generated from Templates/Baseline
Adds entrypoint #6
27
Dockerfile
27
Dockerfile
@ -1,6 +1,6 @@
|
|||||||
FROM alpine:3.18.2
|
FROM alpine:3.18.2
|
||||||
|
|
||||||
#LABEL build_version=""
|
# Set labels manually, each build service differs in used or predefined labels.
|
||||||
LABEL maintainer="OCram85"
|
LABEL maintainer="OCram85"
|
||||||
ARG VERSION
|
ARG VERSION
|
||||||
LABEL build_version="${VERSION}"
|
LABEL build_version="${VERSION}"
|
||||||
@ -17,8 +17,7 @@ LABEL org.opencontainers.image.url="https://gitea.ocram85.com/OCram85/swarmproxy
|
|||||||
LABEL org.opencontainers.image.source="https://gitea.ocram85.com/OCram85/swarmproxy.git"
|
LABEL org.opencontainers.image.source="https://gitea.ocram85.com/OCram85/swarmproxy.git"
|
||||||
LABEL org.opencontainers.image.documentation="https://gitea.ocram85.com/OCram85/swarmproxy"
|
LABEL org.opencontainers.image.documentation="https://gitea.ocram85.com/OCram85/swarmproxy"
|
||||||
|
|
||||||
# Use a custom UID/GID instead of the default system UID which has a greater possibility
|
# Use a individual user and group ip for files and process
|
||||||
# for collisions with the host and other containers.
|
|
||||||
ENV TINYPROXY_UID 5123
|
ENV TINYPROXY_UID 5123
|
||||||
ENV TINYPROXY_GID 5123
|
ENV TINYPROXY_GID 5123
|
||||||
|
|
||||||
@ -28,24 +27,24 @@ ENV PORT "8888"
|
|||||||
ENV TIMEOUT "600"
|
ENV TIMEOUT "600"
|
||||||
ENV LOGLEVEL "Info"
|
ENV LOGLEVEL "Info"
|
||||||
ENV MAXCLIENTS "600"
|
ENV MAXCLIENTS "600"
|
||||||
ENV FILTER_FILE "/etc/tinyproxy/filter"
|
ENV FILTER_FILE "/app/filter"
|
||||||
|
|
||||||
# Curl is for healthchecks.
|
|
||||||
|
# get existing packages
|
||||||
|
# curl for healthchecks and debugging
|
||||||
RUN apk add --no-cache \
|
RUN apk add --no-cache \
|
||||||
tinyproxy curl
|
tinyproxy curl
|
||||||
|
|
||||||
RUN mv /etc/tinyproxy/tinyproxy.conf /etc/tinyproxy/tinyproxy.default.conf && \
|
COPY entrypoint.sh /app/entrypoint.sh
|
||||||
touch /etc/tinyproxy/tinyproxy.conf
|
|
||||||
|
|
||||||
COPY entrypoint.sh /swarmproxy/entrypoint.sh
|
RUN touch /app/proxy.conf && \
|
||||||
WORKDIR /swarmproxy
|
chmod +x /app/entrypoint.sh && \
|
||||||
|
chown -R ${TINYPROXY_UID}:${TINYPROXY_GID} /app /etc/tinyproxy /var/log/tinyproxy
|
||||||
RUN chown -R ${TINYPROXY_UID}:${TINYPROXY_GID} /etc/tinyproxy /var/log/tinyproxy /swarmproxy && \
|
|
||||||
chmod +x /swarmproxy/entrypoint.sh
|
|
||||||
|
|
||||||
USER ${TINYPROXY_UID}:${TINYPROXY_GID}
|
USER ${TINYPROXY_UID}:${TINYPROXY_GID}
|
||||||
|
WORKDIR /app
|
||||||
|
|
||||||
EXPOSE 8888
|
EXPOSE 8888
|
||||||
|
|
||||||
ENTRYPOINT ["/swarmproxy/entrypoint.sh"]
|
ENTRYPOINT ["/app/entrypoint.sh"]
|
||||||
CMD ["-d"]
|
CMD ["-c", "/app/proxy.conf", "-d"]
|
||||||
|
60
README.md
60
README.md
@ -13,7 +13,7 @@
|
|||||||
</p>
|
</p>
|
||||||
|
|
||||||
<h1 align="center">
|
<h1 align="center">
|
||||||
swarmproxy
|
Swarmproxy - Tame your traffic
|
||||||
</h1>
|
</h1>
|
||||||
|
|
||||||
<p align="center">
|
<p align="center">
|
||||||
@ -26,10 +26,9 @@
|
|||||||
|
|
||||||
### 1. ⚡ Get the image 📦
|
### 1. ⚡ Get the image 📦
|
||||||
|
|
||||||
You can download the image from the gitea embedded container registry: `gitea.ocram85.com/ocram85/swarmproxy` with these tags:
|
You can download the image from the Gitea embedded container registry: `gitea.ocram85.com/ocram85/swarmproxy` with these tags:
|
||||||
|
|
||||||
- `latest` - Is based on the lasted master branch commit.
|
- `latest`, `main` - Is based on the lasted master branch commit.
|
||||||
- `next` - Is a test build based on the pull request
|
|
||||||
- `1`, `0.1`, `0.1.0` - tag based version.
|
- `1`, `0.1`, `0.1.0` - tag based version.
