Dockerfile 4.0 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697
  1. FROM python:3.8.16-slim-bullseye
  2. LABEL maintainer="oss@sentry.io"
  3. LABEL org.opencontainers.image.title="Sentry"
  4. LABEL org.opencontainers.image.description="Sentry runtime image"
  5. LABEL org.opencontainers.image.url="https://sentry.io/"
  6. LABEL org.opencontainers.image.documentation="https://develop.sentry.dev/self-hosted/"
  7. LABEL org.opencontainers.image.vendor="Functional Software, Inc."
  8. LABEL org.opencontainers.image.authors="oss@sentry.io"
  9. # add our user and group first to make sure their IDs get assigned consistently
  10. RUN groupadd -r sentry && useradd -r -m -g sentry sentry
  11. ENV GOSU_VERSION=1.12 \
  12. GOSU_SHA256=0f25a21cf64e58078057adc78f38705163c1d564a959ff30a891c31917011a54 \
  13. TINI_VERSION=0.19.0 \
  14. TINI_SHA256=93dcc18adc78c65a028a84799ecf8ad40c936fdfc5f2a57b1acda5a8117fa82c
  15. RUN set -x \
  16. && buildDeps=" \
  17. wget \
  18. " \
  19. && apt-get update && apt-get install -y --no-install-recommends $buildDeps \
  20. && rm -rf /var/lib/apt/lists/* \
  21. # grab gosu for easy step-down from root
  22. && wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-amd64" \
  23. && echo "$GOSU_SHA256 /usr/local/bin/gosu" | sha256sum --check --status \
  24. && chmod +x /usr/local/bin/gosu \
  25. # grab tini for signal processing and zombie killing
  26. && wget -O /usr/local/bin/tini "https://github.com/krallin/tini/releases/download/v$TINI_VERSION/tini-amd64" \
  27. && echo "$TINI_SHA256 /usr/local/bin/tini" | sha256sum --check --status \
  28. && chmod +x /usr/local/bin/tini \
  29. && apt-get purge -y --auto-remove $buildDeps
  30. # Sane defaults for pip
  31. ENV \
  32. PIP_NO_CACHE_DIR=1 \
  33. PIP_DISABLE_PIP_VERSION_CHECK=1 \
  34. # Sentry config params
  35. SENTRY_CONF=/etc/sentry \
  36. # Disable some unused uWSGI features, saving dependencies
  37. # Thank to https://stackoverflow.com/a/25260588/90297
  38. UWSGI_PROFILE_OVERRIDE=ssl=false;xml=false;routing=false \
  39. # UWSGI dogstatsd plugin
  40. UWSGI_NEED_PLUGIN=/var/lib/uwsgi/dogstatsd \
  41. # grpcio>1.30.0 requires this, see requirements.txt for more detail.
  42. GRPC_POLL_STRATEGY=epoll1
  43. # Install dependencies first to leverage Docker layer caching.
  44. COPY /dist/requirements-frozen.txt /tmp/requirements-frozen.txt
  45. RUN set -x \
  46. && buildDeps="" \
  47. # uwsgi-dogstatsd
  48. && buildDeps="$buildDeps \
  49. gcc \
  50. libpcre3-dev \
  51. wget \
  52. zlib1g-dev \
  53. " \
  54. && apt-get update \
  55. && apt-get install -y --no-install-recommends $buildDeps \
  56. && pip install -r /tmp/requirements-frozen.txt \
  57. && mkdir /tmp/uwsgi-dogstatsd \
  58. # pinned the same as in getsentry
  59. && wget -O - https://github.com/DataDog/uwsgi-dogstatsd/archive/1a04f784491ab0270b4e94feb94686b65d8d2db1.tar.gz | \
  60. tar -xzf - -C /tmp/uwsgi-dogstatsd --strip-components=1 \
  61. && UWSGI_NEED_PLUGIN="" uwsgi --build-plugin /tmp/uwsgi-dogstatsd \
  62. && mkdir -p /var/lib/uwsgi \
  63. && mv dogstatsd_plugin.so /var/lib/uwsgi/ \
  64. && rm -rf /tmp/requirements-frozen.txt /tmp/uwsgi-dogstatsd .uwsgi_plugins_builder \
  65. && apt-get purge -y --auto-remove $buildDeps \
  66. && apt-get clean \
  67. && rm -rf /var/lib/apt/lists/* \
  68. # Fully verify that the C extension is correctly installed, it unfortunately
  69. # requires a full check into maxminddb.extension.Reader
  70. && python -c 'import maxminddb.extension; maxminddb.extension.Reader' \
  71. && mkdir -p $SENTRY_CONF
  72. COPY /dist/*.whl /tmp/dist/
  73. RUN pip install /tmp/dist/*.whl --no-deps && pip check && rm -rf /tmp/dist
  74. RUN sentry help | sed '1,/Commands:/d' | awk '{print $1}' > /sentry-commands.txt
  75. COPY ./self-hosted/sentry.conf.py ./self-hosted/config.yml $SENTRY_CONF/
  76. COPY ./self-hosted/docker-entrypoint.sh /
  77. EXPOSE 9000
  78. VOLUME /data
  79. ENTRYPOINT exec /docker-entrypoint.sh "$0" "$@"
  80. CMD ["run", "web"]
  81. ARG SOURCE_COMMIT
  82. ENV SENTRY_BUILD=${SOURCE_COMMIT:-unknown}
  83. LABEL org.opencontainers.image.revision=$SOURCE_COMMIT
  84. LABEL org.opencontainers.image.source="https://github.com/getsentry/sentry/tree/${SOURCE_COMMIT:-master}/"
  85. LABEL org.opencontainers.image.licenses="https://github.com/getsentry/sentry/blob/${SOURCE_COMMIT:-master}/LICENSE"