Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

UBI migration of Images - chaoscenter #4753

Merged
merged 11 commits into from
Jul 17, 2024
Merged

UBI migration of Images - chaoscenter #4753

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
13eed61
feat: ubi-migration chaoscenter/authentication
dusdjhyeon Jul 9, 2024
c7ffaf6
feat: ubi-migration chaoscenter/event-tracker
dusdjhyeon Jul 9, 2024
7f16cb7
feat: ubi-migration chaoscenter/graphql-server
dusdjhyeon Jul 9, 2024
c01fe3b
feat: ubi-migration chaoscenter/subscriber
dusdjhyeon Jul 9, 2024
a35435b
refactor: app user dir uniformity
dusdjhyeon Jul 9, 2024
69544dc
Merge branch 'master' into ubi-litmusportal
namkyu1999 Jul 9, 2024
f5271bb
Merge branch 'master' into ubi-litmusportal
Jonsy13 Jul 10, 2024
6ad67e8
refactor: modify permissions
dusdjhyeon Jul 16, 2024
be74b4d
Merge branch 'master' into ubi-litmusportal
dusdjhyeon Jul 16, 2024
b7d54cc
Merge branch 'master' into ubi-litmusportal
namkyu1999 Jul 16, 2024
4190f04
Merge branch 'master' into ubi-litmusportal
Jonsy13 Jul 17, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 8 additions & 4 deletions chaoscenter/authentication/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,13 +15,17 @@ RUN go env
RUN CGO_ENABLED=0 go build -o /output/server -v ./api/

# Packaging stage
# Image source: https://github.com/litmuschaos/test-tools/blob/master/custom/hardened-alpine/infra/Dockerfile
# The base image is non-root (have litmus user) with default litmus directory.
FROM litmuschaos/infra-alpine
FROM registry.access.redhat.com/ubi9/ubi-minimal:9.4

LABEL maintainer="LitmusChaos"

COPY --from=builder /output/server /litmus
ENV APP_DIR="/litmus"

COPY --from=builder /output/server $APP_DIR/
RUN chown 65534:0 $APP_DIR/server && chmod 755 $APP_DIR/server

WORKDIR $APP_DIR
USER 65534

CMD ["./server"]

Expand Down
16 changes: 11 additions & 5 deletions chaoscenter/event-tracker/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,12 +16,18 @@ RUN go env
RUN CGO_ENABLED=0 go build -o /output/event-tracker -v

# Packaging stage
# Image source: https://github.com/litmuschaos/test-tools/blob/master/custom/hardened-alpine/infra/Dockerfile
# The base image is non-root (have litmus user) with default litmus directory.
FROM litmuschaos/infra-alpine
FROM registry.access.redhat.com/ubi9/ubi-minimal:9.4

LABEL maintainer="LitmusChaos"

COPY --from=builder /output/event-tracker /litmus
ENV APP_DIR="/litmus"

CMD ["./event-tracker"]
COPY --from=builder /output/event-tracker $APP_DIR/
RUN chown 65534:0 $APP_DIR/event-tracker && chmod 755 $APP_DIR/event-tracker

WORKDIR $APP_DIR
USER 65534

CMD ["./event-tracker"]

EXPOSE 8080
24 changes: 15 additions & 9 deletions chaoscenter/graphql/server/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,21 +11,27 @@ WORKDIR /gql-server

ENV GOOS=${TARGETOS} \
GOARCH=${TARGETARCH}

RUN go env
RUN CGO_ENABLED=0 go build -o /output/server -v

## DEPLOY STAGE
# Image source: https://github.com/litmuschaos/test-tools/blob/master/custom/hardened-alpine/infra/Dockerfile
# The base image is non-root (have litmus user) with default litmus directory.
FROM litmuschaos/infra-alpine
# Use Red Hat UBI minimal image as base
FROM registry.access.redhat.com/ubi9/ubi-minimal:9.4

LABEL maintainer="LitmusChaos"

COPY --from=builder /output/server /litmus
# Copy manifests and change the group to 0(root) to make it Openshift friendly
# as Openshift runs container with an arbitrary uid that in the root group
COPY --chown=litmus:0 --chmod=750 ./manifests/. /litmus/manifests
ENV APP_DIR="/litmus"

COPY --from=builder /output/server $APP_DIR/
COPY ./manifests/. $APP_DIR/manifests

RUN chown -R 65534:0 $APP_DIR/manifests && chmod -R 755 $APP_DIR/manifests
RUN chown 65534:0 $APP_DIR/server && chmod 755 $APP_DIR/server

Jonsy13 marked this conversation as resolved.
Show resolved Hide resolved
WORKDIR $APP_DIR
USER 65534

CMD ["./server"]

EXPOSE 8080
EXPOSE 8080
14 changes: 9 additions & 5 deletions chaoscenter/subscriber/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,12 +16,16 @@ RUN go env
RUN CGO_ENABLED=0 go build -o /output/subscriber -v

# Packaging stage
# Image source: https://github.com/litmuschaos/test-tools/blob/master/custom/hardened-alpine/infra/Dockerfile
# The base image is non-root (have litmus user) with default litmus directory.
FROM litmuschaos/infra-alpine
FROM registry.access.redhat.com/ubi9/ubi-minimal:9.4

LABEL maintainer="LitmusChaos"

COPY --from=builder /output/subscriber /litmus
ENV APP_DIR="/litmus"

CMD ["./subscriber"]
COPY --from=builder /output/subscriber $APP_DIR/
RUN chown 65534:0 $APP_DIR/subscriber && chmod 755 $APP_DIR/subscriber

WORKDIR $APP_DIR
USER 65534

CMD ["./subscriber"]
Loading