st2-dockerfiles
st2-dockerfiles copied to clipboard
StackStorm
StackStorm Dockerfiles (one-service-per-container) to build and push images to the StackStorm Docker registry. Used by stackstorm-ha K8s Helm chart and Docker-compose deployments.
It is good security practice to run containers without root and minimal privileges. However, the st2web container attempts to expose on port 80 and 443, which are both
"WORKDIR" instruction should be used instead of "cd" commands (docker:S6597) In Dockerfile, instructions RUN, CMD, and ENTRYPOINT can contain long shell scripts chaining multiple commands, including the cd command for...
We need xmlsec1 to run pysaml2 on the auth backend, so adding this to st2auth since that's where the sso backend runs
Experimental PR: Do not merge! This is an experimental release of the CentOS container. The container is not guaranteed to be in a stable condition. This is a fork off...
Sign the StackStorm Docker images during the build CI/CD process so image consumers can ensure that the StackStorm images they pull from Docker Hub repository are signed. See https://docs.docker.com/engine/reference/commandline/trust/ and...
> Moved from github.com/stackstorm/st2enterprise-dockerfiles#8 We'll need to investigate the ways to cleanup the resulting Docker images. Not sure about the docker layer squashing, but for example, after working closer, it's...
> Moved from https://github.com/StackStorm/st2enterprise-dockerfiles/issues/47 In a normal non-dockerized deployment, typical service logs vs AUDIT logs from the services are divided into different logfiles. In Dockerized environment the established practice is...
I can do a PR, but wanted to ask this as a question first. I want to build a custom st2 base image and then build the remaining st2 images...
Metadata
Owner
Metadata
StackStorm Dockerfiles (one-service-per-container) to build and push images to the StackStorm Docker registry. Used by stackstorm-ha K8s Helm chart and Docker-compose deployments.