At work, I had the need of implement a virus scanner for all files uploaded to the server.
Well lets give a chance the clamav a deamon virus scanner opensource.
I found a project what implement a rest api very easy!
I run the docker compose of the proyect and works like charm!
It use clamav in a docker container, an a api rest application to scan the file, using a network connector.
I'm not a big fan of docker, for run the docker project by hand, but dokku handle very well and can manage (deploy, maintain, etc) very well without effort.
With the good advice of the core developer from dokku. I can implement very fast the solution in dokku.
Then let's jump in....
┌──────┐ │ │ ┌───────────────────┐ ┌────────────────────┐ │ N │ │ │ clamav-net │ │ proxy│ G │ │ Clamav (clamd) ◄─────────────────┤ Rest API :3000 │◄──────┤ I │ │ │ │ │ │ N │ └───────────────────┘ └────────────────────┘ │ X │ │ │ │ :443│ │ │ └──────┘
Basically this is implemented by dokku..
first the nginx proxy the http request to the
rest api application which is listen at :3000 in the container, to do that needs to communicate with clamd the deamon which scan the file and return the result to the apirest.
Easy right ?
My first approach to solve this is creating a plugin doing that but @savant Jose Gonzales from dokku suggest better create two dokku apps using https://dokkupose.netlify.app
The I paste the docker-compose file to the dokkupose and for my surprise it give exactly all the commands needed to deploy in dokku. Feeling like this:
Then the only missing here is the network link between clamd and the rest-api. I handle it by hand.
I left you the script i made to create the solution with comments:
What about the signature updates ?
In container handle it by automatically and update daily
you don't know about dokku ?
Docker powered mini-Heroku. The smallest PaaS implementation you've ever seen.
Become a sponsor and get your logo on our README on GitHub with a link to your site. [Become a sponsor]
Support us with a monthly donation and help us continue our activities. [Become a backer]
A fresh VM running any of the following operating systems:
- Ubuntu 18.04/20.04 x64 - Any currently supported release
- Debian 9+ x64
- CentOS 7 x64 (experimental)
- Arch Linux x64 (experimental)
An SSH keypair that can be used for application deployment. If this exists before installation, it will be automatically imported into dokku
Otherwise, you will need to import the keypair manually after installation using
To install the latest stable release, run the following commands as a user who has access to
wget https://raw.githubusercontent.com/dokku/dokku/v0.27.7/bootstrap.sh sudo DOKKU_TAG=v0.27.7 bash bootstrap.sh
You can then proceed…
It's like heroku but selfhosted.