Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

remove gosu and run nginx as zammad user #189

Merged
merged 15 commits into from
Mar 3, 2021
Merged

remove gosu and run nginx as zammad user #189

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
21a6999
remove gosu and run nginx as zammad user
monotek Mar 3, 2021
0b9403f
move user in dockerfile
monotek Mar 3, 2021
c417884
move user in dockerfile
monotek Mar 3, 2021
56e02a4
fix rsync
monotek Mar 3, 2021
7c2ec7a
fix rsync
monotek Mar 3, 2021
4d9a199
fix rsync
monotek Mar 3, 2021
f0712bc
remove hclfmt (has no check)
monotek Mar 3, 2021
9278a4c
remove hclfmt (has no check)
monotek Mar 3, 2021
3364de1
remove hclfmt (has no check)
monotek Mar 3, 2021
4e75273
remove hclfmt (has no check)
monotek Mar 3, 2021
848347b
remove hclfmt (has no check)
monotek Mar 3, 2021
484bb0b
remove hclfmt (has no check)
monotek Mar 3, 2021
a77dd1c
remove hclfmt (has no check)
monotek Mar 3, 2021
f3441c2
fixing nginx permissions
monotek Mar 3, 2021
4c28de9
fixing nginx permissions
monotek Mar 3, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .env
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,4 +3,4 @@ POSTGRES_PASS=zammad
POSTGRES_USER=zammad
RESTART=always
# don't forget to add the minus before the version
VERSION=-3.6.0-20
VERSION=-3.6.0-63
10 changes: 5 additions & 5 deletions containers/zammad/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,13 +1,12 @@
FROM ruby:2.6.6-slim AS builder
# note: zammad is currently incompatible to alpine because of:
# note: zammad is currently incompatible to alpine because of:
# https://github.com/docker-library/ruby/issues/113

ARG BUILD_DATE
ARG DEBIAN_FRONTEND=noninteractive

ENV GIT_BRANCH stable
ENV GIT_URL ${PROJECT_URL}.git
ENV GOSU_VERSION 1.11
ENV PROJECT_URL https://github.com/zammad/zammad
ENV RAILS_ENV production
ENV TAR_GZ_URL ${PROJECT_URL}/archive/${GIT_BRANCH}.tar.gz
Expand All @@ -21,7 +20,7 @@ SHELL ["/bin/bash", "-e", "-o", "pipefail", "-c"]
# install zammad
COPY containers/zammad/setup.sh /tmp
RUN chmod +x /tmp/setup.sh; \
/tmp/setup.sh install
/tmp/setup.sh builder


FROM ruby:2.6.6-slim
Expand Down Expand Up @@ -49,15 +48,16 @@ ENV ZAMMAD_USER zammad

COPY containers/zammad/setup.sh /tmp
RUN chmod +x /tmp/setup.sh; \
/tmp/setup.sh run
/tmp/setup.sh runner

COPY --from=builder ${ZAMMAD_TMP_DIR} ${ZAMMAD_TMP_DIR}
COPY --from=builder /usr/local/bin/gosu /usr/local/bin/gosu
COPY --from=builder /usr/local/bundle /usr/local/bundle

# docker init
COPY containers/zammad/docker-entrypoint.sh /
RUN chmod +x /docker-entrypoint.sh
ENTRYPOINT ["/docker-entrypoint.sh"]

USER zammad

WORKDIR ${ZAMMAD_DIR}
17 changes: 9 additions & 8 deletions containers/zammad/docker-entrypoint.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -107,14 +107,11 @@ if [ "$1" = 'zammad-init' ]; then
echo "rebuilding es searchindex..."
bundle exec rake searchindex:rebuild
fi
fi
fi
fi

# chown everything to zammad user
chown -R "${ZAMMAD_USER}":"${ZAMMAD_USER}" "${ZAMMAD_DIR}"

# create install ready file
su -c "echo 'zammad-init' > ${ZAMMAD_READY_FILE}" "${ZAMMAD_USER}"
echo 'zammad-init' > "${ZAMMAD_READY_FILE}"
fi


Expand All @@ -123,6 +120,10 @@ if [ "$1" = 'zammad-nginx' ]; then
check_zammad_ready

