init

Your Name · Your Name · commit 5b29a0a61d8b · 2022-05-18T15:44:26.000+03:00
diff --git a/.github/workflows/centos-stream-wf.yml b/.github/workflows/centos-stream-wf.yml
@@ -0,0 +1,88 @@
+name: "centos stream docker nagios CI workflow"
+
+
+on:
+  push:
+    branches: [ test ]
+
+
+jobs:
+
+  centos-9-nagios-job:
+    name: "nagios centos stream 9 image  ubuntu latest"
+    runs-on: ubuntu-latest
+    env:
+      version: "latest"
+      name: "centos-stream9/nagios"
+      dockerdir: "dockerfiles/3"
+      dockerfile: "Dockerfile.centos.stream9"
+    steps:
+    - uses: actions/checkout@v2
+    - name: "os fingerprinting"
+      run: |
+        hostnamectl status
+        lsb_release -a
+        lsb_release -d
+        cat /etc/lsb-release
+        cat /etc/issue
+        cat /etc/os-release
+        sudo apt-get install -y neofetch && neofetch         
+    - name: "docker build nagios base"
+      run: |
+        # destroyed afterwards (use --rm )
+        # all subsequent Dockerfile commands generate new images and the cache is not used
+        sudo docker build --no-cache --rm  -t ${name}:${version} . --file ${dockerdir}/${dockerfile} 
+        docker image ls
+        docker image history ${name}:${version} 
+        docker system df -v               
+        docker image inspect ${name}:${version}
+    - name: "docker scan trivy archlinux base "
+      run: |
+        # destroyed afterwards (use --rm )
+        # all subsequent Dockerfile commands generate new images and the cache is not used
+        sudo docker build --no-cache --rm  -t ${name}:${version} . --file ${dockerdir}/${dockerfile} 
+        curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/master/contrib/install.sh | sudo sh -s -- -b /usr/local/bin
+        trivy image ${name}:${version}
+
+  centos-8-nagios-job:
+    name: "nagios centos stream 8 image  ubuntu latest"
+    runs-on: ubuntu-latest
+    env:
+      version: "latest"
+      name: "centos-stream9/nagios"
+      dockerdir: "dockerfiles/3"
+      dockerfile: "Dockerfile.centos.stream8"
+    steps:
+    - uses: actions/checkout@v2
+    - name: "os fingerprinting"
+      run: |
+        hostnamectl status
+        lsb_release -a
+        lsb_release -d
+        cat /etc/lsb-release
+        cat /etc/issue
+        cat /etc/os-release
+        sudo apt-get install -y neofetch && neofetch         
+    - name: "docker build nagios base"
+      run: |
+        # destroyed afterwards (use --rm )
+        # all subsequent Dockerfile commands generate new images and the cache is not used
+        sudo docker build --no-cache --rm  -t ${name}:${version} . --file ${dockerdir}/${dockerfile} 
+        docker image ls
+        docker image history ${name}:${version} 
+        docker system df -v               
+        docker image inspect ${name}:${version}
+    - name: "docker scan trivy archlinux base "
+      run: |
+        # destroyed afterwards (use --rm )
+        # all subsequent Dockerfile commands generate new images and the cache is not used
+        sudo docker build --no-cache --rm  -t ${name}:${version} . --file ${dockerdir}/${dockerfile} 
+        curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/master/contrib/install.sh | sudo sh -s -- -b /usr/local/bin
+        trivy image ${name}:${version}
+
+       
+
+
+
+
+
diff --git a/dockerfiles/3/Dockerfile.centos.stream8 b/dockerfiles/3/Dockerfile.centos.stream8
@@ -0,0 +1,58 @@
+#https://quay.io/repository/centos/centos?tag=stream8&tab=tags
+FROM quay.io/centos/centos:stream8
+
+LABEL org.opencontainers.image.authors="githubfoam"
+
+ENV NAGIOS_USER nagios
+ENV NAGIOS_GROUP nagios  
+ENV NAGIOS_WEB_USER nagiosadmin
+ENV NAGIOS_WEB_PASS adminpass 
+ENV NAGIOS_HOME "/usr/local/nagios" 
+
+# verify centos stream8 
+RUN echo "================os-release=======================" && \
+    echo "=================================================" && \
+    cat /etc/os-release && \
+    echo "=================================================" && \
