Adding docker image and release scripts

.gitignore

@@ -3,3 +3,4 @@ atlantis
 *.iml
 .vscode
 atlantis.db
+output

Dockerfile

@@ -0,0 +1,46 @@
+FROM alpine:3.4
+MAINTAINER Anubhav Mishra <anubhav.mishra@hootsuite.com>
+
+ENV DOCKER_BASE_VERSION=0.0.4
+
+# create atlantis user
+RUN addgroup atlantis && \
+    adduser -S -G atlantis atlantis
+
+ENV ATLANTIS_HOME_DIR=/home/atlantis
+
+# install atlantis dependencies
+RUN apk add --no-cache ca-certificates gnupg curl git unzip bash openssh libcap openssl && \
+    gpg --keyserver ha.pool.sks-keyservers.net --recv-keys 91A6E7F85D05C65630BEF18951852D87348FFC4C && \
+    mkdir -p /tmp/build && \
+    cd /tmp/build && \
+    wget https://releases.hashicorp.com/docker-base/${DOCKER_BASE_VERSION}/docker-base_${DOCKER_BASE_VERSION}_linux_amd64.zip && \
+    wget https://releases.hashicorp.com/docker-base/${DOCKER_BASE_VERSION}/docker-base_${DOCKER_BASE_VERSION}_SHA256SUMS && \
+    wget https://releases.hashicorp.com/docker-base/${DOCKER_BASE_VERSION}/docker-base_${DOCKER_BASE_VERSION}_SHA256SUMS.sig && \
+    gpg --batch --verify docker-base_${DOCKER_BASE_VERSION}_SHA256SUMS.sig docker-base_${DOCKER_BASE_VERSION}_SHA256SUMS && \
+    grep ${DOCKER_BASE_VERSION}_linux_amd64.zip docker-base_${DOCKER_BASE_VERSION}_SHA256SUMS | sha256sum -c && \
+    unzip docker-base_${DOCKER_BASE_VERSION}_linux_amd64.zip && \
+    cp bin/gosu bin/dumb-init /bin && \
+    cd /tmp && \
+        rm -rf /tmp/build && \
+        apk del gnupg openssl && \
+        rm -rf /root/.gnupg && rm -rf /var/cache/apk/*
+
+# install terraform binaries
+ENV DEFAULT_TERRAFORM_VERSION=0.10.0
+
+RUN AVAILABLE_TERRAFORM_VERSIONS="0.8.8 0.9.11 0.10.0" && \
+    for VERSION in ${AVAILABLE_TERRAFORM_VERSIONS}; do curl -LOk https://releases.hashicorp.com/terraform/${VERSION}/terraform_${VERSION}_linux_amd64.zip && \
+    mkdir -p /usr/local/bin/tf/versions/${VERSION} && \
+    unzip terraform_${VERSION}_linux_amd64.zip -d /usr/local/bin/tf/versions/${VERSION} && \
+    ln -s /usr/local/bin/tf/versions/${VERSION}/terraform /usr/local/bin/terraform${VERSION};done && \
+    ln -s /usr/local/bin/tf/versions/${DEFAULT_TERRAFORM_VERSION}/terraform /usr/local/bin/terraform
+
+# copy binary
+COPY atlantis /usr/local/bin/atlantis
+
+# copy docker entrypoint
+COPY docker-entrypoint.sh /usr/local/bin/docker-entrypoint.sh
+
+ENTRYPOINT ["docker-entrypoint.sh"]
+CMD ["server"]

Makefile

@@ -1,6 +1,7 @@
 BUILD_ID := $(shell git rev-parse --short HEAD 2>/dev/null || echo no-commit-id)
 WORKSPACE := $(shell pwd)
 PKG := $(shell go list ./... | grep -v e2e | grep -v vendor | grep -v static)
+IMAGE_NAME := hootsuite/atlantis
 
 .PHONY: test
 
@@ -23,6 +24,13 @@ deps: ## Download dependencies
 build-service: ## Build the main Go service
 	CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -v -o atlantis .
 
