jumpserver/Dockerfile

154 lines
5.5 KiB
Docker
Raw Normal View History

2023-08-03 06:33:22 +00:00
FROM jumpserver/python:3.11-slim-buster as stage-build
2022-11-15 09:24:56 +00:00
ARG TARGETARCH
2022-03-15 05:06:04 +00:00
ARG BUILD_DEPENDENCIES=" \
2022-11-15 09:24:56 +00:00
g++ \
make \
pkg-config"
2022-03-15 05:06:04 +00:00
ARG DEPENDENCIES=" \
2022-11-15 09:24:56 +00:00
freetds-dev \
libpq-dev \
libffi-dev \
libjpeg-dev \
2023-08-03 06:33:22 +00:00
libkrb5-dev \
2022-11-15 09:24:56 +00:00
libldap2-dev \
libsasl2-dev \
2023-07-03 02:28:25 +00:00
libssl-dev \
2022-11-15 09:24:56 +00:00
libxml2-dev \
libxmlsec1-dev \
libxmlsec1-openssl \
2023-06-08 14:03:45 +00:00
freerdp2-dev \
libaio-dev"
2022-03-15 05:06:04 +00:00
ARG TOOLS=" \
2022-11-15 09:24:56 +00:00
ca-certificates \
2022-12-09 03:06:58 +00:00
curl \
default-libmysqlclient-dev \
2022-12-21 03:21:48 +00:00
default-mysql-client \
2023-08-03 06:33:22 +00:00
git \
git-lfs \
unzip \
xz-utils \
wget"
ARG APT_MIRROR=http://mirrors.ustc.edu.cn
RUN --mount=type=cache,target=/var/cache/apt,sharing=locked,id=core \
sed -i "s@http://.*.debian.org@${APT_MIRROR}@g" /etc/apt/sources.list \
&& rm -f /etc/apt/apt.conf.d/docker-clean \
&& ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime \
&& apt-get update \
&& apt-get -y install --no-install-recommends ${BUILD_DEPENDENCIES} \
&& apt-get -y install --no-install-recommends ${DEPENDENCIES} \
&& apt-get -y install --no-install-recommends ${TOOLS} \
&& echo "no" | dpkg-reconfigure dash \
&& rm -rf /var/lib/apt/lists/*
RUN set -ex \
&& cd /opt \
&& \
if [ "${TARGETARCH}" == "loong64" ]; then \
mkdir -p /opt/rust-install; \
wget -O /opt/rust.tar.gz https://rust-lang.loongnix.cn/dist/2022-11-03/rust-1.65.0-loongarch64-unknown-linux-gnu.tar.xz; \
tar -xf /opt/rust.tar.gz -C /opt/rust-install --strip-components=1; \
cd /opt/rust-install && ./install.sh; \
rm -rf /opt/rust.tar.gz /opt/rust-install; \
fi
ARG VERSION
ENV VERSION=$VERSION
WORKDIR /opt/jumpserver
ADD . .