|
||||||
|
|
||||||
> **💡 NOTE: See the [packages page](https://gitea.ocram85.com/OCram85/-/packages/container/swarmproxy/latest) for latest version and all other available tags.**
|
> **💡 NOTE: See the [packages page](https://gitea.ocram85.com/OCram85/-/packages/container/swarmproxy/latest) for latest version and all other available tags.**
|
||||||
@ -39,43 +38,58 @@ You can download the image from the gitea embedded container registry: `gitea.oc
|
|||||||
```yaml
|
```yaml
|
||||||
version: "3.8"
|
version: "3.8"
|
||||||
|
|
||||||
secrets:
|
networks:
|
||||||
upstream-proxy:
|
egress:
|
||||||
external: true
|
attachable: true
|
||||||
|
#external: true
|
||||||
|
|
||||||
|
#configs:
|
||||||
|
# filter_file:
|
||||||
|
# # config can be predefined / external or loaded from file
|
||||||
|
# #external: true
|
||||||
|
# file: ./filter.txt
|
||||||
|
|
||||||
|
#secrets:
|
||||||
|
# upstream-proxy:
|
||||||
|
# external: true
|
||||||
|
|
||||||
services:
|
services:
|
||||||
swarmproxy:
|
swarmproxy:
|
||||||
image: gitea.ocram85.com/OCram85/swarmproxy:latest
|
image: gitea.ocram85.com/OCram85/swarmproxy:latest
|
||||||
|
deploy:
|
||||||
|
replicas: 1
|
||||||
|
#secrets:
|
||||||
|
# - upstream-proxy
|
||||||
environment:
|
environment:
|
||||||
# mandatory environment variables
|
# Recommended settings
|
||||||
- UPSTREAM_PROXY=
|
# Use an optional upstream proxy
|
||||||
|
#- UPSTREAM_PROXY=
|
||||||
# Set UPSTREAM_PROXY as docker secret if your upstream needs authentication
|
# Set UPSTREAM_PROXY as docker secret if your upstream needs authentication
|
||||||
# Eg.: http://user:password@upstream.intra:3128
|
# Eg.: http://user:password@upstream.intra:3128
|
||||||
#- UPSTREAM_PROXY_FILE=/run/secrets/UPSTREAM_PROXY
|
#- UPSTREAM_PROXY_FILE=/run/secrets/UPSTREAM_PROXY
|
||||||
|
|
||||||
# optional settings
|
# OPTIONAL config keys
|
||||||
#- TINYPROXY_UID=5123
|
#- TINYPROXY_UID=5123
|
||||||
#- TINYPROXY_GID=5123
|
#- TINYPROXY_GID=5123
|
||||||
#- PORT=8888
|
#- PORT=8888
|
||||||
#- TIMEOUT=600
|
#- TIMEOUT=600
|
||||||
#- LOGLEVEL=Info
|
#- LOGLEVEL=Info
|
||||||
#- MAXCLIENTS=600
|
#- MAXCLIENTS=600
|
||||||
#- FILTER_FILE=/ety/tinyproxy/filter
|
#- FILTER_FILE=/app/filter
|
||||||
deploy:
|
|
||||||
replicas: 1
|
|
||||||
volumes:
|
volumes:
|
||||||
# mount a single file into the container if you need the modify it afterwards
|
# You can mount a single filter file into the container.
|
||||||
# You can reload the file with `kill -s USR1 $(pidof tinyproxy)`
|
# To reload the file use the docker kill -s USR1 <container_id| container_name> command.
|
||||||
- ./filter.txt:/etc/tinyproxy/filter:ro
|
- ./filter.txt:/app/filter:ro
|
||||||
# Use a docker config or volume in production
|
configs:
|
||||||
-
|
- source: filter_file
|
||||||
networks:
|
target: /app/filter
|
||||||
- egress
|
|
||||||
|
|
||||||
networks:
|
networks:
|
||||||
egress:
|
egress:
|
||||||
attachable: true
|
aliases:
|
||||||
#external: true
|
- swarmproxy
|
||||||
|
- proxy
|
||||||
|
|
||||||
|
|
||||||
```
|
```
|
||||||
|
|
||||||
## 😡 We're Using GitHub Under Protest
|
## 😡 We're Using GitHub Under Protest
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
|
|
||||||
set -e
|
set -e
|
||||||
|
|
||||||
CONFIG="/etc/tinyproxy/tinyproxy.conf"
|
CONFIG="/app/proxy.conf"
|
||||||
|
|
||||||
function writeConfig() {
|
function writeConfig() {
|
||||||
cat << EOF >> "$CONFIG"
|
cat << EOF >> "$CONFIG"
|
||||||
@ -17,7 +17,7 @@ StatFile "/usr/share/tinyproxy/stats.html"
|
|||||||
|
|
||||||
LogLevel $LOGLEVEL
|
LogLevel $LOGLEVEL
|
||||||
MaxClients $MAXCLIENTS
|
MaxClients $MAXCLIENTS
|
||||||
ViaProxyName "tinyproxy"
|
ViaProxyName "Swarmproxy"
|
||||||
|
|
||||||
Allow 127.0.0.1/8
|
Allow 127.0.0.1/8
|
||||||
Allow 10.0.0.0/8
|
Allow 10.0.0.0/8
|
||||||
@ -51,7 +51,7 @@ function showConfig() {
|
|||||||
function execTinyproxy() {
|
function execTinyproxy() {
|
||||||
echo "🦁 Starting Tinyproxy..."
|
echo "🦁 Starting Tinyproxy..."
|
||||||
echo "args count: $#"
|
echo "args count: $#"
|
||||||
echo "args: $@"
|
echo "args value: $@"
|
||||||
exec "/usr/bin/tinyproxy" "$@"
|
exec "/usr/bin/tinyproxy" "$@"
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -64,3 +64,4 @@ function main() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
main $@
|
main $@
|
||||||
|
echo "entrypoint end. 🚀"
|
||||||
|
Loading…
Reference in New Issue
Block a user