-
Notifications
You must be signed in to change notification settings - Fork 124
/
Copy pathbuild.sh
executable file
·94 lines (82 loc) · 2.9 KB
/
build.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
#!/usr/bin/env bash
set -ex
# Builds Conjur Docker images
# Intended to be run from the project root dir
# usage: ./build.sh
# shellcheck disable=SC1091
. build_utils.sh
TAG="$(version_tag)"
jenkins=false # Running on Jenkins (vs local dev machine)
while [[ $# -gt 0 ]]
do
key="$1"
case $key in
--jenkins)
jenkins=true
;;
*)
;;
esac
shift # past argument or value
done
# Flatten resulting image.
# This script will rewrite all properties of input image (PORT, ENV, WORKDIR, USER, ENTRYPOINT, CMD)
# instead of hard-coding each of them.
# shellcheck disable=SC2016
function flatten() {
local image="$1"
echo "Flattening image '$image'..."
local container
container=$(docker create "$image")
local envs
envs=$(docker inspect -f '{{range $index, $value := .Config.Env}}{{$value}} {{end}}' "$container")
local workDir
workDir=$(docker inspect -f '{{ .Config.WorkingDir }}' "$container")
local user
user=$(docker inspect -f '{{ .Config.User }}' "$container")
local entrypoint
entrypoint=$(docker inspect -f '[{{range $index, $value := .Config.Entrypoint }}{{if $index}},{{end}}"{{$value}}"{{end}}]' "$container")
local cmd
cmd=$(docker inspect -f '[{{range $index, $value := .Config.Cmd }}{{if $index}},{{end}}"{{$value}}"{{end}}]' "$container")
local ports
IFS=":" read -r -a ports <<< "$(docker inspect -f '{{range $port, $empty := .Config.ExposedPorts}}--change:EXPOSE {{$port}}:{{end}}' "$container")"
docker export "$container" | docker import \
"${ports[@]}" \
--change "ENV $envs" \
--change "WORKDIR $workDir" \
--change "USER ${user:=0}" \
--change "ENTRYPOINT $entrypoint" \
--change "CMD $cmd" \
- "$image"
docker rm "$container"
}
# Store the current git commit sha in a file so that it can be added to the container.
# This will enable users of the container to determine which revision of conjur
# the container was built from.
git rev-parse HEAD > conjur_git_commit
# We want to build an image:
# 1. Always, when we're developing locally
if [[ $jenkins = false ]]; then
echo "Building image conjur-dev"
docker build --tag conjur-dev --file dev/Dockerfile.dev .
exit 0
fi
# 2. Only if it doesn't already exist, when on Jenkins
image_doesnt_exist() {
[[ "$(docker images -q "$1" 2> /dev/null)" == "" ]]
}
if image_doesnt_exist "conjur:$TAG"; then
echo "Building image conjur:$TAG"
docker build --pull --tag "conjur:$TAG" .
flatten "conjur:$TAG"
fi
if image_doesnt_exist "conjur-test:$TAG"; then
echo "Building image conjur-test:$TAG container"
docker build --build-arg "VERSION=$TAG" --tag "conjur-test:$TAG" --file Dockerfile.test .
fi
if image_doesnt_exist "conjur-ubi:$TAG"; then
echo "Building image conjur-ubi:$TAG container"
docker build --pull --build-arg "VERSION=$TAG" --tag "conjur-ubi:$TAG" --file Dockerfile.ubi .
# Avoid flattening RH image for now, otherwise it fails to pass RH's preflight scan
# flatten "conjur-ubi:$TAG"
fi