# configure nginx
sed -i -e "s#user www-data;##g" \
-e 's#/var/log/nginx/\(access\|error\).log#/dev/stdout#g' \
-e 's#pid /run/nginx.pid;#pid /tmp/nginx.pid;#g' /etc/nginx/nginx.conf

sed -e "s#proxy_set_header X-Forwarded-Proto .*;#proxy_set_header X-Forwarded-Proto ${NGINX_SERVER_SCHEME};#g" \
-e "s#server .*:3000#server ${ZAMMAD_RAILSSERVER_HOST}:${ZAMMAD_RAILSSERVER_PORT}#g" \
-e "s#server .*:6042#server ${ZAMMAD_WEBSOCKET_HOST}:${ZAMMAD_WEBSOCKET_PORT}#g" \
Expand All @@ -146,7 +147,7 @@ if [ "$1" = 'zammad-railsserver' ]; then
echo "starting railsserver..."

#shellcheck disable=SC2101
exec gosu "${ZAMMAD_USER}":"${ZAMMAD_USER}" bundle exec rails server puma -b [::] -p "${ZAMMAD_RAILSSERVER_PORT}" -e "${RAILS_ENV}"
exec bundle exec rails server puma -b [::] -p "${ZAMMAD_RAILSSERVER_PORT}" -e "${RAILS_ENV}"
fi


Expand All @@ -158,7 +159,7 @@ if [ "$1" = 'zammad-scheduler' ]; then

echo "starting scheduler..."

exec gosu "${ZAMMAD_USER}":"${ZAMMAD_USER}" bundle exec script/scheduler.rb run
exec bundle exec script/scheduler.rb run
fi


Expand All @@ -170,5 +171,5 @@ if [ "$1" = 'zammad-websocket' ]; then

echo "starting websocket server..."

exec gosu "${ZAMMAD_USER}":"${ZAMMAD_USER}" bundle exec script/websocket-server.rb -b 0.0.0.0 -p "${ZAMMAD_WEBSOCKET_PORT}" start
exec bundle exec script/websocket-server.rb -b 0.0.0.0 -p "${ZAMMAD_WEBSOCKET_PORT}" start
fi
19 changes: 9 additions & 10 deletions containers/zammad/setup.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,9 +2,9 @@
set -e

# install dependencies
if [ "$1" = 'install' ]; then
if [ "$1" = 'builder' ]; then
PACKAGES="build-essential curl git libimlib2-dev libpq-dev"
elif [ "$1" = 'run' ]; then
elif [ "$1" = 'runner' ]; then
PACKAGES="curl libimlib2 libpq5 nginx rsync"
fi

Expand All @@ -14,18 +14,11 @@ apt-get upgrade -y
apt-get install -y --no-install-recommends ${PACKAGES}
rm -rf /var/lib/apt/lists/*

# install gosu
if [ "$1" = 'install' ]; then
curl -s -J -L -o /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-$(dpkg --print-architecture)"
chmod +x /usr/local/bin/gosu
gosu nobody true
fi

# install zammad
groupadd -g 1000 "${ZAMMAD_USER}"
useradd -M -d "${ZAMMAD_DIR}" -s /bin/bash -u 1000 -g 1000 "${ZAMMAD_USER}"

if [ "$1" = 'install' ]; then
if [ "$1" = 'builder' ]; then
cd "$(dirname "${ZAMMAD_TMP_DIR}")"
curl -s -J -L -O "${TAR_GZ_URL}"
tar -xzf zammad-"${GIT_BRANCH}".tar.gz
Expand All @@ -42,3 +35,9 @@ if [ "$1" = 'install' ]; then
rm -r tmp/cache
chown -R "${ZAMMAD_USER}":"${ZAMMAD_USER}" "${ZAMMAD_TMP_DIR}"
fi

# set nginx file permissions
if [ "$1" = 'runner' ]; then
mkdir -p "${ZAMMAD_DIR}" /var/log/nginx
chown -R "${ZAMMAD_USER}":"${ZAMMAD_USER}" /etc/nginx "${ZAMMAD_DIR}" /var/lib/nginx /var/log/nginx
fi