mirror of
https://github.com/nextcloud/all-in-one.git
synced 2025-10-26 00:16:01 +08:00
8027a7e5ec
Both binaries gosu and su-exec are not used in our entrypoints. Signed-off-by: Richard Steinmetz <richard@steinmetz.cloud>
46 lines
1.3 KiB
Docker
46 lines
1.3 KiB
Docker
# syntax=docker/dockerfile:latest
|
|
# From https://github.com/docker-library/postgres/blob/master/15/alpine/Dockerfile
|
|
FROM postgres:16.3-alpine
|
|
|
|
COPY --chmod=775 start.sh /start.sh
|
|
COPY --chmod=775 healthcheck.sh /healthcheck.sh
|
|
COPY --chmod=775 init-user-db.sh /docker-entrypoint-initdb.d/init-user-db.sh
|
|
|
|
RUN set -ex; \
|
|
apk upgrade --no-cache -a; \
|
|
apk add --no-cache \
|
|
bash \
|
|
openssl \
|
|
shadow \
|
|
grep; \
|
|
\
|
|
# We need to use the same gid and uid as on old installations
|
|
deluser postgres; \
|
|
groupmod -g 9999 ping; \
|
|
addgroup -g 999 -S postgres; \
|
|
adduser -u 999 -S -D -G postgres -H -h /var/lib/postgresql -s /bin/sh postgres; \
|
|
apk del --no-cache shadow; \
|
|
\
|
|
# Fix default permissions
|
|
chown -R postgres:postgres /var/lib/postgresql; \
|
|
chown -R postgres:postgres /var/run/postgresql; \
|
|
chmod -R 777 /var/run/postgresql; \
|
|
chown -R postgres:postgres "$PGDATA"; \
|
|
\
|
|
mkdir /mnt/data; \
|
|
chown postgres:postgres /mnt/data; \
|
|
\
|
|
# Give root a random password
|
|
echo "root:$(openssl rand -base64 12)" | chpasswd; \
|
|
apk --no-cache del openssl; \
|
|
\
|
|
# Get rid of unused binaries
|
|
rm /usr/local/bin/gosu /usr/local/bin/su-exec;
|
|
|
|
VOLUME /mnt/data
|
|
|
|
USER postgres
|
|
ENTRYPOINT ["/start.sh"]
|
|
|
|
HEALTHCHECK CMD /healthcheck.sh
|
|
LABEL com.centurylinklabs.watchtower.enable="false"
|