Initial commit

Author: a3s7p

.dockerignore

@@ -0,0 +1,2 @@
+*
+!entrypoint

CHANGELOG.md

@@ -0,0 +1,14 @@
+## 0.1.0
+
+Initial development release.
+
+#### Notes
+
+- Based off [tklx/base:0.1.0](https://github.com/tklx/base/releases/tag/0.1.0).
+- PostgreSQL installed directly from Debian.
+- Uses tini for zombie reaping and signal forwarding.
+- Uses gosu for dropping privileges to postgres user.
+- Includes ``VOLUME /var/lib/postgresql/data`` for persistence.
+- Includes ``EXPOSE 5432`` for container linking.
+- Basic bats testing suite.
+

Dockerfile

@@ -0,0 +1,51 @@
+FROM tklx/base:0.1.0
+
+ENV PGDATA=/var/lib/postgresql/data PATH=/usr/lib/postgresql/9.4/bin:$PATH LANG=en_US.UTF-8 LOCALE=en_US.UTF-8
+
+ENV TINI_VERSION=v0.9.0
+RUN set -x \
+    && TINI_URL=https://github.com/krallin/tini/releases/download/${TINI_VERSION}/tini \
+    && TINI_GPGKEY=0527A9B7 \
+    && export GNUPGHOME="$(mktemp -d)" \
+    && apt-get update \
+    && apt-get -y install wget ca-certificates \
+    && wget -O /tini ${TINI_URL} \
+    && wget -O /tini.asc ${TINI_URL}.asc \
+    && gpg --keyserver ha.pool.sks-keyservers.net --recv-keys ${TINI_GPGKEY} \
+    && gpg --verify /tini.asc \
+    && chmod +x /tini \
+    && rm -r ${GNUPGHOME} /tini.asc \
+    && apt-get purge -y --auto-remove wget ca-certificates \
+    && apt-clean --aggressive
+
+ENV GOSU_VERSION=1.9
+RUN set -x \
+    && GOSU_URL=https://github.com/tianon/gosu/releases/download/${GOSU_VERSION}/gosu-$(dpkg --print-architecture) \
+    && GOSU_GPGKEY=B42F6819007F00F88E364FD4036A9C25BF357DD4 \
+    && export GNUPGHOME="$(mktemp -d)" \
+    && apt-get update \
+    && apt-get -y install wget ca-certificates \
+    && wget -O /usr/local/sbin/gosu ${GOSU_URL} \
+    && wget -O /usr/local/sbin/gosu.asc ${GOSU_URL}.asc \
+    && gpg --keyserver ha.pool.sks-keyservers.net --recv-keys ${GOSU_GPGKEY} \
+    && gpg --verify /usr/local/sbin/gosu.asc \
+    && chmod +x /usr/local/sbin/gosu && gosu nobody true \
+    && rm -r ${GNUPGHOME} /usr/local/sbin/gosu.asc \
+    && apt-get purge -y --auto-remove wget ca-certificates \
+    && apt-clean --aggressive
+
+RUN set -x \
+    && apt-get update \
+    && apt-get -y install postgresql \
+    && localedef -i en_US -c -f UTF-8 -A /usr/share/locale/locale.alias en_US.UTF-8 \
+    && sed -ri 's/#(create_main_cluster) .*$/\1 = false/' /etc/postgresql-common/createcluster.conf \ 
+    && apt-clean --aggressive
+
+VOLUME "/var/lib/postgresql/data"
+RUN set -x && mkdir -p $PGDATA && chown -R postgres:postgres $PGDATA
+
+COPY entrypoint /entrypoint
+ENTRYPOINT ["/tini", "--", "/entrypoint"]
+EXPOSE 5432
+CMD ["postgres"]
+

