docker

2025-01-14 23:12:54 +01:00
parent 5f13693160
commit d9e2d5ca8c
14 changed files with 478 additions and 1 deletions
--- a/docker/docusaurus/.gitignore
+++ b/docker/docusaurus/.gitignore
@@ -0,0 +1,3 @@
+.bash_history
+.openvscode-server/
+.cache/
--- a/docker/docusaurus/Dockerfile
+++ b/docker/docusaurus/Dockerfile
@@ -0,0 +1,48 @@
+# Use Ubuntu 24.04 as the base image
+FROM ubuntu:24.04
+
+# Set the working directory
+WORKDIR /root
+
+# Copy local installation scripts into the container
+COPY scripts/install_v.sh /tmp/install_v.sh
+COPY scripts/install_herolib.vsh /tmp/install_herolib.vsh
+COPY scripts/install_vscode.sh /tmp/install_vscode.sh
+COPY scripts/ourinit.sh /usr/local/bin/
+
+# Make the scripts executable
+RUN chmod +x /tmp/install_v.sh /tmp/install_herolib.vsh
+
+RUN apt-get update && apt-get install -y \
+    curl bash sudo mc wget tmux htop openssh-server
+
+RUN bash /tmp/install_v.sh
+
+RUN yes y | bash /tmp/install_v.sh --analyzer
+
+RUN bash /tmp/install_vscode.sh
+
+RUN /tmp/install_herolib.vsh && \
+    mkdir -p /var/run/sshd && \
+    echo 'PermitRootLogin yes' >> /etc/ssh/sshd_config && \
+    echo 'PasswordAuthentication no' >> /etc/ssh/sshd_config && \
+    chown -R root:root  /root/.ssh && \
+    chmod -R 700 /root/.ssh/ && \
+    chmod 600 /root/.ssh/authorized_keys && \
+    service ssh start && \
+    apt-get clean && \
+    echo "PS1='HERO: \w \$ '" >>  ~/.bashrc \
+    rm -rf /var/lib/apt/lists/*
+
+#SSH
+RUN mkdir -p /var/run/sshd && \
+    echo 'PermitRootLogin yes' >> /etc/ssh/sshd_config && \
+    echo 'PasswordAuthentication no' >> /etc/ssh/sshd_config && \
+    chown -R root:root  /root/.ssh && \
+    chmod -R 700 /root/.ssh/ && \
+    chmod 600 /root/.ssh/authorized_keys && \
+    service ssh start    
+
+ENTRYPOINT ["/bin/bash"]
+CMD ["/bin/bash"]
+
--- a/docker/docusaurus/build.sh
+++ b/docker/docusaurus/build.sh
@@ -0,0 +1,36 @@
+#!/bin/bash -e
+
+# Get the directory where the script is located
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+cd "$SCRIPT_DIR"
+
+# Docker image and container names
+DOCKER_IMAGE_NAME="docusaurus"
+DEBUG_CONTAINER_NAME="herolib"
+
+function cleanup {
+  if docker ps -aq -f name="$DEBUG_CONTAINER_NAME" &>/dev/null; then
+    echo "Cleaning up leftover debug container..."
+    docker rm -f "$DEBUG_CONTAINER_NAME" &>/dev/null || true
+  fi
+}
+trap cleanup EXIT
+
+# Attempt to build the Docker image
+BUILD_LOG=$(mktemp)
+set +e
+docker build --name herolib --progress=plain -t "$DOCKER_IMAGE_NAME" . 
+BUILD_EXIT_CODE=$?
+set -e
+
+# Handle build failure
+if [ $BUILD_EXIT_CODE -ne 0 ]; then
+  echo -e "\\n[ERROR] Docker build failed.\n"
+  echo -e "remove the part which didn't build in the Dockerfile, the run again and to debug do:"
+  echo docker run --name herolib -it --entrypoint=/bin/bash "herolib"
+  exit $BUILD_EXIT_CODE
+else
+  echo -e "\\n[INFO] Docker build completed successfully."
