wireadmin/Dockerfile

ARG ALPINE_VERSION=3.19
ARG LYREBIRD_VERSION=0.2.0
ARG NODE_VERSION=20

FROM --platform=$BUILDPLATFORM node:${NODE_VERSION}-alpine${ALPINE_VERSION} as node
ENV TZ=UTC
RUN ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ >/etc/timezone
RUN apk update \
  && apk upgrade \
  && apk add -U --no-cache \
    iptables net-tools \
    screen logrotate bash \
    wireguard-tools \
    dnsmasq \
    tor \
  && rm -rf /var/cache/apk/*

FROM --platform=${BUILDPLATFORM} golang:alpine AS pluggables
ARG LYREBIRD_VERSION
RUN apk update \
  && apk upgrade \
  && apk add -U --no-cache \
    bash \
    make \
  && rm -rf /var/cache/apk/*
SHELL ["/bin/bash", "-c"]
RUN <<EOT
  set -ex
  cd /tmp

  # Lyrebird - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyrebird
  wget "https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyrebird/-/archive/lyrebird-$LYREBIRD_VERSION/lyrebird-lyrebird-$LYREBIRD_VERSION.tar.gz"
  tar -xvf lyrebird-lyrebird-$LYREBIRD_VERSION.tar.gz
  pushd lyrebird-lyrebird-$LYREBIRD_VERSION || exit 1
  make build -e VERSION=$LYREBIRD_VERSION
  cp ./lyrebird /usr/local/bin
  popd || exit 1

  cp -rv /go/bin /usr/local/bin
  rm -rf /go
  rm -rf /tmp/*
EOT

FROM node AS build
WORKDIR /app
ENV PNPM_HOME="/pnpm"
ENV PATH="$PNPM_HOME:$PATH"
RUN corepack enable
COPY web .
RUN --mount=type=cache,id=pnpm,target=/pnpm/store pnpm install --frozen-lockfile \
  && NODE_ENV=production pnpm build \
  && pnpm prune --prod \
  && cp -R node_modules build package.json /tmp \
  && rm -rf ./*

FROM node
WORKDIR /app

COPY --from=pluggables /usr/local/bin/lyrebird /usr/local/bin/lyrebird
COPY rootfs /

ENV PROTOCOL_HEADER=x-forwarded-proto
ENV HOST_HEADER=x-forwarded-host
ENV NODE_ENV=production
ENV LOG_LEVEL=error

# Copy the goodies from the build stage
COPY --from=build /tmp/package.json package.json
COPY --from=build /tmp/node_modules node_modules
COPY --from=build /tmp/build build

# Fix permissions
RUN mkdir -p /data/ /etc/tor/torrc.d/ /var/log/wireadmin/ \
  && chmod 700 /data/ \
  && chmod -R 400 /etc/tor/ \
  && touch /var/log/wireadmin/web.log

RUN echo '*  *  *  *  *    /usr/bin/env logrotate /etc/logrotate.d/rotator' >/etc/crontabs/root

# Setup entrypoint
COPY docker-entrypoint.sh /entrypoint.sh
RUN chmod +x /entrypoint.sh
ENTRYPOINT ["/entrypoint.sh"]

# Volumes
VOLUME ["/etc/tor", "/var/lib/tor", "/data"]

# Run the app
EXPOSE 3000/tcp
CMD [ "node", "/app/build/index.js" ]
chore 2024-02-15 08:16:16 +00:00			`ARG ALPINE_VERSION=3.19`
v2 (#11) 2024-05-29 16:40:18 +00:00			`ARG LYREBIRD_VERSION=0.2.0`
fix 2024-04-01 14:19:30 +00:00			`ARG NODE_VERSION=20`
feat(create-turbo): apply official-starter transform 2023-09-06 10:23:31 +00:00
v2 (#11) 2024-05-29 16:40:18 +00:00			`FROM --platform=$BUILDPLATFORM node:${NODE_VERSION}-alpine${ALPINE_VERSION} as node`
chore 2023-09-24 19:18:39 +00:00			`ENV TZ=UTC`
v2 (#11) 2024-05-29 16:40:18 +00:00			`RUN ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ >/etc/timezone`
			`RUN apk update \`
			`&& apk upgrade \`
			`&& apk add -U --no-cache \`
			`iptables net-tools \`
			`screen logrotate bash \`
			`wireguard-tools \`
			`dnsmasq \`
			`tor \`
			`&& rm -rf /var/cache/apk/*`

