toolshell/Dockerfile at main · clue2solve/toolshell · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
FROM linuxserver/code-server
LABEL "org.opencontainers.image.description"  "This is a Docker image built to include all the common cloud tools along with a vs-code on the browser using code-server"
LABEL "maintainer"  "Anand Rao"
LABEL "org.opencontainers.image.title"  "toolshell"
LABEL "org.opencontainers.image.source" "https://github.com/linuxserver/docker-code-server"
LABEL "org.opencontainers.image.revision" " "
LABEL "org.opencontainers.image.licenses" "GPL-3.0-only"
# LABEL "org.opencontainers.image.version": "v3.9.3-ls77"
LABEL "org.opencontainers.image.vendor" "clue2solve.io"
LABEL "org.opencontainers.image.documentation" ""
# LABEL "build_version": "Linuxserver.io version:- v3.9.3-ls77 Build-date:- 2021-04-18T12:48:22+00:00"
LABEL "org.opencontainers.image.authors" "clue2solve"
LABEL "org.opencontainers.image.url" "https://github.com/orgs/clue2solve/packages/container/package/toolshell"

# install nginx
ENV OS_LOCALE="en_US.UTF-8" \
	DEBIAN_FRONTEND=noninteractive
    ENV LANG=${OS_LOCALE} \
	LANGUAGE=en_US:en \
	LC_ALL=${OS_LOCALE}
# this folder is a carry over from the base image above.
WORKDIR /config
ENV HOME="/config"

RUN apt-get update && apt-get install -y locales && locale-gen ${OS_LOCALE} \
	&& BUILD_DEPS='wget gnupg' \
	&& apt-get install --no-install-recommends -y $BUILD_DEPS \
	&& apt-get install software-properties-common -y \
	&& wget -O - http://nginx.org/keys/nginx_signing.key | APT_KEY_DONT_WARN_ON_DANGEROUS_USAGE=noninteractive apt-key add - \
	&& echo "deb http://nginx.org/packages/mainline/ubuntu/ bionic nginx" | tee -a /etc/apt/sources.list \
	&& echo "deb-src http://nginx.org/packages/mainline/ubuntu/ bionic nginx" | tee -a /etc/apt/sources.list \
	&& apt-get update \
	&& apt-get install -y nginx \
	# Cleaning
	&& apt-get purge -y --auto-remove $BUILD_DEPS \
	&& apt-get autoremove -y && apt-get clean \
	&& rm -rf /var/lib/apt/lists/* \
	# Forward request and error logs to docker log collector
	&& ln -sf /dev/stdout /var/log/nginx/access.log \
	&& ln -sf /dev/stderr /var/log/nginx/error.log \
#install golang and client-go
    # Next few lines are needed to install Octant
    && add-apt-repository ppa:longsleep/golang-backports \
	&& apt-get install -y  golang-go \
	&&  GOPATH="/go" GO111MODULE=on go get k8s.io/client-go@latest \
# TOOOOOLS
    &&  curl -L https://k14s.io/install.sh | bash   \
    && curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 \
    && chmod 700 get_helm.sh  \
    && ./get_helm.sh \
# TMC
    && curl -L -o /usr/local/bin/tmc $(curl -s https://tanzupaorg.tmc.cloud.vmware.com/v1alpha/system/binaries | jq -r 'getpath(["versions",.latestVersion]).linuxX64') && \
  chmod 755 /usr/local/bin/tmc \
# Policy Tools
    && curl -L -o /usr/local/bin/opa https://openpolicyagent.org/downloads/latest/opa_linux_amd64 \
    && chmod 755 /usr/local/bin/opa \
# Velero
    && VELERO_DOWNLOAD_URL=$(curl -s https://api.github.com/repos/vmware-tanzu/velero/releases/latest | jq -r '.assets[] | select ( .name | contains("linux-amd64") ) .browser_download_url') && \
  curl -fL --output /tmp/velero.tar.gz ${VELERO_DOWNLOAD_URL} && \
  tar -xzf /tmp/velero.tar.gz -C /usr/local/bin --strip-components=1 --wildcards velero-*-linux-amd64/velero && \
  rm /tmp/velero.tar.gz \
# TAC
 && curl -fL --output /tmp/tac.tar.gz https://downloads.bitnami.com/tac/tac-cli_beta-e936104-linux_amd64.tar.gz && \
  tar -xzf /tmp/tac.tar.gz -C /usr/local/bin tac && \
  rm /tmp/tac.tar.gz \
# TBS
# TODO :  Change the logic to identify the latest anbd download  or move to pivnet
 && curl -L -o /usr/local/bin/kp  https://github.com/vmware-tanzu/kpack-cli/releases/download/v0.1.3/kp-linux-0.1.3  && \
  chmod 755 /usr/local/bin/kp \
# COPY kp-linux-0.1.1 /usr/local/bin/kp
#  && chmod 755 /usr/local/bin/kp \
 && curl -sSL "https://github.com/concourse/concourse/releases/download/v6.7.1/fly-6.7.1-linux-amd64.tgz" |sudo tar -C /usr/local/bin/ --no-same-owner -xzv fly \
# Some auto completion plugins
# Default powerline10k theme, no plugins installed
  && apt-get install -y zsh  \
  && apt-get install bash-completion \
  && apt-get install -y vim \
  && apt-get install -y wget
#   && echo 'alias k=kubectl' >>~/.zshrc \
#   && echo 'complete -F __start_kubectl k' >>~/.zshrc
#   && sh -c "$(wget -O- https://github.com/deluan/zsh-in-docker/releases/download/v1.1.1/zsh-in-docker.sh)" -t "steeef" -p "git" -p "kubectl" -p "zsh-autosuggestions" -p  "zsh-kubectl-prompt"
# Uses "Spaceship" theme with some customization. Uses some bundled plugins and installs some more from github
# RUN apt-get install -y zsh
# RUN git clone https://github.com/robbyrussell/oh-my-zsh \
#     <installation_path>/.oh-my-zsh
# COPY conf/.zshrc <installation_path>/.zshrc

