FROM centos:6.9

ENV HOSTNAME DNS                     
ENV JAVA_HOME /usr/java/latest

# reponse file for unattended JSD installation
COPY conf/response.varfile /tmp/conf/

RUN \
    # download and install JDK
    curl -jkL -H "Cookie: oraclelicense=accept-securebackup-cookie" http://download.oracle.com/otn-pub/java/jdk/8u144-b01/090f390dda5b47b9b721c7dfaa008135/jdk-8u144-linux-x64.rpm > /tmp/jdk.rpm && \
    rpm -iv /tmp/jdk.rpm && \
    rm /tmp/jdk.rpm && \

    # download and install JSD
    curl https://downloads.atlassian.com/software/jira/downloads/atlassian-servicedesk-3.5.1-x64.bin > /tmp/jira.bin && \
    chmod 700 /tmp/jira.bin && \
    /tmp/jira.bin -q -varfile /tmp/conf/response.varfile && \
    rm /tmp/jira.bin && \

    # install ansible
    yum -y install vim epel-release && yum -y install ansible && \

    # create convenience aliases
    echo 'tail -f /app/jira/logs/catalina.out' > /usr/local/bin/jiratail && \
    echo '/etc/init.d/jira start && jiratail' > /usr/local/bin/jirastart && \
    echo '/etc/init.d/jira stop' > /usr/local/bin/jirashutdown && \
    echo 'jirashutdown && jirastart' > /usr/local/bin/jirarestart && \
    echo 'ansible-playbook -v $*' > /usr/local/bin/play && \
    chmod 755 /usr/local/bin/*

# utility scripts
COPY bin /tmp/bin

# jira application data
ADD build/jira-application-data.bz2 /var/atlassian/application-data/

# ssoi authenticator
COPY build/jira-ssoi-authenticator-bin.tar.gz /tmp/

# overwrite jira config
COPY conf/server.xml /app/jira/conf/
COPY conf/setenv.sh /app/jira/bin/

# apache certificate
COPY build/apache.crt /tmp/

# keystore for tomcat's use - see apache/conf/make_key.sh for its origin
COPY build/jira.keystore /app/certs/cert0602017/server.keystore

RUN \
    # reset ownership of jira directories
    chown -R jira:jira /app/jira /var/atlassian/application-data/jira && \

    # install apache cert into JIRA's keystore
    keytool -noprompt -importcert -trustcacerts -alias apache -keystore /app/jira/jre/lib/security/cacerts -storepass changeit -file /tmp/apache.crt && \
    rm -rf /tmp/apache.crt && \

    # install ssoi authenticator
    tar -xzvf /tmp/jira-ssoi-authenticator-bin.tar.gz -C /tmp && \
    ansible-playbook -v /tmp/ssoi/deploy.yml

CMD /usr/local/bin/jirastart
