-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathDockerfile
35 lines (26 loc) · 1.53 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
#https://github.com/docker-library/repo-info/blob/master/repos/golang/remote/bullseye.md
FROM golang@sha256:ecef8303ced05b7cd1addf3c8ea98974f9231d4c5a0c230d23b37bb623714a23 AS build-env
ARG SHORT_SHA=0000000
ARG TAG_NAME
ARG BUILD_DATE=2000-01-01T00:00:00:00Z
ARG SERVICE_NAME=indykite-agent
WORKDIR /go/src/github.com/indykite/opa-indykite-plugin
COPY . .
ENV GO111MODULE=on
#RUN go build -mod mod -o opa -ldflags "-w -s -extldflags \"-static\" -X github.com/open-policy-agent/opa/version.Vcs=${SHORT_SHA} -X github.com/open-policy-agent/opa/version.Version=${TAG_NAME} -X github.com/open-policy-agent/opa/version.Timestamp=${BUILD_DATE} -X github.com/open-policy-agent/opa/version.Hostname=${SERVICE_NAME}" .
RUN go build -mod mod -o opa -ldflags "-w -s \
-X github.com/open-policy-agent/opa/version.Vcs=${SHORT_SHA} \
-X github.com/open-policy-agent/opa/version.Version=${TAG_NAME} \
-X github.com/open-policy-agent/opa/version.Timestamp=${BUILD_DATE} \
-X github.com/open-policy-agent/opa/version.Hostname=${SERVICE_NAME}" .
# gcr.io/distroless/base-debian11:nonroot
FROM gcr.io/distroless/base-debian11:nonroot@sha256:9707f365e1f5ec65e4dc7c9b03fa92082f09ac9632686713a9d9065d4d0fd0ff
ARG BUILD_DATE=2000-01-01T00:00:00:00Z
ARG GIT_CLOSEST_TAG=develop
COPY --from=build-env --chown=nonroot /go/src/github.com/indykite/opa-indykite-plugin/opa /app/opa
# Labels
LABEL org.label-schema.schema-version="1.0"
LABEL org.label-schema.build-date=${BUILD_DATE}
LABEL org.label-schema.version=${GIT_CLOSEST_TAG}
USER 65532
ENTRYPOINT ["/app/opa"]