Changeset View
Changeset View
Standalone View
Standalone View
docker/nginx/Dockerfile
FROM fedora:31 | FROM fedora:34 | ||||
MAINTAINER Jeroen van Meeuwen <vanmeeuwen@kolabsys.com> | MAINTAINER Jeroen van Meeuwen <vanmeeuwen@kolabsys.com> | ||||
ENV container docker | ENV container docker | ||||
ENV SYSTEMD_PAGER='' | |||||
ARG NGINX_AUTH_WEBHOOK | |||||
RUN dnf -y install \ | RUN dnf -y install \ | ||||
--setopt 'tsflags=nodocs' \ | --setopt 'tsflags=nodocs' \ | ||||
bash-completion \ | |||||
bind-utils \ | |||||
certbot \ | |||||
curl \ | |||||
dhcp-client \ | |||||
git \ | |||||
iproute \ | |||||
iptraf-ng \ | |||||
iputils \ | |||||
less \ | |||||
lsof \ | |||||
mtr \ | |||||
net-tools \ | |||||
NetworkManager \ | |||||
NetworkManager-tui \ | |||||
network-scripts \ | |||||
nginx \ | nginx \ | ||||
nginx-mod-mail \ | nginx-mod-mail && \ | ||||
nmap-ncat \ | |||||
openssh-clients \ | |||||
openssh-server \ | |||||
procps-ng \ | |||||
python3-certbot-nginx \ | |||||
strace \ | |||||
systemd-udev \ | |||||
tcpdump \ | |||||
telnet \ | |||||
traceroute \ | |||||
vim-enhanced \ | |||||
wget && \ | |||||
dnf clean all | dnf clean all | ||||
RUN sed -i -r -e 's/^SELINUX=.*$/SELINUX=permissive/g' /etc/selinux/config 2>/dev/null || : | |||||
COPY nginx.conf /etc/nginx/nginx.conf | COPY nginx.conf /etc/nginx/nginx.conf | ||||
RUN sed -i -r -e "s|^.*auth_http.*$| auth_http $NGINX_AUTH_WEBHOOK;|g" /etc/nginx/nginx.conf | ARG APP_WEBSITE_DOMAIN | ||||
RUN sed -i -r -e "s|^.*auth_http_header.*$| auth_http_header Host services.$APP_WEBSITE_DOMAIN;|g" /etc/nginx/nginx.conf | |||||
# Forward request logs to Docker log collector | |||||
RUN ln -sf /dev/stdout /var/log/nginx/access.log \ | |||||
&& ln -sf /dev/stderr /var/log/nginx/error.log | |||||
RUN systemctl enable nginx | STOPSIGNAL SIGTERM | ||||
CMD ["/lib/systemd/systemd", "--system"] | CMD ["nginx", "-g", "daemon off;"] | ||||
ENTRYPOINT "/lib/systemd/systemd" | |||||
EXPOSE 110/tcp 143/tcp 993/tcp 995/tcp | EXPOSE 110/tcp 143/tcp 993/tcp 995/tcp |