FROM docker.io/golang:1.20 as golang
RUN go install github.com/1player/host-spawn@1.4.2

FROM docker.io/debian:testing-backports
COPY --from=golang /go/bin/host-spawn /usr/local/bin/host-spawn
SHELL ["/bin/bash", "-o", "pipefail", "-xc"]
ADD [ "https://www.shore.co.il/blog/static/runas", "/usr/local/sbin/runas" ]
COPY --chown=root:root .curlrc /root/
# hadolint ignore=DL3008
RUN rm /etc/apt/apt.conf.d/docker-* && \
    apt-get update && \
    DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends \
        ca-certificates \
        curl \
        entr \
        flatpak-xdg-utils \
        gnupg \
        gosu \
        libnss-myhostname \
        locales \
        make \
        netbase \
    && \
    export GNUPGHOME=/tmp/gnupghome && \
    mkdir --mode=0700 "$GNUPGHOME" && \
    curl https://dl.k8s.io/apt/doc/apt-key.gpg > \
    /usr/share/keyrings/google-cloud.gpg && \
    curl https://pgp.mongodb.com/server-5.0.asc | \
    gpg --no-default-keyring --import --batch --keyring /usr/share/keyrings/mongodb.gpg && \
    curl https://apt.releases.hashicorp.com/gpg | \
    gpg --no-default-keyring --import --batch --keyring /usr/share/keyrings/hashicorp.gpg && \
    curl https://dl.cloudsmith.io/public/cloudposse/packages/gpg.7333C6FDEFA717CC.key | \
    gpg --no-default-keyring --import --batch --keyring /usr/share/keyrings/cloudposse.gpg && \
    curl https://repo.charm.sh/apt/gpg.key | \
    gpg --no-default-keyring --import --batch --keyring /usr/share/keyrings/charm.gpg && \
    curl https://packages.opentofu.org/opentofu/tofu/gpgkey | \
    gpg --no-default-keyring --import --batch --keyring /usr/share/keyrings/opentofu.gpg && \
    gpg --no-default-keyring --keyring /usr/share/keyrings/clickhouse.gpg --keyserver hkp://keyserver.ubuntu.com:80  --recv-keys 8919F6BD2B48D754 && \
    ln --symbolic --target /usr/local/bin/ /usr/libexec/flatpak-xdg-utils/* && \
    ln --symbolic /usr/local/bin/host-spawn /usr/local/bin/podman && \
    #mkdir /etc/krb5.conf.d && \
    echo 'VARIANT_ID=container' >> /etc/os-release && \
    touch /etc/localtime && \
    chmod 755 /usr/local/sbin/runas && \
    sed -i 's/# en_US.UTF-8 UTF-8/en_US.UTF-8 UTF-8/; s/# en_IL UTF-8/en_IL UTF-8/; s/# he_IL.UTF-8 UTF-8/he_IL.UTF-8 UTF-8/;' /etc/locale.gen && \
    locale-gen && \
    rm -rf /tmp/* /var/tmp/* /var/lib/apt/lists/* /var/cache/apt/archives/*
COPY --chown=root:root sources.d/* /etc/apt/sources.list.d/
COPY --chown=root:root preferences.d/* /etc/apt/preferences.d/
# Testing that apt-get update works correctly.
RUN apt-get update && \
    rm -rf /tmp/* /var/tmp/* /var/lib/apt/lists/* /var/cache/apt/archives/*
LABEL com.github.containers.toolbox="true"
