This commit is contained in:
parent
b6c031addc
commit
4646bee397
5 changed files with 205 additions and 0 deletions
123
.drone.yml
Normal file
123
.drone.yml
Normal file
|
@ -0,0 +1,123 @@
|
|||
kind: pipeline
|
||||
type: docker
|
||||
name: linux-amd64
|
||||
|
||||
platform:
|
||||
os: linux
|
||||
arch: amd64
|
||||
|
||||
steps:
|
||||
- name: docker
|
||||
image: plugins/docker
|
||||
settings:
|
||||
purge: true
|
||||
no_cache: true
|
||||
auto_tag: true
|
||||
auto_tag_suffix: linux-amd64
|
||||
repo: spcodes/hidden-service
|
||||
build_args:
|
||||
- ARCH=amd64
|
||||
username:
|
||||
from_secret: USERNAME
|
||||
password:
|
||||
from_secret: PASSWORD
|
||||
|
||||
trigger:
|
||||
branch:
|
||||
- main
|
||||
event:
|
||||
- push
|
||||
|
||||
---
|
||||
kind: pipeline
|
||||
type: docker
|
||||
name: linux-arm
|
||||
|
||||
platform:
|
||||
os: linux
|
||||
arch: arm
|
||||
|
||||
steps:
|
||||
- name: docker
|
||||
image: plugins/docker
|
||||
settings:
|
||||
purge: true
|
||||
no_cache: true
|
||||
auto_tag: true
|
||||
auto_tag_suffix: linux-arm
|
||||
repo: spcodes/hidden-service
|
||||
build_args:
|
||||
- ARCH=arm
|
||||
username:
|
||||
from_secret: USERNAME
|
||||
password:
|
||||
from_secret: PASSWORD
|
||||
|
||||
trigger:
|
||||
branch:
|
||||
- main
|
||||
event:
|
||||
- push
|
||||
|
||||
---
|
||||
kind: pipeline
|
||||
type: docker
|
||||
name: linux-arm64
|
||||
|
||||
platform:
|
||||
os: linux
|
||||
arch: arm64
|
||||
|
||||
steps:
|
||||
- name: docker
|
||||
image: plugins/docker
|
||||
settings:
|
||||
purge: true
|
||||
no_cache: true
|
||||
auto_tag: true
|
||||
auto_tag_suffix: linux-arm64
|
||||
repo: spcodes/hidden-service
|
||||
build_args:
|
||||
- ARCH=arm64
|
||||
username:
|
||||
from_secret: USERNAME
|
||||
password:
|
||||
from_secret: PASSWORD
|
||||
|
||||
trigger:
|
||||
branch:
|
||||
- main
|
||||
event:
|
||||
- push
|
||||
|
||||
---
|
||||
kind: pipeline
|
||||
type: docker
|
||||
name: manifest
|
||||
|
||||
steps:
|
||||
- name: publish-latest
|
||||
image: plugins/manifest
|
||||
settings:
|
||||
ignore_missing: true
|
||||
target: spcodes/hidden-service
|
||||
template: spcodes/hidden-service:OS-ARCH
|
||||
platforms:
|
||||
- linux/amd64
|
||||
- linux/arm64
|
||||
- linux/arm
|
||||
username:
|
||||
from_secret: USERNAME
|
||||
password:
|
||||
from_secret: PASSWORD
|
||||
|
||||
depends_on:
|
||||
- linux-amd64
|
||||
- linux-arm64
|
||||
- linux-arm
|
||||
|
||||
trigger:
|
||||
branch:
|
||||
- main
|
||||
event:
|
||||
- push
|
2
.gitignore
vendored
Normal file
2
.gitignore
vendored
Normal file
|
@ -0,0 +1,2 @@
|
|||
.idea/
|
||||
*.iml
|
20
Dockerfile
Normal file
20
Dockerfile
Normal file
|
@ -0,0 +1,20 @@
|
|||
ARG ARCH
|
||||
FROM amd64/debian:10.7-slim@sha256:b1af07039fe341833982bae85a2724ac8600ec5c74c37277c7a6ef7cddfb2cd0 AS base-amd64
|
||||
FROM arm32v7/debian:10.7-slim@sha256:d31590f680577ffde6bd08943e9590eaabdc04529ea60f4bb6f58cddbc33f628 AS base-arm
|
||||
FROM arm64v8/debian:10.7-slim@sha256:01b65c2928fed9427e59a679e287a75d98551ea2061cf03c61be0c7e1fc40fef AS base-arm64
|
||||
FROM base-${ARCH}
|
||||
|
||||
RUN apt-get update && apt-get upgrade -y && apt-get install -y \
|
||||
curl="7.64.0-4+deb10u1" \
|
||||
tor="0.3.5.12-1" && \
|
||||
apt-get clean && \
|
||||
rm -rf /var/lib/apt/lists/* && \
|
||||
useradd --system -M --shell /usr/sbin/nologin tor
|
||||
|
||||
COPY entrypoint.sh /
|
||||
|
||||
VOLUME /web
|
||||
|
||||
USER tor
|
||||
|
||||
ENTRYPOINT ["/entrypoint.sh"]
|
19
entrypoint.sh
Normal file
19
entrypoint.sh
Normal file
|
@ -0,0 +1,19 @@
|
|||
#!/bin/bash
|
||||
|
||||
echo '[+] Starting tor'
|
||||
|
||||
cat > /etc/tor/torrc << EOF
|
||||
DataDirectory /tmp/tor
|
||||
HiddenServiceDir /web/
|
||||
Log notice stdout
|
||||
EOF
|
||||
|
||||
if [[ -n "${PRIVATE_KEY}" && -n "${REDIRECT}" ]]; then
|
||||
echo "[+] Starting the listener at port ${LISTEN_PORT:-80}, redirecting to ${REDIRECT}"
|
||||
echo "${PRIVATE_KEY}" > /web/private_key
|
||||
cat >> /etc/tor/torrc << EOF
|
||||
HiddenServicePort ${LISTEN_PORT:-80} ${REDIRECT}
|
||||
EOF
|
||||
fi
|
||||
|
||||
tor -f /etc/tor/torrc
|
41
renovate.json
Normal file
41
renovate.json
Normal file
|
@ -0,0 +1,41 @@
|
|||
{
|
||||
"assignees": [
|
||||
"samuel-p"
|
||||
],
|
||||
"baseBranches": [
|
||||
"main"
|
||||
],
|
||||
"rangeStrategy": "bump",
|
||||
"rebaseWhen": "behind-base-branch",
|
||||
"regexManagers": [
|
||||
{
|
||||
"fileMatch": [
|
||||
"^Dockerfile$"
|
||||
],
|
||||
"matchStrings": [
|
||||
"\\s+(?<depName>[a-z0-9\\-]+?)=\"(?<currentValue>.*?)\""
|
||||
],
|
||||
"lookupNameTemplate": "debian_stable/{{{depName}}}",
|
||||
"versioningTemplate": "loose",
|
||||
"datasourceTemplate": "repology"
|
||||
}
|
||||
],
|
||||
"packageRules": [
|
||||
{
|
||||
"datasources": [
|
||||
"repology"
|
||||
],
|
||||
"groupName": [
|
||||
"base dependencies"
|
||||
]
|
||||
},
|
||||
{
|
||||
"datasources": [
|
||||
"docker"
|
||||
],
|
||||
"groupName": [
|
||||
"docker images"
|
||||
]
|
||||
}
|
||||
]
|
||||
}
|
Reference in a new issue