endurain (v0.12.3-rootless-1)
Published 2025-06-24 20:13:01 +00:00 by james
Installation
docker pull forge.wynning.tech/james/endurain:v0.12.3-rootless-1sha256:d488d997002b96ad0fa20d98c431230f226f12cdf63a1b4d6274a8818531d006Image layers
| ADD alpine-minirootfs-3.22.0-x86_64.tar.gz / # buildkit |
| CMD ["/bin/sh"] |
| ENV PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin |
| RUN /bin/sh -c set -eux; apk add --no-cache ca-certificates tzdata ; # buildkit |
| ENV GPG_KEY=7169605F62C751356D054A26A821E680E5FA6305 |
| ENV PYTHON_VERSION=3.13.5 |
| ENV PYTHON_SHA256=93e583f243454e6e9e4588ca2c2662206ad961659863277afcdb96801647d640 |
| RUN /bin/sh -c set -eux; apk add --no-cache --virtual .build-deps gnupg tar xz bluez-dev bzip2-dev dpkg-dev dpkg findutils gcc gdbm-dev libc-dev libffi-dev libnsl-dev libtirpc-dev linux-headers make ncurses-dev openssl-dev pax-utils readline-dev sqlite-dev tcl-dev tk tk-dev util-linux-dev xz-dev zlib-dev ; wget -O python.tar.xz "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]*}/Python-$PYTHON_VERSION.tar.xz"; echo "$PYTHON_SHA256 *python.tar.xz" | sha256sum -c -; wget -O python.tar.xz.asc "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]*}/Python-$PYTHON_VERSION.tar.xz.asc"; GNUPGHOME="$(mktemp -d)"; export GNUPGHOME; gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys "$GPG_KEY"; gpg --batch --verify python.tar.xz.asc python.tar.xz; gpgconf --kill all; rm -rf "$GNUPGHOME" python.tar.xz.asc; mkdir -p /usr/src/python; tar --extract --directory /usr/src/python --strip-components=1 --file python.tar.xz; rm python.tar.xz; cd /usr/src/python; gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; ./configure --build="$gnuArch" --enable-loadable-sqlite-extensions --enable-option-checking=fatal --enable-shared $(test "$gnuArch" != 'riscv64-linux-musl' && echo '--with-lto') --with-ensurepip ; nproc="$(nproc)"; EXTRA_CFLAGS="-DTHREAD_STACK_SIZE=0x100000"; LDFLAGS="${LDFLAGS:--Wl},--strip-all"; arch="$(apk --print-arch)"; case "$arch" in x86_64|aarch64) EXTRA_CFLAGS="${EXTRA_CFLAGS:-} -fno-omit-frame-pointer -mno-omit-leaf-frame-pointer"; ;; x86) ;; *) EXTRA_CFLAGS="${EXTRA_CFLAGS:-} -fno-omit-frame-pointer"; ;; esac; make -j "$nproc" "EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" "LDFLAGS=${LDFLAGS:-}" ; rm python; make -j "$nproc" "EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" "LDFLAGS=${LDFLAGS:--Wl},-rpath='\$\$ORIGIN/../lib'" python ; make install; cd /; rm -rf /usr/src/python; find /usr/local -depth \( \( -type d -a \( -name test -o -name tests -o -name idle_test \) \) -o \( -type f -a \( -name '*.pyc' -o -name '*.pyo' -o -name 'libpython*.a' \) \) \) -exec rm -rf '{}' + ; find /usr/local -type f -executable -not \( -name '*tkinter*' \) -exec scanelf --needed --nobanner --format '%n#p' '{}' ';' | tr ',' '\n' | sort -u | awk 'system("[ -e /usr/local/lib/" $1 " ]") == 0 { next } { print "so:" $1 }' | xargs -rt apk add --no-network --virtual .python-rundeps ; apk del --no-network .build-deps; export PYTHONDONTWRITEBYTECODE=1; python3 --version; pip3 --version # buildkit |
| RUN /bin/sh -c set -eux; for src in idle3 pip3 pydoc3 python3 python3-config; do dst="$(echo "$src" | tr -d 3)"; [ -s "/usr/local/bin/$src" ]; [ ! -e "/usr/local/bin/$dst" ]; ln -svT "$src" "/usr/local/bin/$dst"; done # buildkit |
| CMD ["python3"] |
| RUN /bin/sh -c apk add --no-cache build-base mariadb-dev pkgconfig musl-dev python3-dev libffi-dev openssl-dev gcc curl ca-certificates # buildkit |
| RUN /bin/sh -c set -eux; arch="$(uname -m)"; case "$arch" in x86_64) gosu_arch='amd64' ;; aarch64) gosu_arch='arm64' ;; *) echo "unsupported architecture: $arch" >&2; exit 1 ;; esac; latest_version="$(curl -sSL https://api.github.com/repos/tianon/gosu/releases/latest | grep '"tag_name"' | head -n 1 | cut -d '"' -f4)"; curl -o /usr/local/bin/gosu -SL "https://github.com/tianon/gosu/releases/download/${latest_version}/gosu-${gosu_arch}"; chmod +x /usr/local/bin/gosu; gosu nobody true # buildkit |
| ENV UID=1000 GID=1000 TZ=UTC DB_TYPE=postgres DB_HOST=postgres DB_PORT=5432 DB_USER=endurain DB_DATABASE=endurain ALGORITHM=HS256 ACCESS_TOKEN_EXPIRE_MINUTES=15 REFRESH_TOKEN_EXPIRE_DAYS=7 JAEGER_ENABLED=false JAEGER_HOST=jaeger JAEGER_PROTOCOL=http JAGGER_PORT=4317 BEHIND_PROXY=false ENVIRONMENT=production |
| WORKDIR /app/frontend |
| COPY /tmp/frontend/dist ./dist # buildkit |
| WORKDIR /app/backend |
| COPY /tmp/backend/requirements.txt ./requirements.txt # buildkit |
| RUN /bin/sh -c pip install --no-cache-dir --upgrade pip && pip install --no-cache-dir --upgrade -r ./requirements.txt # buildkit |
| COPY backend/app ./ # buildkit |
| COPY docker/start.sh /docker-entrypoint.d/start.sh # buildkit |
| RUN /bin/sh -c chmod +x /docker-entrypoint.d/start.sh # buildkit |
| EXPOSE map[8080/tcp:{}] |
| HEALTHCHECK &{["CMD-SHELL" "curl -f http://localhost:8080/api/v1/about || exit 1"] "30s" "10s" "30s" "0s" '\x00'} |
| ENTRYPOINT ["/docker-entrypoint.d/start.sh"] |
Details
2025-06-24 20:13:01 +00:00
Versions (2)
View all
Container
1
OCI / Docker
linux/amd64
287 MiB
v0.12.3-rootless-1
2025-06-24
v0.12.3-rootless
2025-06-24