ovh/the-bastion
1
1
Fork 0
mirror of https://github.com/ovh/the-bastion.git synced 2025-10-02 09:44:30 +08:00
Code Issues Projects Releases Packages Wiki Activity

feat: add more archs to dockerhub sandbox

Browse source
This commit is contained in:
Stéphane Lesimple 2020-11-13 10:15:31 +01:00
parent 034984f6c4
commit 418dc3a332
4 changed files with 28 additions and 18 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
.github/workflows/dockerhub.yml vendored
View file

@ -18,7 +18,7 @@ jobs:
uses: docker/setup-buildx-action@v1 uses: docker/setup-buildx-action@v1
- -
name: Login to DockerHub name: Login to DockerHub
uses: docker/login-action@v1 uses: docker/login-action@v1
with: with:
username: ${{ secrets.DOCKERHUB_LOGIN }} username: ${{ secrets.DOCKERHUB_LOGIN }}
password: ${{ secrets.DOCKERHUB_TOKEN }} password: ${{ secrets.DOCKERHUB_TOKEN }}
@ -29,7 +29,8 @@ jobs:
with: with:
push: true push: true
file: docker/Dockerfile.sandbox file: docker/Dockerfile.sandbox
tags: ovhcom/the-bastion:sandbox-latest tags: ovhcom/the-bastion:sandbox
platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64,linux/ppc64le,linux/s390x
- -
name: Image digest name: Image digest
run: echo ${{ steps.docker_build.outputs.digest }} run: echo ${{ steps.docker_build.outputs.digest }}

2
README.md
View file

@ -27,7 +27,7 @@ This is a good way to test The Bastion within seconds, but [read the FAQ](https:
OK, let's run the docker image: OK, let's run the docker image:
docker run -d -p 22 --name bastiontest ovhcom/the-bastion:sandbox-latest docker run -d -p 22 --name bastiontest ovhcom/the-bastion:sandbox
Get your public SSH key at hand, then configure the first administrator account: Get your public SSH key at hand, then configure the first administrator account:

34
bin/admin/install-ttyrec.sh
View file

@ -22,38 +22,42 @@ EOF
set_download_url() { set_download_url() {
pattern="$1" pattern="$1"
action_doing "Checking for prerequisites..." action_doing "Looking for download tool..."
if command -v curl >/dev/null; then if command -v wget >/dev/null; then
action_done curl
_apicall() {
curl -sL -H 'Accept: application/vnd.github.v3+json' "$1"
}
_download() {
curl -sL -O "$1"
}
elif command -v wget >/dev/null; then
action_done wget action_done wget
_apicall() { _apicall() {
wget -q -O - --header="Accept: application/vnd.github.v3+json" "$1" wget -q -O - --header="Accept: application/vnd.github.v3+json" "$1" || true
} }
_download() { _download() {
wget -q "$1" wget -q "$1"
} }
elif command -v curl >/dev/null; then
action_done curl
_apicall() {
curl -sL -H 'Accept: application/vnd.github.v3+json' "$1" || true
}
_download() {
curl -sL -O "$1"
}
else else
action_error "Couldn't find wget nor curl" action_error "Couldn't find wget nor curl"
exit 1 exit 1
fi fi
action_doing "Getting latest release for arch $arch..." action_doing "Getting latest release for arch $arch..."
payload=$(mktemp)
# shellcheck disable=SC2064
trap "rm -f $payload" EXIT
_apicall $RELEASE_API_URL > "$payload"
if command -v jq >/dev/null; then if command -v jq >/dev/null; then
# If we have jq, we can do it properly # If we have jq, we can do it properly
url=$(_apicall $RELEASE_API_URL | jq -r '.[0].assets|.[]|.browser_download_url' | grep -F "$pattern" | head -n1) url=$(jq -r '.[0].assets|.[]|.browser_download_url' < "$payload" | grep -F "$pattern" | head -n1)
elif perl -MJSON -e 1 2>/dev/null; then elif perl -MJSON -e 1 2>/dev/null; then
# If we don't, there's a good chance we have Perl with the JSON module, use it # If we don't, there's a good chance we have Perl with the JSON module, use it
url=$(_apicall $RELEASE_API_URL | perl -MJSON -e 'undef $/; $d=decode_json(<>); foreach(@{ $d->[0]{assets} || [] }) { $_=$_->{browser_download_url}; /\Q'"$pattern"'\E/ && print && exit }' | head -n1) url=$(perl -MJSON -e 'undef $/; $d=decode_json(<>); foreach(@{ $d->[0]{assets} || [] }) { $_=$_->{browser_download_url}; /\Q'"$pattern"'\E/ && print && exit }' "$payload" | head -n1)
else else
# Otherwise, go the ugly way, don't bother the user in installing jq just for this need # Otherwise, go the ugly way, don't bother the user in installing jq just for this need
url=$(_apicall $RELEASE_API_URL | grep -Eo 'https://[a-z0-9./_-]+' | grep -F "$pattern" | head -n1) url=$(grep -Eo 'https://[a-z0-9./_-]+' "$payload" | grep -F "$pattern" | head -n1)
fi fi
if [ -n "$url" ]; then if [ -n "$url" ]; then

5
bin/admin/packages-check.sh
View file

@ -40,6 +40,11 @@ if echo "$DISTRO_LIKE" | grep -q -w debian; then
libwww-perl libdigest-sha-perl libnet-ssleay-perl \ libwww-perl libdigest-sha-perl libnet-ssleay-perl \
libnet-server-perl cryptsetup mosh expect openssh-server locales \ libnet-server-perl cryptsetup mosh expect openssh-server locales \
coreutils netcat bash libcgi-pm-perl iputils-ping" coreutils netcat bash libcgi-pm-perl iputils-ping"
# workaround for debian/armhf: curl fails to validate some SSL certificates,
# whereas wget succeeds; this is needed for e.g. install-ttyrec.sh
if [ "$(uname -m)" = armv7l ]; then
wanted_list="$wanted_list wget"
fi
[ "$opt_dev" = 1 ] && wanted_list="$wanted_list libperl-critic-perl perltidy shellcheck" [ "$opt_dev" = 1 ] && wanted_list="$wanted_list libperl-critic-perl perltidy shellcheck"
if { [ "$LINUX_DISTRO" = debian ] && [ "$DISTRO_VERSION_MAJOR" -lt 9 ]; } || if { [ "$LINUX_DISTRO" = debian ] && [ "$DISTRO_VERSION_MAJOR" -lt 9 ]; } ||
{ [ "$LINUX_DISTRO" = ubuntu ] && [ "$DISTRO_VERSION_MAJOR" -le 16 ]; }; then { [ "$LINUX_DISTRO" = ubuntu ] && [ "$DISTRO_VERSION_MAJOR" -le 16 ]; }; then