bokysan/docker-postfix
1
1
Fork 0
mirror of https://github.com/bokysan/docker-postfix.git synced 2024-09-20 06:46:10 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix: Remove unneccessary dependendancy on external logrotate image

Browse source 
We now include logrotate in the the basic image. This does -- up to a
point -- reduce the "separation of concerns", but it simplifies image
management considerably and removes an unneccessary dependency on a
third-party container.
This commit is contained in:
Bojan Čekrlić 2023-10-27 09:38:54 +02:00
parent 5fb369a82f
commit b90b336d04
12 changed files with 45 additions and 128 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

58
.github/actions/build-logrotate/action.yaml vendored
View file

@ -1,58 +0,0 @@
name: 'Build the logrotate'
description: 'Build the latest version of logrotate'
inputs:
DOCKER_ACCESS_TOKEN:
description: 'DOCKER_ACCESS_TOKEN'
required: true
tags:
description: 'Docker image tags'
required: true
runs:
using: "composite"
steps:
- name: Checkout
uses: actions/checkout@v4
with:
repository: blacklabelops/logrotate
path: 'logrotate'
ref: 'fdab0abc0b3f2917052e5d509e14e2b71d7fd9b3' # Latest commit we know that works
- name: Apply patches
shell: bash
run: |
cd logrotate
git apply ../logrotate-*.patch
# Buildkit setup
- uses: ./.github/actions/buildx-setup
# Docker hub login
- uses: ./.github/actions/docker-hub-login
with:
DOCKER_ACCESS_TOKEN: '${{ inputs.DOCKER_ACCESS_TOKEN }}'
- name: Cache Docker layers
uses: actions/cache@v3
with:
path: /tmp/.buildx-cache
key: ${{ runner.os }}-logrotate-${{ github.sha }}
restore-keys: |
${{ runner.os }}-logrotate-
- name: Build and push
uses: docker/build-push-action@v5
with:
context: logrotate
push: true
tags: '${{ inputs.tags }}'
platforms: "linux/arm/v6,linux/arm/v7,linux/amd64,linux/arm64,linux/ppc64le,linux/s390x"
cache-from: type=local,src=/tmp/.buildx-cache/logrotate,mode=max,compression=estargz
cache-to: type=local,dest=/tmp/.buildx-cache-new/logrotate
- name: Move cache
shell: bash
run: |
rm -rf /tmp/.buildx-cache
mv /tmp/.buildx-cache-new /tmp/.buildx-cache

15
.github/workflows/master.yml vendored
View file

@ -37,21 +37,6 @@ jobs:
- uses: ./.github/actions/helm-chart-tests
Build_Logrotate:
runs-on: ubuntu-latest
needs:
- Helm_chart_Tests
steps:
- name: Checkout
uses: actions/checkout@v4
- uses: ./.github/actions/build-logrotate
with:
DOCKER_ACCESS_TOKEN: '${{ secrets.DOCKER_ACCESS_TOKEN }}'
tags: |
boky/logrotate:latest
boky/logrotate:edge
Build_PostfixExporter:
runs-on: ubuntu-latest
needs:

15
.github/workflows/tags.yml vendored
View file

@ -37,21 +37,6 @@ jobs:
- uses: ./.github/actions/helm-chart-tests
Build_Logrotate:
runs-on: ubuntu-latest
needs:
- Helm_chart_Tests
steps:
- name: Checkout
uses: actions/checkout@v4
- uses: ./.github/actions/build-logrotate
with:
DOCKER_ACCESS_TOKEN: '${{ secrets.DOCKER_ACCESS_TOKEN }}'
tags: |
boky/logrotate:latest
boky/logrotate:edge
Build_PostfixExporter:
runs-on: ubuntu-latest
needs:

4
build-scripts/postfix-install.sh
View file

@ -7,7 +7,7 @@ do_alpine() {
apk add --upgrade cyrus-sasl cyrus-sasl-static cyrus-sasl-digestmd5 cyrus-sasl-crammd5 cyrus-sasl-login cyrus-sasl-ntlm
apk add postfix
apk add opendkim
apk add --upgrade ca-certificates tzdata supervisor rsyslog musl musl-utils bash opendkim-utils libcurl jsoncpp lmdb
apk add --upgrade ca-certificates tzdata supervisor rsyslog musl musl-utils bash opendkim-utils libcurl jsoncpp lmdb logrotate
}
do_ubuntu() {
@ -17,7 +17,7 @@ do_ubuntu() {
apt-get install -y libsasl2-modules
apt-get install -y postfix
apt-get install -y opendkim
apt-get install -y ca-certificates tzdata supervisor rsyslog bash opendkim-tools curl libcurl4 libjsoncpp25 sasl2-bin postfix-lmdb netcat
apt-get install -y ca-certificates tzdata supervisor rsyslog bash opendkim-tools curl libcurl4 libjsoncpp25 sasl2-bin postfix-lmdb netcat logrotate cron
}
if [ -f /etc/alpine-release ]; then

