Merge pull request TeslaGov#6 from TeslaGov/joefitz/docker-build

Joefitz/docker build

Author: fitzyjoe

Dockerfile

@@ -1,64 +1,50 @@
 FROM centos:7
 
-MAINTAINER Tesla Government email: [email protected]
+LABEL maintainer="TeslaGov" email="[email protected]"
 
-RUN yum -y update
+ENV LD_LIBRARY_PATH=/usr/local/lib
 
-RUN yum -y groupinstall 'Development Tools'
-RUN yum -y install pcre-devel pcre
-RUN yum -y install zlib-devel openssl-devel
-RUN yum -y install wget
-RUN yum -y install cmake
-RUN yum -y install check-devel check
-# RUN yum -y install subunit-devel subunit libsubunit
+RUN yum -y update && \
+	yum -y groupinstall 'Development Tools' && \
+	yum -y install pcre-devel pcre zlib-devel openssl-devel wget cmake check-devel check
 
 RUN mkdir -p /root/dl
+WORKDIR /root/dl
 
 # get our JWT module
-WORKDIR /root/dl
 # change this to get a specific version?
-RUN wget https://github.com/TeslaGov/ngx-http-auth-jwt-module/archive/master.zip
-RUN unzip master.zip
-RUN rm master.zip
-RUN ln -sf ngx-http-auth-jwt-module-master ngx-http-auth-jwt-module
+RUN wget https://github.com/TeslaGov/ngx-http-auth-jwt-module/archive/master.zip && \
+	unzip master.zip && \
+	rm master.zip && \
+	ln -sf ngx-http-auth-jwt-module-master ngx-http-auth-jwt-module
 
 # build jansson
-WORKDIR /root/dl
-RUN wget https://github.com/akheron/jansson/archive/v2.10.zip
-RUN unzip v2.10.zip
-RUN rm v2.10.zip
-RUN ln -sf jansson-2.10 jansson
-WORKDIR /root/dl/jansson
-RUN cmake .
-RUN make
-RUN make check
-RUN make install
+RUN wget https://github.com/akheron/jansson/archive/v2.10.zip && \
+	unzip v2.10.zip && \
+	rm v2.10.zip && \
+	ln -sf jansson-2.10 jansson && \
+	cd /root/dl/jansson && \
+	cmake . -DJANSSON_BUILD_SHARED_LIBS=1 -DJANSSON_BUILD_DOCS=OFF && \
+	make && \
+	make check && \
+	make install
 
 # build libjwt
-WORKDIR /root/dl
-RUN wget https://github.com/benmcollins/libjwt/archive/v1.8.0.zip
-RUN unzip v1.8.0.zip
-RUN rm v1.8.0.zip
-RUN ln -sf libjwt-1.8.0 libjwt
-WORKDIR /root/dl/libjwt
-RUN autoreconf -i
-RUN ./configure JANSSON_CFLAGS=/usr/local/include JANSSON_LIBS=/usr/local/lib
-RUN make all
-# this does not work because it can't find JANSSON
-# RUN make check
-RUN make install
-
-WORKDIR /root/dl
-RUN wget http://nginx.org/download/nginx-1.12.0.tar.gz
-RUN tar -xzf nginx-1.12.0.tar.gz
-RUN rm nginx-1.12.0.tar.gz
-RUN ln -sf nginx-1.12.0 nginx
-WORKDIR /root/dl/nginx
-RUN ./configure --with-compat --add-dynamic-module=../ngx-http-auth-jwt-module --with-cc-opt='-std=gnu99'
-RUN make modules
-
-
-EXPOSE 80
-VOLUME ["/etc/nginx/sites-enabled", "/etc/nginx/certs", "/etc/nginx/conf.d", "/var/log/nginx", "/var/www/html"]
-WORKDIR /etc/nginx
-
+RUN wget https://github.com/benmcollins/libjwt/archive/v1.8.0.zip && \
+	unzip v1.8.0.zip && \
+	rm v1.8.0.zip && \
+	ln -sf libjwt-1.8.0 libjwt && \
+	cd /root/dl/libjwt && \
+	autoreconf -i && \
+	./configure JANSSON_CFLAGS=/usr/local/include JANSSON_LIBS=/usr/local/lib && \
+	make all && \
+	make install
+
+# build nginx module against nginx sources
+RUN wget http://nginx.org/download/nginx-1.12.0.tar.gz && \
+	tar -xzf nginx-1.12.0.tar.gz && \
+	rm nginx-1.12.0.tar.gz && \
+	ln -sf nginx-1.12.0 nginx && \
+	cd /root/dl/nginx && \
+	./configure --with-compat --add-dynamic-module=../ngx-http-auth-jwt-module --with-cc-opt='-std=gnu99' && \
+	make modules