+build-docker-image: build-service ## Build the docker image for atlantis version eg. make build-docker-image version=ATLANTIS_VERSION
+	docker build -t $(IMAGE_NAME):$(version) .
+	docker tag $(IMAGE_NAME):$(version) $(IMAGE_NAME):latest
+
+push-docker-image: ## Push image to docker registry
+	docker push $(IMAGE_NAME):latest
+
 test: ## Run tests, coverage reports, and clean (coverage taints the compiled code)
 	go test $(PKG)
 
@@ -34,7 +42,7 @@ dist: ## Package up everything in static/ using go-bindata-assetfs so it can be
 	go-bindata-assetfs -pkg server static/... && mv bindata_assetfs.go server
 
 release: ## Create packages for a release
-	gox -os="darwin linux" -arch="amd64"
+	./scripts/binary-release.sh
 
 vendor-status:
 	@govendor status

docker-entrypoint.sh

@@ -0,0 +1,39 @@
+#!/bin/dumb-init /bin/sh
+set -e
+
+# Original: https://github.com/hashicorp/docker-consul/blob/2c2873f9d619220d1eef0bc46ec78443f55a10b5/0.X/docker-entrypoint.sh
+
+# Note above that we run dumb-init as PID 1 in order to reap zombie processes
+# as well as forward signals to all processes in its session. Normally, sh
+# wouldn't do either of these functions so we'd leak zombies as well as do
+# unclean termination of all our sub-processes.
+
+# If the user is trying to run atlantis directly with some arguments, then
+# pass them to atlantis.
+if [ "${1:0:1}" = '-' ]; then
+    set -- atlantis "$@"
+fi
+
+# Look for atlantis subcommands.
+if [ "$1" = '--version' ]; then
+    # This needs a special case because there's no help output.
+    set -- atlantis "$@"
+elif atlantis --help "$1" 2>&1 | grep -q "atlantis $1"; then
+    # We can't use the return code to check for the existence of a subcommand, so
+    # we have to use grep to look for a pattern in the help output.
+    set -- atlantis "$@"
+fi
+
+# If we are running atlantis, make sure it executes as the proper user.
+if [ "$1" = 'atlantis' ]; then
+    # If requested, set the capability to bind to privileged ports before
+    # we drop to the non-root user. Note that this doesn't work with all
+    # storage drivers (it won't work with AUFS).
+    if [ ! -z ${ATLANTIS_ALLOW_PRIVILEGED_PORTS+x} ]; then
+        setcap "cap_net_bind_service=+ep" /bin/atlantis
+    fi
+
+    set -- gosu atlantis "$@"
+fi
+
+exec "$@"

scripts/binary-release.sh

@@ -0,0 +1,44 @@
+#!/bin/bash
+
+# define architecture we want to build
+XC_ARCH=${XC_ARCH:-"386 amd64 arm"}
+XC_OS=${XC_OS:-linux darwin}
+XC_EXCLUDE_OSARCH="!darwin/arm !darwin/386"
+
+# clean up
+echo "-> running clean up...."
+rm -rf output/*
+
+if ! which gox > /dev/null; then
+    echo "-> installing gox..."
+    go get -u github.com/mitchellh/gox
+fi
+
+# build
+# we want to build statically linked binaries
+export CGO_ENABLED=0
+echo "-> building..."
+gox \
+    -os="${XC_OS}" \
+    -arch="${XC_ARCH}" \
+    -osarch="${XC_EXCLUDE_OSARCH}" \
+    -output "output/{{.OS}}_{{.Arch}}/atlantis" \
+    .
+
+# Zip and copy to the dist dir
+echo ""
+echo "Packaging..."
+for PLATFORM in $(find ./output -mindepth 1 -maxdepth 1 -type d); do
+    OSARCH=$(basename ${PLATFORM})
+    echo "--> ${OSARCH}"
+
+    pushd $PLATFORM >/dev/null 2>&1
+    zip ../atlantis_${OSARCH}.zip ./*
+    popd >/dev/null 2>&1
+done
+
+echo ""
+echo ""
+echo "-----------------------------------"
+echo "Output:"
+ls -alh output/