-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
…dockerfile feat: added dockerfile and docker image push workflow for license-manager
- Loading branch information
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,59 @@ | ||
name: Build and Push License Manager Image | ||
|
||
on: | ||
workflow_dispatch: | ||
inputs: | ||
branch: | ||
description: "Target branch from which the source dockerfile from image will be sourced" | ||
|
||
schedule: | ||
- cron: "0 4 * * 1-5" # UTC Time | ||
|
||
jobs: | ||
build-and-push-image: | ||
runs-on: ubuntu-latest | ||
|
||
steps: | ||
- name: Get tag name | ||
id: get-tag-name | ||
uses: actions/github-script@v5 | ||
with: | ||
script: | | ||
const tagName = "${{ github.event.inputs.branch }}" || 'latest'; | ||
console.log('Will use tag: ' + tagName); | ||
return tagName; | ||
result-encoding: string | ||
|
||
- name: Set up Docker Buildx | ||
uses: docker/setup-buildx-action@v3 | ||
|
||
- name: Set up QEMU | ||
uses: docker/setup-qemu-action@v3 | ||
|
||
- name: Login to DockerHub | ||
uses: docker/login-action@v3 | ||
with: | ||
username: ${{ secrets.DOCKERHUB_USERNAME }} | ||
password: ${{ secrets.DOCKERHUB_PASSWORD }} | ||
|
||
- name: Build and push Dev Docker image | ||
uses: docker/build-push-action@v6 | ||
with: | ||
file: ./dockerfiles/license-manager.Dockerfile | ||
push: true | ||
target: app | ||
tags: edxops/license-manager-dev:${{ steps.get-tag-name.outputs.result }} | ||
|
||
# Commenting the notification section temporarily as we don't have the owning team email for titans yet. | ||
# - name: Send failure notification | ||
# if: failure() | ||
# uses: dawidd6/action-send-mail@v3 | ||
# with: | ||
# server_address: email-smtp.us-east-1.amazonaws.com | ||
# server_port: 465 | ||
# username: ${{secrets.edx_smtp_username}} | ||
# password: ${{secrets.edx_smtp_password}} | ||
# subject: Push Image to docker.io/edxops failed in License Manager Coordinator | ||
# to: [email protected] | ||
# from: github-actions <[email protected]> | ||
# body: Push Image to docker.io/edxops for License Manager Coordinator failed! For details see "github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" |
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,129 @@ | ||
FROM ubuntu:focal as app | ||
Check warning on line 1 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 1 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 1 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 1 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
|
||
MAINTAINER [email protected] | ||
Check warning on line 2 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe MAINTAINER instruction is deprecated, use a label instead to define an image author
Check warning on line 2 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe MAINTAINER instruction is deprecated, use a label instead to define an image author
Check warning on line 2 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe MAINTAINER instruction is deprecated, use a label instead to define an image author
Check warning on line 2 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe MAINTAINER instruction is deprecated, use a label instead to define an image author
|
||
|
||
|
||
# Packages installed: | ||
# git; Used to pull in particular requirements from github rather than pypi, | ||
# and to check the sha of the code checkout. | ||
|
||
# language-pack-en locales; ubuntu locale support so that system utilities have a consistent | ||
# language and time zone. | ||
|
||
# python; ubuntu doesnt ship with python, so this is the python we will use to run the application | ||
|
||
# python3-pip; install pip to install application requirements.txt files | ||
|
||
# libssl-dev; # mysqlclient wont install without this. | ||
|
||
# pkg-config | ||
# mysqlclient>=2.2.0 requires this (https://github.com/PyMySQL/mysqlclient/issues/620) | ||
|
||
# libmysqlclient-dev; to install header files needed to use native C implementation for | ||
# MySQL-python for performance gains. | ||
|
||
# wget to download a watchman binary archive | ||
|
||
# unzip to unzip a watchman binary archive | ||
|
||
# If you add a package here please include a comment above describing what it is used for | ||
|
||
# ENV variables for Python 3.12 support | ||
ARG PYTHON_VERSION=3.12 | ||
ENV TZ=UTC | ||
ENV TERM=xterm-256color | ||
ENV DEBIAN_FRONTEND=noninteractive | ||
|
||
# software-properties-common is needed to setup Python 3.12 env | ||
RUN apt-get update && \ | ||
apt-get install -y software-properties-common && \ | ||
apt-add-repository -y ppa:deadsnakes/ppa | ||
|
||
RUN apt-get update && apt-get -qy install --no-install-recommends \ | ||
language-pack-en \ | ||
locales \ | ||
pkg-config \ | ||
libmysqlclient-dev \ | ||
libssl-dev \ | ||
build-essential \ | ||
git \ | ||
wget \ | ||
unzip \ | ||
curl \ | ||
libffi-dev \ | ||
libsqlite3-dev \ | ||
python3-pip \ | ||
python${PYTHON_VERSION} \ | ||
python${PYTHON_VERSION}-dev \ | ||
python${PYTHON_VERSION}-distutils | ||
|
||
# Use virtualenv pypi package with Python 3.12 | ||
RUN curl -sS https://bootstrap.pypa.io/get-pip.py | python${PYTHON_VERSION} | ||
RUN pip install virtualenv | ||
|
||
ENV VIRTUAL_ENV=/edx/app/license-manager/venvs/license-manager | ||
RUN virtualenv -p python${PYTHON_VERSION} $VIRTUAL_ENV | ||
ENV PATH="$VIRTUAL_ENV/bin:$PATH" | ||
|
||
RUN locale-gen en_US.UTF-8 | ||
ENV LANG en_US.UTF-8 | ||
