2023-02-06 00:50:10 +01:00
|
|
|
# This builds the kanidm CLI tools
|
2022-07-05 03:39:38 +02:00
|
|
|
ARG BASE_IMAGE=opensuse/tumbleweed:latest
|
|
|
|
|
FROM ${BASE_IMAGE} AS repos
|
|
|
|
|
RUN zypper refresh --force
|
|
|
|
|
RUN zypper dup -y
|
|
|
|
|
|
|
|
|
|
FROM repos AS builder
|
2022-07-06 02:54:44 +02:00
|
|
|
ARG KANIDM_FEATURES
|
|
|
|
|
ARG KANIDM_BUILD_PROFILE
|
|
|
|
|
ARG KANIDM_BUILD_OPTIONS=""
|
2022-07-05 03:39:38 +02:00
|
|
|
|
2023-02-06 00:50:10 +01:00
|
|
|
RUN echo Profile $KANIDM_BUILD_PROFILE
|
|
|
|
|
RUN echo Features $KANIDM_FEATURES
|
|
|
|
|
|
|
|
|
|
RUN zypper install -y --no-recommends \
|
2022-09-28 02:31:19 +02:00
|
|
|
rustup wasm-pack \
|
2023-02-06 00:50:10 +01:00
|
|
|
clang \
|
2022-07-05 03:39:38 +02:00
|
|
|
make automake autoconf \
|
2023-02-06 00:50:10 +01:00
|
|
|
libopenssl-3-devel \
|
2022-07-05 03:39:38 +02:00
|
|
|
pam-devel \
|
|
|
|
|
libudev-devel \
|
|
|
|
|
sqlite3-devel \
|
2023-02-06 00:50:10 +01:00
|
|
|
rsync \
|
|
|
|
|
mold
|
|
|
|
|
|
2022-07-05 03:39:38 +02:00
|
|
|
RUN zypper clean -a
|
2022-09-28 02:31:19 +02:00
|
|
|
RUN rustup default stable
|
2022-07-05 03:39:38 +02:00
|
|
|
|
|
|
|
|
COPY . /usr/src/kanidm
|
|
|
|
|
|
2023-02-06 00:50:10 +01:00
|
|
|
RUN mkdir -p /usr/src/kanidm/.cargo
|
|
|
|
|
RUN cp /usr/src/kanidm/cargo_vendor_config /usr/src/kanidm/.cargo/config.toml
|
2022-07-05 03:39:38 +02:00
|
|
|
|
2022-07-06 02:54:44 +02:00
|
|
|
WORKDIR /usr/src/kanidm/
|
2023-02-06 00:50:10 +01:00
|
|
|
|
|
|
|
|
# Set the build profile
|
|
|
|
|
ENV KANIDM_BUILD_PROFILE=${KANIDM_BUILD_PROFILE:-container_generic}
|
|
|
|
|
ENV RUSTFLAGS="-Clinker=clang -Clink-arg=-fuse-ld=/usr/bin/ld.mold"
|
|
|
|
|
|
2022-07-05 03:39:38 +02:00
|
|
|
# build the CLI
|
|
|
|
|
RUN if [ -z "${KANIDM_FEATURES}" ]; then \
|
2023-02-06 00:50:10 +01:00
|
|
|
cargo build -p kanidm_tools ${KANIDM_BUILD_OPTIONS} \
|
2022-12-21 00:53:57 +01:00
|
|
|
--target-dir="/usr/src/kanidm/target/" \
|
|
|
|
|
--release; \
|
2023-02-06 00:50:10 +01:00
|
|
|
cargo build -p kanidm-ipa-sync ${KANIDM_BUILD_OPTIONS} \
|
2022-07-05 03:39:38 +02:00
|
|
|
--target-dir="/usr/src/kanidm/target/" \
|
|
|
|
|
--release; \
|
|
|
|
|
else \
|
2023-02-06 00:50:10 +01:00
|
|
|
cargo build -p kanidm_tools ${KANIDM_BUILD_OPTIONS} \
|
2022-12-21 00:53:57 +01:00
|
|
|
--target-dir="/usr/src/kanidm/target/" \
|
|
|
|
|
--features="${KANIDM_FEATURES}" \
|
|
|
|
|
--release; \
|
2023-02-06 00:50:10 +01:00
|
|
|
cargo build -p kanidm-ipa-sync ${KANIDM_BUILD_OPTIONS} \
|
2022-07-05 03:39:38 +02:00
|
|
|
--target-dir="/usr/src/kanidm/target/" \
|
|
|
|
|
--features="${KANIDM_FEATURES}" \
|
|
|
|
|
--release; \
|
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
RUN ls -al /usr/src/kanidm/target/release
|
|
|
|
|
|
2022-11-09 22:42:03 +01:00
|
|
|
# == Construct the tools container
|
2022-07-05 03:39:38 +02:00
|
|
|
FROM repos
|
|
|
|
|
|
2023-02-06 00:50:10 +01:00
|
|
|
RUN zypper install -y timezone busybox-adduser openssl-3 && \
|
2022-11-09 22:42:03 +01:00
|
|
|
zypper clean -a
|
2022-07-05 03:39:38 +02:00
|
|
|
|
|
|
|
|
COPY --from=builder /usr/src/kanidm/target/release/kanidm /sbin/
|
2022-12-21 00:53:57 +01:00
|
|
|
COPY --from=builder /usr/src/kanidm/target/release/kanidm-ipa-sync /sbin/
|
2022-07-05 03:39:38 +02:00
|
|
|
RUN chmod +x /sbin/kanidm
|
2022-12-21 00:53:57 +01:00
|
|
|
RUN chmod +x /sbin/kanidm-ipa-sync
|
2022-07-05 03:39:38 +02:00
|
|
|
ENV RUST_BACKTRACE 1
|
|
|
|
|
|
|
|
|
|
RUN adduser -D -H kanidm
|
2022-11-09 22:42:03 +01:00
|
|
|
RUN mkdir /etc/kanidm && \
|
|
|
|
|
touch /etc/kanidm/config
|
2022-07-05 03:39:38 +02:00
|
|
|
|
|
|
|
|
USER kanidm
|
|
|
|
|
|
2022-11-09 22:42:03 +01:00
|
|
|
CMD [ "/sbin/kanidm", "-h" ]
|
|
|
|
|
|
