From 1a5c1979e3a00515e4b23c0757e6d3379f268146 Mon Sep 17 00:00:00 2001 From: Miroslav Prasil Date: Thu, 30 Aug 2018 10:38:38 +0100 Subject: [PATCH] Move Alpine Dockerfile to separate file --- Dockerfile | 28 +++++++++++------ Dockerfile.alpine | 80 +++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 98 insertions(+), 10 deletions(-) create mode 100644 Dockerfile.alpine diff --git a/Dockerfile b/Dockerfile index 3a8b4b1d..c2b9f7c2 100644 --- a/Dockerfile +++ b/Dockerfile @@ -25,11 +25,19 @@ RUN npm run dist \ && mv build /web-vault ########################## BUILD IMAGE ########################## -# Musl build image for statically compiled binary -FROM clux/muslrust:nightly-2018-08-24 as build +# We need to use the Rust build image, because +# we need the Rust compiler and Cargo tooling +FROM rust as build + +# Using bundled SQLite, no need to install it +# RUN apt-get update && apt-get install -y\ +# sqlite3\ +# --no-install-recommends\ +# && rm -rf /var/lib/apt/lists/* # Creates a dummy project used to grab dependencies -RUN USER=root cargo init --bin +RUN USER=root cargo new --bin app +WORKDIR /app # Copies over *only* your manifests and vendored dependencies COPY ./Cargo.* ./ @@ -53,17 +61,17 @@ RUN cargo build --release ######################## RUNTIME IMAGE ######################## # Create a new stage with a minimal image # because we already have a binary built -FROM alpine:3.8 +FROM debian:stretch-slim ENV ROCKET_ENV "staging" ENV ROCKET_WORKERS=10 -ENV SSL_CERT_DIR=/etc/ssl/certs # Install needed libraries -RUN apk add \ - openssl\ - ca-certificates \ - && rm /var/cache/apk/* +RUN apt-get update && apt-get install -y\ + openssl\ + ca-certificates\ + --no-install-recommends\ + && rm -rf /var/lib/apt/lists/* RUN mkdir /data VOLUME /data @@ -74,7 +82,7 @@ EXPOSE 80 COPY .env . COPY Rocket.toml . COPY --from=vault /web-vault ./web-vault -COPY --from=build /volume/target/x86_64-unknown-linux-musl/release/bitwarden_rs . +COPY --from=build app/target/release/bitwarden_rs . # Configures the startup! CMD ./bitwarden_rs diff --git a/Dockerfile.alpine b/Dockerfile.alpine new file mode 100644 index 00000000..3a8b4b1d --- /dev/null +++ b/Dockerfile.alpine @@ -0,0 +1,80 @@ +# Using multistage build: +# https://docs.docker.com/develop/develop-images/multistage-build/ +# https://whitfin.io/speeding-up-rust-docker-builds/ +####################### VAULT BUILD IMAGE ####################### +FROM node:8-alpine as vault + +ENV VAULT_VERSION "v2.2.0" + +ENV URL "https://github.com/bitwarden/web.git" + +RUN apk add --update-cache --upgrade \ + curl \ + git \ + tar + +RUN git clone -b $VAULT_VERSION --depth 1 $URL web-build +WORKDIR /web-build + +COPY /docker/set-vault-baseurl.patch /web-build/ +RUN git apply set-vault-baseurl.patch + +RUN npm run sub:init && npm install + +RUN npm run dist \ + && mv build /web-vault + +########################## BUILD IMAGE ########################## +# Musl build image for statically compiled binary +FROM clux/muslrust:nightly-2018-08-24 as build + +# Creates a dummy project used to grab dependencies +RUN USER=root cargo init --bin + +# Copies over *only* your manifests and vendored dependencies +COPY ./Cargo.* ./ +COPY ./libs ./libs +COPY ./rust-toolchain ./rust-toolchain + +# Builds your dependencies and removes the +# dummy project, except the target folder +# This folder contains the compiled dependencies +RUN cargo build --release +RUN find . -not -path "./target*" -delete + +# Copies the complete project +# To avoid copying unneeded files, use .dockerignore +COPY . . + +# Builds again, this time it'll just be +# your actual source files being built +RUN cargo build --release + +######################## RUNTIME IMAGE ######################## +# Create a new stage with a minimal image +# because we already have a binary built +FROM alpine:3.8 + +ENV ROCKET_ENV "staging" +ENV ROCKET_WORKERS=10 +ENV SSL_CERT_DIR=/etc/ssl/certs + +# Install needed libraries +RUN apk add \ + openssl\ + ca-certificates \ + && rm /var/cache/apk/* + +RUN mkdir /data +VOLUME /data +EXPOSE 80 + +# Copies the files from the context (env file and web-vault) +# and the binary from the "build" stage to the current stage +COPY .env . +COPY Rocket.toml . +COPY --from=vault /web-vault ./web-vault +COPY --from=build /volume/target/x86_64-unknown-linux-musl/release/bitwarden_rs . + +# Configures the startup! +CMD ./bitwarden_rs