ervu-sign-module/Dockerfile.micord

ARG BUILDER_IMAGE=repo.micord.ru/alt/alt-cprocsp:c10f1-5.0.13000-20241129
ARG RUNTIME_IMAGE=registry.altlinux.org/basealt/altsp:c10f1

FROM ${BUILDER_IMAGE} AS builder

RUN apt-get update \
 && apt-get -y install \
       crontabs \
       glibc-locales \
       unzip \
       glib2-devel \
       libfcgi-devel \
       cmake \
       make \
       gcc \
       gcc10 \
       libjson-glib libjson-glib-devel \
       libuuid libuuid-devel

WORKDIR /build
COPY src src
COPY CMakeLists.txt CMakeLists.txt

RUN mkdir -p .build \
 && cd .build \
 && cmake .. \
 && make -j4


FROM ${RUNTIME_IMAGE}

ENV TZ=Europe/Moscow

COPY entrypoint.sh /entrypoint.sh

RUN apt-get update \
 && apt-get -y install glib2 libfcgi libjson-glib libuuid \
 && apt-get clean \
 && rm -f /var/cache/apt/*.bin \
 && rm -f /var/lib/apt/lists/update* \
 && chmod +x /entrypoint.sh \
 && groupadd --system --gid 500 ervu \
 && adduser --system --no-create-home --uid 500 --gid 500 ervu

COPY --from=builder /usr/lib/locale/ru_RU.utf8 /usr/lib/locale/ru_RU.utf8
COPY --from=builder /etc/opt/cprocsp /etc/opt/cprocsp
COPY --from=builder /opt/cprocsp /opt/cprocsp
COPY --from=builder /var/opt/cprocsp /var/opt/cprocsp
COPY --from=builder /build/.build/ervu-sign-module /opt/ervu-sign-module/ervu-sign-module

#VOLUME /var/opt/cprocsp/keys/ervu/7h96bfno.000

EXPOSE 9009

COPY --chown=ervu:ervu conf/cacerts /cacerts
COPY --chown=ervu:ervu conf/certs /certs

RUN echo "Installing CA certificates" \
 && find /cacerts -regex ".*\.\(cer\|crt\)$" -exec /opt/cprocsp/bin/amd64/certmgr -install -store mRoot -file {} \;

USER ervu

RUN echo "Installing certificates" \
 && find /certs -regex ".*\.\(cer\|crt\)$" -exec /opt/cprocsp/bin/amd64/certmgr -install -file {} \;

ENTRYPOINT ["/entrypoint.sh"]
DEVOPS-1866 Update base image 2024-11-29 11:11:50 +03:00			`ARG BUILDER_IMAGE=repo.micord.ru/alt/alt-cprocsp:c10f1-5.0.13000-20241129`
Build in docker 2024-09-11 17:30:53 +03:00			`ARG RUNTIME_IMAGE=registry.altlinux.org/basealt/altsp:c10f1`

			`FROM ${BUILDER_IMAGE} AS builder`

			`RUN apt-get update \`
			`&& apt-get -y install \`
			`crontabs \`
			`glibc-locales \`
			`unzip \`
			`glib2-devel \`
			`libfcgi-devel \`
			`cmake \`
			`make \`
			`gcc \`
SUPPORT-8592. Проверка подписи маркера доступа 2024-11-14 12:16:55 +03:00			`gcc10 \`
SUPPORT-8821. Обновлен докер файл 2025-01-10 14:45:04 +03:00			`libjson-glib libjson-glib-devel \`
			`libuuid libuuid-devel`
Build in docker 2024-09-11 17:30:53 +03:00
			`WORKDIR /build`
			`COPY src src`
			`COPY CMakeLists.txt CMakeLists.txt`

			`RUN mkdir -p .build \`
			`&& cd .build \`
			`&& cmake .. \`
			`&& make -j4`


			`FROM ${RUNTIME_IMAGE}`

			`ENV TZ=Europe/Moscow`

			`COPY entrypoint.sh /entrypoint.sh`

			`RUN apt-get update \`
SUPPORT-8821. Обновлен докер файл 2025-01-10 14:45:04 +03:00			`&& apt-get -y install glib2 libfcgi libjson-glib libuuid \`
Build in docker 2024-09-11 17:30:53 +03:00			`&& apt-get clean \`
			`&& rm -f /var/cache/apt/*.bin \`
			`&& rm -f /var/lib/apt/lists/update* \`
			`&& chmod +x /entrypoint.sh \`
			`&& groupadd --system --gid 500 ervu \`
			`&& adduser --system --no-create-home --uid 500 --gid 500 ervu`

			`COPY --from=builder /usr/lib/locale/ru_RU.utf8 /usr/lib/locale/ru_RU.utf8`
			`COPY --from=builder /etc/opt/cprocsp /etc/opt/cprocsp`
			`COPY --from=builder /opt/cprocsp /opt/cprocsp`
			`COPY --from=builder /var/opt/cprocsp /var/opt/cprocsp`
			`COPY --from=builder /build/.build/ervu-sign-module /opt/ervu-sign-module/ervu-sign-module`

			`#VOLUME /var/opt/cprocsp/keys/ervu/7h96bfno.000`

			`EXPOSE 9009`

DEVOPS-1897 Docker refactoring 2024-12-25 23:17:38 +03:00			`COPY --chown=ervu:ervu conf/cacerts /cacerts`
			`COPY --chown=ervu:ervu conf/certs /certs`
SUPPORT-8592. Проверка подписи маркера доступа 2024-11-14 12:16:55 +03:00
DEVOPS-1897 Docker refactoring 2024-12-25 23:17:38 +03:00			`RUN echo "Installing CA certificates" \`
DEVOPS-1859 fix Dockerfile 2024-12-26 11:27:04 +03:00			`&& find /cacerts -regex ".*\.\(cer\\|crt\)$" -exec /opt/cprocsp/bin/amd64/certmgr -install -store mRoot -file {} \;`
Build in docker 2024-09-11 17:30:53 +03:00
DEVOPS-1897 Docker refactoring 2024-12-25 23:17:38 +03:00			`USER ervu`
SUPPORT-8592. Проверка подписи маркера доступа 2024-11-14 12:16:55 +03:00
DEVOPS-1897 Docker refactoring 2024-12-25 23:17:38 +03:00			`RUN echo "Installing certificates" \`
			`&& find /certs -regex ".*\.\(cer\\|crt\)$" -exec /opt/cprocsp/bin/amd64/certmgr -install -file {} \;`
SUPPORT-8592. Проверка подписи маркера доступа 2024-11-14 12:16:55 +03:00
Build in docker 2024-09-11 17:30:53 +03:00			`ENTRYPOINT ["/entrypoint.sh"]`