2026-04-20 13:46:23 +03:00
|
|
|
# Pulled from ECR Public (the Debian team mirrors official images there)
|
|
|
|
|
# instead of Docker Hub to avoid anonymous-pull rate limits from AWS
|
|
|
|
|
# CodeBuild, which shares an outbound IP pool with many other accounts.
|
|
|
|
|
FROM public.ecr.aws/debian/debian:bookworm-slim
|
2026-04-10 20:49:41 +03:00
|
|
|
|
|
|
|
|
RUN apt-get update \
|
|
|
|
|
&& apt-get install -y --no-install-recommends ca-certificates curl \
|
|
|
|
|
&& rm -rf /var/lib/apt/lists/*
|
|
|
|
|
|
|
|
|
|
RUN groupadd --system omnigraph \
|
|
|
|
|
&& useradd --system --gid omnigraph --create-home --home-dir /var/lib/omnigraph omnigraph
|
|
|
|
|
|
|
|
|
|
COPY target/release/omnigraph-server /usr/local/bin/omnigraph-server
|
|
|
|
|
COPY docker/entrypoint.sh /usr/local/bin/omnigraph-entrypoint
|
|
|
|
|
|
|
|
|
|
RUN chmod 0755 /usr/local/bin/omnigraph-server /usr/local/bin/omnigraph-entrypoint
|
|
|
|
|
|
|
|
|
|
ENV OMNIGRAPH_BIND=0.0.0.0:8080
|
|
|
|
|
|
|
|
|
|
WORKDIR /var/lib/omnigraph
|
|
|
|
|
USER omnigraph:omnigraph
|
|
|
|
|
|
|
|
|
|
EXPOSE 8080
|
|
|
|
|
|
|
|
|
|
HEALTHCHECK --interval=30s --timeout=5s --start-period=10s --retries=3 \
|
|
|
|
|
CMD curl -fsS http://127.0.0.1:8080/healthz >/dev/null || exit 1
|
|
|
|
|
|
|
|
|
|
ENTRYPOINT ["/usr/local/bin/omnigraph-entrypoint"]
|
