This repository has been archived by the owner on Dec 15, 2020. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 19
/
Dockerfile-rhel.template
101 lines (86 loc) · 3.66 KB
/
Dockerfile-rhel.template
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
# Copyright (c) 2016-present Sonatype, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
FROM registry.access.redhat.com/rhel7/rhel
MAINTAINER Sonatype <cloud-ops@sonatype.com>
# Atomic Labels
LABEL name="Nexus Repository Manager" \
vendor="Sonatype" \
version="%%NEXUS_VERSION%%" \
release="%%NEXUS_VERSION_SHORT%%" \
url="https://sonatype.com" \
summary="The Nexus Repository Manager server \
with universal support for popular component formats." \
run="docker run -d --name NAME \
-p 8081:8081 \
IMAGE" \
stop="docker stop NAME"
# OpenShift Labels
LABEL io.k8s.description="The Nexus Repository Manager server \
with universal support for popular component formats." \
io.k8s.display-name="Nexus Repository Manager" \
io.openshift.expose-services="8081:8081" \
io.openshift.tags="Sonatype,Nexus,Repository Manager"
# Sonatype Labels
LABEL com.sonatype.license="Apache License, Version 2.0"
COPY help.1 uid_entrypoint /
COPY licenses /licenses
# Install Runtime Environment
RUN set -x && \
yum clean all && \
REPOLIST=rhel-7-server-rpms,rhel-7-server-optional-rpms,rhel-7-server-thirdparty-oracle-java-rpms \
INSTALL_PKGS="tar java-1.8.0-oracle-devel" && \
yum -y update-minimal --disablerepo "*" --enablerepo ${REPOLIST} --setopt=tsflags=nodocs \
--security --sec-severity=Important --sec-severity=Critical && \
yum -y install --disablerepo "*" --enablerepo ${REPOLIST} --setopt=tsflags=nodocs ${INSTALL_PKGS} && \
yum clean all
# Install Nexus
ENV SONATYPE_DIR=/opt/sonatype
ENV NEXUS_DATA=/nexus-data \
NEXUS_HOME=${SONATYPE_DIR}/nexus \
NEXUS_VERSION=%%NEXUS_VERSION%% \
SONATYPE_WORK=${SONATYPE_DIR}/sonatype-work \
NEXUS_CONTEXT='' \
USER_NAME=nexus \
USER_UID=200
# Install Nexus and Configure Nexus Runtime Environment
RUN mkdir -p ${NEXUS_HOME} && \
curl --fail --silent --location --retry 3 \
https://download.sonatype.com/nexus/3/nexus-${NEXUS_VERSION}-unix.tar.gz \
| gunzip \
| tar x -C ${NEXUS_HOME} --strip-components=1 nexus-${NEXUS_VERSION} && \
chown -R root:root ${NEXUS_HOME} && \
\
sed \
-e '/^nexus-context/ s:$:${NEXUS_CONTEXT}:' \
-i ${NEXUS_HOME}/etc/nexus-default.properties && \
\
useradd -l -u ${USER_UID} -r -g 0 -m -d ${NEXUS_DATA} -s /sbin/no-login \
-c "${USER_NAME} application user" ${USER_NAME} && \
mkdir -p ${NEXUS_DATA}/etc ${NEXUS_DATA}/log ${NEXUS_DATA}/tmp ${SONATYPE_WORK} && \
ln -s ${NEXUS_DATA} ${SONATYPE_WORK}/nexus3 && \
chown -R ${USER_NAME}:0 ${NEXUS_DATA} && \
chmod -R g+rw ${NEXUS_DATA} /etc/passwd && \
chmod ug+x /uid_entrypoint && \
find ${NEXUS_DATA} -type d -exec chmod g+x {} +
VOLUME ${NEXUS_DATA}
# arbitrary uid recognition at runtime - for OpenShift deployments
RUN sed "s@${USER_NAME}:x:${USER_UID}:@${USER_NAME}:x:\${USER_ID}:@g" /etc/passwd > /etc/passwd.template
# Supply non variable to USER command ${USER_NAME}
USER 200
WORKDIR ${NEXUS_HOME}
ENV JAVA_MAX_MEM=1200m \
JAVA_MIN_MEM=1200m
EXPOSE 8081
ENTRYPOINT [ "/uid_entrypoint" ]
CMD ["bin/nexus", "run"]