README.md

@@ -0,0 +1,91 @@
+# tklx/postgresql - SQL database
+
+[![CircleCI](https://circleci.com/gh/tklx/postgres.svg?style=shield)](https://circleci.com/gh/tklx/postgres)
+
+[PostgreSQL][postgres], often simply Postgres, is an object-relational database management system (ORDBMS) with an emphasis on extensibility and standards-compliance. As a database server, its primary function is to store data securely, and to allow for retrieval at the request of other software applications. It can handle workloads ranging from small single-machine applications to large Internet-facing applications with many concurrent users.
+
+## Features
+
+- Based on the super slim [tklx/base][base] (Debian GNU/Linux).
+- PostgreSQL installed directly from Debian.
+- Uses [tini][tini] for zombie reaping and signal forwarding.
+- Uses [gosu][gosu] for dropping privileges to postgres user.
+- Includes ``VOLUME /var/lib/postgresql/data`` for persistence.
+- Includes ``EXPOSE 5432``, so standard container linking will make it
+  automatically available to the linked containers.
+
+## Usage
+
+### Start a postgres instance and connect to it from an application
+
+```console
+$ docker run --name some-postgres -e POSTGRES_PASSWORD='secretpass' -d tklx/postgres
+$ docker run --name some-app --link some-postgres:postgres -d app-that-uses-postgres
+```
+
+### Initialization
+
+The image can be initialized by passing the following options as [environment variables][1] to ```docker run```:
+
+    PGDATA            - Postgres data location (/var/lib/postgresql/data by default)
+    POSTGRES_DB       - name of database to initialize
+    POSTGRES_USER     - name of database user to assign as owner of POSTGRES_DB
+    POSTGRES_PASSWORD - password for database user or ```postgres``` if user not specified
+
+```POSTGRES_PASSWORD``` is required for remote access (e. g. from linked containers). If it is not supplied and the datastore was not already initialized, only local access will be allowed.
+
+### Tips
+
+```console
+# postgresql client options
+$ docker run --rm tklx/postgresql psql --help
+
+# postgres options
+$ docker run --rm tklx/postgresql --help
+
+# launch a regular PostgreSQL instance
+$ docker run --name some-postgres -e POSTGRES_USER=someuser POSTGRES_DB=somedb -e POSTGRES_PASSWORD=mysecretpassword -d tklx/postgres
+
+# link an application to it
+$ docker run --name some-app --link some-postgres:tklx/postgres -d app-that-uses-postgres
+
+# access through psql
+$ docker run -it --rm --link some-postgres:tklx/postgres tklx/postgres psql -h postgres -U postgres
+psql (9.4.8)
+Type "help" for help.
+
+postgres=# SELECT 1;
+ ?column? 
+----------
+        1
+(1 row)
+
+# local access through psql
+$ docker exec -it some-postgres psql -h localhost -U postgres
+
+```
+
+## Automated builds
+
+The [Docker image](https://hub.docker.com/r/tklx/postgres/) is built, tested and pushed by [CircleCI](https://circleci.com/gh/tklx/postgres) from source hosted on [GitHub](https://github.com/tklx/postgres).
+
+* Tag: ``x.y.z`` refers to a [release](https://github.com/tklx/mongodb/releases) (recommended).
+* Tag: ``latest`` refers to the master branch.
+
+## Status
+
+Currently on major version zero (0.y.z). Per [Semantic Versioning][semver],
+major version zero is for initial development, and should not be considered
+stable. Anything may change at any time.
+
+## Issue Tracker
+
+TKLX uses a central [issue tracker][tracker] on GitHub for reporting and
+tracking of bugs, issues and feature requests.
+
+[postgres]: https://www.postgresql.org/
+[base]: https://github.com/tklx/base
+[tini]: https://github.com/krallin/tini
+[gosu]: https://github.com/tianon/gosu
+[semver]: http://semver.org/
+[tracker]: https://github.com/tklx/tracker/issues

circle.yml

@@ -0,0 +1,33 @@
+machine:
+  services:
+    - docker
+  environment:
+    appname: "postgres"
+
+dependencies:
+  override:
+    - docker info
+    - docker pull tklx/$appname:latest || true
+    - docker build -t tklx/$appname:latest .
+    - docker images
+
+test:
+  pre:
+    - git clone https://github.com/tklx/bats.git
+    - sudo bats/install.sh /usr/local
+  override:
+    - IMAGE=tklx/$appname:latest bats --tap tests/basics.bats
+
+deployment:
+  latest:
+    branch: master
+    commands:
+      - docker login -e $DOCKER_EMAIL -u $DOCKER_USER -p $DOCKER_PASS
+      - docker push tklx/$appname:latest
+  release:
+    tag: /^([0-9]+)\.([0-9]+)\.([0-9]+)$/
+    owner: tklx
+    commands:
+      - docker login -e $DOCKER_EMAIL -u $DOCKER_USER -p $DOCKER_PASS
+      - docker tag tklx/$appname:latest tklx/$appname:$CIRCLE_TAG
+      - docker push tklx/$appname:$CIRCLE_TAG

