mirror of https://github.com/authelia/authelia.git
71 lines
2.1 KiB
Docker
71 lines
2.1 KiB
Docker
# ========================================
|
|
# ===== Build image for the frontend =====
|
|
# ========================================
|
|
FROM node:23-alpine@sha256:d03e75e7ba1385c2944f4cc374eb5abe0715234f87da5121dbd64f7262ad10df AS builder-frontend
|
|
|
|
WORKDIR /node/src/app
|
|
|
|
COPY web ./
|
|
|
|
# Install the dependencies and build
|
|
RUN yarn global add pnpm && \
|
|
pnpm install --frozen-lockfile && pnpm coverage
|
|
|
|
# =======================================
|
|
# ===== Build image for the backend =====
|
|
# =======================================
|
|
FROM golang:1.23.4-alpine@sha256:6c5c9590f169f77c8046e45c611d3b28fe477789acd8d3762d23d4744de69812 AS builder-backend
|
|
|
|
WORKDIR /go/src/app
|
|
|
|
RUN \
|
|
echo ">> Downloading required apk's..." && \
|
|
apk --no-cache add gcc musl-dev
|
|
|
|
COPY go.mod go.sum ./
|
|
|
|
RUN \
|
|
echo ">> Downloading go modules..." && \
|
|
go mod download
|
|
|
|
COPY / ./
|
|
|
|
# Prepare static files to be embedded in Go binary
|
|
COPY --from=builder-frontend /node/src/internal/server/public_html internal/server/public_html
|
|
|
|
ARG LDFLAGS_EXTRA
|
|
RUN \
|
|
mv api internal/server/public_html/api && \
|
|
chmod 0666 /go/src/app/.healthcheck.env && \
|
|
echo ">> Starting go build..." && \
|
|
CGO_ENABLED=1 CGO_CPPFLAGS="-D_FORTIFY_SOURCE=2 -fstack-protector-strong" CGO_LDFLAGS="-Wl,-z,relro,-z,now" go build \
|
|
-ldflags "-linkmode=external -s -w ${LDFLAGS_EXTRA}" -trimpath -buildmode=pie -o authelia ./cmd/authelia
|
|
|
|
# ===================================
|
|
# ===== Authelia official image =====
|
|
# ===================================
|
|
FROM alpine:3.21.0@sha256:21dc6063fd678b478f57c0e13f47560d0ea4eeba26dfc947b2a4f81f686b9f45
|
|
|
|
WORKDIR /app
|
|
|
|
# Set environment variables
|
|
ENV PATH="/app:${PATH}" \
|
|
PUID=0 \
|
|
PGID=0 \
|
|
X_AUTHELIA_CONFIG="/config/configuration.yml"
|
|
|
|
RUN \
|
|
apk --no-cache add ca-certificates su-exec tzdata wget
|
|
|
|
COPY --from=builder-backend /go/src/app/authelia /go/src/app/LICENSE /go/src/app/entrypoint.sh /go/src/app/healthcheck.sh /go/src/app/.healthcheck.env ./
|
|
|
|
RUN \
|
|
chmod 0666 /app/.healthcheck.env
|
|
|
|
EXPOSE 9091
|
|
|
|
VOLUME /config
|
|
|
|
ENTRYPOINT ["/app/entrypoint.sh"]
|
|
HEALTHCHECK --interval=30s --timeout=3s --start-period=1m CMD /app/healthcheck.sh
|