-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathDockerfile
108 lines (95 loc) · 3.27 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
FROM ubuntu:20.04
# some environment variables
ENV LANG=C.UTF-8 \
LC_ALL=C.UTF-8 \
DEBIAN_FRONTEND=noninteractive
RUN set -x \
&& apt-get update \
&& apt-get install -y software-properties-common \
&& add-apt-repository -y ppa:deadsnakes/ppa \
&& apt-get install -y --no-install-recommends \
ca-certificates \
git \
mercurial \
wget \
openssh-client \
rsync \
make \
python \
python3 \
python3-venv \
python3.5 \
python3.5-venv \
python3.6 \
python3.6-venv \
python3.7 \
python3.7-venv \
python3.8 \
python3.8-venv \
python3.9 \
python3.9-venv \
python3.10 \
python3.10-venv \
python3.11 \
python3.11-venv \
postgresql-client \
# expect provides the unbuffer utility
tcl \
expect \
# odoo dependencies
graphviz \
node-clean-css \
node-less \
poppler-utils \
antiword \
# libreoffice for py3o
libreoffice-writer \
libreoffice-calc \
# gettext to manipulate .pot, .po files
gettext \
# wkhtmltopdf
&& wget -q -O /tmp/wkhtmltox.deb https://github.com/wkhtmltopdf/packaging/releases/download/0.12.6-1/wkhtmltox_0.12.6-1.focal_amd64.deb \
&& echo "ad0264869fe40ccfb91c32e9be7318bfabf3864f6a8a15567f7a38afe4a9a932 /tmp/wkhtmltox.deb" | sha256sum -c - \
&& apt -y install /tmp/wkhtmltox.deb \
&& rm -f /tmp/wkhtmltox.deb \
# cleanup
&& rm -fr /var/lib/apt/lists/*
# Install pipx, which we use to install other python tools.
ENV PIPX_BIN_DIR=/usr/local/bin
ENV PIPX_HOME=/opt/pipx
RUN python3 -m venv /opt/pipx/venv \
&& /opt/pipx/venv/bin/pip install --no-cache-dir pipx \
&& ln -s /opt/pipx/venv/bin/pipx /usr/local/bin/
# We don't use the ubuntu virtualenv package because it unbundles pip dependencies
# in virtualenvs it create.
RUN pipx install --pip-args="--no-cache-dir" virtualenv && virtualenv --upgrade-embed-wheels
# git-autoshare
RUN pipx install --pip-args="--no-cache-dir" "git-autoshare>=1.0.0b4"
COPY git-wrapper /usr/local/bin/git
# manifestoo
RUN pipx install --pip-args="--no-cache-dir" "manifestoo>=0.4.0"
# create gitlab-runner user, and do the rest of config using that user
RUN useradd --shell /bin/bash -m gitlab-runner -c ""
USER gitlab-runner
ENV PIPX_BIN_DIR=/home/gitlab-runner/.local/bin
ENV PIPX_HOME=/home/gitlab-runner/.local/pipx
ENV PATH=/home/gitlab-runner/.local/bin:$PATH
# set git user.name and user.email so the runner can git push
RUN git config --global user.email "[email protected]" \
&& git config --global user.name "GitLab"
# disable git safe repository detection, because GitLab CI checks out as root,
# and we run as gitlab-runner
RUN git config --global --add safe.directory '*'
# avoid potential race conditions in creating these directories
RUN mkdir -p \
/home/gitlab-runner/.local/share/Odoo/addons \
/home/gitlab-runner/.local/share/Odoo/filestore \
/home/gitlab-runner/.local/share/Odoo/sessions
# make sure directories in /home/gitlab-runner have adequate owner and permissions
RUN mkdir -p \
/home/gitlab-runner/.cache \
/home/gitlab-runner/.config \
/home/gitlab-runner/.ssh \
&& chmod 700 /home/gitlab-runner/.ssh
COPY git-autoshare.yml /home/gitlab-runner/.config/git-autoshare/repos.yml
COPY --chown=gitlab-runner --chmod=644 ssh_config /home/gitlab-runner/.ssh/config