78 lines
2.4 KiB
Text
78 lines
2.4 KiB
Text
|
FROM adoptopenjdk/openjdk11:alpine
|
||
|
# add ca-certificates package
|
||
|
RUN apk add --no-cache ca-certificates
|
||
|
# Copy masked.name root cert
|
||
|
COPY files/MaskedName_Root_CA.crt /usr/local/share/ca-certificates/MaskedName_Root_CA.crt
|
||
|
# update ca certs
|
||
|
RUN update-ca-certificates 2>/dev/null
|
||
|
|
||
|
RUN apk add --no-cache \
|
||
|
bash \
|
||
|
coreutils \
|
||
|
curl \
|
||
|
git \
|
||
|
git-lfs \
|
||
|
openssh-client \
|
||
|
tini \
|
||
|
ttf-dejavu \
|
||
|
tzdata \
|
||
|
unzip
|
||
|
|
||
|
ARG user=jenkins
|
||
|
ARG group=jenkins
|
||
|
ARG uid=15000
|
||
|
ARG gid=15000
|
||
|
ARG http_port=8080
|
||
|
ARG agent_port=50000
|
||
|
ARG JENKINS_HOME=/var/jenkins_home
|
||
|
ARG REF=/usr/share/jenkins/ref
|
||
|
|
||
|
ENV JENKINS_HOME $JENKINS_HOME
|
||
|
ENV JENKINS_SLAVE_AGENT_PORT ${agent_port}
|
||
|
ENV REF $REF
|
||
|
|
||
|
RUN mkdir -p $JENKINS_HOME \
|
||
|
&& chown ${uid}:${gid} $JENKINS_HOME \
|
||
|
&& addgroup -g ${gid} ${group} \
|
||
|
&& adduser -h "$JENKINS_HOME" -u ${uid} -G ${group} -s /bin/bash -D ${user}
|
||
|
|
||
|
VOLUME $JENKINS_HOME
|
||
|
|
||
|
RUN mkdir -p ${REF}/init.groovy.d
|
||
|
|
||
|
ARG JENKINS_VERSION
|
||
|
ENV JENKINS_VERSION ${JENKINS_VERSION:-2.249.1}
|
||
|
|
||
|
ARG JENKINS_SHA=a38ca485b3e2bae6ec69a34b6b34b674f4dd4baf04f20f8dce2d838d08ed5bd6
|
||
|
ARG JENKINS_URL=https://repo.jenkins-ci.org/public/org/jenkins-ci/main/jenkins-war/${JENKINS_VERSION}/jenkins-war-${JENKINS_VERSION}.war
|
||
|
RUN curl -fsSL ${JENKINS_URL} -o /usr/share/jenkins/jenkins.war \
|
||
|
&& echo "${JENKINS_SHA} /usr/share/jenkins/jenkins.war" | sha256sum -c -
|
||
|
|
||
|
ENV JENKINS_UC https://updates.jenkins.io
|
||
|
ENV JENKINS_UC_EXPERIMENTAL=https://updates.jenkins.io/experimental
|
||
|
ENV JENKINS_INCREMENTALS_REPO_MIRROR=https://repo.jenkins-ci.org/incrementals
|
||
|
RUN chown -R ${user} "$JENKINS_HOME" "$REF"
|
||
|
|
||
|
ARG PLUGIN_CLI_URL=https://github.com/jenkinsci/plugin-installation-manager-tool/releases/download/plugin-management-parent-pom-2.0.0/jenkins-plugin-manager-2.0.0.jar
|
||
|
RUN curl -fsSL ${PLUGIN_CLI_URL} -o /usr/lib/jenkins-plugin-manager.jar
|
||
|
|
||
|
# for main web interface:
|
||
|
EXPOSE ${http_port}
|
||
|
|
||
|
# will be used by attached slave agents:
|
||
|
EXPOSE ${agent_port}
|
||
|
|
||
|
ENV COPY_REFERENCE_FILE_LOG $JENKINS_HOME/copy_reference_file.log
|
||
|
|
||
|
USER ${user}
|
||
|
|
||
|
COPY files/jenkins-support /usr/local/bin/jenkins-support
|
||
|
COPY files/jenkins.sh /usr/local/bin/jenkins.sh
|
||
|
COPY files/tini-shim.sh /bin/tini
|
||
|
COPY files/jenkins-plugin-cli.sh /bin/jenkins-plugin-cli
|
||
|
|
||
|
ENTRYPOINT ["/sbin/tini", "--", "/usr/local/bin/jenkins.sh"]
|
||
|
|
||
|
# from a derived Dockerfile, can use `RUN install-plugins.sh active.txt` to setup $REF/plugins from a support bundle
|
||
|
COPY files/install-plugins.sh /usr/local/bin/install-plugins.sh
|