# SPDX-License-Identifier: MIT #!BuildTag: suse/manager/5.0/%ARCH%/server:5.0.5 suse/manager/5.0/%ARCH%/server:5.0.5.%RELEASE% suse/manager/5.0/%ARCH%/server:latest ARG INIT_IMAGE=uyuni/init:latest FROM $INIT_IMAGE ARG PRODUCT_PATTERN_PREFIX="patterns-uyuni" # Extra packages can be added via project configuration ARG EXTRAPACKAGES COPY timezone_alignment.sh /usr/bin COPY healthcheck.sh /usr/bin RUN chmod a+x /usr/bin/healthcheck.sh # Copy timezone link update service COPY timezone_alignment.service /usr/lib/systemd/system/ COPY remove_unused.sh . RUN echo "rpm.install.excludedocs = yes" >>/etc/zypp/zypp.conf # Main packages RUN zypper ref && zypper --non-interactive up RUN zypper --gpg-auto-import-keys --non-interactive install --auto-agree-with-licenses --force-resolution \ ${EXTRAPACKAGES} \ ${PRODUCT_PATTERN_PREFIX}_server \ ${PRODUCT_PATTERN_PREFIX}_retail \ billing-data-service \ grub2-x86_64-efi \ grub2-arm64-efi \ grub2-powerpc-ieee1275 \ ed \ susemanager-tftpsync \ golang-github-prometheus-node_exporter \ prometheus-postgres_exporter \ golang-github-QubitProducts-exporter_exporter \ prometheus-jmx_exporter \ prometheus-jmx_exporter-tomcat \ spacecmd \ grafana-formula \ locale-formula \ prometheus-exporters-formula \ prometheus-formula \ registry-formula \ virtualization-formulas \ uyuni-config-formula \ saphanabootstrap-formula \ sapnwbootstrap-formula \ drbd-formula \ habootstrap-formula \ salt-shaptools \ inter-server-sync \ spacecmd \ javamail \ libyui-ncurses-pkg16 \ virtual-host-gatherer-libcloud \ virtual-host-gatherer-Libvirt \ virtual-host-gatherer-Nutanix \ virtual-host-gatherer-VMware \ vim \ python3-pygit2 \ ipmitool \ sssd \ sssd-dbus \ sssd-ldap \ sssd-ad \ sssd-ipa \ sssd-krb5 \ sssd-tools RUN set -euo pipefail; zypper -n rr -a; \ rm -rf /var/log/{alternatives.log,lastlog,tallylog,zypper.log,zypp/history,YaST2} RUN mkdir -p /usr/lib/postfix/systemd COPY config_postfix /usr/lib/postfix/systemd/ RUN chmod a+x /usr/lib/postfix/systemd/config_postfix RUN sed -i 's/sysctl kernel.shmmax/#sysctl kernel.shmmax/g' /usr/bin/uyuni-setup-reportdb RUN rm /etc/sysconfig/prometheus-postgres_exporter RUN mkdir -p /etc/sysconfig/prometheus-postgres_exporter/systemd \ /etc/systemd/system/prometheus-postgres_exporter.service.d \ /etc/prometheus-jmx_exporter/tomcat \ /usr/lib/systemd/system/tomcat.service.d \ /etc/prometheus-jmx_exporter/taskomatic \ /usr/lib/systemd/system/taskomatic.service.d RUN touch /etc/sysconfig/prometheus-postgres_exporter/systemd/60-server.conf RUN ln -s /etc/sysconfig/prometheus-postgres_exporter/systemd/60-server.conf /etc/systemd/system/prometheus-postgres_exporter.service.d/60-server.conf COPY java_agent.yaml /etc/prometheus-jmx_exporter/tomcat/java_agent.yml COPY java_agent.yaml /etc/prometheus-jmx_exporter/taskomatic/java_agent.yml COPY tomcat_jmx.conf /usr/lib/systemd/system/tomcat.service.d/jmx.conf COPY taskomatic_jmx.conf /usr/lib/systemd/system/taskomatic.service.d/jmx.conf COPY pam-susemanager /etc/pam.d/susemanager COPY pam-susemanager-account /etc/pam.d/susemanager-account COPY pam-susemanager-auth /etc/pam.d/susemanager-auth COPY pam-susemanager-password /etc/pam.d/susemanager-password COPY pam-susemanager-session /etc/pam.d/susemanager-session COPY pam-password-auth /etc/pam.d/password-auth COPY pam-postlogin /etc/pam.d/postlogin COPY pam-system-auth /etc/pam.d/system-auth COPY nsswitch.conf /etc/nsswitch.conf RUN chmod -R 755 /usr/bin/timezone_alignment.sh # Set a warning message for interactive shells COPY motd /etc/motd RUN echo "cat /etc/motd" >/etc/sh.shrc.local RUN systemctl enable prometheus-node_exporter; \ systemctl enable uyuni-setup; \ systemctl enable timezone_alignment; \ systemctl enable sssd; # Provide tool to synchronize package and configuration files to persistent volumes COPY uyuni-configfiles-sync /usr/bin RUN chmod -R 755 /usr/bin/uyuni-configfiles-sync # Initialize environments to sync configuration and package files to persistent volumes RUN uyuni-configfiles-sync init /etc/apache2/ RUN uyuni-configfiles-sync init /etc/cobbler/ RUN uyuni-configfiles-sync init /etc/postfix/ RUN uyuni-configfiles-sync init /etc/rhn/ RUN uyuni-configfiles-sync init /etc/salt/ RUN uyuni-configfiles-sync init /etc/sysconfig/ RUN uyuni-configfiles-sync init /etc/tomcat/ RUN uyuni-configfiles-sync init /srv/tftpboot/ RUN uyuni-configfiles-sync init /srv/www/ RUN uyuni-configfiles-sync init /var/lib/cobbler/ # Set /etc/krb5.conf.d/ as a link to krb5 COPY krb5.conf /etc/krb5.conf COPY krb5-conf-setup.sh /usr/bin/krb5-conf-setup.sh RUN /bin/bash krb5-conf-setup.sh # LABELs ARG PRODUCT="SUSE Manager" ARG VENDOR="SUSE LLC" ARG URL="https://www.uyuni-project.org/" ARG REFERENCE_PREFIX="registry.opensuse.org/uyuni" ARG PRODUCT_VERSION="5.0.5" # Build Service required labels # labelprefix=com.suse.manager.server LABEL com.suse.supportlevel="l3" LABEL com.suse.lifecycle-url="https://www.suse.com/lifecycle/" LABEL com.suse.release-stage="released" LABEL com.suse.eula="sle-eula" LABEL org.opencontainers.image.name=server-image LABEL org.opencontainers.image.title="${PRODUCT} server container" LABEL org.opencontainers.image.description="All-in-one ${PRODUCT} server image" LABEL org.opencontainers.image.created="%BUILDTIME%" LABEL org.opencontainers.image.vendor="${VENDOR}" LABEL org.opencontainers.image.url="${URL}" LABEL org.opencontainers.image.version=5.0.16 LABEL org.openbuildservice.disturl="%DISTURL%" LABEL org.opensuse.reference="${REFERENCE_PREFIX}/%ARCH%/server:5.0.5.%RELEASE%" # endlabelprefix LABEL org.uyuni.version="${PRODUCT_VERSION}" CMD ["/usr/lib/systemd/systemd"] HEALTHCHECK --interval=60s --timeout=120s --retries=5 --start-period=300s CMD ["/usr/bin/healthcheck.sh"]