2024-08-26 11:20:46 -07:00
FROM golang:1.22-alpine AS build
2021-06-18 09:11:55 -07:00
ARG TARGETARCH
2023-10-28 21:19:49 +02:00
ARG RELEASE
2024-08-26 11:20:46 -07:00
ENV GOPATH = /go
ENV CGO_ENABLED = 0
2023-10-28 21:19:49 +02:00
# Install curl and minisign
RUN apk add -U --no-cache ca-certificates && \
apk add -U --no-cache curl && \
2023-12-08 00:22:22 -08:00
go install aead.dev/minisign/cmd/minisign@v0.2.1
2023-10-28 21:19:49 +02:00
2024-08-15 17:48:04 +02:00
# Download minio binary and signature files
2023-10-28 21:19:49 +02:00
RUN curl -s -q https://dl.min.io/server/minio/release/linux-${ TARGETARCH } /archive/minio.${ RELEASE } .fips -o /go/bin/minio && \
curl -s -q https://dl.min.io/server/minio/release/linux-${ TARGETARCH } /archive/minio.${ RELEASE } .fips.minisig -o /go/bin/minio.minisig && \
2024-08-15 17:48:04 +02:00
curl -s -q https://dl.min.io/server/minio/release/linux-${ TARGETARCH } /archive/minio.${ RELEASE } .fips.sha256sum -o /go/bin/minio.sha256sum && \
2023-10-28 21:19:49 +02:00
chmod +x /go/bin/minio
2024-08-15 12:33:45 -07:00
# Download mc binary and signature files
RUN curl -s -q https://dl.min.io/client/mc/release/linux-${ TARGETARCH } /mc.fips -o /go/bin/mc && \
curl -s -q https://dl.min.io/client/mc/release/linux-${ TARGETARCH } /mc.fips.minisig -o /go/bin/mc.minisig && \
curl -s -q https://dl.min.io/client/mc/release/linux-${ TARGETARCH } /mc.fips.sha256sum -o /go/bin/mc.sha256sum && \
chmod +x /go/bin/mc
2024-03-30 02:41:51 -07:00
RUN if [ " $TARGETARCH " = "amd64" ] ; then \
curl -L -s -q https://github.com/moparisthebest/static-curl/releases/latest/download/curl-${ TARGETARCH } -o /go/bin/curl; \
chmod +x /go/bin/curl; \
fi
2023-10-28 21:19:49 +02:00
# Verify binary signature using public key "RWTx5Zr1tiHQLwG9keckT0c45M3AGeHD6IvimQHpyRywVWGbP1aVSGavRUN"
RUN minisign -Vqm /go/bin/minio -x /go/bin/minio.minisig -P RWTx5Zr1tiHQLwG9keckT0c45M3AGeHD6IvimQHpyRywVWGbP1aVSGav
2023-11-22 09:34:49 -08:00
FROM registry.access.redhat.com/ubi9/ubi-micro:latest
2021-06-18 09:11:55 -07:00
ARG RELEASE
LABEL name = "MinIO" \
vendor = "MinIO Inc <dev@min.io>" \
maintainer = "MinIO Inc <dev@min.io>" \
version = " ${ RELEASE } " \
release = " ${ RELEASE } " \
summary = "MinIO is a High Performance Object Storage, API compatible with Amazon S3 cloud storage service." \
description = "MinIO object storage is fundamentally different. Designed for performance and the S3 API, it is 100% open-source. MinIO is ideal for large, private cloud environments with stringent security requirements and delivers mission-critical availability across a diverse range of workloads."
ENV MINIO_ACCESS_KEY_FILE = access_key \
MINIO_SECRET_KEY_FILE = secret_key \
MINIO_ROOT_USER_FILE = access_key \
MINIO_ROOT_PASSWORD_FILE = secret_key \
MINIO_KMS_SECRET_KEY_FILE = kms_master_key \
2021-07-14 16:55:59 -07:00
MINIO_UPDATE_MINISIGN_PUBKEY = "RWTx5Zr1tiHQLwG9keckT0c45M3AGeHD6IvimQHpyRywVWGbP1aVSGav" \
2023-10-28 21:19:49 +02:00
MINIO_CONFIG_ENV_FILE = config.env
2024-09-01 04:25:07 -07:00
RUN chmod 1777 /usr/bin
2023-10-28 21:19:49 +02:00
COPY --from= build /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
2024-08-18 09:13:33 +02:00
COPY --from= build /go/bin/minio* /usr/bin/
COPY --from= build /go/bin/mc* /usr/bin/
2024-03-30 02:41:51 -07:00
COPY --from= build /go/bin/cur* /usr/bin/
2021-06-18 09:11:55 -07:00
COPY CREDITS /licenses/CREDITS
COPY LICENSE /licenses/LICENSE
2023-10-28 21:19:49 +02:00
COPY dockerscripts/docker-entrypoint.sh /usr/bin/docker-entrypoint.sh
2021-06-18 09:11:55 -07:00
EXPOSE 9000
VOLUME [ "/data" ]
2023-10-28 21:19:49 +02:00
ENTRYPOINT [ "/usr/bin/docker-entrypoint.sh" ]
2021-06-18 09:11:55 -07:00
CMD [ "minio" ]