kjuulh/dagger
Archived
1
0
Fork 0
Code Issues 1 Pull Requests 1 Projects Releases Wiki Activity

stdlib: docker: support running containers on the local docker engine

Browse Source 
Depends on #570

Signed-off-by: Andrea Luzzardi <aluzzardi@gmail.com>
This commit is contained in:
Andrea Luzzardi
2021-06-04 16:57:31 -07:00
parent 4365541d4d
commit ce5accd09c
23 changed files with 325 additions and 181 deletions
Download Patch File Download Diff File Expand all files Collapse all files

120
stdlib/docker/docker.cue
View File

@@ -1,6 +1,8 @@
package docker
import (
"strconv"
"dagger.io/dagger"
"dagger.io/dagger/op"
)
@@ -42,23 +44,26 @@ import (
}
#Run: {
// Remote host
host: string @dagger(input)
// Connect to a remote SSH server
ssh?: {
// ssh host
host: string @dagger(input)
// Remote user
user: string @dagger(input)
// ssh user
user: string @dagger(input)
// Ssh remote port
port: *22 | int @dagger(input)
// ssh port
port: *22 | int @dagger(input)
// Ssh private key
key: dagger.#Secret @dagger(input)
// private key
key: dagger.#Secret @dagger(input)
// User fingerprint
fingerprint?: string @dagger(input)
// fingerprint
fingerprint?: string @dagger(input)
// Ssh passphrase
passphrase?: dagger.#Secret @dagger(input)
// ssh key passphrase
keyPassphrase?: dagger.#Secret @dagger(input)
}
// Image reference (e.g: nginx:alpine)
ref: string @dagger(input)
@@ -74,42 +79,46 @@ import (
} @dagger(input)
#code: #"""
export DOCKER_HOST="ssh://$DOCKER_USERNAME@$DOCKER_HOSTNAME:\#(port)"
if [ -n "$DOCKER_HOSTNAME" ]; then
export DOCKER_HOST="ssh://$DOCKER_USERNAME@$DOCKER_HOSTNAME:$DOCKER_PORT"
# Start ssh-agent
eval $(ssh-agent) > /dev/null
# Start ssh-agent
eval $(ssh-agent) > /dev/null
# Add key
message="$(ssh-keygen -y -f /key < /dev/null 2>&1)" || {
>&2 echo "$message"
exit 1
}
# Add key
if [ -f "/key" ]; then
message="$(ssh-keygen -y -f /key < /dev/null 2>&1)" || {
>&2 echo "$message"
exit 1
}
ssh-add /key > /dev/null
if [ "$?" != 0 ]; then
exit 1
fi
ssh-add /key > /dev/null
if [ "$?" != 0 ]; then
exit 1
fi
fi
if [[ ! -z $FINGERPRINT ]]; then
mkdir -p "$HOME"/.ssh
if [[ ! -z $FINGERPRINT ]]; then
mkdir -p "$HOME"/.ssh
# Add user's fingerprint to known hosts
echo "$FINGERPRINT" >> "$HOME"/.ssh/known_hosts
else
# Add host to known hosts
ssh -i /key -o "UserKnownHostsFile "$HOME"/.ssh/known_hosts" -o "StrictHostKeyChecking accept-new" -p \#(port) "$DOCKER_USERNAME"@"$DOCKER_HOSTNAME" /bin/true > /dev/null 2>&1
fi
# Add user's fingerprint to known hosts
echo "$FINGERPRINT" >> "$HOME"/.ssh/known_hosts
else
# Add host to known hosts
ssh -i /key -o "UserKnownHostsFile "$HOME"/.ssh/known_hosts" -o "StrictHostKeyChecking accept-new" -p "$DOCKER_PORT" "$DOCKER_USERNAME"@"$DOCKER_HOSTNAME" /bin/true > /dev/null 2>&1
fi
fi
# Run detach container
OPTS=""
# Run detach container
OPTS=""
if [ ! -z "$CONTAINER_NAME" ]; then
OPTS="$OPTS --name $CONTAINER_NAME"
fi
if [ ! -z "$CONTAINER_NAME" ]; then
OPTS="$OPTS --name $CONTAINER_NAME"
fi
docker container run -d $OPTS \#(ref)
"""#
docker container run -d $OPTS "$IMAGE_REF"
"""#
#up: [
op.#Load & {from: #Client},
@@ -118,7 +127,7 @@ import (
op.#DockerLogin & {registry}
},
if passphrase != _|_ {
if ssh.keyPassphrase != _|_ {
op.#WriteFile & {
content: #"""
#!/bin/bash
@@ -145,23 +154,32 @@ import (
"/entrypoint.sh",
]
env: {
DOCKER_HOSTNAME: host
DOCKER_USERNAME: user
if passphrase != _|_ {
SSH_ASKPASS: "/get_passphrase"
DISPLAY: "1"
IMAGE_REF: ref
if ssh != _|_ {
DOCKER_HOSTNAME: ssh.host
DOCKER_USERNAME: ssh.user
DOCKER_PORT: strconv.FormatInt(ssh.port, 10)
if ssh.keyPassphrase != _|_ {
SSH_ASKPASS: "/get_passphrase"
DISPLAY: "1"
}
if ssh.fingerprint != _|_ {
FINGERPRINT: ssh.fingerprint
}
}
if name != _|_ {
CONTAINER_NAME: name
}
if fingerprint != _|_ {
FINGERPRINT: fingerprint
}
}
mount: {
"/key": secret: key
if passphrase != _|_ {
"/passphrase": secret: passphrase
if ssh == _|_ {
"/var/run/docker.sock": "docker.sock"
}
if ssh.key != _|_ {
"/key": secret: ssh.key
}
if ssh.keyPassphrase != _|_ {
"/passphrase": secret: ssh.keyPassphrase
}
}
},