blob: 8e37ea7cc1aa7ac3dbde296bcd6de1c1af9024b1 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
|
ARG HUB
ARG PIPELINE
FROM ${HUB}/datb-tc-pipeline:${PIPELINE}
LABEL maintainer="jhunk@stsci.edu" \
vendor="Space Telescope Science Institute"
ARG NB_USER="jovyan"
ARG NB_UID="1100"
ARG NB_GID="110"
USER root
WORKDIR "${TOOLCHAIN_BUILD}"
COPY scripts/build.sh ${TOOLCHAIN_BUILD}/bin/
COPY etc/ ${TOOLCHAIN_BUILD}/etc
ENV NB_USER="${NB_USER}" \
NB_UID="${NB_UID}" \
NB_GID="${NB_GID}" \
LC_ALL=en_US.UTF-8 \
LANG=en_US.UTF-8 \
LANGUAGE=en_US.UTF-8
ENV NB_HOME="/home/${NB_USER}"
ADD scripts/fix-permissions /usr/local/bin/fix-permissions
# Create jovyan user with UID=1100 and in the 'users' group
# and make sure these dirs are writable by the `users` group.
RUN echo "auth required pam_wheel.so use_uid" >> /etc/pam.d/su && \
useradd -m -s /bin/bash -N -u $NB_UID $NB_USER && \
chmod g+w /etc/passwd && \
fix-permissions $NB_HOME && \
echo "root ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/rewt
# Begin toolchain image-specific steps
USER "${USER_ACCT}"
RUN sudo chown -R ${USER_ACCT}: ${TOOLCHAIN_BUILD} \
&& bin/build.sh \
&& sudo rm -rf "${TOOLCHAIN_BUILD}"
# Begin jupyterhub specific steps
ENV HOME="${NB_HOME}"
USER "${NB_UID}"
# Setup work directory for backward-compatibility
RUN mkdir /home/$NB_USER/work && \
fix-permissions /home/$NB_USER && \
jupyter notebook --generate-config
USER root
EXPOSE 8888
WORKDIR "${HOME}"
ENTRYPOINT ["tini", "-g", "--"]
CMD ["start-notebook.sh"]
COPY scripts/start.sh /usr/local/bin/
COPY scripts/start-notebook.sh /usr/local/bin/
COPY scripts/start-singleuser.sh /usr/local/bin/
COPY scripts/jupyter_notebook_config.py /etc/jupyter/
RUN fix-permissions /etc/jupyter/
USER "${NB_UID}"
|
