contrib/hawq-docker/centos7-docker/hawq-dev/Dockerfile - hawq - Git at Google

 # Licensed to the Apache Software Foundation (ASF) under one
 # or more contributor license agreements.  See the NOTICE file
 # distributed with this work for additional information
 # regarding copyright ownership.  The ASF licenses this file
 # to you under the Apache License, Version 2.0 (the
 # "License"); you may not use this file except in compliance
 # with the License.  You may obtain a copy of the License at
 #
 #   http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing,
 # software distributed under the License is distributed on an
 # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 # KIND, either express or implied.  See the License for the
 # specific language governing permissions and limitations
 # under the License.

 FROM centos:7

 MAINTAINER Richard Guo <riguo@pivotal.io>

 # install all software we need
 RUN yum install -y epel-release && \
  yum makecache && \
  yum install -y man passwd sudo tar which git mlocate links make bzip2 net-tools \
  autoconf automake libtool m4 gcc gcc-c++ gdb bison flex cmake gperf maven indent \
  libuuid-devel krb5-devel libgsasl-devel expat-devel libxml2-devel \
  perl-ExtUtils-Embed pam-devel python-devel libcurl-devel snappy-devel \
  thrift-devel libyaml-devel libevent-devel bzip2-devel openssl-devel \
  openldap-devel protobuf-devel readline-devel net-snmp-devel apr-devel \
  libesmtp-devel python-pip json-c-devel \
  java-1.7.0-openjdk-devel lcov cmake \
  openssh-clients openssh-server perl-JSON && \
  yum clean all

 RUN pip --retries=50 --timeout=300 install pycrypto

 # OS requirement
 RUN echo "kernel.sem = 250 512000 100 2048" >> /etc/sysctl.conf

 # setup ssh server and keys for root
 RUN sshd-keygen && \
  ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa && \
  cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys && \
  chmod 0600 ~/.ssh/authorized_keys

 # create user gpadmin since HAWQ cannot run under root
 RUN groupadd -g 1000 gpadmin && \
  useradd -u 1000 -g 1000 gpadmin && \
  echo "gpadmin  ALL=(ALL)       NOPASSWD: ALL" > /etc/sudoers.d/gpadmin

 # sudo should not require tty
 RUN sed -i -e 's|Defaults    requiretty|#Defaults    requiretty|' /etc/sudoers

 # setup JAVA_HOME for all users
 RUN echo "#!/bin/sh" > /etc/profile.d/java.sh && \
  echo "export JAVA_HOME=/etc/alternatives/java_sdk" >> /etc/profile.d/java.sh && \
  chmod a+x /etc/profile.d/java.sh

 # set USER env
 RUN echo "#!/bin/bash" > /etc/profile.d/user.sh && \
  echo "export USER=\`whoami\`" >> /etc/profile.d/user.sh && \
  chmod a+x /etc/profile.d/user.sh

 ENV BASEDIR /data
 RUN mkdir -p /data && chmod 777 /data

 USER gpadmin

 # setup ssh client keys for gpadmin
 RUN ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa && \
  cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys && \
  chmod 0600 ~/.ssh/authorized_keys

 WORKDIR /data
	# Licensed to the Apache Software Foundation (ASF) under one
	# or more contributor license agreements. See the NOTICE file
	# distributed with this work for additional information
	# regarding copyright ownership. The ASF licenses this file
	# to you under the Apache License, Version 2.0 (the
	# "License"); you may not use this file except in compliance
	# with the License. You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing,
	# software distributed under the License is distributed on an
	# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	# KIND, either express or implied. See the License for the
	# specific language governing permissions and limitations
	# under the License.

	FROM centos:7

	MAINTAINER Richard Guo <riguo@pivotal.io>

	# install all software we need
	RUN yum install -y epel-release && \
	yum makecache && \
	yum install -y man passwd sudo tar which git mlocate links make bzip2 net-tools \
	autoconf automake libtool m4 gcc gcc-c++ gdb bison flex cmake gperf maven indent \
	libuuid-devel krb5-devel libgsasl-devel expat-devel libxml2-devel \
	perl-ExtUtils-Embed pam-devel python-devel libcurl-devel snappy-devel \
	thrift-devel libyaml-devel libevent-devel bzip2-devel openssl-devel \
	openldap-devel protobuf-devel readline-devel net-snmp-devel apr-devel \
	libesmtp-devel python-pip json-c-devel \
	java-1.7.0-openjdk-devel lcov cmake \
	openssh-clients openssh-server perl-JSON && \
	yum clean all

	RUN pip --retries=50 --timeout=300 install pycrypto

	# OS requirement
	RUN echo "kernel.sem = 250 512000 100 2048" >> /etc/sysctl.conf

	# setup ssh server and keys for root
	RUN sshd-keygen && \
	ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa && \
	cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys && \
	chmod 0600 ~/.ssh/authorized_keys

	# create user gpadmin since HAWQ cannot run under root
	RUN groupadd -g 1000 gpadmin && \
	useradd -u 1000 -g 1000 gpadmin && \
	echo "gpadmin ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/gpadmin

	# sudo should not require tty
	RUN sed -i -e 's\|Defaults requiretty\|#Defaults requiretty\|' /etc/sudoers

	# setup JAVA_HOME for all users
	RUN echo "#!/bin/sh" > /etc/profile.d/java.sh && \
	echo "export JAVA_HOME=/etc/alternatives/java_sdk" >> /etc/profile.d/java.sh && \
	chmod a+x /etc/profile.d/java.sh

	# set USER env
	RUN echo "#!/bin/bash" > /etc/profile.d/user.sh && \
	echo "export USER=\`whoami\`" >> /etc/profile.d/user.sh && \
	chmod a+x /etc/profile.d/user.sh

	ENV BASEDIR /data
	RUN mkdir -p /data && chmod 777 /data

	USER gpadmin

	# setup ssh client keys for gpadmin
	RUN ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa && \
	cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys && \
	chmod 0600 ~/.ssh/authorized_keys

	WORKDIR /data