2024-10-15 21:06:29 -04:00
|
|
|
FROM nginxproxymanager/testca AS testca
|
|
|
|
FROM letsencrypt/pebble AS pebbleca
|
2024-01-09 18:32:12 -05:00
|
|
|
FROM nginxproxymanager/nginx-full:certbot-node
|
2020-02-18 23:55:06 -05:00
|
|
|
LABEL maintainer="Jamie Curnow <jc@jc21.com>"
|
|
|
|
|
2024-10-15 21:06:29 -04:00
|
|
|
SHELL ["/bin/bash", "-o", "pipefail", "-c"]
|
|
|
|
|
2023-05-09 19:57:24 -04:00
|
|
|
ENV SUPPRESS_NO_CONFIG_WARNING=1 \
|
|
|
|
S6_BEHAVIOUR_IF_STAGE2_FAILS=1 \
|
|
|
|
S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0 \
|
|
|
|
S6_FIX_ATTRS_HIDDEN=1 \
|
|
|
|
S6_KILL_FINISH_MAXTIME=10000 \
|
2024-01-09 18:32:12 -05:00
|
|
|
S6_VERBOSITY=2 \
|
|
|
|
NODE_OPTIONS="--openssl-legacy-provider"
|
2020-02-18 23:55:06 -05:00
|
|
|
|
|
|
|
RUN echo "fs.file-max = 65535" > /etc/sysctl.conf \
|
2021-04-28 18:28:40 -04:00
|
|
|
&& apt-get update \
|
2023-03-16 18:50:32 -04:00
|
|
|
&& apt-get install -y jq python3-pip logrotate \
|
2021-04-28 18:28:40 -04:00
|
|
|
&& apt-get clean \
|
|
|
|
&& rm -rf /var/lib/apt/lists/*
|
2020-02-18 23:55:06 -05:00
|
|
|
|
2021-02-07 09:52:37 -05:00
|
|
|
# Task
|
2024-10-15 21:06:29 -04:00
|
|
|
WORKDIR /usr
|
|
|
|
RUN curl -sL https://taskfile.dev/install.sh | sh
|
|
|
|
WORKDIR /root
|
2021-02-07 09:52:37 -05:00
|
|
|
|
|
|
|
COPY rootfs /
|
2023-03-16 18:50:32 -04:00
|
|
|
COPY scripts/install-s6 /tmp/install-s6
|
2024-10-15 21:06:29 -04:00
|
|
|
RUN rm -f /etc/nginx/conf.d/production.conf \
|
|
|
|
&& chmod 644 /etc/logrotate.d/nginx-proxy-manager \
|
|
|
|
&& /tmp/install-s6 "${TARGETPLATFORM}" \
|
2024-12-23 17:57:54 -05:00
|
|
|
&& rm -f /tmp/install-s6 \
|
|
|
|
&& chmod 644 -R /root/.cache
|
2024-10-15 21:06:29 -04:00
|
|
|
|
|
|
|
# Certs for testing purposes
|
|
|
|
COPY --from=pebbleca /test/certs/pebble.minica.pem /etc/ssl/certs/pebble.minica.pem
|
|
|
|
COPY --from=testca /home/step/certs/root_ca.crt /etc/ssl/certs/NginxProxyManager.crt
|
2020-02-18 23:55:06 -05:00
|
|
|
|
2021-04-28 18:28:40 -04:00
|
|
|
EXPOSE 80 81 443
|
2021-02-07 09:52:37 -05:00
|
|
|
ENTRYPOINT [ "/init" ]
|