-
Notifications
You must be signed in to change notification settings - Fork 137
/
Copy pathDockerfile
114 lines (100 loc) · 4.74 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
# Licensed under the Apache License, Version 2.0 (the "License"); you may not
# use this file except in compliance with the License. You may obtain a copy of
# the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations under
# the License.
FROM debian:jessie
MAINTAINER CouchDB Developers [email protected]
# Install instructions from https://cwiki.apache.org/confluence/display/COUCHDB/Debian
RUN groupadd -r couchdb && useradd -d /var/lib/couchdb -g couchdb couchdb
RUN apt-get update -y && apt-get install -y --no-install-recommends \
ca-certificates \
curl \
erlang-nox \
libicu52 \
libmozjs185-1.0 \
libnspr4 \
libnspr4-0d \
&& rm -rf /var/lib/apt/lists/*
# grab gosu for easy step-down from root
ENV GOSU_VERSION 1.10
RUN set -x \
&& apt-get update && apt-get install -y --no-install-recommends ca-certificates wget && rm -rf /var/lib/apt/lists/* \
&& wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$(dpkg --print-architecture)" \
&& wget -O /usr/local/bin/gosu.asc "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$(dpkg --print-architecture).asc" \
&& export GNUPGHOME="$(mktemp -d)" \
&& gpg --keyserver ha.pool.sks-keyservers.net --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 \
&& gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu \
&& rm -rf "$GNUPGHOME" /usr/local/bin/gosu.asc \
&& chmod +x /usr/local/bin/gosu \
&& gosu nobody true \
&& apt-get purge -y --auto-remove wget
# grab tini for signal handling
ENV TINI_VERSION v0.16.1
ADD https://github.com/krallin/tini/releases/download/${TINI_VERSION}/tini /usr/local/bin/tini
ADD https://github.com/krallin/tini/releases/download/${TINI_VERSION}/tini.asc /usr/local/bin/tini.asc
RUN gpg --keyserver hkp://p80.pool.sks-keyservers.net:80 --recv-keys 595E85A6B1B4779EA4DAAEC70B588DFF0527A9B7 \
&& gpg --batch --verify /usr/local/bin/tini.asc /usr/local/bin/tini \
&& chmod +x /usr/local/bin/tini
# https://www.apache.org/dist/couchdb/KEYS
ENV GPG_KEYS \
15DD4F3B8AACA54740EB78C7B7B7C53943ECCEE1 \
1CFBFA43C19B6DF4A0CA3934669C02FFDF3CEBA3 \
25BBBAC113C1BFD5AA594A4C9F96B92930380381 \
4BFCA2B99BADC6F9F105BEC9C5E32E2D6B065BFB \
5D680346FAA3E51B29DBCB681015F68F9DA248BC \
7BCCEB868313DDA925DF1805ECA5BCB7BB9656B0 \
C3F4DFAEAD621E1C94523AEEC376457E61D50B88 \
D2B17F9DA23C0A10991AF2E3D9EE01E47852AEE4 \
E0AF0A194D55C84E4A19A801CDB0C0F904F4EE9B
RUN set -xe \
&& for key in $GPG_KEYS; do \
gpg --keyserver ha.pool.sks-keyservers.net --recv-keys "$key"; \
done
ENV COUCHDB_VERSION 1.7.0
# download dependencies, compile and install couchdb,
# set correct permissions, expose couchdb to the outside and disable logging to disk
RUN buildDeps=' \
gcc \
g++ \
erlang-dev \
libcurl4-openssl-dev \
libicu-dev \
libmozjs185-dev \
libnspr4-dev \
make \
' \
&& apt-get update && apt-get install -y --no-install-recommends $buildDeps \
&& curl -fSL https://apache.osuosl.org/couchdb/source/$COUCHDB_VERSION/apache-couchdb-$COUCHDB_VERSION.tar.gz -o couchdb.tar.gz \
&& curl -fSL https://www.apache.org/dist/couchdb/source/$COUCHDB_VERSION/apache-couchdb-$COUCHDB_VERSION.tar.gz.asc -o couchdb.tar.gz.asc \
&& gpg --batch --verify couchdb.tar.gz.asc couchdb.tar.gz \
&& mkdir -p /usr/src/couchdb \
&& tar -xzf couchdb.tar.gz -C /usr/src/couchdb --strip-components=1 \
&& cd /usr/src/couchdb \
&& ./configure --with-js-lib=/usr/lib --with-js-include=/usr/include/mozjs \
&& make && make install \
&& apt-get purge -y --auto-remove $buildDeps \
&& rm -rf /var/lib/apt/lists/* /usr/src/couchdb /couchdb.tar.gz* \
&& chown -R couchdb:couchdb \
/usr/local/lib/couchdb /usr/local/etc/couchdb \
/usr/local/var/lib/couchdb /usr/local/var/log/couchdb /usr/local/var/run/couchdb \
&& chmod -R g+rw \
/usr/local/lib/couchdb /usr/local/etc/couchdb \
/usr/local/var/lib/couchdb /usr/local/var/log/couchdb /usr/local/var/run/couchdb \
&& mkdir -p /var/lib/couchdb \
&& sed -e 's/^bind_address = .*$/bind_address = 0.0.0.0/' -i /usr/local/etc/couchdb/default.ini \
&& sed -e 's!/usr/local/var/log/couchdb/couch.log$!/dev/null!' -i /usr/local/etc/couchdb/default.ini
COPY ./docker-entrypoint.sh /
RUN chmod +x /docker-entrypoint.sh
# Define mountable directories.
VOLUME ["/usr/local/var/lib/couchdb"]
EXPOSE 5984
WORKDIR /var/lib/couchdb
ENTRYPOINT ["tini", "--", "/docker-entrypoint.sh"]
CMD ["couchdb"]