FROM docker.io/alpine:3.16 AS builder

ENV VERSION=20.0.1
ENV SHA256_SUM=0ab04636827d54915f54456a260d37489e6c4df494615cf00c05e96d281a91e6

RUN wget "https://github.com/keycloak/keycloak/releases/download/$VERSION/keycloak-$VERSION.tar.gz"
RUN echo "$SHA256_SUM  keycloak-$VERSION.tar.gz" | sha256sum -c - || exit 1
RUN mkdir -p /keycloak
RUN tar xvf keycloak-$VERSION.tar.gz -C /keycloak --strip 1

FROM docker.io/thallian/alpine-s6:3.16

RUN addgroup -g 2222 keycloak
RUN adduser -h /home/keycloak -u 2222 -D -G keycloak keycloak

RUN apk add --no-cache \
	openjdk17-jre-headless \
	bash

COPY --from=builder --chown=keycloak:keycloak /keycloak /home/keycloak/server

RUN /home/keycloak/server/bin/kc.sh build --db postgres 
RUN chown -R keycloak:keycloak /home/keycloak

ADD /rootfs /