-FROM onap/integration-java11:10.0.0
+FROM eclipse-temurin:11-jre-alpine
USER root
ARG JETTY_FOLDER=/app/jetty
-RUN apk update && \
+# Create onap user/group, install dependencies, and create Jetty folder
+RUN addgroup -S onap && \
+ adduser -S -G onap -h /home/onap onap && \
apk add --no-cache curl jq && \
- rm -rf /var/cache/apk/*
-
-# Create Jetty folder and set permissions
-RUN mkdir -p $JETTY_FOLDER && chown onap:onap $JETTY_FOLDER
+ mkdir -p $JETTY_FOLDER && chown onap:onap $JETTY_FOLDER
ENV JETTY_HOME=$JETTY_FOLDER
ENV JETTY_BASE=$JETTY_FOLDER
ENV JETTY_USER=onap
ENV JETTY_GROUP=onap
-#Download jetty
-
-RUN wget -q https://repo1.maven.org/maven2/org/eclipse/jetty/jetty-distribution/${jetty-distribution.version}/jetty-distribution-${jetty-distribution.version}.tar.gz --tries=3 -O $JETTY_FOLDER/jetty.tar.gz && \
- tar xz -C $JETTY_FOLDER -f $JETTY_FOLDER/jetty.tar.gz --strip 1 && \
- rm -rf $JETTY_FOLDER/jetty.tar.gz
-RUN sed -i 's/"jetty"/"onap"/g' $JETTY_FOLDER/etc/jetty-setuid.xml
-
-# Download OpenTelemetry Java Agent
-RUN mkdir -p $JETTY_FOLDER/otel && \
+# Download Jetty and OpenTelemetry Java Agent
+RUN wget -q https://repo1.maven.org/maven2/org/eclipse/jetty/jetty-distribution/${jetty-distribution.version}/jetty-distribution-${jetty-distribution.version}.tar.gz -O $JETTY_FOLDER/jetty.tar.gz && \
+ tar xz -C $JETTY_FOLDER -f $JETTY_FOLDER/jetty.tar.gz --strip 1 && \
+ rm -rf $JETTY_FOLDER/jetty.tar.gz && \
+ sed -i 's/"jetty"/"onap"/g' $JETTY_FOLDER/etc/jetty-setuid.xml && \
+ mkdir -p $JETTY_FOLDER/otel && \
wget -q https://github.com/open-telemetry/opentelemetry-java-instrumentation/releases/download/v${opentelemetry-javaagent.version}/opentelemetry-javaagent.jar \
- --tries=3 -O $JETTY_FOLDER/otel/opentelemetry-javaagent.jar
+ -O $JETTY_FOLDER/otel/opentelemetry-javaagent.jar
# Add WAR files
ADD --chown=onap:onap onboarding*.war $JETTY_FOLDER/webapps/
COPY --chown=onap:onap artifacts/files/org.onap.sdc.p12 $JETTY_FOLDER/etc/
COPY --chown=onap:onap artifacts/files/org.onap.sdc.trust.jks $JETTY_FOLDER/etc/
-# Set permissions
+# Set permissions, run HTTP module setup, and configure Jetty rewrite
RUN chown -R onap:onap $JETTY_FOLDER && \
chmod 770 $JETTY_FOLDER/startup.sh $JETTY_FOLDER/set-http-module.sh && \
chmod 755 $JETTY_FOLDER/setup-keystore-truststore.sh $JETTY_FOLDER/ready-probe.sh && \
chmod 755 $JETTY_FOLDER/config/catalog-fe/* $JETTY_FOLDER/config/onboarding-fe/* $JETTY_FOLDER/start.d/* && \
chmod 644 $JETTY_FOLDER/etc/* && chmod 770 /tmp/logback.xml && \
- # Run HTTP module setup
$JETTY_FOLDER/set-http-module.sh && \
- # Clean apk cache to minimize image size
- rm -rf /var/cache/apk/*
-
-# Add Jetty rewrite and configuration settings
-RUN echo "etc/rewrite-root-to-sdc1.xml" >> "$JETTY_FOLDER/start.d/rewrite.ini" && \
+ echo "etc/rewrite-root-to-sdc1.xml" >> "$JETTY_FOLDER/start.d/rewrite.ini" && \
echo "jetty.httpConfig.sendServerVersion=false" >> "$JETTY_FOLDER/start.d/start.ini"
-
USER onap
WORKDIR $JETTY_FOLDER
Code Review / sdc.git / commitdiff