mirror of
https://github.com/ansible/awx.git
synced 2024-11-01 08:21:15 +03:00
148 lines
4.9 KiB
Docker
148 lines
4.9 KiB
Docker
FROM centos:8
|
|
|
|
ARG UID=0
|
|
|
|
ENV LANG en_US.UTF-8
|
|
ENV LANGUAGE en_US:en
|
|
ENV LC_ALL en_US.UTF-8
|
|
|
|
ADD tools/docker-compose/ansible_nightly.repo /etc/yum.repos.d/ansible_nightly.repo
|
|
ADD tools/docker-compose/google-cloud-sdk.repo /etc/yum.repos.d/
|
|
|
|
# sync with installer/roles/image_build/templates/Dockerfile.j2
|
|
RUN dnf -y update && \
|
|
dnf -y install https://github.com/krallin/tini/releases/download/v0.18.0/tini_0.18.0.rpm && \
|
|
dnf -y install epel-release 'dnf-command(config-manager)' && \
|
|
dnf module -y enable 'postgresql:10' && \
|
|
dnf config-manager --set-enabled PowerTools && \
|
|
dnf -y install acl \
|
|
ansible \
|
|
bubblewrap \
|
|
curl \
|
|
diffutils \
|
|
dnf-utils \
|
|
gcc \
|
|
gcc-c++ \
|
|
gettext \
|
|
git-core \
|
|
glibc-langpack-en \
|
|
krb5-workstation \
|
|
kubectl \
|
|
libcurl-devel \
|
|
libffi-devel \
|
|
libstdc++.so.6 \
|
|
libtool-ltdl-devel \
|
|
libcgroup-tools \
|
|
make \
|
|
mercurial \
|
|
nginx \
|
|
nodejs \
|
|
nss \
|
|
openldap-devel \
|
|
openssh-server \
|
|
patch \
|
|
@postgresql:10 \
|
|
postgresql-devel \
|
|
python3-devel \
|
|
python3-libselinux \
|
|
python3-pip \
|
|
python3-psycopg2 \
|
|
python3-setuptools \
|
|
python3-pycurl \
|
|
rsync \
|
|
subversion \
|
|
sudo \
|
|
swig \
|
|
tmux \
|
|
unzip \
|
|
vim-minimal \
|
|
which \
|
|
xmlsec1 \
|
|
xmlsec1-devel \
|
|
xmlsec1-openssl \
|
|
xmlsec1-openssl-devel
|
|
|
|
# Dev dependencies / UI tests only, do not put in installer/roles/image_build/templates/Dockerfile.j2
|
|
RUN dnf -y install \
|
|
gtk3 \
|
|
alsa-lib \
|
|
libX11-xcb \
|
|
libXScrnSaver \
|
|
strace \
|
|
vim \
|
|
nmap-ncat
|
|
|
|
RUN /usr/bin/ssh-keygen -q -t rsa -N "" -f /root/.ssh/id_rsa && \
|
|
openssl req -nodes -newkey rsa:2048 -keyout /etc/nginx/nginx.key -out /etc/nginx/nginx.csr \
|
|
-subj "/C=US/ST=North Carolina/L=Durham/O=Ansible/OU=AWX Development/CN=awx.localhost" && \
|
|
openssl x509 -req -days 365 -in /etc/nginx/nginx.csr -signkey /etc/nginx/nginx.key -out /etc/nginx/nginx.crt && \
|
|
chmod 640 /etc/nginx/nginx.{csr,key,crt}
|
|
|
|
RUN python3 -m ensurepip && pip3 install "virtualenv < 20" flake8 supervisor
|
|
|
|
# Install Requirements
|
|
ADD Makefile /tmp/Makefile
|
|
RUN mkdir /tmp/requirements
|
|
ADD requirements/requirements.txt \
|
|
requirements/requirements_git.txt \
|
|
requirements/requirements_ansible.txt \
|
|
requirements/requirements_ansible_git.txt \
|
|
requirements/requirements_dev.txt \
|
|
requirements/requirements_ansible_uninstall.txt \
|
|
requirements/requirements_tower_uninstall.txt \
