
|
||||
|
||||
COPY *.repo /etc/yum.repos.d/
|
||||
|
||||
RUN dnf install -y kubectl vault jq && dnf clean all
|
||||
RUN setcap -r /usr/bin/vault
|
||||
|
||||
ENTRYPOINT ["/vault/scripts/autovault.sh"]
|
||||
22
autovault/Makefile
Normal file
22
autovault/Makefile
Normal file
@@ -0,0 +1,22 @@
|
||||
VERSION=0.1.0
|
||||
BUILD=1
|
||||
IMAGE=autovault
|
||||
REGISTRY=gitea.geekhome.org/ghp
|
||||
|
||||
.PHONY: build push all
|
||||
|
||||
ifeq ($(shell command -v podman 2> /dev/null),)
|
||||
CMD=docker
|
||||
FORMAT=
|
||||
else
|
||||
CMD=podman
|
||||
FORMAT=--format docker
|
||||
endif
|
||||
|
||||
build:
|
||||
$(CMD) build $(NO_CACHE) $(FORMAT) -t $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD) .
|
||||
|
||||
push:
|
||||
$(CMD) push $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD)
|
||||
|
||||
all: build push
|
||||
13
autovault/hashicorp.repo
Normal file
13
autovault/hashicorp.repo
Normal file
@@ -0,0 +1,13 @@
|
||||
[hashicorp]
|
||||
name=Hashicorp Stable - $basearch
|
||||
baseurl=https://rpm.releases.hashicorp.com/RHEL/$releasever/$basearch/stable
|
||||
enabled=1
|
||||
gpgcheck=1
|
||||
gpgkey=https://rpm.releases.hashicorp.com/gpg
|
||||
|
||||
[hashicorp-test]
|
||||
name=Hashicorp Test - $basearch
|
||||
baseurl=https://rpm.releases.hashicorp.com/RHEL/$releasever/$basearch/test
|
||||
enabled=0
|
||||
gpgcheck=1
|
||||
gpgkey=https://rpm.releases.hashicorp.com/gpg
|
||||
6
autovault/kubernetes.repo
Normal file
6
autovault/kubernetes.repo
Normal file
@@ -0,0 +1,6 @@
|
||||
[kubernetes]
|
||||
name=Kubernetes
|
||||
baseurl=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/
|
||||
enabled=1
|
||||
gpgcheck=1
|
||||
gpgkey=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/repodata/repomd.xml.key
|
||||
@@ -1,10 +1,10 @@
|
||||
VERSION=2.3.16
|
||||
BUILD=4
|
||||
BUILD=5
|
||||
IMAGE=dovecot
|
||||
REGISTRY=gitea.geekhome.org/ghp
|
||||
|
||||
DOVECOT_VERSION=$(VERSION)
|
||||
POSTFIX_VERSION=3.5.9
|
||||
POSTFIX_VERSION=3.5.25
|
||||
|
||||
.PHONY: build push all
|
||||
|
||||
|
||||
12
i2pd/Dockerfile
Normal file
12
i2pd/Dockerfile
Normal file
@@ -0,0 +1,12 @@
|
||||
FROM almalinux:10
|
||||
|
||||
ARG I2PD_VERSION
|
||||
ARG I2PD_BUILD
|
||||
|
||||
RUN dnf install -y epel-release dnf-plugins-core \
|
||||
&& dnf update -y \
|
||||
&& dnf config-manager --enable crb \
|
||||
&& dnf clean all \
|
||||
&& rm -rf /var/cache/yum
|
||||
|
||||
RUN dnf install -y https://github.com/PurpleI2P/i2pd/releases/download/${I2PD_VERSION}/i2pd-${I2PD_VERSION}-${I2PD_BUILD}.el10.x86_64.rpm
|
||||
17
i2pd/Makefile
Normal file
17
i2pd/Makefile
Normal file
@@ -0,0 +1,17 @@
|
||||
VERSION=2.57.0
|
||||
BUILD=1
|
||||
IMAGE=i2pd
|
||||
REGISTRY=gitea.geekhome.org/ghp
|
||||
|
||||
.PHONY: build push all
|
||||
|
||||
build:
|
||||
docker build $(NO_CACHE) \
|
||||
--build-arg I2PD_VERSION=$(VERSION) \
|
||||
--build-arg I2PD_BUILD=$(BUILD) \
|
||||
-t $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD) .
