Giters

univention / ucs-base-image

UCS based docker container image

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Disclaimer - Work in progress

The repository you are looking into is work in progress.

It contains proof of concept and preview builds in development created in context of the openDesk project.

The repository's content provides you with first insights into the containerized cloud IAM from Univention, derived from the UCS appliance.

Container UCS Base

This project does build a few container images which are prepared so that UCS packages can be installed.

It started based from a fragment which we saw being repeated over and over across many of our Dockerfile files.

The images are tagged according to the following pattern:

  • ucs-base-{500,501,502,503,504,505,506,510,520}
  • 50X based on updates.software-univention.de
  • 5X0 based on updates-test.software-univention.de
  • ucs-base-dev-{500,501,502,503,504,505,506,510,520}
  • 50X based on updates.knut.univention.de
  • 5X0 based on updates-test.software-univention.de

All with latest and semantic-release v0.10.0.

Be aware that the base containers do include the errata releases as well by default. This means that your images will potentially change if they are built again in the future.

Provided images

  • ucs-base-${UCS_VERSION} allows to install published Univention packages.
  • ucs-base-dev-${UCS_VERSION} have in addition the key from omar installed and has a utility to add the sources of a branch from the ucs repository.

Example usage

FROM gitregistry.knut.univention.de/univention/components/ucs-base-image/ucs-base-502:latest AS ucs-base

RUN apt-get update \
    && apt-get --assume-yes --verbose-versions --no-install-recommends install \
      python3-univention-config-registry \
    && rm -rf /var/lib/apt/lists/* /var/cache/apt/archives/*

Entrypoint handling

The image contains the file docker/entrypoint.sh in /entrypoint.sh. Ideally any derived containers should run it as follows:

ENTRYPOINT ["./entrypoint.sh"]
CMD ["/path/to/application", "--argument", "value"]

Any preparation of the environment can be done by copying a shell script into the /entrypoint.d/ folder.

Preferably the file names should follow the pattern of [0-9][0-9]-name.(envsh|sh). The number in the beginning determines the order in which the entrypoints are executed.

File whose names end with .envsh are sourced (i.e. good for setting environment variables), while those ending with .sh are running in a sub-shell.

Please do not put a 99-run.sh to run your application, as this makes debugging tedious. Instead define the CMD as above. This way, anyone can docker run ... bash to enter a shell inside the prepared environment.

Development setup

There is no special setup needed. Use the plain docker CLI commands to work on the container images:

# Build example
docker build --platform linux/amd64 --build-arg UCS_VERSION=505 -t ucs-base:local ./docker

# Run a shell to inspect the result
docker run -it --rm wip bash

Linting

You can run the pre-commit checker as follows:

docker compose run --rm pre-commit

Contact

About

UCS based docker container image

License:GNU Affero General Public License v3.0

Languages

Language:Dockerfile 64.8%Language:Shell 35.2%