			`FROM --platform=${BUILDPLATFORM} golang:alpine AS pluggables`
			`ARG LYREBIRD_VERSION`
			`RUN apk update \`
			`&& apk upgrade \`
			`&& apk add -U --no-cache \`
			`bash \`
			`make \`
			`&& rm -rf /var/cache/apk/*`
			`SHELL ["/bin/bash", "-c"]`
			`RUN <<EOT`
			`set -ex`
			`cd /tmp`

			`# Lyrebird - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyrebird`
			`wget "https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/lyrebird/-/archive/lyrebird-$LYREBIRD_VERSION/lyrebird-lyrebird-$LYREBIRD_VERSION.tar.gz"`
			`tar -xvf lyrebird-lyrebird-$LYREBIRD_VERSION.tar.gz`
			`pushd lyrebird-lyrebird-$LYREBIRD_VERSION \|\| exit 1`
			`make build -e VERSION=$LYREBIRD_VERSION`
			`cp ./lyrebird /usr/local/bin`
			`popd \|\| exit 1`

			`cp -rv /go/bin /usr/local/bin`
			`rm -rf /go`
			`rm -rf /tmp/*`
			`EOT`

			`FROM node AS build`
			`WORKDIR /app`
(fix): grabbing envs from `$env` was a mistake 2023-11-07 22:06:32 +00:00			`ENV PNPM_HOME="/pnpm"`
			`ENV PATH="$PNPM_HOME:$PATH"`
			`RUN corepack enable`
add `tailwindcss` and `shadcn` 2023-11-02 13:02:33 +00:00			`COPY web .`
fix 2023-12-19 11:25:45 +00:00			`RUN --mount=type=cache,id=pnpm,target=/pnpm/store pnpm install --frozen-lockfile \`
v2 (#11) 2024-05-29 16:40:18 +00:00			`&& NODE_ENV=production pnpm build \`
			`&& pnpm prune --prod \`
			`&& cp -R node_modules build package.json /tmp \`
			`&& rm -rf ./*`
chore 2023-09-24 19:18:39 +00:00
v2 (#11) 2024-05-29 16:40:18 +00:00			`FROM node`
			`WORKDIR /app`
chore 2023-09-24 19:18:39 +00:00
v2 (#11) 2024-05-29 16:40:18 +00:00			`COPY --from=pluggables /usr/local/bin/lyrebird /usr/local/bin/lyrebird`
			`COPY rootfs /`
chore 2023-09-24 19:18:39 +00:00
v2 (#11) 2024-05-29 16:40:18 +00:00			`ENV PROTOCOL_HEADER=x-forwarded-proto`
			`ENV HOST_HEADER=x-forwarded-host`
			`ENV NODE_ENV=production`
			`ENV LOG_LEVEL=error`

			`# Copy the goodies from the build stage`
			`COPY --from=build /tmp/package.json package.json`
fix 2023-12-19 11:25:45 +00:00			`COPY --from=build /tmp/node_modules node_modules`
			`COPY --from=build /tmp/build build`
chore 2023-09-24 19:18:39 +00:00
chore 2024-02-15 08:16:16 +00:00			`# Fix permissions`
v2 (#11) 2024-05-29 16:40:18 +00:00			`RUN mkdir -p /data/ /etc/tor/torrc.d/ /var/log/wireadmin/ \`
			`&& chmod 700 /data/ \`
			`&& chmod -R 400 /etc/tor/ \`
			`&& touch /var/log/wireadmin/web.log`
chore 2024-02-15 08:16:16 +00:00
v2 (#11) 2024-05-29 16:40:18 +00:00			`RUN echo '* * * * * /usr/bin/env logrotate /etc/logrotate.d/rotator' >/etc/crontabs/root`
chore 2023-09-24 19:18:39 +00:00
chore: add dev docs 2024-02-12 06:55:37 +00:00			`# Setup entrypoint`
update tor config 2023-12-10 23:20:54 +00:00			`COPY docker-entrypoint.sh /entrypoint.sh`
			`RUN chmod +x /entrypoint.sh`
			`ENTRYPOINT ["/entrypoint.sh"]`
(chore): revert to `nodejs` and update dependencies 2023-11-05 16:20:21 +00:00
chore: add dev docs 2024-02-12 06:55:37 +00:00			`# Volumes`
v2 (#11) 2024-05-29 16:40:18 +00:00			`VOLUME ["/etc/tor", "/var/lib/tor", "/data"]`
Update version format for canary. We are now using the traditional versioning format for canary releases, instead of using the commit hash as the version. 2024-02-12 10:14:07 +00:00
chore: add dev docs 2024-02-12 06:55:37 +00:00			`# Run the app`
chore 2023-09-24 19:18:39 +00:00			`EXPOSE 3000/tcp`
v2 (#11) 2024-05-29 16:40:18 +00:00			`CMD [ "node", "/app/build/index.js" ]`