6
configs/supervisord.conf
View file

@ -22,6 +22,12 @@ autorestart = false
directory = /etc/postfix
startsecs = 0
[program:cron]
command = /scripts/cron.sh
autostart = true
autorestart = true
startsecs = 0
[program:opendkim]
command = /scripts/opendkim.sh
user = opendkim

12
helm/mail/templates/configmap-metrics.yaml
View file

@ -14,4 +14,16 @@ data:
maillog.conf: |
template(name="metricslog" type="string" string={{ .Values.metrics.path | quote }})
action(type="omfile" DynaFile="metricslog" template="plain" DirCreateMode="0755" FileCreateMode="0644")
---
apiVersion: v1
kind: ConfigMap
metadata:
name: {{ print $fullName "-scripts" | quote }}
labels:
{{- $labels | nindent 4 }}
data:
logrotate.sh: |
#!/bin/sh
set -e
exec /usr/sbin/logrotate /etc/logrotate.d/logrotate.conf
{{- end }}

35
helm/mail/templates/statefulset.yaml
View file

@ -105,6 +105,17 @@ spec:
mountPath: {{ regexFind "^/?.*/" .Values.metrics.maillog | quote }}
readOnly: false
subPath: logs
{{- if .Values.metrics.logrotate.enabled }}
- name: metrics-config
mountPath: /etc/logrotate.d/logrotate.conf
subPath: logrotate.conf
- name: metrics-config-scripts
mountPath: /etc/cron.hourly/ # Ubuntu
subPath: logrotate.sh
- name: metrics-config-scripts
mountPath: /etc/periodic/hourly # Alpine
subPath: logrotate.sh
{{- end }}
{{- end }}
{{- if .Values.certs.create }}
- name: certs
@ -161,26 +172,6 @@ spec:
path: {{ .Values.metrics.path | quote }}
port: {{ .Values.metrics.port }}
initialDelaySeconds: 5
{{- if .Values.metrics.logrotate.enabled }}
- name: logrotate
image: "{{ .Values.metrics.logrotate.image.repository }}:{{ .Values.metrics.logrotate.image.tag | default "latest" }}"
startupProbe:
exec:
command:
- sh
- -c
- >-
[ -f {{ .Values.metrics.maillog | quote }} ] && grep -qi "starting the Postfix mail system" {{ .Values.metrics.maillog | quote }}
failureThreshold: 30
periodSeconds: 10
volumeMounts:
- name: {{ $fullName | quote }}
mountPath: {{ regexFind "^/?.*/" .Values.metrics.maillog | quote }}
subPath: logs
- mountPath: /etc/logrotate.d/logrotate.conf
name: metrics-config
subPath: logrotate.conf
{{- end }}
{{- end }}
{{- if .Values.extraContainers }}
{{- tpl .Values.extraContainers $root | nindent 8 }}
@ -215,6 +206,10 @@ spec:
- name: metrics-config
configMap:
name: {{ print $fullName "-metrics" | quote }}
- name: metrics-config-scripts
configMap:
name: {{ print $fullName "-scripts" | quote }}
defaultMode: 0777
{{- end }}
{{- if .Values.extraVolumes }}{{- toYaml .Values.extraVolumes | nindent 8 }}{{ end }}
{{- if and .Values.persistence.enabled (not .Values.persistence.existingClaim) }}

5
helm/mail/values.yaml
View file

@ -43,9 +43,6 @@ metrics:
maillog: /var/log/mail.log
logrotate:
enabled: true
image:
repository: "boky/logrotate"
tag: "latest"
logrotate.conf: |
/var/log/mail.log {
rotate 1
@ -55,7 +52,7 @@ metrics:
missingok
notifempty
dateext
olddir /var/log/old
olddir /var/log/
maxage 90
}

12
logrotate-01.patch
View file

@ -1,12 +0,0 @@
diff --git a/Dockerfile b/Dockerfile
index 8cc3c6d..dc4c6cb 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,5 +1,5 @@
-FROM blacklabelops/alpine:3.8
-MAINTAINER Steffen Bleul <sbl@blacklabelops.com>
+FROM alpine:latest
+LABEL maintainer="Steffen Bleul <sbl@blacklabelops.com>"
# logrotate version (e.g. 3.9.1-r0)
ARG LOGROTATE_VERSION=latest

7
scripts/cron.sh Normal file
View file

@ -0,0 +1,7 @@
#!/bin/sh
if [ -f /usr/sbin/cron ]; then # Ubuntu
exec /usr/sbin/cron -f
else # Alpine / Busybox cron
exec /usr/sbin/crond -f -S
fi

2
scripts/opendkim.sh
View file

@ -13,7 +13,7 @@ if [ ! -d /etc/opendkim/keys ]; then
elif [ -z "$(find /etc/opendkim/keys -type f ! -name .)" ]; then
noop
else
/usr/sbin/opendkim -D -f -x /etc/opendkim/opendkim.conf
exec /usr/sbin/opendkim -D -f -x /etc/opendkim/opendkim.conf
fi

2
scripts/postfix.sh
View file

@ -1,2 +1,2 @@
#!/bin/sh
/usr/sbin/postfix -c /etc/postfix start-fg
exec /usr/sbin/postfix -c /etc/postfix start-fg