✨ Add patroni image

Signed-off-by: Muhammed Hussein Karimi <info@karimi.dev>

Author: mhkarimi1383

.github/workflows/patroni.yaml

@@ -0,0 +1,71 @@
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - .github/workflows/patroni.yaml
+      - patroni/*
+      - '!patroni/README.md'
+
+permissions:
+    contents: write
+    packages: write
+
+jobs:
+  build-image:
+    strategy:
+      matrix:
+        pg_version:
+          - "17"
+          - "16"
+          - "15"
+          - "14"
+          - "13"
+
+    name: Build Image
+    runs-on: ubuntu-latest
+    env:
+      REGISTRY: ghcr.io
+      IMAGE_NAME: parmincloud/containers/patroni
+      PATRONI_VERSION: 4.0.6
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    - name: Set up QEMU
+      uses: docker/setup-qemu-action@v3
+
+    - name: Setup Docker buildx
+      uses: docker/setup-buildx-action@v3
+
+    - name: Log into registry ${{ env.REGISTRY }}
+      uses: docker/login-action@v3
+      with:
+        registry: ${{ env.REGISTRY }}
+        username: ${{ github.actor }}
+        password: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Extract Docker metadata
+      id: meta
+      uses: docker/metadata-action@v5
+      with:
+        images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+
+    - name: Build and push Docker image
+      id: build-and-push-release
+      uses: docker/build-push-action@v6
+      with:
+        cache-from: type=gha
+        cache-to: type=gha,mode=max
+        context: ./patroni
+        file: ./patroni/Containerfile
+        labels: ${{ steps.meta.outputs.labels }}
+        push: true
+        platforms: linux/amd64
+        build-args: |
+            PGVERSION=${{ matrix.pg_version }}
+            PATRONI_VERSION=${{ env.PATRONI_VERSION }}
+        tags: |
+          ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.PATRONI_VERSION }}-pg${{ matrix.pg_version }}
+

README.md

@@ -5,3 +5,4 @@ Publicly available Container Images (published on `ghcr.io`)
 ## Available images
 
 * [PHP](./php/README.md)
+* [Patroni](./patroni/README.md)

patroni/Containerfile

@@ -0,0 +1,42 @@
+ARG PGVERSION
+ARG PATRONI_VERSION
+FROM postgres:${PGVERSION}
+
+ARG PGVERSION
+ARG PATRONI_VERSION
+ENV PATRONI_CONFIG=/etc/patroni.yml
+
+RUN apt-get update && \
+	apt-get install -y --no-install-recommends \
+	python3-pip \
+	python3-dev \
+	python3-full \
+	libpq-dev \
+	build-essential \
+	postgresql-plpython3-${PGVERSION} \
+	curl \
+	jq \
+	net-tools \
+	iputils-ping \
+	dumb-init \
+	vim \
+	less \
+	locales \
+	&& \
+	rm -rf /var/lib/apt/lists/*
+
+RUN python3 -m venv /opt/patroni-venv
+ENV PATH="/opt/patroni-venv/bin:$PATH"
+
+RUN pip3 install --no-cache-dir \
+	patroni[all,psycopg3]==${PATRONI_VERSION}
+
+COPY patroni.yml ${PATRONI_CONFIG}
+COPY entrypoint.sh /usr/local/bin/entrypoint.sh
+RUN chmod +x /usr/local/bin/entrypoint.sh
+
+ENV PATRONI_POSTGRESQL_DATA_DIR=/var/lib/postgresql/data
+ENV PATRONI_POSTGRESQL_CONFIG_DIR=${PATRONI_POSTGRESQL_DATA_DIR}
+
+ENTRYPOINT ["/usr/local/bin/entrypoint.sh"]
+CMD ["patroni"]

patroni/README.md

@@ -0,0 +1,25 @@
+# Patroni Container images
+
+Minimal Patroni container images for running PostgreSQL clusters in containers (specially non-kubernetes environments).
+
+## Available images
+
+We are supprting latest patroni version with supported PostgreSQL versions. (17, 16, 15, 14, 13)
+
+`ghcr.io/parmincloud/containers/patroni:<patroni_version>-pg<pg_version>`
+
+Currently available images are:
+
+* `ghcr.io/parmincloud/containers/patroni:4.0.6-pg17`
+* `ghcr.io/parmincloud/containers/patroni:4.0.6-pg16`
+* `ghcr.io/parmincloud/containers/patroni:4.0.6-pg15`
+* `ghcr.io/parmincloud/containers/patroni:4.0.6-pg14`
+* `ghcr.io/parmincloud/containers/patroni:4.0.6-pg13`
+
+## Usage
+
+Bind mount your configuration file to `/etc/patroni.yml` and run the container (Can be overritten by setting `PATRONI_CONFIG`).
+and also bind mount your data directory to `/var/lib/postgresql/data`.
+
+Do not forget to expose required ports (according to your configuration file).
+default configuration file is available at [./patroni.yml](./patroni.yml).