+    echo "================os-release======================="
+
+RUN yum update -yq && \
+    yum clean all && \
+    yum autoremove -yq && \
+    rm -rf /var/cache/*/*
+
+RUN yum update -yq && \
+    yum clean all && \
+    yum autoremove -yq && \
+    rm -rf /var/cache/*/* && \ 
+    # ---- make sure NAGIOS_HOME exists
+    mkdir -p ${NAGIOS_HOME}  && \
+    #mkdir -p /usr/local/nagios  && \
+    # ---- ensure user existence before provision
+    groupadd ${NAGIOS_GROUP}  && \
+    useradd --system -d ${NAGIOS_HOME} -g ${NAGIOS_GROUP} ${NAGIOS_USER} 
+
+# RUN echo "============================Setup Pre-requsites==============" && \
+#     # Set SELinux in permissive mode
+#     #current mode of SELinux
+#     yum install policycoreutils -y && \ 
+#     sestatus  && \ 
+#     #current mode of SELinux
+#     getenforce  && \
+#     # sed: can't read /etc/selinux/config: No such file or directory
+#     sed -i 's/SELINUX=.*/SELINUX=permissive/g' /etc/selinux/config && \
+#     setenforce 0 && \
+#     #current mode of SELinux
+#     sestatus  && \
+#     #current mode of SELinux
+#     getenforce 
+
+RUN echo "============================Install dependencies============================================================="  && \
+    dnf update -y && \
+    dnf install -y @php && \
+    dnf install -y @perl @httpd wget unzip glibc automake glibc-common gettext autoconf php php-cli gcc gd gd-devel net-snmp openssl-devel unzip net-snmp postfix net-snmp-utils && \
+    dnf groupinstall -y "Development Tools"
+    # systemctl enable --now httpd php-fpm
+    # systemctl enable --now httpd php-fpm && \
+    # systemctl status php-fpm && \
+    # systemctl status httpd
diff --git a/dockerfiles/3/Dockerfile.centos.stream9 b/dockerfiles/3/Dockerfile.centos.stream9
@@ -0,0 +1,54 @@
+#https://quay.io/repository/centos/centos?tag=stream8&tab=tags
+FROM quay.io/centos/centos:stream9
+
+LABEL org.opencontainers.image.authors="githubfoam"
+
+ENV NAGIOS_USER nagios
+ENV NAGIOS_GROUP nagios  
+ENV NAGIOS_WEB_USER nagiosadmin
+ENV NAGIOS_WEB_PASS adminpass 
+ENV NAGIOS_HOME "/usr/local/nagios"   
+
+
+# verify centos stream9 
+RUN echo "================os-release=======================" && \
+    echo "=================================================" && \
+    cat /etc/os-release && \
+    echo "=================================================" && \
+    echo "================os-release======================="
+
+RUN yum update -yq && \
+    yum clean all && \
+    yum autoremove -yq && \
+    rm -rf /var/cache/*/* && \ 
+    # ---- make sure NAGIOS_HOME exists
+    mkdir -p ${NAGIOS_HOME}  && \
+    #mkdir -p /usr/local/nagios  && \
+    # ---- ensure user existence before provision
+    groupadd ${NAGIOS_GROUP}  && \
+    useradd --system -d ${NAGIOS_HOME} -g ${NAGIOS_GROUP} ${NAGIOS_USER}
+
+# RUN echo "============================Setup Pre-requsites==============" && \
+#     # Set SELinux in permissive mode
+#     #current mode of SELinux
+#     yum install policycoreutils -y && \ 
+#     sestatus  && \ 
+#     #current mode of SELinux
+#     getenforce  && \
+#     # sed: can't read /etc/selinux/config: No such file or directory
+#     sed -i 's/SELINUX=.*/SELINUX=permissive/g' /etc/selinux/config && \
+#     setenforce 0 && \
+#     #current mode of SELinux
+#     sestatus  && \
+#     #current mode of SELinux
+#     getenforce 
+
+RUN echo "============================Install dependencies============================================================="  && \
+    dnf update -y
+    # Module or Group 'php' is not available.
+    # dnf install -y @php && \
+    # dnf install -y @perl @httpd wget unzip glibc automake glibc-common gettext autoconf php php-cli gcc gd gd-devel net-snmp openssl-devel unzip net-snmp postfix net-snmp-utils && \
+    # dnf groupinstall -y "Development Tools" && \
+    # systemctl enable --now httpd php-fpm && \
+    # systemctl status php-fpm && \
+    # systemctl status httpd