+fi
+
+
--- a/docker/docusaurus/debug.sh
+++ b/docker/docusaurus/debug.sh
@@ -0,0 +1,19 @@
+#!/bin/bash -ex
+
+# Get the directory where the script is located
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+cd "$SCRIPT_DIR"
+
+# Remove any existing container named 'debug' (ignore errors)
+docker rm -f herolib > /dev/null 2>&1
+
+docker run --name herolib -it \
+  --entrypoint="/usr/local/bin/ourinit.sh" \
+  -v "${SCRIPT_DIR}/scripts:/scripts" \
+  -v "$HOME/code:/root/code" \
+  -p 4100:8100 \
+  -p 4101:8101 \
+  -p 4102:8102 \
+  -p 4379:6379 \
+  -p 4022:22 \
+  -p 4000:3000 herolib
--- a/docker/docusaurus/docker-compose.yml
+++ b/docker/docusaurus/docker-compose.yml
@@ -0,0 +1,34 @@
+services:
+  postgres:
+    image: postgres:latest
+    container_name: postgres_service
+    environment:
+      POSTGRES_USER: postgres
+      POSTGRES_PASSWORD: planetfirst
+      POSTGRES_DB: mydb
+    ports:
+      - "5432:5432"
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+  herolib:
+    build:
+      context: .
+      dockerfile: Dockerfile
+    image: herolib:latest
+    container_name: herolib
+    volumes:
+      - ~/code:/root/code
+    stdin_open: true
+    tty: true
+    ports:
+      - "4100:8100"
+      - "4101:8101"
+      - "4102:8102"
+      - "4379:6379"
+      - "4000:3000"
+      - "4022:22"
+    command: ["/usr/local/bin/ourinit.sh"]
+volumes:
+  postgres_data:
+
+
--- a/docker/docusaurus/scripts/install_vscode.sh
+++ b/docker/docusaurus/scripts/install_vscode.sh
@@ -0,0 +1,98 @@
+#!/bin/bash -e
+
+# Set version and file variables
+OPENVSCODE_SERVER_VERSION="1.97.0"
+TMP_DIR="/tmp"
+FILENAME="openvscode.tar.gz"
+FILE_PATH="$TMP_DIR/$FILENAME"
+INSTALL_DIR="/opt/openvscode"
+BIN_PATH="/usr/local/bin/openvscode-server"
+TMUX_SESSION="openvscode-server"
+
+# Function to detect architecture
+get_architecture() {
+    ARCH=$(uname -m)
+    case "$ARCH" in
+        x86_64)
+            echo "x64"
+            ;;
+        aarch64)
+            echo "arm64"
+            ;;
+        *)
+            echo "Unsupported architecture: $ARCH" >&2
+            exit 1
+            ;;
+    esac
+}
+
+# Check if OpenVSCode Server is already installed
+if [ -d "$INSTALL_DIR" ] && [ -x "$BIN_PATH" ]; then
+    echo "OpenVSCode Server is already installed at $INSTALL_DIR. Skipping download and installation."
