ThatGuyJack/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2025-10-31 07:43:33 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
2f334b5f9f7226581b0bc506912a5606170a0d94
nginx-proxy-manager/docker/Dockerfile
Jamie Curnow aa15052eea Fix multibuild
2024-11-04 14:40:37 +10:00

105 lines
2.9 KiB
Docker
Raw Blame History

# This is a Dockerfile intended to be built using `docker buildx`
# for multi-arch support. Building with `docker build` may have unexpected results.
# This file assumes that these scripts have been run first:
# - ./scripts/ci/build-frontend
FROM nginxproxymanager/testca AS testca
FROM ghcr.io/letsencrypt/pebble AS pebbleca
FROM jc21/gotools:latest AS gobuild
SHELL ["/bin/bash", "-o", "pipefail", "-c"]
ARG BUILD_COMMIT
ARG BUILD_VERSION
ARG GOPRIVATE
ARG GOPROXY
ENV BUILD_COMMIT="${BUILD_COMMIT:-dev}" \
BUILD_VERSION="${BUILD_VERSION:-0.0.0}" \
CGO_ENABLED=0 \
GOPRIVATE="${GOPRIVATE:-}" \
GOPROXY="${GOPROXY:-}"
COPY scripts /scripts
COPY backend /app
WORKDIR /app
ARG ARG TARGETPLATFORM
RUN mkdir -p /dist \
&& /scripts/go-multiarch-wrapper /dist/server /dist/ipranges
#===============
# Final image
#===============
FROM nginxproxymanager/nginx-full:acmesh AS final
COPY --from=gobuild /dist/server /app/bin/server
COPY --from=gobuild /dist/ipranges /app/bin/ipranges
# these certs are used for testing in CI
COPY --from=pebbleca /test/certs/pebble.minica.pem /etc/ssl/certs/pebble.minica.pem
COPY --from=testca /home/step/certs/root_ca.crt /etc/ssl/certs/NginxProxyManager.crt
# These acmesh vars are defined in the base image
ENV ACMESH_CONFIG_HOME=/data/.acme.sh/config \
ACMESH_HOME=/data/.acme.sh \
CERT_HOME=/data/.acme.sh/certs \
LE_CONFIG_HOME=/data/.acme.sh/config \
LE_WORKING_DIR=/data/.acme.sh \
S6_BEHAVIOUR_IF_STAGE2_FAILS=1 \
S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0 \
S6_FIX_ATTRS_HIDDEN=1 \
S6_KILL_FINISH_MAXTIME=10000 \
S6_VERBOSITY=1
RUN echo "fs.file-max = 65535" > /etc/sysctl.conf
# fail2ban
RUN apt-get update \
&& apt-get install -y --no-install-recommends fail2ban logrotate \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/* /etc/fail2ban
# s6 overlay
ARG TARGETPLATFORM
COPY scripts/install-s6 /tmp/install-s6
RUN /tmp/install-s6 "${TARGETPLATFORM}" && rm -rf /tmp/*
EXPOSE 80/tcp 81/tcp 443/tcp
COPY docker/rootfs /
# Remove frontend service not required for prod, dev nginx config as well
# and remove any other cruft
RUN rm -rf /etc/services.d/frontend \
/etc/nginx/conf.d/dev.conf \
/var/cache/* \
/var/log/* \
/tmp/* \
/var/lib/dpkg/status-old
VOLUME /data
CMD [ "/init" ]
ARG NOW
ARG BUILD_VERSION
ARG BUILD_COMMIT
ARG BUILD_DATE
ENV NPM_BUILD_VERSION="${BUILD_VERSION:-0.0.0}" \
NPM_BUILD_COMMIT="${BUILD_COMMIT:-dev}" \
NPM_BUILD_DATE="${BUILD_DATE:-}"
LABEL org.label-schema.schema-version="1.0" \
org.label-schema.license="MIT" \
org.label-schema.name="nginx-proxy-manager" \
org.label-schema.description="Nginx Host Management and Proxy" \
org.label-schema.build-date="${NOW:-}" \
org.label-schema.version="${BUILD_VERSION:-0.0.0}" \
org.label-schema.url="https://nginxproxymanager.com" \
org.label-schema.vcs-url="https://github.com/NginxProxyManager/nginx-proxy-manager.git" \
org.label-schema.vcs-ref="${BUILD_COMMIT:-dev}" \
org.label-schema.cmd="docker run --rm -ti jc21/nginx-proxy-manager:${BUILD_VERSION:-0.0.0}"
Reference in New Issue View Git Blame Copy Permalink