135 lines
4.5 KiB
Docker
135 lines
4.5 KiB
Docker
#
|
|
# Licensed to the Apache Software Foundation (ASF) under one
|
|
# or more contributor license agreements. See the NOTICE file
|
|
# distributed with this work for additional information
|
|
# regarding copyright ownership. The ASF licenses this file
|
|
# to you under the Apache License, Version 2.0 (the
|
|
# "License"); you may not use this file except in compliance
|
|
# with the License. You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing,
|
|
# software distributed under the License is distributed on an
|
|
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
|
# KIND, either express or implied. See the License for the
|
|
# specific language governing permissions and limitations
|
|
# under the License.
|
|
#
|
|
|
|
#
|
|
# Dockerfile for guacamole-server
|
|
#
|
|
|
|
|
|
# Use Debian as base for the build
|
|
ARG DEBIAN_VERSION=stable
|
|
FROM debian:${DEBIAN_VERSION} AS builder
|
|
|
|
# Base directory for installed build artifacts.
|
|
# Due to limitations of the Docker image build process, this value is
|
|
# duplicated in an ARG in the second stage of the build.
|
|
#
|
|
ARG PREFIX_DIR=/usr/local/guacamole
|
|
|
|
# Build arguments
|
|
ARG BUILD_DIR=/tmp/guacd-docker-BUILD
|
|
ARG BUILD_DEPENDENCIES=" \
|
|
autoconf \
|
|
automake \
|
|
freerdp2-dev \
|
|
gcc \
|
|
libcairo2-dev \
|
|
libjpeg62-turbo-dev \
|
|
libossp-uuid-dev \
|
|
libpango1.0-dev \
|
|
libpulse-dev \
|
|
libssh2-1-dev \
|
|
libssl-dev \
|
|
libtelnet-dev \
|
|
libtool \
|
|
libvncserver-dev \
|
|
libwebsockets-dev \
|
|
libwebp-dev \
|
|
make"
|
|
|
|
# Bring build environment up to date and install build dependencies
|
|
RUN apt-get update && \
|
|
apt-get install -y $BUILD_DEPENDENCIES && \
|
|
rm -rf /var/lib/apt/lists/*
|
|
|
|
# Add configuration scripts
|
|
COPY src/guacd-docker/bin "${PREFIX_DIR}/bin/"
|
|
|
|
# Copy source to container for sake of build
|
|
COPY . "$BUILD_DIR"
|
|
|
|
# Build guacamole-server from local source
|
|
RUN ${PREFIX_DIR}/bin/build-guacd.sh "$BUILD_DIR" "$PREFIX_DIR"
|
|
|
|
# Record the packages of all runtime library dependencies
|
|
RUN ${PREFIX_DIR}/bin/list-dependencies.sh \
|
|
${PREFIX_DIR}/sbin/guacd \
|
|
${PREFIX_DIR}/lib/libguac-client-*.so \
|
|
${PREFIX_DIR}/lib/freerdp2/guac*.so \
|
|
> ${PREFIX_DIR}/DEPENDENCIES
|
|
|
|
# Use same Debian as the base for the runtime image
|
|
FROM debian:${DEBIAN_VERSION}-slim
|
|
|
|
# Base directory for installed build artifacts.
|
|
# Due to limitations of the Docker image build process, this value is
|
|
# duplicated in an ARG in the first stage of the build. See also the
|
|
# CMD directive at the end of this build stage.
|
|
#
|
|
ARG PREFIX_DIR=/usr/local/guacamole
|
|
|
|
# Runtime environment
|
|
ENV LC_ALL=C.UTF-8
|
|
ENV LD_LIBRARY_PATH=${PREFIX_DIR}/lib
|
|
ENV GUACD_LOG_LEVEL=info
|
|
|
|
ARG RUNTIME_DEPENDENCIES=" \
|
|
netcat-openbsd \
|
|
ca-certificates \
|
|
ghostscript \
|
|
fonts-liberation \
|
|
fonts-dejavu \
|
|
xfonts-terminus"
|
|
|
|
# Copy build artifacts into this stage
|
|
COPY --from=builder ${PREFIX_DIR} ${PREFIX_DIR}
|
|
|
|
# Bring runtime environment up to date and install runtime dependencies
|
|
RUN apt-get update && \
|
|
apt-get install -y --no-install-recommends $RUNTIME_DEPENDENCIES && \
|
|
apt-get install -y --no-install-recommends $(cat "${PREFIX_DIR}"/DEPENDENCIES) && \
|
|
rm -rf /var/lib/apt/lists/*
|
|
|
|
# Link FreeRDP plugins into proper path
|
|
RUN ${PREFIX_DIR}/bin/link-freerdp-plugins.sh \
|
|
${PREFIX_DIR}/lib/freerdp2/libguac*.so
|
|
|
|
# Checks the operating status every 5 minutes with a timeout of 5 seconds
|
|
HEALTHCHECK --interval=5m --timeout=5s CMD nc -z 127.0.0.1 4822 || exit 1
|
|
|
|
# Create a new user guacd
|
|
ARG UID=1000
|
|
ARG GID=1000
|
|
RUN groupadd --gid $GID guacd
|
|
RUN useradd --system --create-home --shell /usr/sbin/nologin --uid $UID --gid $GID guacd
|
|
|
|
# Run with user guacd
|
|
USER guacd
|
|
|
|
# Expose the default listener port
|
|
EXPOSE 4822
|
|
|
|
# Start guacd, listening on port 0.0.0.0:4822
|
|
#
|
|
# Note the path here MUST correspond to the value specified in the
|
|
# PREFIX_DIR build argument.
|
|
#
|
|
CMD /usr/local/guacamole/sbin/guacd -b 0.0.0.0 -L $GUACD_LOG_LEVEL -f
|
|
|