|
|
|
FROM python:3.9-slim as stage-build
|
|
|
|
ARG TARGETARCH
|
|
|
|
|
|
|
|
ARG VERSION
|
|
|
|
ENV VERSION=$VERSION
|
|
|
|
|
|
|
|
WORKDIR /opt/jumpserver
|
|
|
|
ADD . .
|
|
|
|
RUN cd utils && bash -ixeu build.sh
|
|
|
|
|
|
|
|
FROM python:3.9-slim
|
|
|
|
ARG TARGETARCH
|
|
|
|
MAINTAINER JumpServer Team <ibuler@qq.com>
|
|
|
|
|
|
|
|
ARG BUILD_DEPENDENCIES=" \
|
|
|
|
g++ \
|
|
|
|
make \
|
|
|
|
pkg-config"
|
|
|
|
|
|
|
|
ARG DEPENDENCIES=" \
|
|
|
|
freetds-dev \
|
|
|
|
libpq-dev \
|
|
|
|
libffi-dev \
|
|
|
|
libjpeg-dev \
|
|
|
|
libldap2-dev \
|
|
|
|
libsasl2-dev \
|
|
|
|
libxml2-dev \
|
|
|
|
libxmlsec1-dev \
|
|
|
|
libxmlsec1-openssl \
|
|
|
|
libaio-dev"
|
|
|
|
|
|
|
|
ARG TOOLS=" \
|
|
|
|
ca-certificates \
|
|
|
|
curl \
|
|
|
|
default-libmysqlclient-dev \
|
|
|
|
locales \
|
|
|
|
openssh-client \
|
|
|
|
sshpass \
|
|
|
|
telnet \
|
|
|
|
unzip \
|
|
|
|
wget"
|
|
|
|
|
|
|
|
RUN --mount=type=cache,target=/var/cache/apt,sharing=locked,id=core \
|
|
|
|
set -ex \
|
|
|
|
&& ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime \
|
|
|
|
&& apt-get update \
|
|
|
|
&& apt-get -y install --no-install-recommends ${BUILD_DEPENDENCIES} \
|
|
|
|
&& apt-get -y install --no-install-recommends ${DEPENDENCIES} \
|
|
|
|
&& apt-get -y install --no-install-recommends ${TOOLS} \
|
|
|
|
&& mkdir -p /root/.ssh/ \
|
|
|
|
&& echo "Host *\n\tStrictHostKeyChecking no\n\tUserKnownHostsFile /dev/null" > /root/.ssh/config \
|
|
|
|
&& echo "set mouse-=a" > ~/.vimrc \
|
|
|
|
&& echo "no" | dpkg-reconfigure dash \
|
|
|
|
&& echo "zh_CN.UTF-8" | dpkg-reconfigure locales \
|
|
|
|
&& sed -i "s@# export @export @g" ~/.bashrc \
|
|
|
|
&& sed -i "s@# alias @alias @g" ~/.bashrc \
|
|
|
|
&& rm -rf /var/lib/apt/lists/*
|
|
|
|
|
|
|
|
WORKDIR /tmp/build
|
|
|
|
COPY ./requirements ./requirements
|
|
|
|
|
|
|
|
ARG PIP_MIRROR=https://pypi.douban.com/simple
|
|
|
|
ENV PIP_MIRROR=$PIP_MIRROR
|
|
|
|
ARG PIP_JMS_MIRROR=https://pypi.douban.com/simple
|
|
|
|
ENV PIP_JMS_MIRROR=$PIP_JMS_MIRROR
|
|
|
|
|
|
|
|
ARG DEBUG
|
|
|
|
|
|
|
|
RUN --mount=type=cache,target=/root/.cache/pip \
|
|
|
|
set -ex \
|
|
|
|
&& pip config set global.index-url ${PIP_MIRROR} \
|
|
|
|
&& pip install --upgrade pip \
|
|
|
|
&& pip install --upgrade setuptools wheel \
|
|
|
|
&& pip install https://download.jumpserver.org/pypi/simple/cryptography/cryptography-36.0.2-cp39-cp39-linux_loongarch64.whl \
|
|
|
|
&& pip install https://download.jumpserver.org/pypi/simple/greenlet/greenlet-1.1.2-cp39-cp39-linux_loongarch64.whl \
|
|
|
|
&& pip install $(grep 'PyNaCl' requirements/requirements.txt) \
|
|
|
|
&& GRPC_PYTHON_BUILD_SYSTEM_OPENSSL=true pip install grpcio \
|
|
|
|
&& pip install $(grep -E 'jms|jumpserver' requirements/requirements.txt) -i ${PIP_JMS_MIRROR} \
|
|
|
|
&& pip install -r requirements/requirements.txt
|
|
|
|
|
|
|
|
COPY --from=stage-build /opt/jumpserver/release/jumpserver /opt/jumpserver
|
|
|
|
RUN echo > /opt/jumpserver/config.yml \
|
|
|
|
&& rm -rf /tmp/build
|
|
|
|
|
|
|
|
WORKDIR /opt/jumpserver
|
|
|
|
VOLUME /opt/jumpserver/data
|
|
|
|
VOLUME /opt/jumpserver/logs
|
|
|
|
|
|
|
|
ENV LANG=zh_CN.UTF-8
|
|
|
|
|
|
|
|
EXPOSE 8080
|
|
|
|
|
|
|
|
ENTRYPOINT ["./entrypoint.sh"]
|