A single script that can install CA-certificates on multiple platforms. Works with Alpine, Debian-like, and RHEL-like distributions.
sudo ./install.sh CA_CERTS_DIRARG BASE
FROM ${BASE}
USER root
RUN mkdir /tmp/install-ca-certs
# TODO: COPY or ADD certificates to /tmp/install-ca-certs/certs
# TODO: Pin install-ca-certs version
ADD --chmod=700 https://raw.githubusercontent.com/bachorp/install-ca-certs/main/install.sh /tmp/install-ca-certs/install.sh
RUN /tmp/install-ca-certs/install.sh /tmp/install-ca-certs/certs && rm -rf /tmp/install-ca-certs
ARG USER
# ok if empty string
USER ${USER}You can use docker inspect --format-string '{{.Config.User}}' <BASE_IMAGE> to get the required argument USER.
ARG BASE
FROM ${BASE} AS base
FROM debian AS build
COPY --from=base /etc/ssl/certs /etc/ssl/certs
RUN mkdir /tmp/install-ca-certs
# TODO: COPY or ADD certificates to /tmp/install-ca-certs/certs
# TODO: Pin install-ca-certs version
ADD --chmod=700 https://raw.githubusercontent.com/bachorp/install-ca-certs/main/install.sh /tmp/install-ca-certs/install.sh
RUN /tmp/install-ca-certs/install.sh /tmp/install-ca-certs/certs && rm -rf /tmp/install-ca-certs
FROM base
COPY --from=build /etc/ssl/certs /etc/ssl/certs