|
|
|
@ -13,7 +13,7 @@ ARG TARGETPLATFORM
|
|
|
|
|
RUN set -euxo pipefail \
|
|
|
|
|
; addgroup -Sg ${MAILU_GID} mailu \
|
|
|
|
|
; adduser -Sg ${MAILU_UID} -G mailu -h /app -g "mailu app" -s /bin/bash mailu \
|
|
|
|
|
; apk add --no-cache bash ca-certificates curl python3 tzdata \
|
|
|
|
|
; apk add --no-cache bash ca-certificates curl python3 tzdata libcap \
|
|
|
|
|
; machine="$(uname -m)" \
|
|
|
|
|
; ! [[ "${TARGETPLATFORM}" != linux/arm/v7 && \( "${machine}" == x86_64 || "${machine}" == armv8* || "${machine}" == aarch64 \) ]] \
|
|
|
|
|
|| apk add --no-cache --repository=http://dl-cdn.alpinelinux.org/alpine/edge/testing hardened-malloc
|
|
|
|
@ -72,6 +72,7 @@ RUN set -euxo pipefail \
|
|
|
|
|
FROM system
|
|
|
|
|
|
|
|
|
|
COPY --from=build /app/venv/ /app/venv/
|
|
|
|
|
RUN setcap 'cap_net_bind_service=+ep' /app/venv/bin/gunicorn
|
|
|
|
|
|
|
|
|
|
ENV VIRTUAL_ENV=/app/venv
|
|
|
|
|
ENV PATH="${VIRTUAL_ENV}/bin:${PATH}"
|
|
|
|
|