bitwarden-server/util/Nginx/Dockerfile-k8s

FROM nginx:stable

LABEL com.bitwarden.product="bitwarden"

ENV USERNAME="bitwarden"
ENV GROUPNAME="bitwarden"

RUN apt-get update && \
    apt-get install -y --no-install-recommends \
        gosu \
        curl && \
    rm -rf /var/lib/apt/lists/*

COPY nginx.conf /etc/nginx/nginx.conf
COPY proxy.conf /etc/nginx/proxy.conf
COPY mime.types /etc/nginx/mime.types
COPY security-headers.conf /etc/nginx/security-headers.conf
COPY security-headers-ssl.conf /etc/nginx/security-headers.conf

COPY setup-bwuser.sh /

EXPOSE 8000

EXPOSE 8080
EXPOSE 8443

RUN chmod +x /setup-bwuser.sh

RUN ./setup-bwuser.sh $USERNAME $GROUPNAME

RUN mkdir -p /var/run/nginx && \
    touch /var/run/nginx/nginx.pid
RUN chown -R $USERNAME:$GROUPNAME /var/run/nginx && \
    chown -R $USERNAME:$GROUPNAME /var/cache/nginx && \
    chown -R $USERNAME:$GROUPNAME /var/log/nginx
    

HEALTHCHECK CMD curl --insecure -Lfs https://localhost:8443/alive || curl -Lfs http://localhost:8080/alive || exit 1

USER bitwarden
Dependency updates (#1681) * fix: util/Nginx/Dockerfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN10-LIBXML2-1277346 - https://snyk.io/vuln/SNYK-DEBIAN10-LIBXML2-1277349 - https://snyk.io/vuln/SNYK-DEBIAN10-LIBXML2-1277350 - https://snyk.io/vuln/SNYK-DEBIAN10-OPENSSL-1569403 - https://snyk.io/vuln/SNYK-DEBIAN10-OPENSSL-1569406 * fix: util/Nginx/Dockerfile-k8s to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN10-LIBXML2-1277346 - https://snyk.io/vuln/SNYK-DEBIAN10-LIBXML2-1277349 - https://snyk.io/vuln/SNYK-DEBIAN10-LIBXML2-1277350 - https://snyk.io/vuln/SNYK-DEBIAN10-OPENSSL-1569403 - https://snyk.io/vuln/SNYK-DEBIAN10-OPENSSL-1569406 Co-authored-by: snyk-bot <snyk-bot@snyk.io> 2021-11-02 17:49:00 +01:00			`FROM nginx:stable`
K8s Proxy CI Build (#1233) * adding the new k8s-proxy container to the server build * updating the file path fore the new dockerfile 2021-03-23 19:19:01 +01:00
			`LABEL com.bitwarden.product="bitwarden"`

			`ENV USERNAME="bitwarden"`
			`ENV GROUPNAME="bitwarden"`

			`RUN apt-get update && \`
			`apt-get install -y --no-install-recommends \`
			`gosu \`
			`curl && \`
			`rm -rf /var/lib/apt/lists/*`

			`COPY nginx.conf /etc/nginx/nginx.conf`
			`COPY proxy.conf /etc/nginx/proxy.conf`
			`COPY mime.types /etc/nginx/mime.types`
			`COPY security-headers.conf /etc/nginx/security-headers.conf`
			`COPY security-headers-ssl.conf /etc/nginx/security-headers.conf`

			`COPY setup-bwuser.sh /`

			`EXPOSE 8000`

			`EXPOSE 8080`
			`EXPOSE 8443`

			`RUN chmod +x /setup-bwuser.sh`

			`RUN ./setup-bwuser.sh $USERNAME $GROUPNAME`

			`RUN mkdir -p /var/run/nginx && \`
			`touch /var/run/nginx/nginx.pid`
			`RUN chown -R $USERNAME:$GROUPNAME /var/run/nginx && \`
			`chown -R $USERNAME:$GROUPNAME /var/cache/nginx && \`
			`chown -R $USERNAME:$GROUPNAME /var/log/nginx`


			`HEALTHCHECK CMD curl --insecure -Lfs https://localhost:8443/alive \|\| curl -Lfs http://localhost:8080/alive \|\| exit 1`

			`USER bitwarden`