|
|
/tmp/requirements/
|
|
RUN mkdir -p /venv && chmod g+w /venv
|
|
RUN cd /tmp && VENV_BASE="/venv" make requirements_dev
|
|
|
|
# Use the distro provided npm to bootstrap our required version of node
|
|
RUN npm install -g n && n 10.15.0 && dnf remove -y nodejs
|
|
|
|
# Install OpenShift CLI
|
|
RUN cd /usr/local/bin && \
|
|
curl -L https://github.com/openshift/origin/releases/download/v3.9.0/openshift-origin-client-tools-v3.9.0-191fece-linux-64bit.tar.gz | \
|
|
tar -xz --strip-components=1 --wildcards --no-anchored 'oc'
|
|
|
|
ADD tools/docker-compose/rsyslog.repo /etc/yum.repos.d/
|
|
RUN yum install -y rsyslog-omhttp
|
|
RUN mkdir -p /var/lib/awx/rsyslog/ && echo '$IncludeConfig /etc/rsyslog.conf' >> /var/lib/awx/rsyslog/rsyslog.conf
|
|
|
|
RUN dnf -y clean all && rm -rf /root/.cache
|
|
|
|
# https://github.com/ansible/awx/issues/5224
|
|
RUN chmod u+s /usr/bin/bwrap
|
|
|
|
ADD tools/docker-compose/awx.egg-link /tmp/awx.egg-link
|
|
ADD tools/docker-compose/awx-manage /usr/local/bin/awx-manage
|
|
ADD tools/docker-compose/awx.egg-info /tmp/awx.egg-info
|
|
ADD tools/docker-compose/nginx.conf /etc/nginx/nginx.conf
|
|
ADD tools/docker-compose/nginx.vh.default.conf /etc/nginx/conf.d/nginx.vh.default.conf
|
|
ADD tools/docker-compose/launch_awx.sh /usr/bin/launch_awx.sh
|
|
ADD tools/docker-compose/start_tests.sh /start_tests.sh
|
|
ADD tools/docker-compose/bootstrap_development.sh /usr/bin/bootstrap_development.sh
|
|
ADD tools/docker-compose/entrypoint.sh /
|
|
ADD tools/scripts/awx-python /usr/bin/awx-python
|
|
|
|
# Pre-create things that we need to write to
|
|
RUN for dir in /var/lib/awx/rsyslog /var/run/tower/rsyslog /var/log/tower/ /var/lib/awx/projects /.ansible /var/log/nginx /var/lib/nginx /.local; \
|
|
do mkdir -p $dir; chmod -R g+rwx $dir; chgrp -R root $dir; done && \
|
|
\
|
|
for file in /etc/passwd /etc/supervisord.conf /venv/awx/lib/python3.6/site-packages/awx.egg-link /var/run/nginx.pid; \
|
|
do touch $file; chmod -R g+rwx $file; chgrp -R root $file; done
|
|
|
|
|
|
RUN chmod -R 0775 /var/lib/awx /var/lib/awx/rsyslog
|
|
RUN chmod -R 0770 /var/lib/rsyslog # needed, or else: rsyslogd: imjournal: open on state file `/var/lib/rsyslog/imjournal.state' failed
|
|
ADD tools/docker-compose/rsyslog.repo /etc/yum.repos.d/
|
|
RUN yum install -y rsyslog-omhttp
|
|
RUN echo '$IncludeConfig /etc/rsyslog.conf' >> /var/lib/awx/rsyslog/rsyslog.conf
|
|
RUN chmod 0775 /var/lib/awx/rsyslog/rsyslog.conf
|
|
|
|
ENV HOME /var/lib/awx
|
|
ENV PATH="/usr/local/n/versions/node/10.15.0/bin:${PATH}"
|
|
ENV PATH="/usr/pgsql-10/bin:${PATH}"
|
|
|
|
EXPOSE 8043 8013 8080 22
|
|
|
|
ENTRYPOINT ["/entrypoint.sh"]
|
|
CMD ["/bin/bash"]
|