-
-
Notifications
You must be signed in to change notification settings - Fork 141
Expand file tree
/
Copy pathDockerfile
More file actions
112 lines (96 loc) · 3.29 KB
/
Dockerfile
File metadata and controls
112 lines (96 loc) · 3.29 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
ARG CONTAINER_VERSION=13.351.0
ARG FOUNDRY_RELEASE_URL
ARG FOUNDRY_VERSION=13.351
ARG NODE_IMAGE_VERSION=22-bookworm-slim
FROM public.ecr.aws/docker/library/node:${NODE_IMAGE_VERSION} AS compile-typescript-stage
WORKDIR /root
COPY \
package.json \
package-lock.json \
tsconfig.json \
./
RUN npm install && npm install --global typescript
COPY /src/*.ts src/
RUN tsc
RUN grep -l "#!" dist/*.js | xargs chmod a+x
FROM public.ecr.aws/docker/library/node:${NODE_IMAGE_VERSION} AS optional-release-stage
# This stage is optional and will only be executed if the FOUNDRY_RELEASE_URL or
# FOUNDRY_USERNAME and FOUNDRY_PASSWORD secrets are provided. It will download
# and extract the Foundry VTT release for inclusion in the final stage.
ARG FOUNDRY_RELEASE_URL
ARG FOUNDRY_VERSION
ENV ARCHIVE="foundryvtt-${FOUNDRY_VERSION}.zip"
WORKDIR /root
COPY --from=compile-typescript-stage \
/root/package.json \
/root/package-lock.json \
/root/dist/authenticate.js \
/root/dist/get_release_url.js \
/root/dist/logging.js \
./
# .placeholder file to mitigate https://github.com/moby/moby/issues/37965
RUN mkdir dist && touch dist/.placeholder
RUN \
--mount=type=secret,id=foundry_username,required=false \
--mount=type=secret,id=foundry_password,required=false \
npm install && \
if [ -f /run/secrets/foundry_username ] && [ -f /run/secrets/foundry_password ]; then \
./authenticate.js "$(cat /run/secrets/foundry_username)" "$(cat /run/secrets/foundry_password)" cookiejar.json && \
presigned_url=$(./get_release_url.js --retry 5 cookiejar.json "${FOUNDRY_VERSION}") && \
DOWNLOAD_URL="${presigned_url}"; \
elif [ -n "${FOUNDRY_RELEASE_URL}" ]; then \
DOWNLOAD_URL="${FOUNDRY_RELEASE_URL}"; \
else \
echo "No valid credentials or pre-signed URL provided. Skipping pre-installation."; \
fi && \
if [ -n "${DOWNLOAD_URL}" ]; then \
apt-get update && apt-get install -y unzip wget && \
wget -O ${ARCHIVE} "${DOWNLOAD_URL}" && \
mkdir -p "dist/resources/app" && \
unzip -d "dist/resources/app" ${ARCHIVE}; \
fi
FROM public.ecr.aws/docker/library/node:${NODE_IMAGE_VERSION} AS final-stage
ARG CONTAINER_VERSION
ARG FOUNDRY_VERSION
ARG TARGETPLATFORM
LABEL com.foundryvtt.version=${FOUNDRY_VERSION}
LABEL org.opencontainers.image.authors="markf+github@geekpad.com"
LABEL org.opencontainers.image.vendor="Geekpad"
ENV FOUNDRY_VERSION=${FOUNDRY_VERSION}
ENV HOME=/home/node
WORKDIR $HOME
COPY --from=optional-release-stage /root/dist/ .
COPY --from=compile-typescript-stage /root/dist/ .
COPY \
package.json \
package-lock.json \
src/check_health.sh \
src/entrypoint.sh \
src/launcher.sh \
src/logging.sh \
./
RUN mkdir -p resources /data \
&& chmod a+rwx resources /data \
&& apt-get update && apt-get install -y \
curl \
file \
jq \
patch \
sed \
tzdata \
unzip \
&& rm -rf /var/lib/apt/lists/* \
&& npm install && echo ${CONTAINER_VERSION} > image_version.txt
VOLUME ["/data"]
# HTTP Server
EXPOSE 30000/tcp
# TURN Server
# Not exposing TURN ports due to bug in Docker.
# See: https://github.com/moby/moby/issues/11185
# EXPOSE 33478/udp
# EXPOSE 49152-65535/udp
USER node
ENTRYPOINT ["./entrypoint.sh"]
CMD ["resources/app/main.mjs", "--port=30000", "--headless", "--noupdate",\
"--dataPath=/data"]
HEALTHCHECK --start-period=3m --interval=30s --timeout=5s CMD ./check_health.sh