# Licensed under the Apache License, Version 2.0 (the "License"); you may not # use this file except in compliance with the License. You may obtain a copy of # the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the # License for the specific language governing permissions and limitations under # the License. # Base layer containing dependencies needed at runtime. This layer will be # cached after the initial build. FROM debian:buster MAINTAINER CouchDB Developers dev@couchdb.apache.org # Add CouchDB user account RUN groupadd -r couchdb && useradd -d /opt/couchdb -g couchdb couchdb RUN apt-get update -y && apt-get install -y --no-install-recommends \ ca-certificates \ curl \ dirmngr \ gnupg \ haproxy \ libicu63 \ libmozjs-60-0 \ openssl && \ rm -rf /var/lib/apt/lists/* # grab gosu for easy step-down from root and tini for signal handling # see https://github.com/apache/couchdb-docker/pull/28#discussion_r141112407 ENV GOSU_VERSION 1.10 ENV TINI_VERSION 0.16.1 RUN set -ex; \ apt-get update; \ apt-get install -y --no-install-recommends wget; \ rm -rf /var/lib/apt/lists/*; \ dpkgArch="$(dpkg --print-architecture | awk -F- '{ print $NF }')"; \ # install gosu wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-$dpkgArch"; \ wget -O /usr/local/bin/gosu.asc "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch.asc"; \ export GNUPGHOME="$(mktemp -d)"; \ for server in $(shuf -e ha.pool.sks-keyservers.net \ hkp://p80.pool.sks-keyservers.net:80 \ keyserver.ubuntu.com \ hkp://keyserver.ubuntu.com:80 \ pgp.mit.edu) ; do \ gpg --batch --keyserver "$server" --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 && break || : ; \ done; \ gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \ rm -rf "$GNUPGHOME" /usr/local/bin/gosu.asc; \ chmod +x /usr/local/bin/gosu; \ gosu nobody true; \ # install tini wget -O /usr/local/bin/tini "https://github.com/krallin/tini/releases/download/v${TINI_VERSION}/tini-$dpkgArch"; \ wget -O /usr/local/bin/tini.asc "https://github.com/krallin/tini/releases/download/v${TINI_VERSION}/tini-$dpkgArch.asc"; \ export GNUPGHOME="$(mktemp -d)"; \ for server in $(shuf -e ha.pool.sks-keyservers.net \ hkp://p80.pool.sks-keyservers.net:80 \ keyserver.ubuntu.com \ hkp://keyserver.ubuntu.com:80 \ pgp.mit.edu) ; do \ gpg --batch --keyserver "$server" --recv-keys 595E85A6B1B4779EA4DAAEC70B588DFF0527A9B7 && break || : ; \ done; \ gpg --batch --verify /usr/local/bin/tini.asc /usr/local/bin/tini; \ rm -rf "$GNUPGHOME" /usr/local/bin/tini.asc; \ chmod +x /usr/local/bin/tini; \ tini --version; \ apt-get purge -y --auto-remove wget RUN apt-get update -y && apt-get install -y --no-install-recommends \ apt-transport-https \ build-essential \ erlang-nox \ erlang-reltool \ erlang-dev \ git \ libcurl4-openssl-dev \ libicu-dev \ libmozjs-60-dev \ python3 \ libpython3-dev \ python3-pip \ python3-sphinx \ python3-setuptools RUN pip3 install --upgrade \ sphinx_rtd_theme \ nose \ requests \ hypothesis # Node is special RUN set -ex; \ curl -s https://deb.nodesource.com/gpgkey/nodesource.gpg.key | apt-key add -; \ echo 'deb https://deb.nodesource.com/node_10.x buster main' > /etc/apt/sources.list.d/nodesource.list; \ echo 'deb-src https://deb.nodesource.com/node_10.x buster main' >> /etc/apt/sources.list.d/nodesource.list; \ apt-get update -y && apt-get install -y nodejs; \ npm install -g grunt-cli # Clone CouchDB source code including all dependencies ARG clone_url=https://gitbox.apache.org/repos/asf/couchdb.git RUN git clone $clone_url /usr/src/couchdb WORKDIR /usr/src/couchdb RUN ./configure -c --spidermonkey-version 60 ARG checkout_branch=master ARG configure_options="-c --spidermonkey-version 60" WORKDIR /usr/src/couchdb/ RUN git fetch origin \ && git checkout $checkout_branch \ && ./configure $configure_options \ && make all # Setup directories and permissions RUN chown -R couchdb:couchdb /usr/src/couchdb WORKDIR /opt/couchdb EXPOSE 5984 15984 25984 35984 VOLUME ["/usr/src/couchdb/dev/lib"] ENTRYPOINT ["tini", "--", "/usr/src/couchdb/dev/run"] CMD ["--with-haproxy"]