FROM quay.io/centos-bootc/centos-bootc:{{ bootc_image_tag if bootc_image_tag is defined else 'stream9' }}

# Create root homedir
RUN mkdir /var/roothome

# ZFS
RUN dnf -y install epel-release git && \
    dnf -y install https://zfsonlinux.org/fedora/zfs-release-2-4.fc38.noarch.rpm && \
    sed -i s/\$releasever/38/g /etc/yum.repos.d/zfs.repo && \
    dnf -y install kernel-devel-$(ls /usr/lib/modules) && \
    dnf -y install zfs && \
    dkms build zfs/$(rpm -q --qf '%{VERSION}' zfs) -k $(ls /usr/lib/modules) && \
    dkms install zfs/$(rpm -q --qf '%{VERSION}' zfs) -k $(ls /usr/lib/modules)

# KVM & Cockpit
RUN echo "qemu:x:107:107:qemu user:/:/sbin/nologin" >> /etc/passwd && \
    dnf -y install qemu-kvm libvirt virt-install virt-viewer && \
    dnf -y install cockpit cockpit-bridge cockpit-machines cockpit-pcp cockpit-podman cockpit-storaged cockpit-system cockpit-navigator cockpit-selinux cockpit-ostree && \
    systemctl enable cockpit.socket

# Cockpit ZFS Manager
RUN git clone https://github.com/45drives/cockpit-zfs-manager.git /root/cockpit-zfs-manager && \
    cp -r /root/cockpit-zfs-manager/zfs /usr/share/cockpit && \
    rm -r /root/cockpit-zfs-manager && \
# Fix cockpit fonts/icons https://github.com/45Drives/scripts/blob/main/cockpit_font_fix/fix-cockpit.sh
    mkdir -p /usr/share/cockpit/base1/fonts && \
    curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/fontawesome.woff -o /usr/share/cockpit/base1/fonts/fontawesome.woff && \
    curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/glyphicons.woff -o /usr/share/cockpit/base1/fonts/glyphicons.woff && \
    curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/patternfly.woff -o /usr/share/cockpit/base1/fonts/patternfly.woff && \
    mkdir -p /usr/share/cockpit/static/fonts && \
    curl -sSL https://scripts.45drives.com/cockpit_font_fix/fonts/OpenSans-Semibold-webfont.woff -o /usr/share/cockpit/static/fonts/OpenSans-Semibold-webfont.woff

# Cockpit file sharing, and Samba users
RUN dnf -y install https://github.com/45Drives/cockpit-identities/releases/download/v0.1.12/cockpit-identities-0.1.12-1.el8.noarch.rpm \
    https://github.com/45Drives/cockpit-file-sharing/releases/download/v3.3.7/cockpit-file-sharing-3.3.7-1.el8.noarch.rpm

# Sanoid & Syncoid
RUN git clone https://github.com/jimsalterjrs/sanoid.git /root/sanoid && \
    cd /root/sanoid && git checkout $(git tag | grep "^v" | tail -n 1) && cp sanoid syncoid findoid sleepymutex /usr/local/sbin && \
    mkdir /etc/sanoid && cp sanoid.defaults.conf /etc/sanoid && touch /etc/sanoid/sanoid.conf && cp sanoid.conf /etc/sanoid/sanoid.example.conf && \
    rm -r /root/sanoid
RUN dnf -y install perl-Data-Dumper perl-Getopt-Long lzop mbuffer mhash pv && \
    PERL_MM_USE_DEFAULT=1 cpan install Capture::Tiny && PERL_MM_USE_DEFAULT=1 cpan install Config::IniFiles

# Firewall
RUN dnf -y install firewalld && \
    systemctl enable firewalld && \
    firewall-offline-cmd --add-service cockpit

# Allow sudo without password
RUN echo "%wheel ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/wheel-passwordless-sudo

# Other tools
RUN dnf -y install vim podman fish ansible wget dstat byobu smartmontools