+else
+    # Determine architecture-specific URL
+    ARCH=$(get_architecture)
+    if [ "$ARCH" == "x64" ]; then
+        DOWNLOAD_URL="https://github.com/gitpod-io/openvscode-server/releases/download/openvscode-server-insiders-v${OPENVSCODE_SERVER_VERSION}/openvscode-server-insiders-v${OPENVSCODE_SERVER_VERSION}-linux-x64.tar.gz"
+    elif [ "$ARCH" == "arm64" ]; then
+        DOWNLOAD_URL="https://github.com/gitpod-io/openvscode-server/releases/download/openvscode-server-insiders-v${OPENVSCODE_SERVER_VERSION}/openvscode-server-insiders-v${OPENVSCODE_SERVER_VERSION}-linux-arm64.tar.gz"
+    fi
+
+    # Navigate to temporary directory
+    cd "$TMP_DIR"
+
+    # Remove existing file if it exists
+    if [ -f "$FILE_PATH" ]; then
+        rm -f "$FILE_PATH"
+    fi
+
+    # Download file using curl
+    curl -L "$DOWNLOAD_URL" -o "$FILE_PATH"
+
+    # Verify file size is greater than 40 MB (40 * 1024 * 1024 bytes)
+    FILE_SIZE=$(stat -c%s "$FILE_PATH")
+    if [ "$FILE_SIZE" -le $((40 * 1024 * 1024)) ]; then
+        echo "Error: Downloaded file size is less than 40 MB." >&2
+        exit 1
+    fi
+
+    # Extract the tar.gz file
+    EXTRACT_DIR="openvscode-server-insiders-v${OPENVSCODE_SERVER_VERSION}-linux-${ARCH}"
+    tar -xzf "$FILE_PATH"
+
+    # Move the extracted directory to the install location
+    if [ -d "$INSTALL_DIR" ]; then
+        rm -rf "$INSTALL_DIR"
+    fi
+    mv "$EXTRACT_DIR" "$INSTALL_DIR"
+
+    # Create a symlink for easy access
+    ln -sf "$INSTALL_DIR/bin/openvscode-server" "$BIN_PATH"
+
+    # Verify installation
+    if ! command -v openvscode-server >/dev/null 2>&1; then
+        echo "Error: Failed to create symlink for openvscode-server." >&2
+        exit 1
+    fi
+
+    # Install default plugins
+    PLUGINS=("ms-python.python" "esbenp.prettier-vscode" "saoudrizwan.claude-dev" "yzhang.markdown-all-in-one" "ms-vscode-remote.remote-ssh" "ms-vscode.remote-explorer" "charliermarsh.ruff" "qwtel.sqlite-viewer" "vosca.vscode-v-analyzer" "tomoki1207.pdf")
+    for PLUGIN in "${PLUGINS[@]}"; do
+        "$INSTALL_DIR/bin/openvscode-server" --install-extension "$PLUGIN"
+    done
+
+    echo "Default plugins installed: ${PLUGINS[*]}"
+
+    # Clean up temporary directory
+    if [ -d "$TMP_DIR" ]; then
+        find "$TMP_DIR" -maxdepth 1 -type f -name "openvscode*" -exec rm -f {} \;
+    fi
+fi
+
+# Start OpenVSCode Server in a tmux session
+if tmux has-session -t "$TMUX_SESSION" 2>/dev/null; then
+    tmux kill-session -t "$TMUX_SESSION"
+fi
+tmux new-session -d -s "$TMUX_SESSION" "$INSTALL_DIR/bin/openvscode-server"
+
+echo "OpenVSCode Server is running in a tmux session named '$TMUX_SESSION'."
--- a/docker/docusaurus/scripts/ourinit.sh
+++ b/docker/docusaurus/scripts/ourinit.sh
@@ -0,0 +1,14 @@
+#!/bin/bash -e
+
+# redis-server --daemonize yes
+
+# TMUX_SESSION="vscode"
+# # Start OpenVSCode Server in a tmux session
+# if tmux has-session -t "$TMUX_SESSION" 2>/dev/null; then
+#     tmux kill-session -t "$TMUX_SESSION"
+# fi
+# tmux new-session -d -s "$TMUX_SESSION" "/usr/local/bin/openvscode-server --host 0.0.0.0 --without-connection-token"
+
+# service ssh start
+
+exec /bin/bash
--- a/docker/docusaurus/shell.sh
+++ b/docker/docusaurus/shell.sh
@@ -0,0 +1,61 @@
+#!/bin/bash -e
+
+# Get the directory where the script is located
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+cd "$SCRIPT_DIR"
+
+CONTAINER_NAME="herolib"
+TARGET_PORT=4000
+
+# Function to check if a container is running
+is_container_running() {
+    docker ps --filter "name=$CONTAINER_NAME" --filter "status=running" -q
+}
+
+# Function to check if a port is accessible
+is_port_accessible() {
+    nc -zv 127.0.0.1 "$1" &>/dev/null
+}
+
+# Check if the container exists and is running
+if ! is_container_running; then
+    echo "Container $CONTAINER_NAME is not running."
