[KEYCLOAK-10059] Use ubi8-minimal instead of base-jdk as base image #217
Conversation
@douglaspalmer so far that's a great progress and I feel like we are almost there. Please see my comments above, and please let me know if something does not make sense. |
PR looks good and it's ready to be merged, although we're blocked by https://issues.jboss.org/browse/KEYCLOAK-11185 which will hopefully be fixed until the end of the sprint. |
@stianst @douglaspalmer I was thinking that we may have the chance to make this image even smaller than the current state. With addressing 2 items:
I believe that may have an impact on the image size and after clone the repository or extract the tar.gz file, we don't need these utilities anymore. Wdyt? |
I tried 'microdnf remove git’ but it gave an error.
Regards
Doug
… On Sep 25, 2019, at 1:17 PM, Bruno Oliveira da Silva ***@***.***> wrote:
@stianst <https://github.com/stianst> @douglaspalmer <https://github.com/douglaspalmer> I was thinking that we may have the chance to make this image even smaller than the current state. With addressing 2 items:
After run all the git operations here https://github.com/keycloak/keycloak-containers/blob/master/server/tools/build-keycloak.sh#L38 <https://github.com/keycloak/keycloak-containers/blob/master/server/tools/build-keycloak.sh#L38>. Remove git with microdnf remove git && microdnf clean all
When download tar.gz files, after extract the whole Keycloak distribution, remove tar, gzip with microdnf remove tar gzip && microdnf clean all
I believe that may have an impact on the image size and after clone the repository or extract the tar.gz file, we don't need these utilities anymore.
Wdyt?
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub <#217?email_source=notifications&email_token=AAE4Z4N2NC37CG334CR5BV3QLPBN3A5CNFSM4IXW3IGKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOD7TGY7A#issuecomment-535194748>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AAE4Z4OIXFESZS74SO2IQJLQLPBN3ANCNFSM4IXW3IGA>.
|
@douglaspalmer this is the overall idea for the Keycloak build script. I tried it here using your PR and it worked:
|
No need to remove git - that's only installed for dev-only images and image size isn't critical there |
tar and gzip are pretty small, so not sure it's worth it |
From my perspective this is ready to be merged. We can always tune and tweaks things, but then there was this thing called time ;) |
@stianst Here's my opinion on:
That's just my opinion, but I will leave that for your best judgment. |
Ok, if it's trivial to clean it up afterwards then let's go for it. |
I had a chat with @stianst and we agreed that would be nice to merge it to make our distributions stable and merge this PR. The build of the Docker image is expected to fail while trying to build the changes from |
No description provided.