patroni/entrypoint.sh

@@ -0,0 +1,22 @@
+#!/usr/bin/env bash
+
+set -exu -o pipefail
+
+if [ $1 != "patroni" ]; then
+  exec "$@"
+fi
+
+echo "Checking if patroni configuration file exists..."
+if [ ! -n "${PATRONI_CONFIG}" ]; then
+  echo "PATRONI_CONFIG is not set. Exiting."
+  exit 1
+fi
+if [ ! -f "${PATRONI_CONFIG}" ]; then
+  echo "Patroni configuration file ${PATRONI_CONFIG} does not exist. Exiting."
+  exit 1
+fi
+
+echo "Starting Patroni..."
+exec patroni \
+  "${PATRONI_CONFIG}"
+  "$@"

patroni/patroni.yml

@@ -0,0 +1,138 @@
+#scope: batman
+#namespace: /service/
+#name: postgresql0
+
+restapi:
+  listen: 0.0.0.0:8008
+#  connect_address: 127.0.0.1:8008
+#  cafile: /etc/ssl/certs/ssl-cacert-snakeoil.pem
+#  certfile: /etc/ssl/certs/ssl-cert-snakeoil.pem
+#  keyfile: /etc/ssl/private/ssl-cert-snakeoil.key
+#  authentication:
+#    username: username
+#    password: password
+
+#ctl:
+#  insecure: false # Allow connections to Patroni REST API without verifying certificates
+#  certfile: /etc/ssl/certs/ssl-cert-snakeoil.pem
+#  keyfile: /etc/ssl/private/ssl-cert-snakeoil.key
+#  cacert: /etc/ssl/certs/ssl-cacert-snakeoil.pem
+
+  #etcd:
+  #Provide host to do the initial discovery of the cluster topology:
+#  host: 127.0.0.1:2379
+  #Or use "hosts" to provide multiple endpoints
+  #Could be a comma separated string:
+  #hosts: host1:port1,host2:port2
+  #or an actual yaml list:
+  #hosts:
+  #- host1:port1
+  #- host2:port2
+  #Once discovery is complete Patroni will use the list of advertised clientURLs
+  #It is possible to change this behavior through by setting:
+  #use_proxies: true
+
+#raft:
+#  data_dir: .
+#  self_addr: 127.0.0.1:2222
+#  partner_addrs:
+#  - 127.0.0.1:2223
+#  - 127.0.0.1:2224
+
+# The bootstrap configuration. Works only when the cluster is not yet initialized.
+# If the cluster is already initialized, all changes in the `bootstrap` section are ignored!
+bootstrap:
+  # This section will be written into Etcd:/<namespace>/<scope>/config after initializing new cluster
+  # and all other cluster members will use it as a `global configuration`.
+  # WARNING! If you want to change any of the parameters that were set up
+  # via `bootstrap.dcs` section, please use `patronictl edit-config`!
+  dcs:
+    ttl: 30
+    loop_wait: 10
+    retry_timeout: 10
+    maximum_lag_on_failover: 1048576
+#    primary_start_timeout: 300
+#    synchronous_mode: false
+    #standby_cluster:
+      #host: 127.0.0.1
+      #port: 1111
+      #primary_slot_name: patroni
+    postgresql:
+      use_pg_rewind: true
+      pg_hba:
+      - local all all trust
+      # For kerberos gss based connectivity (discard @.*$)
+      #- host replication replicator 127.0.0.1/32 gss include_realm=0
+      #- host all all 0.0.0.0/0 gss include_realm=0
+      - host replication replicator all md5
+      - host all all all md5
+      #  - hostssl all all all md5
+#      use_slots: true
+      parameters:
+        max_connections: 100
+#        wal_level: hot_standby
+#        hot_standby: "on"
+#        max_connections: 100
+#        max_worker_processes: 8
+#        wal_keep_segments: 8
+#        max_wal_senders: 10
+#        max_replication_slots: 10
+#        max_prepared_transactions: 0
+#        max_locks_per_transaction: 64
+#        wal_log_hints: "on"
+#        track_commit_timestamp: "off"
+#        archive_mode: "on"
+#        archive_timeout: 1800s
+#        archive_command: mkdir -p ../wal_archive && test ! -f ../wal_archive/%f && cp %p ../wal_archive/%f
+#      recovery_conf:
+#        restore_command: cp ../wal_archive/%f %p
+
+  # some desired options for 'initdb'
+  initdb:  # Note: It needs to be a list (some options need values, others are switches)
+  - locale: en_US.UTF-8
+  - encoding: UTF8
+  - data-checksums
+
+  # Additional script to be launched after initial cluster creation (will be passed the connection URL as parameter)
+# post_init: /usr/local/bin/setup_cluster.sh
+
+postgresql:
+  listen: 0.0.0.0:5432
+#  connect_address: 127.0.0.1:5432
+
+#  proxy_address: 127.0.0.1:5433  # The address of connection pool (e.g., pgbouncer) running next to Patroni/Postgres. Only for service discovery.
+  data_dir: /var/lib/postgresql/data
+#  bin_dir:
+  config_dir: /var/lib/postgresql/data
+  pgpass: /tmp/pgpass0
+#  authentication:
+#    replication:
+#      username: replicator
+#      password: rep-pass
+#    superuser:
+#      username: postgres
+#      password: patroni
+#    rewind:  # Has no effect on postgres 10 and lower
+#      username: rewind_user
+#      password: rewind_password
+  # Server side kerberos spn
+#  krbsrvname: postgres
+#  parameters:
+    # Fully qualified kerberos ticket file for the running user
+    # same as KRB5CCNAME used by the GSS
+#   krb_server_keyfile: /var/spool/keytabs/postgres
+#    unix_socket_directories: '..'  # parent directory of data_dir
+  # Additional fencing script executed after acquiring the leader lock but before promoting the replica
+  #pre_promote: /path/to/pre_promote.sh
+
+#watchdog:
+#  mode: automatic # Allowed values: off, automatic, required
+#  device: /dev/watchdog
+#  safety_margin: 5
+
+tags:
+    # failover_priority: 1
+    # sync_priority: 1
+    noloadbalance: false
+    clonefrom: false
+    nostream: false