+
+    # Check if the container exists but is stopped
+    if docker ps -a --filter "name=$CONTAINER_NAME" -q | grep -q .; then
+        echo "Starting existing container $CONTAINER_NAME..."
+        docker start "$CONTAINER_NAME"
+    else
+        echo "Container $CONTAINER_NAME does not exist. Attempting to start with start.sh..."
+        if [[ -f "$SCRIPT_DIR/start.sh" ]]; then
+            bash "$SCRIPT_DIR/start.sh"
+        else
+            echo "Error: start.sh not found in $SCRIPT_DIR."
+            exit 1
+        fi
+    fi
+
+    # Wait for the container to be fully up
+    sleep 5
+fi
+
+# Verify the container is running
+if ! is_container_running; then
+    echo "Error: Failed to start container $CONTAINER_NAME."
+    exit 1
+fi
+echo "Container $CONTAINER_NAME is running."
+
+# Check if the target port is accessible
+if is_port_accessible "$TARGET_PORT"; then
+    echo "Port $TARGET_PORT is accessible."
+else
+    echo "Port $TARGET_PORT is not accessible. Please check the service inside the container."
+fi
+
+# Enter the container
+echo
+echo " ** WE NOW LOGIN TO THE CONTAINER ** "
+echo
+docker exec -it herolib bash
+
--- a/docker/docusaurus/ssh.sh
+++ b/docker/docusaurus/ssh.sh
@@ -0,0 +1,3 @@
+#!/bin/bash -e
+
+ssh root@localhost -p 4022
--- a/docker/docusaurus/ssh_init.sh
+++ b/docker/docusaurus/ssh_init.sh
@@ -0,0 +1,63 @@
+#!/bin/bash -e
+
+# Get the directory where the script is located
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+cd "$SCRIPT_DIR"
+
+# Define variables
+CONTAINER_NAME="herolib"
+CONTAINER_SSH_DIR="/root/.ssh"
+AUTHORIZED_KEYS="authorized_keys"
+TEMP_AUTH_KEYS="/tmp/authorized_keys"
+
+# Step 1: Create a temporary file to store public keys
+> $TEMP_AUTH_KEYS  # Clear the file if it exists
+
+# Step 2: Add public keys from ~/.ssh/ if they exist
+if ls ~/.ssh/*.pub 1>/dev/null 2>&1; then
+    cat ~/.ssh/*.pub >> $TEMP_AUTH_KEYS
+fi
+
+# Step 3: Check if ssh-agent is running and get public keys from it
+if pgrep ssh-agent >/dev/null; then
+    echo "ssh-agent is running. Fetching keys..."
+    ssh-add -L >> $TEMP_AUTH_KEYS 2>/dev/null
+else
+    echo "ssh-agent is not running or no keys loaded."
+fi
+
+# Step 4: Ensure the temporary file is not empty
+if [ ! -s $TEMP_AUTH_KEYS ]; then
+    echo "No public keys found. Exiting."
+    exit 1
+fi
+
+# Step 5: Ensure the container's SSH directory exists
+docker exec -it $CONTAINER_NAME mkdir -p $CONTAINER_SSH_DIR
+docker exec -it $CONTAINER_NAME chmod 700 $CONTAINER_SSH_DIR
+
+# Step 6: Copy the public keys into the container's authorized_keys file
+docker cp $TEMP_AUTH_KEYS $CONTAINER_NAME:$CONTAINER_SSH_DIR/$AUTHORIZED_KEYS
+
+# Step 7: Set proper permissions for authorized_keys
+docker exec -it $CONTAINER_NAME chmod 600 $CONTAINER_SSH_DIR/$AUTHORIZED_KEYS
+
+# Step 8: Install and start the SSH server inside the container
+docker exec -it $CONTAINER_NAME bash -c "
+  apt-get update &&
+  apt-get install -y openssh-server &&
+  mkdir -p /var/run/sshd &&
+  echo 'PermitRootLogin yes' >> /etc/ssh/sshd_config &&
+  echo 'PasswordAuthentication no' >> /etc/ssh/sshd_config &&
+  chown -R root:root  /root/.ssh &&
+  chmod -R 700 /root/.ssh/ &&
+  chmod 600 /root/.ssh/authorized_keys &&  
+  service ssh start
+"
+
+# Step 9: Clean up temporary file on the host
+rm $TEMP_AUTH_KEYS
+
+echo "SSH keys added and SSH server configured. You can now SSH into the container."