Check warning on line 68 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 68 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 68 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 68 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
|
||
ENV LANGUAGE en_US:en | ||
Check warning on line 69 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 69 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 69 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 69 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
|
||
ENV LC_ALL en_US.UTF-8 | ||
Check warning on line 70 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 70 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 70 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 70 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
|
||
ENV DJANGO_SETTINGS_MODULE license_manager.settings.production | ||
Check warning on line 71 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 71 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 71 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
Check warning on line 71 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageLegacy key/value format with whitespace separator should not be used
|
||
|
||
EXPOSE 18170 | ||
EXPOSE 18171 | ||
RUN useradd -m --shell /bin/false app | ||
|
||
# Install watchman | ||
RUN wget https://github.com/facebook/watchman/releases/download/v2023.11.20.00/watchman-v2023.11.20.00-linux.zip | ||
RUN unzip watchman-v2023.11.20.00-linux.zip | ||
RUN mkdir -p /usr/local/{bin,lib} /usr/local/var/run/watchman | ||
RUN cp watchman-v2023.11.20.00-linux/bin/* /usr/local/bin | ||
RUN cp watchman-v2023.11.20.00-linux/lib/* /usr/local/lib | ||
RUN chmod 755 /usr/local/bin/watchman | ||
RUN chmod 2777 /usr/local/var/run/watchman | ||
|
||
# Now install license-manager | ||
WORKDIR /edx/app/license_manager | ||
|
||
RUN mkdir -p requirements | ||
|
||
# Install production requirements | ||
RUN curl -L -o requirements/pip.txt https://raw.githubusercontent.com/edx/license-manager/master/requirements/pip.txt | ||
RUN pip install --no-cache-dir -r requirements/pip.txt | ||
|
||
RUN curl -L -o requirements/production.txt https://raw.githubusercontent.com/edx/license-manager/master/requirements/production.txt | ||
RUN pip install --no-cache-dir -r requirements/production.txt | ||
|
||
RUN curl -L https://github.com/edx/license-manager/archive/refs/heads/master.tar.gz | tar -xz --strip-components=1 | ||
|
||
RUN mkdir -p /edx/var/log | ||
|
||
# Code is owned by root so it cannot be modified by the application user. | ||
# So we copy it before changing users. | ||
USER app | ||
|
||
# Gunicorn 19 does not log to stdout or stderr by default. Once we are past gunicorn 19, the logging to STDOUT need not be specified. | ||
CMD gunicorn --workers=2 --name license_manager -c /edx/app/license_manager/license_manager/docker_gunicorn_configuration.py --log-file - --max-requests=1000 license_manager.wsgi:application | ||
Check warning on line 107 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageJSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals
Check warning on line 107 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageJSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals
Check warning on line 107 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageJSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals
Check warning on line 107 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageJSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals
|
||
|
||
|
||
FROM app as newrelic | ||
Check warning on line 110 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 110 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 110 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 110 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
|
||
RUN pip install newrelic | ||
CMD newrelic-admin run-program gunicorn --workers=2 --name license_manager -c /edx/app/license_manager/license_manager/docker_gunicorn_configuration.py --log-file - --max-requests=1000 license_manager.wsgi:application | ||
|
||
|
||
FROM app as devstack | ||
Check warning on line 115 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 115 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 115 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 115 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
|
||
USER root | ||
RUN pip install -r /edx/app/license_manager/requirements/dev.txt | ||
USER app | ||
CMD gunicorn --reload --workers=2 --name license_manager -c /edx/app/license_manager/license_manager/docker_gunicorn_configuration.py --log-file - --max-requests=1000 license_manager.wsgi:application | ||
|
||
|
||
FROM app as legacy_devapp | ||
Check warning on line 122 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 122 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 122 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
Check warning on line 122 in dockerfiles/license-manager.Dockerfile GitHub Actions / build-and-push-imageThe 'as' keyword should match the case of the 'from' keyword
|
||
# Dev ports | ||
EXPOSE 18170 | ||
EXPOSE 18171 | ||
USER root | ||
RUN pip install -r /edx/app/license_manager/requirements/dev.txt | ||
USER app | ||
CMD gunicorn --reload --workers=2 --name license_manager -c /edx/app/license_manager/license_manager/docker_gunicorn_configuration.py --log-file - --max-requests=1000 license_manager.wsgi:application |