mirror of
https://github.com/project-zot/zot.git
synced 2025-01-13 22:50:38 -05:00
8b2d4fb7ef
See: https://github.com/GoogleContainerTools/distroless/issues/1467 Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
36 lines
1.2 KiB
Text
36 lines
1.2 KiB
Text
# ---
|
|
# Stage 1: Install certs, build binary, create default config file
|
|
# ---
|
|
FROM --platform=$BUILDPLATFORM ghcr.io/project-zot/golang:1.20 AS builder
|
|
|
|
ARG TARGETOS
|
|
ARG TARGETARCH
|
|
ARG COMMIT
|
|
|
|
RUN apt-get update && apt-get install -y git make ca-certificates
|
|
RUN mkdir -p /go/src/github.com/project-zot/zot
|
|
WORKDIR /go/src/github.com/project-zot/zot
|
|
COPY . .
|
|
RUN make COMMIT=$COMMIT OS=$TARGETOS ARCH=$TARGETARCH clean binary
|
|
RUN echo '# Default config file for zot server\n\
|
|
http:\n\
|
|
address: 0.0.0.0\n\
|
|
port: 5000\n\
|
|
storage:\n\
|
|
rootDirectory: /var/lib/registry\n\
|
|
gc: false\n\
|
|
dedupe: false' > config.yaml && cat config.yaml
|
|
|
|
# ---
|
|
# Stage 2: Final image with nothing but certs, binary, and default config file
|
|
# ---
|
|
FROM gcr.io/distroless/base-debian12 AS final
|
|
ARG TARGETOS
|
|
ARG TARGETARCH
|
|
COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
|
|
COPY --from=builder /go/src/github.com/project-zot/zot/bin/zot-$TARGETOS-$TARGETARCH /usr/bin/zot
|
|
COPY --from=builder /go/src/github.com/project-zot/zot/config.json /etc/zot/config.json
|
|
ENTRYPOINT ["/usr/bin/zot"]
|
|
EXPOSE 5000
|
|
VOLUME ["/var/lib/registry"]
|
|
CMD ["serve", "/etc/zot/config.yaml"]
|