-
Notifications
You must be signed in to change notification settings - Fork 25
/
Copy pathDockerfile
43 lines (32 loc) · 1.68 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
ARG MAVEN_BUILDER=3-openjdk-17-slim
#ARG SONARQUBE_VERSION=24.12.0.100206-community
#ARG SONARQUBE_VERSION=25.1.0.102122-community
#ARG SONARQUBE_VERSION=25.2.0.102705-community
ARG SONARQUBE_VERSION=25.3.0.104237-community
FROM maven:${MAVEN_BUILDER} AS builder
COPY . /usr/src/creedengo
WORKDIR /usr/src/creedengo
COPY src src/
COPY pom.xml tool_build.sh ./
RUN ./tool_build.sh
FROM sonarqube:${SONARQUBE_VERSION}
COPY --from=builder /usr/src/creedengo/target/creedengo-*.jar /opt/sonarqube/extensions/plugins/
# Install the ca-certificate package
USER root
# RUN apt-get update && apt-get install -y ca-certificates
# Copy SSL certificates to the container
COPY downloads-sonarsource.crt /usr/local/share/ca-certificates/
# Update SSL certificates in system inside the container
# RUN update-ca-certificates
## Update SSL certificates in the JDK inside the container
RUN $JAVA_HOME/bin/keytool -import -trustcacerts -file /usr/local/share/ca-certificates/downloads-sonarsource.crt -alias downloads-sonarsource -keystore $JAVA_HOME/lib/security/cacerts -storepass changeit -noprompt
## Process manuel
# GENERATION CERTIFICAT
# openssl s_client -showcerts -connect downloads.sonarsource.com:443 </dev/null 2>/dev/null | openssl x509 > downloads-sonarsource.crt
# COPIE CERTIFICAT SUR CONTENEUR
# dk cp downloads-sonarsource.crt sonar_creedengo_java:/tmp/.
# AJOUT CERTIFICAT DANS LE KEYSTORE (en root)
# dk exec -u root -it sonar_creedengo_java /bin/bash
# $JAVA_HOME/bin/keytool -import -trustcacerts -file /tmp/downloads-sonarsource.crt -alias downloads-sonarsource -keystore $JAVA_HOME/lib/security/cacerts -storepass changeit -noprompt
# RELANCE CONTENEUR pour relancer le service sonarqube
USER sonarqube