#conftest
COPY --from=instrumenta/conftest /conftest /usr/local/bin/conftest
# Kubectl ,  get it
COPY --from=bitnami/kubectl /opt/bitnami/kubectl/bin/kubectl /usr/local/bin/kubectl
# YQ & JQ
COPY --from=mikefarah/yq /usr/bin/yq /usr/local/bin/yq
COPY --from=stedolan/jq /usr/local/bin/jq /usr/local/bin/jq
# Docker CLI
COPY --from=docker /usr/local/bin/docker /usr/local/bin/docker


WORKDIR /config
CMD ["nginx", "-g", "daemon off;"]


EXPOSE 8443
EXPOSE 80


ARG USERNAME=tools
ARG USER_UID=1005
ARG USER_GID=$USER_UID

RUN groupadd --gid $USER_GID $USERNAME \
    && useradd -s /bin/bash --uid $USER_UID --gid $USER_GID -m $USERNAME \
    && apt-get update \
    && apt-get install -y sudo wget \
    && echo $USERNAME ALL=\(root\) NOPASSWD:ALL > /etc/sudoers.d/$USERNAME \
    && chmod 0440 /etc/sudoers.d/$USERNAME \
    #
    # Clean up
    && apt-get autoremove -y \
    && apt-get clean -y \
    && rm -rf /var/lib/apt/lists/*
	# && chgrp -R $USERNAME /home

# WORKDIR /home
# ENV HOME="/home"

 RUN sh -c "$(wget -O- https://github.com/deluan/zsh-in-docker/releases/download/v1.1.1/zsh-in-docker.sh)" -- \
    -t https://github.com/denysdovhan/spaceship-prompt \
    -a 'bindkey "\$terminfo[kcuu1]" history-substring-search-up' \
    -a 'bindkey "\$terminfo[kcud1]" history-substring-search-down' \
    -p kubectl \
	-p https://github.com/superbrothers/zsh-kubectl-prompt \
	-p git \
    -p ssh-agent \
    -p https://github.com/zsh-users/zsh-autosuggestions \
    -p https://github.com/zsh-users/zsh-completions \
	# Add abc into sudoers
	&& chown -R abc:abc /config \
	&& echo abc ALL=\(root\) NOPASSWD:ALL > /etc/sudoers.d/abc \
	&& chsh -s /usr/bin/zsh abc


# ENTRYPOINT [ "/bin/zsh" ]