4be8dae626
Make web vault show a more informative error when browsers block WebCrypto in insecure contexts and update dependencies
2020-04-09 22:54:31 +02:00
5471088e93
Merge pull request #933 from jjlin/dockerfiles
...
Rebuild Dockerfiles to match latest Dockerfile.j2 template
2020-03-27 17:45:10 +01:00
4e85a1dee1
Update web vault to 2.13.2
2020-03-27 17:44:10 +01:00
d4bfa1a189
Rebuild Dockerfiles to match latest Dockerfile.j2 template
...
Picks up a couple of missed changes from b837348bccf6ee79
2020-03-26 20:10:33 -07:00
bbb0484d03
Healthcheck fixes/optimizations
...
* Switch healthcheck interval/timeout from 30s/3s to 60s/10s.
30s interval is arguably overkill, and 3s timeout is definitely too short
for lower end machines.
* Use HEALTHCHECK CMD exec form to avoid superfluous `sh` invocations.
* Add `--silent --show-error` flags to curl call to avoid progress meter being
shown in healthcheck logs.
2020-03-25 20:13:36 -07:00
fdf50f0064
Update healthcheck script to handle alternate base dir
2020-03-24 20:00:35 -07:00
b837348b25
Build as static
2020-03-16 22:34:59 +01:00
edabf19ddf
Update vault to 2.13.1
2020-03-14 14:40:06 +01:00
b6612e90ca
Update dependencies
2020-03-09 22:00:59 +01:00
edfdda86ae
Use web vault built by docker autobuild, using the hash to reference the image for extra security
2020-03-01 02:40:18 +01:00
0a3008e753
Update web vault used in docker
2020-02-22 16:00:43 +01:00
916e96b143
Update web vault to fix copy issues
2020-02-18 20:08:21 +01:00
84ed185579
Update u2f to 0.2, which requires OpenSSL but also might solve the problems we've had with certificates.
...
The rust image doesn't need installing curl or tar, so removed. Also collapsed ENV lines.
2020-01-19 21:34:13 +01:00
a3b30ed65a
Add missing target armv7 and cross compile envs
2020-01-05 22:41:58 +01:00
402c857d17
Add hint to Dockerfile's that they are generated
2020-01-03 22:07:56 +01:00
def858854b
Readd missing cargo build for armv7. Thanks to @dani-garcia!
2020-01-03 22:00:45 +01:00
f6761ac30e
Remove debugging echo statement from Dockerfiles
2020-01-01 15:17:33 +01:00
f8e49ea3f4
Use apt-get instead of apt in Dockerfiles, also --no-install-recommends
...
apt is intended for humans, not scripts.
--no-install-recommends improves build time by avoiding to install
unneeded packages.
2019-12-31 16:46:08 +01:00
f6a4a2127b
Remove duplicate empty lines in generated Dockerfiles
...
Checked with:
```Shell
find . -type f -print0 | xargs -0 pcregrep -M '\n\n\n'
```
2019-12-31 16:33:00 +01:00
446fc3f1f8
Set build time options for dpkg and reproducible builds
...
Ref: https://github.com/moby/moby/issues/4032
Ref: https://sweetcode.io/using-docker-reproducible-build-environments/
Ref: https://github.com/hashbang/aosp-build/blob/master/config/container/Dockerfile
2019-12-31 16:33:00 +01:00
146525db91
Improve Jinja2 template logic a bit
2019-12-31 16:33:00 +01:00
1698b43f9b
Readd missing cargo setup for armv7. Thanks to @dani-garcia!
2019-12-31 16:33:00 +01:00
078b21db85
Fix armv6 build, thanks to @dani-garcia for the review!
2019-12-31 16:33:00 +01:00
43adcde094
Move rustup target before cargo build. Thanks to @dani-garcia!
...
Note from @dani-garcia:
> I don't think this is doing anything right now because the target is probably
> installed already.
2019-12-31 16:32:59 +01:00
7a0bb18dcf
Make cargo new independent of workdir to be exact
...
The muslrust images seem to have a workdir of /volume as opposed to / in the
others so doing cargo new like this would create the folder in /volume/app.