+
+ssh root@localhost -p 4022
--- a/docker/docusaurus/start.sh
+++ b/docker/docusaurus/start.sh
@@ -0,0 +1,8 @@
+#!/bin/bash -e
+
+# Get the directory where the script is located
+SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+cd "$SCRIPT_DIR"
+
+
+
--- a/docker/herolib/export.sh
+++ b/docker/herolib/export.sh
@@ -0,0 +1,22 @@
+#!/bin/bash -ex
+
+# Get the directory where the script is located
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+cd "$SCRIPT_DIR"
+
+docker compose down
+
+docker rm herolib --force
+
+# Start the container in detached mode (-d)
+docker run --name herolib \
+  --entrypoint="/bin/bash" \
+  -v "${SCRIPT_DIR}/scripts:/scripts" \
+  -p 4022:22 \
+  -d herolib -c "while true; do sleep 1; done"
+
+docker exec -it herolib /scripts/cleanup.sh
+
+docker export herolib | gzip > ${HOME}/Downloads/herolib.tar.gz
+
+docker kill herolib
--- a/docker/herolib/scripts/cleanup.sh
+++ b/docker/herolib/scripts/cleanup.sh
@@ -0,0 +1,67 @@
+#!/bin/bash -e
+
+# Log file for cleanup operations
+LOG_FILE="/var/log/cleanup_script.log"
+exec > >(tee -a $LOG_FILE) 2>&1
+
+# Function to check and execute commands safely
+safe_run() {
+    echo "Running: $*"
+    eval "$*"
+}
+
+# Update package lists
+safe_run "apt update"
+
+# Remove unused packages and dependencies
+safe_run "apt autoremove -y"
+
+# Clean up APT cache
+safe_run "apt clean"
+safe_run "apt autoclean"
+
+# Remove old kernels (keeping the current and latest one)
+safe_run "apt remove --purge -y $(dpkg --list | grep linux-image | awk '{print $2}' | grep -v $(uname -r | sed 's/[^-]*-[^-]*-//') | sort | head -n -1)"
+
+# Clear systemd journal logs, keeping only the latest 7 days
+safe_run "journalctl --vacuum-time=7d"
+
+# Remove orphaned packages
+safe_run "deborphan | xargs apt-get -y remove --purge"
+
+# Clear thumbnail cache
+safe_run "rm -rf ~/.cache/thumbnails/*"
+
+# Remove old log files
+safe_run "find /var/log -type f -name '*.log' -delete"
+
+# Clear temporary files
+safe_run "rm -rf /tmp/*"
+safe_run "rm -rf /var/tmp/*"
+
+# Remove user-specific temporary files (adjust for other users as needed)
+safe_run "rm -rf ~/.cache/*"
+
+# Remove .pyc files
+safe_run "find / -type f -name '*.pyc' -delete"
+
+# Remove unused snap versions
+#safe_run "snap list --all | awk '/disabled/{print $1, $3}' | while read snapname revision; do snap remove "$snapname" --revision="$revision"; done"
+
+# Clear trash for all users
+safe_run "rm -rf /home/*/.local/share/Trash/*/**"
+safe_run "rm -rf /root/.local/share/Trash/*/**"
+
+# Free up swap space
+#safe_run "swapoff -a && swapon -a"
+
+# Update GRUB (in case old kernels were removed)
+#safe_run "update-grub"
+
+# # Final system update and upgrade
+# safe_run "apt upgrade -y"
+
+# Report completion
+echo "System cleanup completed successfully."
+
+