RUN cd utils && bash -ixeu build.sh
ARG PIP_MIRROR=https://pypi.tuna.tsinghua.edu.cn/simple
RUN --mount=type=cache,target=/root/.cache \
set -ex \
&& \
if [ "${TARGETARCH}" == "loong64" ]; then \
pip install https://download.jumpserver.org/pypi/simple/rpds_py/rpds_py-0.9.2-cp311-cp311-linux_loongarch64.whl; \
pip install https://download.jumpserver.org/pypi/simple/cryptography/cryptography-41.0.2-cp311-cp311-linux_loongarch64.whl; \
fi \
&& pip install poetry -i ${PIP_MIRROR}
RUN --mount=type=cache,target=/root/.cache \
--mount=type=cache,target=/root/.cargo \
set -ex \
&& poetry config virtualenvs.create false \
&& poetry install
FROM jumpserver/python:3.11-slim-buster
ARG TARGETARCH
ARG DEPENDENCIES=" \
libxmlsec1-openssl"
ARG TOOLS=" \
ca-certificates \
curl \
default-libmysqlclient-dev \
default-mysql-client \
inetutils-ping \
2022-11-15 09:24:56 +00:00
locales \
openssh-client \
2022-12-22 04:47:46 +00:00
procps \
sshpass \
2022-11-15 09:24:56 +00:00
telnet \
unzip \
2022-12-21 03:56:39 +00:00
vim \
2022-11-15 09:24:56 +00:00
wget"
2022-11-16 00:58:16 +00:00
ARG APT_MIRROR=http://mirrors.ustc.edu.cn
2022-11-15 09:24:56 +00:00
RUN --mount=type=cache,target=/var/cache/apt,sharing=locked,id=core \
2022-11-16 00:58:16 +00:00
sed -i "s@http://.*.debian.org@${APT_MIRROR}@g" /etc/apt/sources.list \
2022-11-15 09:24:56 +00:00
&& rm -f /etc/apt/apt.conf.d/docker-clean \
&& ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime \
&& apt-get update \
&& apt-get -y install --no-install-recommends ${DEPENDENCIES} \
&& apt-get -y install --no-install-recommends ${TOOLS} \
2022-03-15 05:06:04 +00:00
&& mkdir -p /root/.ssh/ \
2023-03-28 03:11:15 +00:00
&& echo "Host *\n\tStrictHostKeyChecking no\n\tUserKnownHostsFile /dev/null\n\tCiphers +aes128-cbc\n\tKexAlgorithms +diffie-hellman-group1-sha1\n\tHostKeyAlgorithms +ssh-rsa" > /root/.ssh/config \
2022-03-15 05:06:04 +00:00
&& echo "set mouse-=a" > ~/.vimrc \
&& echo "no" | dpkg-reconfigure dash \
2022-11-15 09:24:56 +00:00
&& echo "zh_CN.UTF-8" | dpkg-reconfigure locales \
2022-11-22 02:15:55 +00:00
&& sed -i "s@# export @export @g" ~/.bashrc \
&& sed -i "s@# alias @alias @g" ~/.bashrc \
&& rm -rf /var/lib/apt/lists/*
2018-11-13 07:57:44 +00:00
2022-11-15 14:18:15 +00:00
ARG DOWNLOAD_URL=https://download.jumpserver.org
2023-07-03 02:28:25 +00:00
RUN set -ex \
&& \
if [ "${TARGETARCH}" == "amd64" ] || [ "${TARGETARCH}" == "arm64" ]; then \
mkdir -p /opt/oracle; \
2023-07-03 02:37:42 +00:00
cd /opt/oracle; \
2023-07-03 02:28:25 +00:00
wget ${DOWNLOAD_URL}/public/instantclient-basiclite-linux.${TARGETARCH}-19.10.0.0.0.zip; \
unzip instantclient-basiclite-linux.${TARGETARCH}-19.10.0.0.0.zip; \
echo "/opt/oracle/instantclient_19_10" > /etc/ld.so.conf.d/oracle-instantclient.conf; \
ldconfig; \
rm -f instantclient-basiclite-linux.${TARGETARCH}-19.10.0.0.0.zip; \
fi
2023-08-03 06:33:22 +00:00
COPY --from=stage-build /opt/jumpserver/release/jumpserver /opt/jumpserver
WORKDIR /opt/jumpserver
2022-03-15 05:06:04 +00:00
2022-08-17 11:13:29 +00:00
ARG PIP_MIRROR=https://pypi.douban.com/simple
2023-08-03 06:33:22 +00:00
RUN --mount=type=cache,target=/root/.cache \
2022-11-15 09:24:56 +00:00
set -ex \
2023-08-03 06:33:22 +00:00
&& echo > /opt/jumpserver/config.yml \
&& pip install poetry -i ${PIP_MIRROR} \
2023-08-02 07:37:30 +00:00
&& poetry config virtualenvs.create false \
2023-08-02 07:45:13 +00:00
&& poetry install --only=main
2022-04-22 05:44:39 +00:00
2018-11-13 07:57:44 +00:00
VOLUME /opt/jumpserver/data
VOLUME /opt/jumpserver/logs
ENV LANG=zh_CN.UTF-8
EXPOSE 8080
2018-11-13 07:57:44 +00:00
ENTRYPOINT ["./entrypoint.sh"]