Mick

0 Followers · 0 Following

• Joined on 2024-07-23

Repositories Projects Packages Public Activity Starred Repositories

certifier-certbot (v1.5)

Published 2024-08-05 17:34:03 +00:00 by Mick

Installation

Pull the image from the command line:

docker pull git.beno.work/mick/certifier-certbot:v1.5

Digest

sha256:b3b3e9d82d3f49de6b4dcbc59860a00ff7c8d50a79b749c11689543de6b04d42

For more information on the Container registry, see the documentation.

Image Layers

ADD file:8729f9c0258836b640e9e789c7ab029cf4547e0596557d54dd4a4d7d8e4a785f in /

CMD ["/bin/sh"]

ENV PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

ENV LANG=C.UTF-8

RUN /bin/sh -c set -eux; apk add --no-cache ca-certificates tzdata ; # buildkit

ENV GPG_KEY=7169605F62C751356D054A26A821E680E5FA6305

ENV PYTHON_VERSION=3.12.3

RUN /bin/sh -c set -eux; apk add --no-cache --virtual .build-deps gnupg tar xz bluez-dev bzip2-dev dpkg-dev dpkg expat-dev findutils gcc gdbm-dev libc-dev libffi-dev libnsl-dev libtirpc-dev linux-headers make ncurses-dev openssl-dev pax-utils readline-dev sqlite-dev tcl-dev tk tk-dev util-linux-dev xz-dev zlib-dev ; wget -O python.tar.xz "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]*}/Python-$PYTHON_VERSION.tar.xz"; wget -O python.tar.xz.asc "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]*}/Python-$PYTHON_VERSION.tar.xz.asc"; GNUPGHOME="$(mktemp -d)"; export GNUPGHOME; gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys "$GPG_KEY"; gpg --batch --verify python.tar.xz.asc python.tar.xz; gpgconf --kill all; rm -rf "$GNUPGHOME" python.tar.xz.asc; mkdir -p /usr/src/python; tar --extract --directory /usr/src/python --strip-components=1 --file python.tar.xz; rm python.tar.xz; cd /usr/src/python; gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; ./configure --build="$gnuArch" --enable-loadable-sqlite-extensions --enable-optimizations --enable-option-checking=fatal --enable-shared --with-lto --with-system-expat --without-ensurepip ; nproc="$(nproc)"; EXTRA_CFLAGS="-DTHREAD_STACK_SIZE=0x100000"; LDFLAGS="${LDFLAGS:--Wl},--strip-all"; make -j "$nproc" "EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" "LDFLAGS=${LDFLAGS:-}" "PROFILE_TASK=${PROFILE_TASK:-}" ; rm python; make -j "$nproc" "EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" "LDFLAGS=${LDFLAGS:--Wl},-rpath='\$\$ORIGIN/../lib'" "PROFILE_TASK=${PROFILE_TASK:-}" python ; make install; cd /; rm -rf /usr/src/python; find /usr/local -depth \( \( -type d -a \( -name test -o -name tests -o -name idle_test \) \) -o \( -type f -a \( -name '*.pyc' -o -name '*.pyo' -o -name 'libpython*.a' \) \) \) -exec rm -rf '{}' + ; find /usr/local -type f -executable -not \( -name '*tkinter*' \) -exec scanelf --needed --nobanner --format '%n#p' '{}' ';' | tr ',' '\n' | sort -u | awk 'system("[ -e /usr/local/lib/" $1 " ]") == 0 { next } { print "so:" $1 }' | xargs -rt apk add --no-network --virtual .python-rundeps ; apk del --no-network .build-deps; python3 --version # buildkit

RUN /bin/sh -c set -eux; for src in idle3 pydoc3 python3 python3-config; do dst="$(echo "$src" | tr -d 3)"; [ -s "/usr/local/bin/$src" ]; [ ! -e "/usr/local/bin/$dst" ]; ln -svT "$src" "/usr/local/bin/$dst"; done # buildkit

ENV PYTHON_PIP_VERSION=24.0

ENV PYTHON_GET_PIP_URL=https://github.com/pypa/get-pip/raw/dbf0c85f76fb6e1ab42aa672ffca6f0a675d9ee4/public/get-pip.py

ENV PYTHON_GET_PIP_SHA256=dfe9fd5c28dc98b5ac17979a953ea550cec37ae1b47a5116007395bfacff2ab9

RUN /bin/sh -c set -eux; wget -O get-pip.py "$PYTHON_GET_PIP_URL"; echo "$PYTHON_GET_PIP_SHA256 *get-pip.py" | sha256sum -c -; export PYTHONDONTWRITEBYTECODE=1; python get-pip.py --disable-pip-version-check --no-cache-dir --no-compile "pip==$PYTHON_PIP_VERSION" ; rm -f get-pip.py; pip --version # buildkit

CMD ["python3"]

ENTRYPOINT ["certbot"]

EXPOSE map[443/tcp:{} 80/tcp:{}]

VOLUME [/etc/letsencrypt /var/lib/letsencrypt]

WORKDIR /opt/certbot

COPY CHANGELOG.md README.rst src/ # buildkit

COPY tools tools # buildkit

COPY acme src/acme # buildkit

COPY certbot src/certbot # buildkit

RUN /bin/sh -c apk add --no-cache --virtual .certbot-deps libffi libssl1.1 openssl ca-certificates binutils # buildkit

ARG CARGO_NET_GIT_FETCH_WITH_CLI=true

RUN |1 CARGO_NET_GIT_FETCH_WITH_CLI=true /bin/sh -c apk add --no-cache --virtual .build-deps gcc linux-headers openssl-dev musl-dev libffi-dev python3-dev cargo git pkgconfig && python tools/pip_install.py --no-cache-dir --editable src/acme --editable src/certbot && apk del .build-deps && rm -rf ${HOME}/.cargo # buildkit

RUN /bin/sh -c pip install certbot_dns_duckdns certbot-dns-desec # buildkit

COPY renewal-hook.sh /etc/letsencrypt/renewal-hooks/deploy/restart-nginx.sh # buildkit

RUN /bin/sh -c chmod +x /etc/letsencrypt/renewal-hooks/deploy/restart-nginx.sh # buildkit

COPY start.py /usr/local/bin/start.py # buildkit

RUN /bin/sh -c chmod +x /usr/local/bin/start.py # buildkit

EXPOSE map[80/tcp:{}]

ENTRYPOINT ["/bin/sh" "-c" "trap exit TERM; while :; do certbot renew; sleep 12h & wait $${!}; done;"]

Labels

Key	Value
com.docker.compose.project	certifier
com.docker.compose.service	certbot
com.docker.compose.version	2.28.1

Details

Container

2024-08-05 17:34:03 +00:00

8

OCI / Docker

linux/amd64

42 MiB

Versions (8) View all

latest 2024-08-05

v1.6 2024-08-05

v1.5 2024-08-05

v1.4 2024-08-05

v1.3 2024-08-04