rlbr
/
docker-devpi
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11 Commits
1 Branch
0 Tags
39 KiB
 
 
Tree: 4d44168e58
Branches Tags
${ item.name }
tag.create_tag%!(EXTRA string=${ searchTerm })
Create branch ${ searchTerm }
from '4d44168e58'
${ noResults }
 ZIP  TAR.GZ
M Clark 4d44168e58
updated devpi version 		10 years ago
Dockerfile updated devpi version 10 years ago
LICENSE readme, license 11 years ago
README.md Update README.md 10 years ago
build.sh update for docker 1.9, parameterisation 10 years ago
docker-entrypoint.sh Update docker-entrypoint.sh 10 years ago

README.md

docker-devpi

This repository contains a Dockerfile for devpi pypi server.

Installation

docker pull muccg/docker-devpi

Quickstart

Start using

docker run -d --name devpi \
    --publish 3141:3141 \
    --volume /srv/docker/devpi:/data \
    --env=DEVPI_PASSWORD=changemetoyoulongsecret \
    --restart always \
    muccg/docker-devpi

Please set DEVPI_PASSWORD to a secret otherwise an attacker can execute arbitrary code in your application by uploading modified packages.

Persistence

For devpi to preserve its state across container shutdown and startup you should mount a volume at /data. The quickstart command already includes this.

Client side usage

To use this devpi cache to speed up your dockerfile builds, add use this snippit in your dockerfiles. This will add the devpi container an optional cache for pip:

# Install netcat for ip route
RUN apt-get update \
 && apt-get install -y netcat \
 && rm -rf /var/lib/apt/lists/*
 
 # Use an optional pip cache to speed development
RUN export HOST_IP=$(ip route| awk '/^default/ {print $3}') \
 && mkdir -p ~/.pip \
 && echo [global] >> ~/.pip/pip.conf \
 && echo extra-index-url = http://$HOST_IP:3141/app/dev/+simple >> ~/.pip/pip.conf \
 && echo [install] >> ~/.pip/pip.conf \
 && echo trusted-host = $HOST_IP >> ~/.pip/pip.conf \
 && cat ~/.pip/pip.conf

Uploading files

pip wheel --download=packages --wheel-dir=wheelhouse -r requirements.txt
pip install "devpi-client>=2.3.0" \
&& export HOST_IP=$(ip route| awk '/^default/ {print $3}') \
&& if devpi use http://$HOST_IP:3141>/dev/null; then \
       devpi use http://$HOST_IP:3141/${DEVPI_USER:-app}/${DEVPI_INDEX:-dev} --set-cfg \
    && devpi login ${DEVPI_USER:-app} --password=$DEVPI_PASSWORD  \
    && devpi upload --from-dir --formats=* ./wheelhouse ./packages; \
else \
    echo No started devpi container found at http://$HOST_IP:3141; \
fi

Security

Devpi creates a user named root by default, its password can be set with DEVPI_PASSWORD environment variable. Please set it, otherwise attacker can execute arbitrary code in your application by uploading modified packages.

For additonal security the argument --restrict-modify root has been added so only the root may create users and indexes.