build.sh

@@ -0,0 +1,26 @@
+#!/bin/bash
+
+# build
+DOCKER_IMAGE_NAME=jwt-nginx
+docker build -t ${DOCKER_IMAGE_NAME} .
+CONTAINER_ID=$(docker run -itd ${DOCKER_IMAGE_NAME} sh)
+
+# setup test
+rm -rf ./lib
+rm -rf ./modules
+mkdir modules
+DOCKER_TEST_IMAGE_NAME=jwt-nginx-test
+docker build -t ${DOCKER_TEST_IMAGE_NAME} test/.
+CONTAINER_TEST_ID=$(docker run -p 8000:8000 -itd ${DOCKER_TEST_IMAGE_NAME} sh)
+docker cp ${CONTAINER_ID}:/usr/local/lib .
+docker cp lib ${CONTAINER_TEST_ID}:/usr/local
+docker cp ${CONTAINER_ID}:/root/dl/nginx/objs/ngx_http_auth_jwt_module.so modules/.
+docker cp modules/ngx_http_auth_jwt_module.so ${CONTAINER_TEST_ID}:/usr/lib64/nginx/modules/.
+docker cp resources/test-jwt-nginx.conf ${CONTAINER_TEST_ID}:/etc/nginx/conf.d/test-jwt-nginx.conf
+docker cp resources/nginx.conf ${CONTAINER_TEST_ID}:/etc/nginx/.
+
+docker exec -d ${CONTAINER_TEST_ID} /bin/bash -c "export LD_LIBRARY_PATH=/usr/local/lib && nginx" 
+
+
+
+

config

@@ -3,5 +3,6 @@ ngx_addon_name=ngx_http_auth_jwt_module
 ngx_module_type=HTTP
 ngx_module_name=ngx_http_auth_jwt_module
 ngx_module_srcs="$ngx_addon_dir/src/ngx_http_auth_jwt_module.c"
+ngx_module_libs="-ljansson -ljwt"
 
 . auto/module

resources/nginx.conf

@@ -0,0 +1,34 @@
+
+user  nginx;
+worker_processes  1;
+
+error_log  /var/log/nginx/error.log warn;
+pid        /var/run/nginx.pid;
+
+load_module modules/ngx_http_auth_jwt_module.so;
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       /etc/nginx/mime.types;
+    default_type  application/octet-stream;
+
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    include /etc/nginx/conf.d/*.conf;
+}
+

resources/test-jwt-nginx.conf

@@ -0,0 +1,20 @@
+server {
+    auth_jwt_key                 "00112233445566778899AABBCCDDEEFF00112233445566778899AABBCCDDEEFF";
+    auth_jwt_loginurl            "https://teslagov.com";
+    auth_jwt_enabled             off;
+
+    listen       8000;
+    server_name  localhost;
+
+    ___location ~ ^/secure/ {
+        auth_jwt_enabled   on;
+        root   /usr/share/nginx;
+        index  index.html index.htm;
+    }
+
+    ___location / {
+        root   /usr/share/nginx/html;
+        index  index.html index.htm;
+    }
+}
+

test/Dockerfile

@@ -0,0 +1,15 @@
+FROM centos:7
+
+LABEL maintainer="TeslaGov" email="[email protected]"
+
+ENV LD_LIBRARY_PATH=/usr/local/lib
+
+COPY nginx.repo /etc/yum.repos.d/nginx.repo
+
+# setup a test for the new module
+# download and run nginx binary
+RUN yum -y update && \
+	yum -y install nginx-1.12.0 && \
+	cp -r /usr/share/nginx/html /usr/share/nginx/secure
+
+EXPOSE 8000