mirror of
https://github.com/kanidm/kanidm.git
synced 2025-02-23 12:37:00 +01:00
84 lines
2 KiB
Docker
84 lines
2 KiB
Docker
# This builds the kanidm CLI tool
|
|
ARG BASE_IMAGE=opensuse/tumbleweed:latest
|
|
FROM ${BASE_IMAGE} AS repos
|
|
|
|
# To help mirrors not be as bad
|
|
RUN zypper install -y mirrorsorcerer
|
|
RUN /usr/sbin/mirrorsorcerer -x; true
|
|
RUN zypper refresh --force
|
|
RUN zypper dup -y
|
|
|
|
FROM repos AS builder
|
|
ARG SCCACHE_REDIS=""
|
|
ARG KANIDM_FEATURES
|
|
ARG KANIDM_BUILD_PROFILE
|
|
ARG KANIDM_BUILD_OPTIONS=""
|
|
|
|
RUN zypper install -y \
|
|
rustup wasm-pack \
|
|
gcc clang lld \
|
|
make automake autoconf \
|
|
libopenssl-devel \
|
|
pam-devel \
|
|
libudev-devel \
|
|
sqlite3-devel \
|
|
sccache \
|
|
rsync
|
|
RUN zypper clean -a
|
|
RUN rustup default stable
|
|
|
|
COPY . /usr/src/kanidm
|
|
|
|
RUN mkdir /scratch
|
|
RUN echo $KANIDM_BUILD_PROFILE
|
|
ENV KANIDM_BUILD_PROFILE=${KANIDM_BUILD_PROFILE:-container_generic}
|
|
RUN echo Features $KANIDM_FEATURES
|
|
|
|
ENV CARGO_HOME=/scratch/.cargo
|
|
ENV RUSTFLAGS="-Clinker=clang"
|
|
ENV RUSTFLAGS="-Clinker=clang -Clink-arg=-fuse-ld=/usr/bin/ld.lld"
|
|
|
|
# set up sccache if you've done the thing
|
|
RUN if [ "${SCCACHE_REDIS}" != "" ]; \
|
|
then \
|
|
export CARGO_INCREMENTAL=false && \
|
|
export CC="/usr/bin/sccache /usr/bin/clang" && \
|
|
export RUSTC_WRAPPER=sccache && \
|
|
sccache --start-server; \
|
|
else \
|
|
export CC="/usr/bin/clang"; \
|
|
fi
|
|
|
|
WORKDIR /usr/src/kanidm/
|
|
# build the CLI
|
|
RUN if [ -z "${KANIDM_FEATURES}" ]; then \
|
|
cargo build -p kanidm_tools --bin kanidm ${KANIDM_BUILD_OPTIONS} \
|
|
--target-dir="/usr/src/kanidm/target/" \
|
|
--release; \
|
|
else \
|
|
cargo build -p kanidm_tools --bin kanidm ${KANIDM_BUILD_OPTIONS} \
|
|
--target-dir="/usr/src/kanidm/target/" \
|
|
--features="${KANIDM_FEATURES}" \
|
|
--release; \
|
|
fi
|
|
|
|
RUN if [ "${SCCACHE_REDIS}" != "" ]; then sccache -s; fi
|
|
|
|
RUN ls -al /usr/src/kanidm/target/release
|
|
|
|
FROM repos
|
|
|
|
RUN zypper install -y timezone busybox-adduser
|
|
RUN zypper clean -a
|
|
|
|
COPY --from=builder /usr/src/kanidm/target/release/kanidm /sbin/
|
|
RUN chmod +x /sbin/kanidm
|
|
ENV RUST_BACKTRACE 1
|
|
|
|
RUN adduser -D -H kanidm
|
|
RUN zypper remove -y busybox-adduser
|
|
|
|
USER kanidm
|
|
|
|
CMD [ "/sbin/kanidm", "-c", "/data/kanidm.toml" ]
|