UniqAI/GoClaw
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
4a3530feb772c41560691ae832b2d06d351bda27
GoClaw/docker/Dockerfile.gateway

63 lines
1.8 KiB
Docker
Raw Blame History

# ── Build Stage ──────────────────────────────────────────────────────────────
FROM golang:1.23-alpine AS builder
# Install build dependencies
RUN apk add --no-cache git ca-certificates tzdata
WORKDIR /build
# Copy go.mod and go.sum first for layer caching
COPY gateway/go.mod gateway/go.sum ./
RUN go mod download
# Copy source code
COPY gateway/ .
# Build the binary
RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 \
go build -ldflags="-w -s -X main.version=$(git describe --tags --always 2>/dev/null || echo dev)" \
-o gateway ./cmd/gateway/
# ── Runtime Stage ─────────────────────────────────────────────────────────────
FROM alpine:3.20
# Install runtime dependencies
RUN apk add --no-cache \
ca-certificates \
tzdata \
wget \
bash \
curl \
# For shell_exec tool
jq \
&& rm -rf /var/cache/apk/*
# Create non-root user and add to docker group (GID 999 — matches host docker group)
RUN addgroup -g 999 docker 2>/dev/null || true && \
addgroup -g 1001 goclaw && \
adduser -u 1001 -G goclaw -s /bin/sh -D goclaw && \
adduser goclaw docker
WORKDIR /app
# Copy binary from builder
COPY --from=builder /build/gateway /usr/local/bin/gateway
# Copy timezone data
COPY --from=builder /usr/share/zoneinfo /usr/share/zoneinfo
# Ensure binary is executable
RUN chmod +x /usr/local/bin/gateway
# Use non-root user
USER goclaw
# Expose port
EXPOSE 18789
# Health check
HEALTHCHECK --interval=15s --timeout=5s --start-period=10s --retries=3 \
CMD wget -qO- http://localhost:18789/health || exit 1
ENTRYPOINT ["/usr/local/bin/gateway"]
Reference in New Issue View Git Blame Copy Permalink