Allow local CA certificates to be used
This commit is contained in:
parent
dbf3c32a78
commit
d2c23bb324
GPG Key ID:
6B08C6BE47D08E4C
|
|
@ -43,3 +43,6 @@ erl_crash.dump
|
|||
/assets/node_modules/
|
||||
/priv/static/assets/
|
||||
/priv/static/cache_manifest.json
|
||||
|
||||
# Ignore .gitignore file for ca-certificates
|
||||
/ca-certificates/.gitignore
|
||||
|
|
|
|||
22
Dockerfile
22
Dockerfile
|
|
@ -20,26 +20,26 @@ ARG RUNNER_IMAGE="debian:${DEBIAN_VERSION}"
|
|||
|
||||
FROM ${BUILDER_IMAGE} as builder
|
||||
|
||||
# install build dependencies
|
||||
# Install build dependencies
|
||||
RUN apt-get update -y && apt-get install -y build-essential git \
|
||||
&& apt-get clean && rm -f /var/lib/apt/lists/*_*
|
||||
|
||||
# prepare build dir
|
||||
# Prepare build dir
|
||||
WORKDIR /app
|
||||
|
||||
# install hex + rebar
|
||||
# Install hex + rebar
|
||||
RUN mix local.hex --force && \
|
||||
mix local.rebar --force
|
||||
|
||||
# set build ENV
|
||||
# Set build ENV
|
||||
ENV MIX_ENV="prod"
|
||||
|
||||
# install mix dependencies
|
||||
# Install mix dependencies
|
||||
COPY mix.exs mix.lock ./
|
||||
RUN mix deps.get --only $MIX_ENV
|
||||
RUN mkdir config
|
||||
|
||||
# copy compile-time config files before we compile dependencies
|
||||
# Copy compile-time config files before we compile dependencies
|
||||
# to ensure any relevant config change will trigger the dependencies
|
||||
# to be re-compiled.
|
||||
COPY config/config.exs config/${MIX_ENV}.exs config/
|
||||
|
|
@ -51,7 +51,7 @@ COPY lib lib
|
|||
|
||||
COPY assets assets
|
||||
|
||||
# compile assets
|
||||
# Compile assets
|
||||
RUN mix assets.deploy
|
||||
|
||||
# Compile the release
|
||||
|
|
@ -63,7 +63,7 @@ COPY config/runtime.exs config/
|
|||
COPY rel rel
|
||||
RUN mix release
|
||||
|
||||
# start a new build stage so that the final image will only contain
|
||||
# Start a new build stage so that the final image will only contain
|
||||
# the compiled release and other runtime necessities
|
||||
FROM ${RUNNER_IMAGE}
|
||||
|
||||
|
|
@ -81,12 +81,16 @@ ENV LC_ALL en_US.UTF-8
|
|||
WORKDIR "/app"
|
||||
RUN chown nobody /app
|
||||
|
||||
# set runner ENV
|
||||
# Set runner ENV
|
||||
ENV MIX_ENV="prod"
|
||||
|
||||
# Only copy the final release from the build stage
|
||||
COPY --from=builder --chown=nobody:root /app/_build/${MIX_ENV}/rel/chronoscope ./
|
||||
|
||||
# Add in any local CA Certificates
|
||||
COPY ca-certificates/* /usr/local/share/ca-certificates/
|
||||
RUN update-ca-certificates
|
||||
|
||||
USER nobody
|
||||
|
||||
# If using an environment that doesn't automatically reap zombie processes, it is
|
||||
|
|
|
|||
|
|
@ -0,0 +1,3 @@
|
|||
*
|
||||
!/
|
||||
!/.gitignore
|
||||
Loading…
Reference in New Issue