Home Explore Help
Register Sign In
Apq
/
dockerfiles
mirror of https://github.com/stilleshan/dockerfiles.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: d6b54061b6
Branches Tags
dockerfiles
/
uwsgi-nginx
/
docker-images
/
install-nginx-alpine.sh

install-nginx-alpine.sh 4.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. #! /usr/bin/env sh
    2. 

  2. 

  3. # From official Nginx Docker image, as a script to re-use it, removing internal comments
    4. 

  4. 

  5. # Standard set up Nginx Alpine
    6. 

  6. # https://github.com/nginxinc/docker-nginx/blob/594ce7a8bc26c85af88495ac94d5cd0096b306f7/mainline/alpine/Dockerfile
    7. 

  7. 

  8. export NGINX_VERSION=1.17.10
    9. 

  9. export NJS_VERSION=0.3.9
    10. 

  10. export PKG_RELEASE=1
    11. 

  11. 

  12. set -x \
    13. 

  13.     && apkArch="$(cat /etc/apk/arch)" \
    14. 

  14.     && nginxPackages=" \
    15. 

  15.         nginx=${NGINX_VERSION}-r${PKG_RELEASE} \
    16. 

  16.         nginx-module-xslt=${NGINX_VERSION}-r${PKG_RELEASE} \
    17. 

  17.         nginx-module-geoip=${NGINX_VERSION}-r${PKG_RELEASE} \
    18. 

  18.         nginx-module-image-filter=${NGINX_VERSION}-r${PKG_RELEASE} \
    19. 

  19.         nginx-module-njs=${NGINX_VERSION}.${NJS_VERSION}-r${PKG_RELEASE} \
    20. 

  20.     " \
    21. 

  21.     && case "$apkArch" in \
    22. 

  22.         x86_64) \
    23. 

  23.             set -x \
    24. 

  24.             && KEY_SHA512="e7fa8303923d9b95db37a77ad46c68fd4755ff935d0a534d26eba83de193c76166c68bfe7f65471bf8881004ef4aa6df3e34689c305662750c0172fca5d8552a *stdin" \
    25. 

  25.             && apk add --no-cache --virtual .cert-deps \
    26. 

  26.                 openssl \
    27. 

  27.             && wget -O /tmp/nginx_signing.rsa.pub https://nginx.org/keys/nginx_signing.rsa.pub \
    28. 

  28.             && if [ "$(openssl rsa -pubin -in /tmp/nginx_signing.rsa.pub -text -noout | openssl sha512 -r)" = "$KEY_SHA512" ]; then \
    29. 

  29.                 echo "key verification succeeded!"; \
    30. 

  30.                 mv /tmp/nginx_signing.rsa.pub /etc/apk/keys/; \
    31. 

  31.             else \
    32. 

  32.                 echo "key verification failed!"; \
    33. 

  33.                 exit 1; \
    34. 

  34.             fi \
    35. 

  35.             && apk del .cert-deps \
    36. 

  36.             && apk add -X "https://nginx.org/packages/mainline/alpine/v$(egrep -o '^[0-9]+\.[0-9]+' /etc/alpine-release)/main" --no-cache $nginxPackages \
    37. 

  37.             ;; \
    38. 

  38.         *) \
    39. 

  39.             set -x \
    40. 

  40.             && tempDir="$(mktemp -d)" \
    41. 

  41.             && chown nobody:nobody $tempDir \
    42. 

  42.             && apk add --no-cache --virtual .build-deps \
    43. 

  43.                 gcc \
    44. 

  44.                 libc-dev \
    45. 

  45.                 make \
    46. 

  46.                 openssl-dev \
    47. 

  47.                 pcre-dev \
    48. 

  48.                 zlib-dev \
    49. 

  49.                 linux-headers \
    50. 

  50.                 libxslt-dev \
    51. 

  51.                 gd-dev \
    52. 

  52.                 geoip-dev \
    53. 

  53.                 perl-dev \
    54. 

  54.                 libedit-dev \
    55. 

  55.                 mercurial \
    56. 

  56.                 bash \
    57. 

  57.                 alpine-sdk \
    58. 

  58.                 findutils \
    59. 

  59.             && su nobody -s /bin/sh -c " \
    60. 

  60.                 export HOME=${tempDir} \
    61. 

  61.                 && cd ${tempDir} \
    62. 

  62.                 && hg clone https://hg.nginx.org/pkg-oss \
    63. 

  63.                 && cd pkg-oss \
    64. 

  64.                 && hg up ${NGINX_VERSION}-${PKG_RELEASE} \
    65. 

  65.                 && cd alpine \
    66. 

  66.                 && make all \
    67. 

  67.                 && apk index -o ${tempDir}/packages/alpine/${apkArch}/APKINDEX.tar.gz ${tempDir}/packages/alpine/${apkArch}/*.apk \
    68. 

  68.                 && abuild-sign -k ${tempDir}/.abuild/abuild-key.rsa ${tempDir}/packages/alpine/${apkArch}/APKINDEX.tar.gz \
    69. 

  69.                 " \
    70. 

  70.             && cp ${tempDir}/.abuild/abuild-key.rsa.pub /etc/apk/keys/ \
    71. 

  71.             && apk del .build-deps \
    72. 

  72.             && apk add -X ${tempDir}/packages/alpine/ --no-cache $nginxPackages \
    73. 

  73.             ;; \
    74. 

  74.     esac \
    75. 

  75.     && if [ -n "$tempDir" ]; then rm -rf "$tempDir"; fi \
    76. 

  76.     && if [ -n "/etc/apk/keys/abuild-key.rsa.pub" ]; then rm -f /etc/apk/keys/abuild-key.rsa.pub; fi \
    77. 

  77.     && if [ -n "/etc/apk/keys/nginx_signing.rsa.pub" ]; then rm -f /etc/apk/keys/nginx_signing.rsa.pub; fi \
    78. 

  78.     && apk add --no-cache --virtual .gettext gettext \
    79. 

  79.     && mv /usr/bin/envsubst /tmp/ \
    80. 

  80.     \
    81. 

  81.     && runDeps="$( \
    82. 

  82.         scanelf --needed --nobanner /tmp/envsubst \
    83. 

  83.             | awk '{ gsub(/,/, "\nso:", $2); print "so:" $2 }' \
    84. 

  84.             | sort -u \
    85. 

  85.             | xargs -r apk info --installed \
    86. 

  86.             | sort -u \
    87. 

  87.     )" \
    88. 

  88.     && apk add --no-cache $runDeps \
    89. 

  89.     && apk del .gettext \
    90. 

  90.     && mv /tmp/envsubst /usr/local/bin/ \
    91. 

  91.     && apk add --no-cache tzdata \
    92. 

  92.     && ln -sf /dev/stdout /var/log/nginx/access.log \
    93. 

  93.     && ln -sf /dev/stderr /var/log/nginx/error.log
    94. 

  94. 

  95. # Standard set up Nginx finished
    96.