-
Notifications
You must be signed in to change notification settings - Fork 32
/
Dockerfile
77 lines (57 loc) · 2.11 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
# By OpenSpeedTest
# Dockerfile for https://hub.docker.com/r/openspeedtest/latest
FROM nginxinc/nginx-unprivileged:stable-alpine
LABEL maintainer "OpenSpeedTest.com <[email protected]>"
ENV ENABLE_LETSENCRYPT=false
ENV DOMAIN_NAME=false
ENV USER_EMAIL=false
ENV CONFIG=/etc/nginx/conf.d/OpenSpeedTest-Server.conf
ENV INDEX_HTML=/usr/share/nginx/html/index.html
ENV CHANGE_CONTAINER_PORTS=false
ENV HTTP_PORT=3000
ENV HTTPS_PORT=3001
ENV SET_USER=101
COPY /files/OpenSpeedTest-Server.conf ${CONFIG}
COPY /files/entrypoint.sh /entrypoint.sh
COPY /files/renew.sh /renew.sh
RUN rm /etc/nginx/nginx.conf
COPY /files/nginx.conf /etc/nginx/
COPY /files/www/ /usr/share/nginx/html/
COPY /files/nginx.crt /etc/ssl/
COPY /files/nginx.key /etc/ssl/
USER root
VOLUME /var/log/letsencrypt
RUN rm -rf /etc/nginx/conf.d/default.conf \
&& chown -R nginx /usr/share/nginx/html/ \
&& chmod 755 /usr/share/nginx/html/downloading \
&& chmod 755 /usr/share/nginx/html/upload \
&& chown nginx ${CONFIG} \
&& chmod 400 ${CONFIG} \
&& chown nginx /etc/nginx/nginx.conf \
&& chmod 400 /etc/nginx/nginx.conf \
&& chmod +x /entrypoint.sh \
&& chmod +x /renew.sh
RUN mkdir -p /etc/letsencrypt && \
chown -R nginx /etc/letsencrypt && \
chmod 775 /etc/letsencrypt
RUN mkdir -p /var/lib/letsencrypt && \
chown -R nginx /var/lib/letsencrypt && \
chmod 775 /var/lib/letsencrypt
RUN mkdir -p /var/log/letsencrypt && \
chown -R nginx /var/log/letsencrypt && \
chmod 775 /var/log/letsencrypt
RUN mkdir -p /usr/share/nginx/html/.well-known/acme-challenge && \
chown -R nginx /usr/share/nginx/html/.well-known/acme-challenge && \
chmod 775 /usr/share/nginx/html/.well-known/acme-challenge
RUN apk update && apk add ca-certificates && rm -rf /var/cache/apk/*
RUN update-ca-certificates
RUN apk add --no-cache certbot certbot-nginx
RUN apk update && apk add --no-cache dcron libcap
RUN chown nginx:nginx /usr/sbin/crond \
&& setcap cap_setgid=ep /usr/sbin/crond
RUN touch /etc/crontabs/nginx
RUN chown -R nginx:nginx /etc/crontabs/nginx
USER ${SET_USER}
EXPOSE ${HTTP_PORT} ${HTTPS_PORT}
STOPSIGNAL SIGQUIT
CMD ["/entrypoint.sh"]