2019-12-31 16:32:59 +01:00
47a5a4e1fc
Fix package name for Ubuntu 16.04 based image. Thanks @dani-garcia!
2019-12-31 16:32:59 +01:00
0f0e5876ae
Move dpkg --add-architecture before the first apt call
...
Thanks to @dani-garcia for the review!
2019-12-31 16:32:59 +01:00
43aa75dc89
Fix cross platform build support, thanks to @dani-garcia for the review
2019-12-31 16:32:59 +01:00
8280d200ea
Generate Dockerfiles from one source for maintainability. Closes #785 .
2019-12-28 22:52:20 +01:00
f250c54813
WIP: Use Debian base image for all steps of the build process
...
No need to use two different base images. Debian buster is pulled later
anyway so we can just use it for the vault stage as well.
My reason for this change is partly to avoid redundancy and partly to
make it easier to build everything yourself. When all the build
environment is based on Debian than you just have to figure out how to
build a Debian Docker base image (ref:
https://github.com/ypid/docker-makefile ).
2019-12-28 14:43:08 +01:00
4cec502f7b
Update docker images to alpine 3.11 and rust 1.40
2019-12-22 21:42:13 +01:00
cf5a985b31
Updated rust images and enabled minimal profile
2019-11-24 17:52:54 +01:00
cbadf00941
Update web vault to fix twofactorauth.org integration
...
Update dependencies and toolchain
Update included equivalent domains with upstream changes
2019-11-19 20:30:09 +01:00
748c825202
cleaner startup exec in order to build the image and run the container with podman/libpod
2019-11-13 22:11:09 +01:00
204993568a
cleaner startup exec in order to build the image and run the container with podman/libpod
2019-11-13 21:45:26 +01:00
70be2d93ce
cleaner startup exec in order to build the image and run the container with podman/libpod
2019-11-13 13:45:05 +01:00
efc65b93f8
Don't install mysql libraries for sqlite builds
2019-11-05 16:08:41 +13:00
97d41c2686
Revert rustup minimal profile, rustup can't be updated
2019-10-26 00:55:58 +02:00
fccc0a4b05
Update rocket to latest master
...
Downgrade rust version to fix cargo issue
Set rustup profile to minimal
2019-10-25 21:48:10 +02:00
57b1d3f850
Update dependencies and docker base images
2019-10-24 20:37:17 +02:00
acdd42935b
Add sqlite binary into the docker images
...
This is done to enable backup functionality in the admin interface while
we're waiting for the libsqlite-sys 0.17 to bubble up in the upstream
dependencies. Then we can start using `VACUUM INTO`
This also extends the check for the sqlite binary to also try `sqlite3`
as this is the name of the binary in baseimage distributions we use.
2019-09-30 13:54:06 +01:00
f5f9861a78
Adds support for PostgreSQL which resolves #87 and is mentioned in #246 .
...
This includes migrations as well as Dockerfile's for amd64.
The biggest change is that replace_into isn't supported by Diesel for the
PostgreSQL backend, instead requiring the use of on_conflict. This
unfortunately requires a branch for save() on all of the models currently
using replace_into.
2019-09-12 16:12:22 -04:00
f9408a00c6
Allow self signed certs and increase a bit the timings
2019-09-11 22:01:42 +02:00
ae8bf954c1
Updated web vault to 2.12
2019-09-07 22:13:56 +02:00
eea3f13bb3
Fix #603 and remove mysql from sqlite image
...
This changes the healthcheck to use `sh` instead of bash, that is absent
from some image versions. (like alpine)
It also removes `*mariadb*` packages from runtime image of sqlite images
as these shouldn't be required.
2019-09-06 09:34:21 +01:00
dda244edd8
Merge pull request #589 from H3npi/H3npi-patch-1
...
Adds Healthcheck for default docker container
2019-09-05 19:47:10 +02:00
cce3ce816c
Adds environment port to curl healthcheck
2019-09-04 09:12:53 +02:00
66a68f6d22
Adds Healthcheck for all docker container
2019-08-29 09:02:02 +02:00
469318bcbd
Updated dependencies and web vault version
2019-08-27 21:14:15 +02:00
8be2ed6255
Update web vault to 2.11.0
2019-07-30 19:50:35 +02:00
