huang
45aa7deb87
All checks were successful
构建并部署到测试环境(无 SSH) / build-and-deploy (push) Successful in 5m33s
主要改动: - 新增交互式环境配置脚本 (scripts/setup-env.sh) - 新增本地启动快捷脚本 (scripts/run-local.sh) - 新增环境变量模板文件 (.env.example) - 部署模式改版:使用嵌入式配置 + 环境变量覆盖 - 添加对象存储功能支持 - 改进 IoT 卡片导入任务 - 优化 OpenAPI 文档生成 - 删除旧的配置文件,改用嵌入式默认配置
84 lines
2.3 KiB
Docker
84 lines
2.3 KiB
Docker
# ================================
|
||
# 阶段 1: 构建阶段
|
||
# ================================
|
||
FROM --platform=linux/amd64 registry.boss160.cn/base/golang:1.25.6-alpine AS builder
|
||
|
||
# 使用阿里云镜像源加速
|
||
RUN sed -i 's/dl-cdn.alpinelinux.org/mirrors.aliyun.com/g' /etc/apk/repositories
|
||
|
||
# 设置工作目录
|
||
WORKDIR /build
|
||
|
||
# 设置 Go 代理(必须在所有 go 命令前)
|
||
ENV GOPROXY=https://goproxy.cn,direct \
|
||
GO111MODULE=on \
|
||
CGO_ENABLED=0
|
||
|
||
# 安装必要的构建工具
|
||
RUN apk add --no-cache git ca-certificates tzdata
|
||
|
||
# 复制 go.mod 和 go.sum(利用 Docker 缓存)
|
||
COPY go.mod go.sum ./
|
||
|
||
RUN go mod download
|
||
|
||
# 复制源代码
|
||
COPY . .
|
||
|
||
# 编译 API 服务(静态链接,使用并行编译)
|
||
RUN GOOS=linux GOARCH=amd64 go build \
|
||
-ldflags="-w -s" \
|
||
-o /build/api \
|
||
./cmd/api
|
||
|
||
# 下载 golang-migrate 工具(使用 GOPROXY 加速)
|
||
RUN go install -tags 'postgres' github.com/golang-migrate/migrate/v4/cmd/migrate@latest
|
||
|
||
# ================================
|
||
# 阶段 2: 运行阶段
|
||
# ================================
|
||
FROM --platform=linux/amd64 registry.boss160.cn/base/alpine:3.19
|
||
|
||
# 使用阿里云镜像源加速
|
||
RUN sed -i 's/dl-cdn.alpinelinux.org/mirrors.aliyun.com/g' /etc/apk/repositories
|
||
|
||
# 安装运行时依赖
|
||
RUN apk add --no-cache ca-certificates tzdata bash
|
||
|
||
# 设置时区
|
||
ENV TZ=Asia/Shanghai
|
||
|
||
# 创建非 root 用户
|
||
RUN addgroup -g 1000 appuser && \
|
||
adduser -D -u 1000 -G appuser appuser
|
||
|
||
# 设置工作目录
|
||
WORKDIR /app
|
||
|
||
# 从构建阶段复制二进制文件
|
||
COPY --from=builder /build/api /app/api
|
||
COPY --from=builder /go/bin/migrate /usr/local/bin/migrate
|
||
|
||
# 复制迁移文件(配置已嵌入二进制文件,无需外部配置文件)
|
||
COPY migrations /app/migrations
|
||
|
||
# 复制启动脚本
|
||
COPY docker/entrypoint-api.sh /app/entrypoint.sh
|
||
RUN chmod +x /app/entrypoint.sh
|
||
|
||
# 创建日志目录并设置权限(在切换用户前)
|
||
RUN mkdir -p /app/logs && chown -R appuser:appuser /app/logs
|
||
|
||
# 切换到非 root 用户
|
||
USER appuser
|
||
|
||
# 暴露端口
|
||
EXPOSE 3000
|
||
|
||
# 健康检查(使用 127.0.0.1 强制 IPv4,避免 IPv6 连接问题)
|
||
HEALTHCHECK --interval=30s --timeout=3s --start-period=10s --retries=3 \
|
||
CMD wget --no-verbose --tries=1 --spider http://127.0.0.1:3000/health || exit 1
|
||
|
||
# 启动命令
|
||
ENTRYPOINT ["/app/entrypoint.sh"]
|