Giters

gbvanrenswoude / kaniko-builder

Unprivileged docker image building

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

kanikodockerbuildergitlabciconcourse

kaniko-builder

Build docker images without needing privileged access in a second.

Image

gbvanrenswoude/kaniko-builder:latest

env var configuration

  • DOCKERFILE_NAME: Optional. Dockerfile name. Defaults to Dockerfile.
  • REGISTRY: Optional. Name of the registry that kaniko will push to. Defaults to https://index.docker.io/v1 (dockerhub).
  • USERNAME: Required. Username used to access the registry.
  • PASSWORD: Required. Password used to access the registry.
  • DIR: Required. Your project dir. For example in GitlabCI: $CI_PROJECT_DIR.
  • IMAGE_NAME: Required. Image name.
  • TAG: Optional. Image tag. Defaults to latest.

Run

docker run --rm -v /vagrant/kaniko-builder/:/build -e DIR=build -e USERNAME=so -e PASSWORD=me -e IMAGE_NAME=test  gbvanrenswoude/kaniko-builder:latest sh build.sh

Example GitlabCI (docker executor) usage:

build:
  stage: test
  image: gbvanrenswoude/kaniko-builder
  variables:
    REGISTRY: ${ARTIFACTORY_URL}
    USERNAME: ${ARTIFACTORY_USERNAME}
    PASSWORD: ${ARTIFACTORY_PW}
    DIR: ${CI_PROJECT_DIR}
    IMAGE_NAME: concourse
    TAG: ${CI_COMMIT_SHORT_SHA}
  script:
    - /build.sh
  tags:
    - test

TODO

  • ECR support.

About

Unprivileged docker image building

kanikodockerbuildergitlabciconcourse

Languages

Language:Shell 74.0%Language:Dockerfile 26.0%