# Postgres Backend: openbmp/psql-consumer
#
# Copyright (c) 2021 Cisco Systems, Inc. and Tim Evens.  All rights reserved.
#
# Author: Tim Evens <tim@openbmp.org>
#
#   Docker context does not support multiple paths or mounting volumes for builds.
#   In effort to build the container from local git clones, we dynamically build a context
#
#   Clone the obmp-psql, obmp-java-api-message, and obmp-docker repos into the same directory.
#   Change directories to obmp-docker/psql-app and run the below from that
#   directory.
#
#   Example docker build:
#     tar -cL -C ../../ ./obmp-psql ./obmp-docker/psql-app ./obmp-java-api-message \
#           | docker build --build-arg BUILD_NUMBER=50 \
#                 -f obmp-docker/psql-app/Dockerfile -t openbmp/psql-app:build-50 -

# -----------------------------------------------
# stage: Build
# -----------------------------------------------
FROM openbmp/dev-image:latest AS build

ARG BUILD_NUMBER=0

# Proxy servers
#ENV http_proxy http://proxy:80
#ENV https_proxy http://proxy:80
#ENV no_proxy "domain.com"

COPY obmp-psql/ /ws
COPY obmp-java-api-message/ /tmp/obmp-java-api-message
WORKDIR /ws

RUN cd /tmp/obmp-java-api-message \
    && mvn clean install \
    && cd /ws \
    && mvn clean package

# -----------------------------------------------
# stage: Final container
# -----------------------------------------------
FROM openjdk:17-slim

# Copy files from previous stages
COPY --from=build /ws/target/obmp-psql-consumer-0.1.0-SNAPSHOT.jar /usr/local/openbmp/obmp-psql-consumer.jar
COPY --from=build /ws/database/  /usr/local/openbmp/database
COPY --from=build /ws/cron_scripts/gen-whois/*.py /usr/local/openbmp/
COPY --from=build /ws/cron_scripts/rpki/*.py /usr/local/openbmp/
COPY --from=build /ws/scripts/dbip-to-psql.py /usr/local/openbmp/

# Add files
ADD obmp-docker/psql-app/scripts/run /usr/sbin/

#----------------------------------
# Define persistent data volumes
VOLUME ["/config"]

#----------------------------------
# Expose ports.

# Consumer JMX console
EXPOSE 9005

# RPKI Validator port
EXPOSE 8080

#----------------------------------
# Define working directory.
WORKDIR /tmp

# Base setup tasks
RUN touch /usr/local/build-${BUILD_NUMBER} \
    && chmod 755 /usr/local/openbmp/*.py

#----------------------------------
# Install depends
RUN apt-get update \
    && apt-get install --allow-unauthenticated -y unzip curl wget whois vim rsyslog cron rsync kafkacat \
        procps python3-minimal python3-distutils python3-psycopg2  python3-dnspython postgresql-client \
    && ln -s /usr/bin/python3 /usr/bin/python

RUN cd /tmp && curl https://bootstrap.pypa.io/get-pip.py -o get-pip.py \
    && python3 get-pip.py

RUN pip install ipaddr pykafka

# Cleanup
RUN apt-get autoremove && apt-get clean

#----------------------------------
# Install RPKI validator (https://github.com/RIPE-NCC/rpki-validator-3/wiki)
RUN mkdir /usr/local/rpki && cd /tmp \
    && wget https://ftp.ripe.net/tools/rpki/validator3/prod/generic/rpki-validator-3-latest-dist.tar.gz \
    && tar xzf rpki-validator-3-latest-dist.tar.gz \
    && cd rpki-validator-*/ \
    && mv * /usr/local/rpki/ \
    && rm -rf /tmp/rpki-* \
    && cd /usr/local/rpki \
    && sed -i -r 's/.*server.address=.*/server.address=0.0.0.0/' /usr/local/rpki/conf/application.properties \
    && sed -i -r 's/jvm.mem.maximum=.*/jvm.mem.maximum=2g/' /usr/local/rpki/conf/application.properties


#----------------------------------
# Define default command.
CMD ["/usr/sbin/run"]