knadh/listmonk
1
1
Fork 0
mirror of https://github.com/knadh/listmonk.git synced 2025-09-13 09:54:37 +08:00
Code Issues Projects Releases Packages Wiki Activity
listmonk/docker-entrypoint.sh
Kailash Nadh eef0021366 Add support for loading secrets from *_FILE env vars in Docker environment. 
Closes #2455.

Co-Authored-By: Michael Redig <mredig@gmail.com>
2025-08-09 14:41:13 +05:30

75 lines
2.2 KiB
Bash
Raw Blame History

#!/bin/sh
set -e
export PUID=${PUID:-0}
export PGID=${PGID:-0}
export GROUP_NAME="app"
export USER_NAME="app"
# This function evaluates if the supplied PGID is already in use
# if it is not in use, it creates the group with the PGID
# if it is in use, it sets the GROUP_NAME to the existing group
create_group() {
if ! getent group ${PGID} > /dev/null 2>&1; then
addgroup -g ${PGID} ${GROUP_NAME}
else
existing_group=$(getent group ${PGID} | cut -d: -f1)
export GROUP_NAME=${existing_group}
fi
}
# This function evaluates if the supplied PUID is already in use
# if it is not in use, it creates the user with the PUID and PGID
create_user() {
if ! getent passwd ${PUID} > /dev/null 2>&1; then
adduser -u ${PUID} -G ${GROUP_NAME} -s /bin/sh -D ${USER_NAME}
else
existing_user=$(getent passwd ${PUID} | cut -d: -f1)
export USER_NAME=${existing_user}
fi
}
# Run the needed functions to create the user and group
create_group
create_user
load_secret_files() {
# Save and restore IFS
old_ifs="$IFS"
IFS='
'
# Capture all env variables starting with LISTMONK_ and ending with _FILE.
# It's value is assumed to be a file path with its actual value.
for line in $(env | grep '^LISTMONK_.*_FILE='); do
var="${line%%=*}"
fpath="${line#*=}"
# If it's a valid file, read its contents and assign it to the var
# without the _FILE suffix.
# Eg: LISTMONK_DB_USER_FILE=/run/secrets/user -> LISTMONK_DB_USER=$(contents of /run/secrets/user)
if [ -f "$fpath" ]; then
new_var="${var%_FILE}"
export "$new_var"="$(cat "$fpath")"
fi
done
IFS="$old_ifs"
}
# Load env variables from files if LISTMONK_*_FILE variables are set.
load_secret_files
# Try to set the ownership of the app directory to the app user.
if ! chown -R ${PUID}:${PGID} /listmonk 2>/dev/null; then
echo "Warning: Failed to change ownership of /listmonk. Readonly volume?"
fi
echo "Launching listmonk with user=[${USER_NAME}] group=[${GROUP_NAME}] PUID=[${PUID}] PGID=[${PGID}]"
# If running as root and PUID is not 0, then execute command as PUID
# this allows us to run the container as a non-root user
if [ "$(id -u)" = "0" ] && [ "${PUID}" != "0" ]; then
su-exec ${PUID}:${PGID} "$@"
else
exec "$@"
fi
Reference in a new issue View git blame Copy permalink