Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / 62c07431d77960e003d43e6443738ca9a1de5aae / . / images / keystone / Dockerfile
blob: 12df545b7b1928873ab5fbcd067335f0a9f1cfc0 [file] [log] [blame]
Mohammed Naser86615772024-06-01 10:02:09 -0400[diff] [blame]1# SPDX-License-Identifier: Apache-2.0
Mohammed Nasere786d962024-06-26 01:08:34 -0400[diff] [blame]2# Atmosphere-Rebuild-Time: 2024-06-25T22:49:25Z
Mohammed Naserda994232024-04-13 12:34:01 -0400[diff] [blame]3
Mohammed Naserbcd53112025-01-15 16:49:44 -0500[diff] [blame]4ARG REGISTRY
Mohammed Naserd30f18d2024-04-17 01:20:43 -0400[diff] [blame]5ARG RELEASE
6
Mohammed Naserbcd53112025-01-15 16:49:44 -0500[diff] [blame]7FROM ${REGISTRY}/openstack-venv-builder:${RELEASE} AS build
Mohammed Naserda994232024-04-13 12:34:01 -0400[diff] [blame]8ARG KEYSTONE_GIT_REF=8ca73f758bb613a57815fbe4ae78e3d2afa4af49
9ADD --keep-git-dir=true https://opendev.org/openstack/keystone.git#${KEYSTONE_GIT_REF} /src/keystone
10RUN git -C /src/keystone fetch --unshallow
11RUN --mount=type=cache,mode=0755,target=/root/.cache/pip,sharing=private <<EOF bash -xe
12pip3 install \
13 --constraint /upper-constraints.txt \
14 /src/keystone[ldap] \
15 keystone-keycloak-backend==0.1.8
16EOF
17
Mohammed Naserbcd53112025-01-15 16:49:44 -0500[diff] [blame]18FROM ${REGISTRY}/openstack-python-runtime:${RELEASE}
Mohammed Naserda994232024-04-13 12:34:01 -0400[diff] [blame]19RUN <<EOF bash -xe
20apt-get update -qq
21apt-get install -qq -y --no-install-recommends \
22 apache2 libapache2-mod-wsgi-py3
23apt-get clean
24rm -rf /var/lib/apt/lists/*
25EOF
26ARG MOD_AUTH_OPENIDC_VERSION=2.4.12.1
27ARG TARGETARCH
28RUN <<EOF bash -xe
29apt-get update -qq
30apt-get install -qq -y --no-install-recommends \
31 curl
32curl -LO https://github.com/OpenIDC/mod_auth_openidc/releases/download/v${MOD_AUTH_OPENIDC_VERSION}/libapache2-mod-auth-openidc_${MOD_AUTH_OPENIDC_VERSION}-1.$(lsb_release -sc)_${TARGETARCH}.deb
33apt-get install -y --no-install-recommends ./libapache2-mod-auth-openidc_${MOD_AUTH_OPENIDC_VERSION}-1.$(lsb_release -sc)_${TARGETARCH}.deb
34a2enmod auth_openidc
35apt-get purge -y --auto-remove curl
36apt-get clean
37rm -rfv /var/lib/apt/lists/* libapache2-mod-auth-openidc_${MOD_AUTH_OPENIDC_VERSION}-1.$(lsb_release -sc)_${TARGETARCH}.deb
38EOF
39COPY --from=build --link /var/lib/openstack /var/lib/openstack