mirror of
https://github.com/xiaoxinpro/nginx-proxy-manager-zh.git
synced 2025-01-23 13:18:14 -05:00
12909de3c1
docker is sunsetting free teams and this open source project isn't prepared to pay 300 shmackaroos for a nicer image url
55 lines
1.5 KiB
Docker
55 lines
1.5 KiB
Docker
FROM jc21/testca as testca
|
|
FROM letsencrypt/pebble as pebbleca
|
|
FROM jc21/nginx-full:acmesh-golang
|
|
LABEL maintainer="Jamie Curnow <jc@jc21.com>"
|
|
|
|
SHELL ["/bin/bash", "-o", "pipefail", "-c"]
|
|
|
|
ARG GOPROXY
|
|
ARG GOPRIVATE
|
|
|
|
ENV GOPROXY=$GOPROXY \
|
|
GOPRIVATE=$GOPRIVATE \
|
|
S6_LOGGING=0 \
|
|
SUPPRESS_NO_CONFIG_WARNING=1 \
|
|
ACMESH_CONFIG_HOME=/data/.acme.sh/config \
|
|
ACMESH_HOME=/data/.acme.sh \
|
|
CERT_HOME=/data/.acme.sh/certs \
|
|
LE_CONFIG_HOME=/data/.acme.sh/config \
|
|
LE_WORKING_DIR=/data/.acme.sh \
|
|
CGO_ENABLED=1 \
|
|
GO111MODULE=on
|
|
|
|
RUN echo "fs.file-max = 65535" > /etc/sysctl.conf
|
|
|
|
# usql, node, fail2ban
|
|
RUN curl -fsSL https://deb.nodesource.com/setup_16.x | bash - \
|
|
&& apt-get update \
|
|
&& apt-get install -y --no-install-recommends nodejs vim dnsutils fail2ban \
|
|
&& npm install --location=global yarn \
|
|
&& apt-get clean \
|
|
&& rm -rf /var/lib/apt/lists/* /etc/fail2ban \
|
|
&& go install github.com/xo/usql@master
|
|
|
|
# Task
|
|
RUN cd /usr \
|
|
&& curl -sL https://taskfile.dev/install.sh | sh \
|
|
&& cd /root
|
|
|
|
COPY docker/rootfs /
|
|
RUN rm -f /etc/nginx/conf.d/production.conf
|
|
|
|
# s6 overlay
|
|
COPY scripts/install-s6 /tmp/install-s6
|
|
RUN /tmp/install-s6 && rm -rf /tmp/*
|
|
|
|
# Fix for golang dev:
|
|
RUN chown -R 1000:1000 /opt/go
|
|
|
|
COPY --from=pebbleca /test/certs/pebble.minica.pem /etc/ssl/certs/pebble.minica.pem
|
|
COPY --from=testca /home/step/certs/root_ca.crt /etc/ssl/certs/NginxProxyManager.crt
|
|
|
|
EXPOSE 80
|
|
CMD [ "/init" ]
|
|
HEALTHCHECK --interval=15s --timeout=3s CMD curl -f http://127.0.0.1:81/api || exit 1
|