zepheris

Repositories

9

Projects Packages Public Activity Starred Repositories

freeipa (dev)

Published 2024-02-02 05:32:47 +00:00 by zepheris

Installation

Pull the image from the command line:

docker pull 172.16.5.26/zepheris/freeipa:dev

Digest:

sha256:5edc4935c58cf2cc1e9be45467a685ca0477398a0284f3e9c015a969edc749c1

For more information on the Container registry, see the documentation.

Image Layers

ADD almalinux-9-docker-x86_64-init.tar.xz / # buildkit

CMD ["/sbin/init"]

STOPSIGNAL SIGRTMIN+3

RUN /bin/sh -c groupadd -g 288 kdcproxy ; useradd -u 288 -g 288 -c 'IPA KDC Proxy User' -r -d / -s '/sbin/nologin' kdcproxy # buildkit

RUN /bin/sh -c groupadd -g 289 ipaapi; useradd -u 289 -g 289 -c 'IPA Framework User' -r -d / -s '/sbin/nologin' ipaapi # buildkit

RUN /bin/sh -c ln -s /bin/false /usr/sbin/systemd-machine-id-setup # buildkit

RUN /bin/sh -c sed -i 's!%_install_langs.*!%_install_langs all!' /etc/rpm/macros.image-language-conf # buildkit

RUN /bin/sh -c yum -y install --setopt=install_weak_deps=False ipa-server ipa-server-dns ipa-server-trust-ad patch ipa-healthcheck ipa-client-epn && yum clean all # buildkit

RUN /bin/sh -c systemctl mask rpc-gssd.service # buildkit

ENV container=oci

RUN /bin/sh -c echo "DefaultLimitNOFILE=1024" >> /etc/systemd/system.conf # buildkit

ENTRYPOINT ["/usr/sbin/init"]

STOPSIGNAL RTMIN+3

RUN /bin/sh -c find /etc/systemd/system /usr/lib/systemd/system/{basic,multi-user,sysinit}.target.wants -type l \! -lname /dev/null | xargs rm -v # buildkit

RUN /bin/sh -c systemctl mask systemd-logind.service && mv /usr/lib/systemd/system/systemd-logind.service /usr/lib/systemd/system/systemd-logind.service-disable-dbus # buildkit

COPY patches/minimal-fedora-37.patch /root/ # buildkit

RUN /bin/sh -c patch --verbose -p0 --fuzz=0 < /root/minimal-fedora-37.patch # buildkit

RUN /bin/sh -c ln -s /usr/lib/systemd/system/dbus-broker.service /usr/lib/systemd/system/dbus.service # buildkit

COPY container-ipa.target /usr/lib/systemd/system/ # buildkit

RUN /bin/sh -c systemctl set-default container-ipa.target # buildkit

RUN /bin/sh -c rmdir -v /etc/systemd/system/multi-user.target.wants && mkdir /etc/systemd/system/container-ipa.target.wants && ln -s /etc/systemd/system/container-ipa.target.wants /etc/systemd/system/multi-user.target.wants # buildkit

RUN /bin/sh -c mkdir /var/log/journal # buildkit

RUN /bin/sh -c systemd-tmpfiles --remove --create # buildkit

RUN /bin/sh -c mv /usr/bin/nisdomainname /usr/bin/nisdomainname.orig # buildkit

ADD hostnamectl-wrapper /usr/bin/nisdomainname # buildkit

COPY patches/ipa-rhel-9.patch /root # buildkit

RUN /bin/sh -c set -o pipefail ; patch --verbose -p0 --fuzz=0 < /root/ipa-rhel-9.patch | tee /dev/null | sed -n 's/^patching file //;T;/\.py$/p' | xargs /usr/libexec/platform-python -m compileall # buildkit

COPY patches/ipa-data-rhel-9.patch /root # buildkit

RUN /bin/sh -c set -o pipefail ; patch --verbose -p0 --fuzz=0 < /root/ipa-data-rhel-9.patch | tee /dev/null | sed -n 's/^patching file //;T;/\.py$/p' | xargs /usr/libexec/platform-python -m compileall # buildkit

COPY ipaplatform-rhel.conf /usr/lib/systemd/system.conf.d/ipaplatform-override.conf # buildkit

ENV IPAPLATFORM_OVERRIDE=rhel_container

COPY journald-storage.conf /usr/lib/systemd/journald.conf.d/storage.conf # buildkit

RUN /bin/sh -c mv /usr/sbin/ipa-join /usr/sbin/ipa-join.orig # buildkit

COPY ipa-join /usr/sbin/ipa-join # buildkit

RUN /bin/sh -c authselect select sssd with-sudo --force && mv /usr/bin/authselect /usr/bin/authselect.orig # buildkit

COPY authselect /usr/bin/authselect # buildkit

COPY utils/prepare-volume-template utils/populate-volume-from-template utils/extract-rpm-upgrade-scriptlets /usr/local/bin/ # buildkit

COPY volume-data-list volume-tmp-list volume-data-autoupdate /etc/ # buildkit

RUN /bin/sh -c /usr/local/bin/prepare-volume-template /etc/volume-data-list /data # buildkit

RUN /bin/sh -c /usr/local/bin/prepare-volume-template /etc/volume-tmp-list /tmp # buildkit

RUN /bin/sh -c /usr/local/bin/extract-rpm-upgrade-scriptlets # buildkit

RUN /bin/sh -c echo 2.0 > /etc/volume-version # buildkit

VOLUME [/tmp /run /data /var/log/journal]

COPY init-data-minimal /usr/local/sbin/init # buildkit

ENTRYPOINT ["/usr/local/sbin/init"]

COPY init-data /usr/local/sbin/init # buildkit

COPY ipa-server-configure-first systemctl-exit-with-status ipa-volume-upgrade-* /usr/sbin/ # buildkit

COPY ipa-server-configure-first.service ipa-server-upgrade.service ipa-server-update-self-ip-address.service /usr/lib/systemd/system/ # buildkit

COPY service-success-poweroff.conf /usr/lib/systemd/system/ipa-server-configure-first.service.d/service-success-poweroff.conf.template # buildkit

RUN /bin/sh -c ln -sv /usr/lib/systemd/system/ipa-server-configure-first.service /data-template/etc/systemd/system/container-ipa.target.wants/ipa-server-configure-first.service # buildkit

COPY exit-status.conf /usr/lib/systemd/system/systemd-poweroff.service.d/ # buildkit

EXPOSE map[123/udp:{} 389/tcp:{} 443/tcp:{} 464/tcp:{} 464/udp:{} 53/tcp:{} 53/udp:{} 636/tcp:{} 80/tcp:{} 88/tcp:{} 88/udp:{}]

RUN /bin/sh -c uuidgen > /data-template/build-id # buildkit

LABEL org.opencontainers.image.title=FreeIPA server

LABEL org.opencontainers.image.authors=FreeIPA Developers <freeipa-devel@lists.fedorahosted.org>

Labels

Key	Value
org.opencontainers.image.authors	FreeIPA Developers <freeipa-devel@lists.fedorahosted.org>
org.opencontainers.image.title	FreeIPA server

Details

Container

2024-02-02 05:32:47 +00:00

0

OCI / Docker

linux/amd64

FreeIPA Developers <freeipa-devel@lists.fedorahosted.org>

339 MiB

Versions (1) View all

dev 2024-02-02