# Additional metadata labels used by container registries, platforms
# and certification scanners.
LABELname="Vault"\
maintainer="Vault Team <vault@hashicorp.com>"\
vendor="HashiCorp"\
version=${PRODUCT_VERSION}\
release=${PRODUCT_REVISION}\
revision=${PRODUCT_REVISION}\
summary="Vault is a tool for securely accessing secrets."\
description="Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log."
FROM registry.access.redhat.com/ubi8/ubi-minimal:8.5 as ubi
ARG BIN_NAME
# PRODUCT_VERSION is the version built dist/$TARGETOS/$TARGETARCH/$BIN_NAME,
# which we COPY in later. Example: PRODUCT_VERSION=1.2.3.
ARG PRODUCT_VERSION
ARG PRODUCT_REVISION
# TARGETARCH and TARGETOS are set automatically when --platform is provided.
ARG TARGETOS TARGETARCH
# Additional metadata labels used by container registries, platforms
# and certification scanners.
LABELname="Vault"\
maintainer="Vault Team <vault@hashicorp.com>"\
vendor="HashiCorp"\
version=${PRODUCT_VERSION}\
release=${PRODUCT_REVISION}\
revision=${PRODUCT_REVISION}\
summary="Vault is a tool for securely accessing secrets."\
description="Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log."
COPY LICENSE /licenses/mozilla.txt
# Set ARGs as ENV so that they can be used in ENTRYPOINT/CMD
ENVNAME=$NAME
ENVVERSION=$VERSION
# Set up certificates, our base tools, and Vault. Unlike the other version of
# this (https://github.com/hashicorp/docker-vault/blob/master/ubi/Dockerfile),