82 lines
3.4 KiB
Bash
82 lines
3.4 KiB
Bash
|
#! /usr/bin/env bash
|
||
|
|
||
|
# From official Nginx Docker image, as a script to re-use it, removing internal comments
|
||
|
# Ref: https://github.com/nginxinc/docker-nginx/blob/594ce7a8bc26c85af88495ac94d5cd0096b306f7/mainline/buster/Dockerfile
|
||
|
|
||
|
# Standard set up Nginx
|
||
|
export NGINX_VERSION=1.17.10
|
||
|
export NJS_VERSION=0.3.9
|
||
|
export PKG_RELEASE=1~buster
|
||
|
|
||
|
set -x \
|
||
|
&& apt-get update \
|
||
|
&& apt-get install --no-install-recommends --no-install-suggests -y gnupg1 ca-certificates \
|
||
|
&& \
|
||
|
NGINX_GPGKEY=573BFD6B3D8FBC641079A6ABABF5BD827BD9BF62; \
|
||
|
found=''; \
|
||
|
for server in \
|
||
|
ha.pool.sks-keyservers.net \
|
||
|
hkp://keyserver.ubuntu.com:80 \
|
||
|
hkp://p80.pool.sks-keyservers.net:80 \
|
||
|
pgp.mit.edu \
|
||
|
; do \
|
||
|
echo "Fetching GPG key $NGINX_GPGKEY from $server"; \
|
||
|
apt-key adv --keyserver "$server" --keyserver-options timeout=10 --recv-keys "$NGINX_GPGKEY" && found=yes && break; \
|
||
|
done; \
|
||
|
test -z "$found" && echo >&2 "error: failed to fetch GPG key $NGINX_GPGKEY" && exit 1; \
|
||
|
apt-get remove --purge --auto-remove -y gnupg1 && rm -rf /var/lib/apt/lists/* \
|
||
|
&& dpkgArch="$(dpkg --print-architecture)" \
|
||
|
&& nginxPackages=" \
|
||
|
nginx=${NGINX_VERSION}-${PKG_RELEASE} \
|
||
|
nginx-module-xslt=${NGINX_VERSION}-${PKG_RELEASE} \
|
||
|
nginx-module-geoip=${NGINX_VERSION}-${PKG_RELEASE} \
|
||
|
nginx-module-image-filter=${NGINX_VERSION}-${PKG_RELEASE} \
|
||
|
nginx-module-njs=${NGINX_VERSION}.${NJS_VERSION}-${PKG_RELEASE} \
|
||
|
" \
|
||
|
&& case "$dpkgArch" in \
|
||
|
amd64|i386) \
|
||
|
echo "deb https://nginx.org/packages/mainline/debian/ buster nginx" >> /etc/apt/sources.list.d/nginx.list \
|
||
|
&& apt-get update \
|
||
|
;; \
|
||
|
*) \
|
||
|
echo "deb-src https://nginx.org/packages/mainline/debian/ buster nginx" >> /etc/apt/sources.list.d/nginx.list \
|
||
|
\
|
||
|
&& tempDir="$(mktemp -d)" \
|
||
|
&& chmod 777 "$tempDir" \
|
||
|
\
|
||
|
&& savedAptMark="$(apt-mark showmanual)" \
|
||
|
\
|
||
|
&& apt-get update \
|
||
|
&& apt-get build-dep -y $nginxPackages \
|
||
|
&& ( \
|
||
|
cd "$tempDir" \
|
||
|
&& DEB_BUILD_OPTIONS="nocheck parallel=$(nproc)" \
|
||
|
apt-get source --compile $nginxPackages \
|
||
|
) \
|
||
|
\
|
||
|
&& apt-mark showmanual | xargs apt-mark auto > /dev/null \
|
||
|
&& { [ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; } \
|
||
|
\
|
||
|
&& ls -lAFh "$tempDir" \
|
||
|
&& ( cd "$tempDir" && dpkg-scanpackages . > Packages ) \
|
||
|
&& grep '^Package: ' "$tempDir/Packages" \
|
||
|
&& echo "deb [ trusted=yes ] file://$tempDir ./" > /etc/apt/sources.list.d/temp.list \
|
||
|
&& apt-get -o Acquire::GzipIndexes=false update \
|
||
|
;; \
|
||
|
esac \
|
||
|
\
|
||
|
&& apt-get install --no-install-recommends --no-install-suggests -y \
|
||
|
$nginxPackages \
|
||
|
gettext-base \
|
||
|
&& apt-get remove --purge --auto-remove -y ca-certificates && rm -rf /var/lib/apt/lists/* /etc/apt/sources.list.d/nginx.list \
|
||
|
\
|
||
|
&& if [ -n "$tempDir" ]; then \
|
||
|
apt-get purge -y --auto-remove \
|
||
|
&& rm -rf "$tempDir" /etc/apt/sources.list.d/temp.list; \
|
||
|
fi
|
||
|
|
||
|
# forward request and error logs to docker log collector
|
||
|
ln -sf /dev/stdout /var/log/nginx/access.log \
|
||
|
&& ln -sf /dev/stderr /var/log/nginx/error.log
|
||
|
# Standard set up Nginx finished
|