Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/sapcc/concourse-docker-resource

Concourse Resource for Docker Images
https://github.com/sapcc/concourse-docker-resource

Last synced: 11 days ago
JSON representation

Concourse Resource for Docker Images

Host: GitHub
URL: https://github.com/sapcc/concourse-docker-resource
Owner: sapcc
License: apache-2.0
Created: 2015-12-17T12:12:17.000Z (almost 9 years ago)
Default Branch: master
Last Pushed: 2023-12-15T17:43:21.000Z (11 months ago)
Last Synced: 2024-06-21T21:05:43.008Z (5 months ago)
Language: Go
Size: 1.95 MB
Stars: 1
Watchers: 41
Forks: 0
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# Shared Docker Image Resource

This resource is a fork of the official concourse [docker-image](https://github.com/concourse/docker-image-resource).

Its different in that it uses the shared docker daemon running on on the worker VM.

This requires a docker daemon on the worker to listen on 0.0.0.0:2375 so that its reachable from containers spawned by concourse.
You need to somehow setup firewall rules (or security groups) to protect access to the socket from outside the VM.

Tracks and builds [Docker](https://docker.io) images.

Note: docker registry must be [v2](https://docs.docker.com/registry/spec/api/).

## Source Configuration

* `repository`: *Required.* The name of the repository, e.g.
`concourse/docker-image-resource`.

Note: When configuring a private registry, you must include the port
(e.g. :443 or :5000) even though the docker CLI does not require it.

* `tag`: *Optional.* The tag to track. Defaults to `latest`.

* `username`: *Optional.* The username to authenticate with when pushing.

* `password`: *Optional.* The password to use when authenticating.

* `aws_access_key_id`: *Optional.* AWS access key to use for acquiring ECR
credentials.

* `aws_secret_access_key`: *Optional.* AWS secret key to use for acquiring ECR
credentials.

## Behavior

### `check`: Check for new images.

The current image digest is fetched from the registry for the given tag of the
repository.

### `in`: Fetch the image from the registry.

Pulls down the repository image by the requested digest.

The following files will be placed in the destination:

* `/image`: If `save` is `true`, the `docker save`d image will be provided
here.
* `/repository`: The name of the repository that was fetched.
* `/tag`: The tag of the repository that was fetched.
* `/image-id`: The fetched image ID.
* `/digest`: The fetched image digest.
* `/rootfs.tar`: If `rootfs` is `true`, the contents of the image will be
provided here.
* `/metadata.json`: Collects custom metadata. Contains the container `env` variables and running `user`.
* `/docker_inspect.json`: Output of the `docker inspect` on `image_id`. Useful if collecting `LABEL` [metadata](https://docs.docker.com/engine/userguide/labels-custom-metadata/) from your image.

#### Parameters

* `save`: *Optional.* Place a `docker save`d image in the destination.
* `rootfs`: *Optional.* Place a `.tar` file of the image in the destination.
* `skip_download`: *Optional.* Skip `docker pull` of image. Artifacts based
on the image will not be present.

### `out`: Push an image, or build and push a `Dockerfile`.

Push a Docker image to the source's repository and tag. The resulting
version is the image's digest.

#### Parameters

* `build`: *Optional.* The path of a directory containing a `Dockerfile` to
build.

* `load`: *Optional.* The path of a directory containing an image that was
fetched using this same resource type with `save: true`.

* `dockerfile`: *Optional.* The path of the `Dockerfile` in the directory if
it's not at the root of the directory.

* `cache`: *Optional.* Default `false`. When the `build` parameter is set,
first pull `image:tag` from the Docker registry (so as to use cached
intermediate images when building). This will cause the resource to fail
if it is set to `true` and the image does not exist yet.

* `cache_tag`: *Optional.* Default `tag`. The specific tag to pull before
building when `cache` parameter is set. Instead of pulling the same tag
that's going to be built, this allows picking a different tag like
`latest` or the previous version. This will cause the resource to fail
if it is set to a tag that does not exist yet.

* `load_base`: *Optional.* A path to a directory containing an image to `docker
load` before running `docker build`. The directory must have `image`,
`image-id`, `repository`, and `tag` present, i.e. the tree produced by `/in`.

* `load_file`: *Optional.* A path to a file to `docker load` and then push.
Requires `load_repository`.

* `load_repository`: *Optional.* The repository of the image loaded from `load_file`.

* `load_tag`: *Optional.* Default `latest`. The tag of image loaded from `load_file`

* `import_file`: *Optional.* A path to a file to `docker import` and then push.

* `pull_repository`: *Optional.* **DEPRECATED. Use `get` and `load` instead.** A
path to a repository to pull down, and then push to this resource.

* `pull_tag`: *Optional.* **DEPRECATED. Use `get` and `load` instead.** Default
`latest`. The tag of the repository to pull down via `pull_repository`.

* `tag`: *Optional.* The value should be a path to a file containing the name
of the tag.

* `tag_prefix`: *Optional.* If specified, the tag read from the file will be
prepended with this string. This is useful for adding `v` in front of version
numbers.

* `tag_as_latest`: *Optional.* Default `false`. If true, the pushed image will
be tagged as `latest` in addition to whatever other tag was specified.

* `build_args`: *Optional.* A map of Docker build arguments.

Example:

```yaml
build_args:
do_thing: true
how_many_things: 2
email: [email protected]
```

* `build_args_file`: *Optional.* Path to a JSON file containing Docker build
arguments.

Example file contents:

```yaml
{ "email": "[email protected]", "how_many_things": 1, "do_thing": false }
```

## Example

``` yaml
resources:
- name: git-resource
type: git
source: # ...

- name: git-resource-image
type: docker-image
source:
repository: concourse/git-resource
username: username
password: password

- name: git-resource-rootfs
type: s3
source: # ...

jobs:
- name: build-rootfs
plan:
- get: git-resource
- put: git-resource-image
params: {build: git-resource}
get_params: {rootfs: true}
- put: git-resource-rootfs
params: {file: git-resource-image/rootfs.tar}
```

## Development

### Prerequisites

* golang is *required* - version 1.9.x is tested; earlier versions may also
work.
* docker is *required* - version 17.06.x is tested; earlier versions may also
work.

### Running the tests

The tests have been embedded with the `Dockerfile`; ensuring that the testing
environment is consistent across any `docker` enabled platform. When the docker
image builds, the test are run inside the docker container, on failure they
will stop the build.

Run the tests with the following command:

```sh
docker build -t docker-image-resource .
```

### Contributing

Please make all pull requests to the `master` branch and ensure tests pass
locally.