blob: f721fab0a45186062ee292dd13a54f1b6895567f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
FROM alpine:3.19
# Install OpenSSH server and git
RUN apk add --no-cache openssh git
# Create git user with UID 1000 and set git-shell as login shell
# This restricts the user to git operations only
RUN adduser -D -u 1000 -s /usr/bin/git-shell git && \
mkdir -p /home/git/.ssh /repos && \
chown -R git:git /home/git /repos
# Copy sshd configuration to /tmp (will be copied to /etc/ssh by entrypoint)
COPY sshd_config /tmp/sshd_config
# Create entrypoint script to setup SSH and run sshd
RUN echo '#!/bin/sh' > /entrypoint.sh && \
echo '# Copy sshd_config if not exists' >> /entrypoint.sh && \
echo 'if [ ! -f /etc/ssh/sshd_config ]; then' >> /entrypoint.sh && \
echo ' cp /tmp/sshd_config /etc/ssh/sshd_config' >> /entrypoint.sh && \
echo 'fi' >> /entrypoint.sh && \
echo '# Generate host keys if not exists' >> /entrypoint.sh && \
echo 'if [ ! -f /etc/ssh/ssh_host_ed25519_key ]; then' >> /entrypoint.sh && \
echo ' ssh-keygen -A' >> /entrypoint.sh && \
echo 'fi' >> /entrypoint.sh && \
echo 'exec /usr/sbin/sshd -D -e' >> /entrypoint.sh && \
chmod +x /entrypoint.sh
# Expose SSH port
EXPOSE 22
# Run entrypoint script
CMD ["/entrypoint.sh"]
|
