Home Explore Help
Register Sign In
Apq
/
docker-openldap
mirror of https://github.com/osixia/docker-openldap.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 14ca0001ba
Branches Tags
docker-openldap
/
image
/
Dockerfile

Dockerfile 2.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. # Use osixia/light-baseimage
    2. 

  2. # sources: https://github.com/osixia/docker-light-baseimage
    3. 

  3. FROM osixia/light-baseimage:1.1.2
    4. 

  4. 

  5. ARG LDAP_OPENLDAP_GID
    6. 

  6. ARG LDAP_OPENLDAP_UID
    7. 

  7. 

  8. ARG PQCHECKER_VERSION=2.0.0
    9. 

  9. ARG PQCHECKER_MD5=c005ce596e97d13e39485e711dcbc7e1
    10. 

  10. 

  11. # Add openldap user and group first to make sure their IDs get assigned consistently, regardless of whatever dependencies get added
    12. 

  12. # If explicit uid or gid is given, use it.
    13. 

  13. RUN if [ -z "${LDAP_OPENLDAP_GID}" ]; then groupadd -r openldap; else groupadd -r -g ${LDAP_OPENLDAP_GID} openldap; fi \
    14. 

  14.     && if [ -z "${LDAP_OPENLDAP_UID}" ]; then useradd -r -g openldap openldap; else useradd -r -g openldap -u ${LDAP_OPENLDAP_UID} openldap; fi
    15. 

  15. 

  16. # Add stretch-backports in preparation for downloading newer openldap components, especially sladp
    17. 

  17. RUN echo "deb http://ftp.debian.org/debian stretch-backports main" >> /etc/apt/sources.list
    18. 

  18. 

  19. # Install OpenLDAP, ldap-utils and ssl-tools from the (backported) baseimage and clean apt-get files
    20. 

  20. # sources: https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/add-service-available
    21. 

  21. #          https://github.com/osixia/docker-light-baseimage/blob/stable/image/service-available/:ssl-tools/download.sh
    22. 

  22. RUN echo "path-include /usr/share/doc/krb5*" >> /etc/dpkg/dpkg.cfg.d/docker && apt-get -y update \
    23. 

  23.     && /container/tool/add-service-available :ssl-tools \
    24. 

  24.     && LC_ALL=C DEBIAN_FRONTEND=noninteractive apt-get -t stretch-backports install -y --no-install-recommends \
    25. 

  25.     ca-certificates \
    26. 

  26.     curl \
    27. 

  27.     ldap-utils \
    28. 

  28.     libsasl2-modules \
    29. 

  29.     libsasl2-modules-db \
    30. 

  30.     libsasl2-modules-gssapi-mit \
    31. 

  31.     libsasl2-modules-ldap \
    32. 

  32.     libsasl2-modules-otp \
    33. 

  33.     libsasl2-modules-sql \
    34. 

  34.     openssl \
    35. 

  35.     slapd \
    36. 

  36.     krb5-kdc-ldap \
    37. 

  37.     && curl -o pqchecker.deb -SL http://www.meddeb.net/pub/pqchecker/deb/8/pqchecker_${PQCHECKER_VERSION}_amd64.deb \
    38. 

  38.     && echo "${PQCHECKER_MD5} *pqchecker.deb" | md5sum -c - \
    39. 

  39.     && dpkg -i pqchecker.deb \
    40. 

  40.     && rm pqchecker.deb \
    41. 

  41.     && apt-get remove -y --purge --auto-remove curl ca-certificates \
    42. 

  42.     && apt-get clean \
    43. 

  43.     && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
    44. 

  44. 

  45. # Add service directory to /container/service
    46. 

  46. ADD service /container/service
    47. 

  47. 

  48. # Use baseimage install-service script
    49. 

  49. # https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/install-service
    50. 

  50. RUN /container/tool/install-service
    51. 

  51. 

  52. # Add default env variables
    53. 

  53. ADD environment /container/environment/99-default
    54. 

  54. 

  55. # Expose default ldap and ldaps ports
    56. 

  56. EXPOSE 389 636
    57. 

  57. 

  58. # Put ldap config and database dir in a volume to persist data.
    59. 

  59. # VOLUME /etc/ldap/slapd.d /var/lib/ldap
    60.