|
||||
|
||||
push:
|
||||
docker push $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD)
|
||||
|
||||
all: build push
|
||||
63
kanidm/Dockerfile
Normal file
63
kanidm/Dockerfile
Normal file
@@ -0,0 +1,63 @@
|
||||
FROM almalinux:10 AS builder
|
||||
|
||||
ARG KANIDM_VERSION
|
||||
ARG KANIDM_FEATURES
|
||||
ARG KANIDM_BUILD_PROFILE="container_generic"
|
||||
ARG KANIDM_BUILD_OPTIONS=""
|
||||
|
||||
# Set the build profile
|
||||
ENV KANIDM_BUILD_PROFILE=${KANIDM_BUILD_PROFILE:-container_generic}
|
||||
ENV RUSTFLAGS="-Clinker=clang -Clink-arg=-fuse-ld=/usr/bin/ld.mold"
|
||||
|
||||
RUN dnf install -y epel-release dnf-plugins-core \
|
||||
&& dnf update -y \
|
||||
&& dnf config-manager --enable crb \
|
||||
&& dnf clean all \
|
||||
&& rm -rf /var/cache/yum
|
||||
|
||||
RUN dnf install -y clang mold pam-devel openssl-devel git make automake gawk systemd-libs systemd-devel systemd-udev \
|
||||
&& dnf clean all \
|
||||
&& rm -rf /var/cache/yum
|
||||
|
||||
# Get Rust
|
||||
ENV RUSTUP_HOME=/root/.rustup
|
||||
ENV CARGO_HOME=/root/.cargo
|
||||
ENV PATH=/root/.cargo/bin:${PATH}
|
||||
RUN curl -s --proto '=https' --tlsv1.3 -sSf 'https://sh.rustup.rs' | sh -s -- -y --no-modify-path || true
|
||||
|
||||
RUN git clone --branch $KANIDM_VERSION --depth 1 https://github.com/kanidm/kanidm.git /usr/src/kanidm
|
||||
|
||||
WORKDIR /usr/src/kanidm
|
||||
|
||||
# Exports don't persist through RUN statements.
|
||||
RUN make release/kanidmd
|
||||
RUN make release/kanidm
|
||||
|
||||
FROM almalinux:10
|
||||
|
||||
COPY *.repo /etc/yum.repos.d/
|
||||
|
||||
RUN dnf install -y openssl sqlite pam kubectl \
|
||||
&& dnf clean all \
|
||||
&& rm -rf /var/cache/yum
|
||||
|
||||
COPY --from=builder /usr/src/kanidm/target/release/kanidmd /sbin/
|
||||
COPY --from=builder /usr/src/kanidm/target/release/kanidm /sbin/
|
||||
COPY --from=builder /usr/src/kanidm/server/core/static /hpkg
|
||||
RUN chmod +x /sbin/kanidmd
|
||||
|
||||
WORKDIR /data
|
||||
|
||||
EXPOSE 8443 3636
|
||||
|
||||
ENV RUST_BACKTRACE=1
|
||||
|
||||
HEALTHCHECK \
|
||||
--interval=60s \
|
||||
--timeout=10s \
|
||||
--start-period=60s \
|
||||
--start-interval=5s \
|
||||
--retries=3 \
|
||||
CMD [ "/sbin/kanidmd", "healthcheck", "-c", "/data/server.toml"]
|
||||
|
||||
CMD [ "/sbin/kanidmd", "server", "-c", "/data/server.toml"]
|
||||
16
kanidm/Makefile
Normal file
16
kanidm/Makefile
Normal file
@@ -0,0 +1,16 @@
|
||||
VERSION=1.6.4
|
||||
BUILD=1
|
||||
IMAGE=kanidm
|
||||
REGISTRY=gitea.geekhome.org/ghp
|
||||
|
||||
.PHONY: build push all
|
||||
|
||||
build:
|
||||
docker build $(NO_CACHE) \
|
||||
--build-arg KANIDM_VERSION=v$(VERSION) \
|
||||
-t $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD) .
|
||||
|
||||
push:
|
||||
docker push $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD)
|
||||
|
||||
all: build push
|
||||
6
kanidm/kubernetes.repo
Normal file
6
kanidm/kubernetes.repo
Normal file
@@ -0,0 +1,6 @@
|
||||
[kubernetes]
|
||||
name=Kubernetes
|
||||
baseurl=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/
|
||||
enabled=1
|
||||
gpgcheck=1
|
||||
gpgkey=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/repodata/repomd.xml.key
|
||||
@@ -1,5 +1,5 @@
|
||||
VERSION=3.5.9
|
||||
BUILD=3
|
||||
VERSION=3.5.25
|
||||
BUILD=1
|
||||
IMAGE=postfix
|
||||
REGISTRY=gitea.geekhome.org/ghp
|
||||
|
||||
|
||||
@@ -1,10 +1,10 @@
|
||||
VERSION=3.10.2
|
||||
VERSION=3.11.1
|
||||
BUILD=1
|
||||
IMAGE=rspamd
|
||||
REGISTRY=gitea.geekhome.org/ghp
|
||||
|
||||
DOVECOT_VERSION=2.3.16
|
||||
POSTFIX_VERSION=3.5.9
|
||||
POSTFIX_VERSION=3.5.25
|
||||
RSPAMD_VERSION=$(VERSION)
|
||||
|
||||
.PHONY: build push all
|
||||
|
||||
Reference in New Issue
Block a user