harbor/make/photon/clair/Dockerfile

FROM photon:2.0

RUN tdnf install -y git shadow sudo rpm xz python-xml >>/dev/null\
    && tdnf clean all \
    && groupadd -r -g 10000 clair \
    && useradd --no-log-init -m -g 10000 -u 10000 clair
COPY ./make/photon/clair/binary/clair /home/clair/
COPY ./make/photon/clair/docker-entrypoint.sh /home/clair/
COPY ./make/photon/clair/dumb-init /home/clair/
COPY ./make/photon/common/install_cert.sh /home/clair/

VOLUME /config

EXPOSE 6060 6061

RUN chown -R clair:clair /etc/pki/tls/certs \
    && chown -R clair:clair /home/clair \
    && chmod u+x /home/clair/clair \
    && chmod u+x /home/clair/docker-entrypoint.sh \
    && chmod +x /home/clair/dumb-init

HEALTHCHECK --interval=30s --timeout=10s --retries=3 CMD curl -sS 127.0.0.1:6061/health || exit 1

WORKDIR /home/clair
USER clair
ENTRYPOINT ["./docker-entrypoint.sh"]
Rebuild Harbor images based on photon:2.0 (#6054) Make necessary change to make things work with photon 2.0 docker image. Remove distro-sync to mitigate the build issue and add `--pull` to docker build command to make sure the latest photon:2.0 will be pulled during build process. Signed-off-by: Daniel Jiang <jiangd@vmware.com> 2018-10-18 05:03:28 +02:00			`FROM photon:2.0`
Clair photon (#2721) * update * update * modify docker compose * update tag * update 2017-07-11 06:00:44 +02:00
Rebuild Harbor images based on photon:2.0 (#6054) Make necessary change to make things work with photon 2.0 docker image. Remove distro-sync to mitigate the build issue and add `--pull` to docker build command to make sure the latest photon:2.0 will be pulled during build process. Signed-off-by: Daniel Jiang <jiangd@vmware.com> 2018-10-18 05:03:28 +02:00			`RUN tdnf install -y git shadow sudo rpm xz python-xml >>/dev/null\`
Update Clair base images 1>update clair base iamges to vmware/photon:1.0 2>update oss packages to latest 2017-10-30 06:50:44 +01:00			`&& tdnf clean all \`
Run clair with limited user 1>creat user clair 2>run clair with user clair 2017-11-03 11:06:27 +01:00			`&& groupadd -r -g 10000 clair \`
Change the clair container to non root user Signed-off-by: DQ <dengq@vmware.com> 2019-10-14 12:25:11 +02:00			`&& useradd --no-log-init -m -g 10000 -u 10000 clair`
			`COPY ./make/photon/clair/binary/clair /home/clair/`
			`COPY ./make/photon/clair/docker-entrypoint.sh /home/clair/`
			`COPY ./make/photon/clair/dumb-init /home/clair/`
			`COPY ./make/photon/common/install_cert.sh /home/clair/`
Use dumb-init for Clair entrypoint (#3361) 2017-11-16 07:02:09 +01:00
Clair photon (#2721) * update * update * modify docker compose * update tag * update 2017-07-11 06:00:44 +02:00			`VOLUME /config`
Use dumb-init for Clair entrypoint (#3361) 2017-11-16 07:02:09 +01:00
Run clair with limited user 1>creat user clair 2>run clair with user clair 2017-11-03 11:06:27 +01:00			`EXPOSE 6060 6061`
Use dumb-init for Clair entrypoint (#3361) 2017-11-16 07:02:09 +01:00
Change certs's owner to 10000 Signed-off-by: DQ <dengq@vmware.com> 2019-10-22 15:24:49 +02:00			`RUN chown -R clair:clair /etc/pki/tls/certs \`
Change the clair container to non root user Signed-off-by: DQ <dengq@vmware.com> 2019-10-14 12:25:11 +02:00			`&& chown -R clair:clair /home/clair \`
			`&& chmod u+x /home/clair/clair \`
			`&& chmod u+x /home/clair/docker-entrypoint.sh \`
			`&& chmod +x /home/clair/dumb-init`
Use dumb-init for Clair entrypoint (#3361) 2017-11-16 07:02:09 +01:00
Run clair with limited user 1>creat user clair 2>run clair with user clair 2017-11-03 11:06:27 +01:00			`HEALTHCHECK --interval=30s --timeout=10s --retries=3 CMD curl -sS 127.0.0.1:6061/health \|\| exit 1`
Use dumb-init for Clair entrypoint (#3361) 2017-11-16 07:02:09 +01:00
Change the clair container to non root user Signed-off-by: DQ <dengq@vmware.com> 2019-10-14 12:25:11 +02:00			`WORKDIR /home/clair`
			`USER clair`
			`ENTRYPOINT ["./docker-entrypoint.sh"]`