contrib/generate-changelog

@@ -0,0 +1,46 @@
+#!/bin/bash -e
+
+fatal() { echo "fatal [$(basename $0)]: $@" 1>&2; exit 1; }
+
+usage() {
+cat<<EOF
+Syntax: $0
+Convenience script to output updated CHANGELOG.md for manual editing
+
+Notes::
+    
+    - auto-increments major.minor.PATCH from latest git tag (or 0.1.0)
+    - includes short git log of changes since latest git tag (or all)
+
+EOF
+exit 1
+}
+
+increment_version() {
+    version=$1
+    last_char=${version#${version%?}}
+    echo $version | sed 's/[0-9]$/'"$((last_char+1))"'/'
+}
+
+get_log() {
+    since=$1
+    [ "$since" ] && between=$since..HEAD
+    git --no-pager log $between --reverse --pretty=format:'- %s'
+}
+
+[[ "$#" = "0" ]] || usage
+
+latest=$(git tag -l | head -1)
+gitlog=$(get_log $latest)
+[ "$latest" ] && version=$(increment_version $latest)
+
+echo -e "## ${version:-0.1.0}\n"
+echo -e "<replace with high level summary>\n"
+echo -e "#### New features\n"
+echo -e "#### Bugfixes\n"
+echo "${gitlog}" | grep -i fix && echo || true
+echo -e "#### Other changes\n"
+echo "${gitlog}" | grep -vi fix && echo || true
+[ -e CHANGELOG.md ] && cat CHANGELOG.md
+
+exit 0

docs/release.md

@@ -0,0 +1,14 @@
+## update changelog, create signed tag and push to github
+
+```
+contrib/generate-changelog > CHANGELOG.tmp
+mv CHANGELOG.tmp CHANGELOG.md
+$EDITOR CHANGELOG.md # verify version is correct and tweak 
+VERSION=$(head -1 CHANGELOG.md | awk '{print $2}')
+git add CHANGELOG.md
+git commit -m "changelog: updated for $VERSION release"
+git tag -s -m "$VERSION release" $VERSION
+git push github
+git push github --tags
+```
+

entrypoint

@@ -0,0 +1,61 @@
+#!/bin/bash -e
+
+RUNDIR=/run/postgresql
+
+if [[ ${1:0:1} = '-' ]]; then
+    set -- postgres "$@"
+fi
+
+if [[ $1 = postgres ]]; then
+    mkdir -p "$PGDATA"
+    chmod 700 "$PGDATA"
+    chown -R postgres "$PGDATA" "$RUNDIR"
+    chmod g+s "$RUNDIR"
+
+    # look specifically for PG_VERSION, as it is expected in the DB dir
+    if [[ ! -s $PGDATA/PG_VERSION ]]; then
+        eval "gosu postgres initdb $POSTGRES_INITDB_ARGS"
+
+        if [[ -n $POSTGRES_PASSWORD ]]; then
+                    pass="PASSWORD '$POSTGRES_PASSWORD'"
+
+            echo "host all all 0.0.0.0/0 md5" >> "$PGDATA/pg_hba.conf"
+            sed -ri "s|^#?(listen_addresses)\s*=\s*\S+.*|\1 = '*'|" $PGDATA/postgresql.conf
+        else
+            pass=
+            echo 'WARNING: No $POSTGRES_PASSWORD set! Only local access enabled.'
+        fi
+
+        gosu postgres pg_ctl -o "-c listen_addresses='localhost'" -w start
+
+        : ${POSTGRES_USER:=postgres}
+        : ${POSTGRES_DB:=$POSTGRES_USER}
+        export POSTGRES_USER POSTGRES_DB
+
+        psql=( psql -v ON_ERROR_STOP=1 )
+
+        if [[ $POSTGRES_DB != postgres ]]; then
+            "${psql[@]}" --username postgres <<<"CREATE DATABASE \"$POSTGRES_DB\";"
+            echo
+        fi
+
+        if [[ $POSTGRES_USER = postgres ]]; then
+            op='ALTER'
+        else
+            op='CREATE'
+        fi
+
+        "${psql[@]}" --username postgres <<<"$op USER \"$POSTGRES_USER\" WITH SUPERUSER $pass;"
+
+        psql+=( --username "$POSTGRES_USER" --dbname "$POSTGRES_DB" )
+
+        gosu postgres pg_ctl -m fast -w stop
+
+        echo 'PostgreSQL init process complete; ready for start up.'
+    fi
+
+    exec gosu postgres "$@"
+fi
+
+exec "$@"
+

tests/README.md

@@ -0,0 +1,15 @@
+## Install dependencies
+
+```console
+git clone https://github.com/tklx/bats.git
+bats/install.sh /usr/local
+```
+
+## Run the tests
+
+```console
+IMAGE=tklx/postgres bats --tap tests/basics.bats
+
+init: running tklx/postgres
+init: waiting for tklx/postgres to accept connections...
+