attest-provider/Dockerfile

#   Copyright Docker attest-provider authors
#
#   Licensed under the Apache License, Version 2.0 (the "License");
#   you may not use this file except in compliance with the License.
#   You may obtain a copy of the License at
#
#       http://www.apache.org/licenses/LICENSE-2.0
#
#   Unless required by applicable law or agreed to in writing, software
#   distributed under the License is distributed on an "AS IS" BASIS,
#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
#   See the License for the specific language governing permissions and
#   limitations under the License.
ARG BUILDERIMAGE="golang:1.22"
ARG BASEIMAGE="gcr.io/distroless/static:nonroot"

FROM ${BUILDERIMAGE} AS builder

ENV CGO_ENABLED=0

WORKDIR /app

ARG VERSION="dev"

RUN --mount=type=bind,source=.,target=/app \
  --mount=type=cache,target=$GOPATH/pkg/mod \
  --mount=type=cache,target=/root/.cache/go-build \
  go build -ldflags "-X main.version=$VERSION" -o /bin/attest main.go

FROM ${BASEIMAGE} AS production

COPY --from=builder /bin/attest /

USER 65532:65532

ENTRYPOINT ["/attest"]

FROM production AS dev

COPY --chown=65532:65532 certs/tls.crt certs/tls.key /certs/
refactor: remove copyright year; add newline 2024-10-18 09:33:52 -05:00			`# Copyright Docker attest-provider authors`
chore: add license headers 2024-10-17 13:48:16 -05:00			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`
merge poc 2024-05-23 10:52:35 -05:00			`ARG BUILDERIMAGE="golang:1.22"`
Initial commit 2024-05-23 10:19:55 -05:00			`ARG BASEIMAGE="gcr.io/distroless/static:nonroot"`

Add production stage to Dockerfile and tidy up 2024-07-01 10:50:18 +01:00			`FROM ${BUILDERIMAGE} AS builder`
Initial commit 2024-05-23 10:19:55 -05:00
Add production stage to Dockerfile and tidy up 2024-07-01 10:50:18 +01:00			`ENV CGO_ENABLED=0`
Initial commit 2024-05-23 10:19:55 -05:00
Use /app for workdir in build image 2024-06-28 16:59:35 +01:00			`WORKDIR /app`
Initial commit 2024-05-23 10:19:55 -05:00
chore: update attest to 0.5.1 - also set user agent in context 2024-09-09 17:11:44 +00:00			`ARG VERSION="dev"`

Add production stage to Dockerfile and tidy up 2024-07-01 10:50:18 +01:00			`RUN --mount=type=bind,source=.,target=/app \`
Remove GitHub app usage now that attest is public Signed-off-by: Jonny Stoten <jonny.stoten@docker.com> 2024-10-23 10:23:58 +01:00			`--mount=type=cache,target=$GOPATH/pkg/mod \`
			`--mount=type=cache,target=/root/.cache/go-build \`
			`go build -ldflags "-X main.version=$VERSION" -o /bin/attest main.go`
Initial commit 2024-05-23 10:19:55 -05:00
Add production stage to Dockerfile and tidy up 2024-07-01 10:50:18 +01:00			`FROM ${BASEIMAGE} AS production`
Initial commit 2024-05-23 10:19:55 -05:00
Add production stage to Dockerfile and tidy up 2024-07-01 10:50:18 +01:00			`COPY --from=builder /bin/attest /`
Initial commit 2024-05-23 10:19:55 -05:00
			`USER 65532:65532`

merge poc 2024-05-23 10:52:35 -05:00			`ENTRYPOINT ["/attest"]`
Add production stage to Dockerfile and tidy up 2024-07-01 10:50:18 +01:00
			`FROM production AS dev`

chown cert files 2024-07-01 15:01:44 +01:00			`COPY --chown=65532:65532 certs/tls.crt certs/tls.key /certs/`