FROM debian:buster-20210408-slim
ENV APACHE_CONFDIR /etc/apache2
ENV APACHE_ENVVARS $APACHE_CONFDIR/envvars
RUN set -ex; \
apt-get update -qqy; \
apt-get install -qqy --no-install-recommends \
php-exif \
php-gd \
php-intl \
php-ldap \
php-pdo-mysql \
php-pdo-pgsql \
php-pdo-sqlite \
php-zip \
php-imagick \
php-cli \
php-mbstring \
php-xml \
apache2 \
libapache2-mod-php \
rsync \
curl \
gnupg \
dirmngr \
locales \
libc-l10n \
; \
rm -rf /var/lib/apt/lists/*; \
a2dismod mpm_event && a2enmod mpm_prefork && a2enmod rewrite; \
mkdir -p /etc/ssl/certs; \
curl -fLSko /etc/ssl/certs/cacert.pem https://curl.se/ca/cacert.pem; \
sed -ri 's/^export ([^=]+)=(.*)$/: ${\1:=\2}\nexport \1/' "$APACHE_ENVVARS"; \
\
. "$APACHE_ENVVARS"; \
for dir in \
"$APACHE_LOCK_DIR" \
"$APACHE_RUN_DIR" \
"$APACHE_LOG_DIR" \
; do \
rm -rvf "$dir"; \
mkdir -p "$dir"; \
chown "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$dir"; \
chmod 777 "$dir"; \
done; \
\
rm -rvf /var/www/html/*; \
chmod 777 /var/www/html; \
\
# logs should go to stdout / stderr
ln -sfT /dev/stderr "$APACHE_LOG_DIR/error.log"; \
ln -sfT /dev/stdout "$APACHE_LOG_DIR/access.log"; \
ln -sfT /dev/stdout "$APACHE_LOG_DIR/other_vhosts_access.log"; \
chown -R --no-dereference "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$APACHE_LOG_DIR"; \
{ \
echo ''; \
echo '\tSetHandler application/x-httpd-php'; \
echo ''; \
echo; \
echo 'DirectoryIndex disabled'; \
echo 'DirectoryIndex index.php index.html'; \
echo; \
echo ''; \
echo '\tOptions -Indexes'; \
echo '\tAllowOverride All'; \
echo ''; \
} | tee "$APACHE_CONFDIR/conf-available/docker-php.conf" \
&& a2enconf docker-php
ENV CURL_CA_BUNDLE=/etc/ssl/certs/cacert.pem \
SSL_CERT_FILE=/etc/ssl/certs/cacert.pem
# install composer
RUN set -ex; \
php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"; \
php -r "if (hash_file('sha384', 'composer-setup.php') === '756890a4488ce9024fc62c56153228907f1545c228516cbf63f885e036d37e9a59d27d63f46af1d4d07ee0f76181c7d3') { echo 'Installer verified'; } else { echo 'Installer corrupt'; unlink('composer-setup.php'); } echo PHP_EOL;"; \
php composer-setup.php --install-dir=/usr/local/bin/ --version=2.0.9; \
php -r "unlink('composer-setup.php');"
# include the wait-for-it.sh script
RUN curl -fL https://raw.githubusercontent.com/vishnubob/wait-for-it/master/wait-for-it.sh > /wait-for-it.sh && chmod +x /wait-for-it.sh
# use custom PHP settings
COPY php.ini /usr/local/etc/php/conf.d/roundcube-defaults.ini
COPY docker-entrypoint.sh /
COPY apache2-foreground /usr/local/bin/
ENTRYPOINT ["/docker-entrypoint.sh"]
CMD ["apache2-foreground"]
# expose these volumes
VOLUME /var/roundcube/config
VOLUME /var/roundcube/db
VOLUME /var/www/html
VOLUME /tmp/roundcube-temp
WORKDIR /var/www/html
STOPSIGNAL SIGWINCH
# Define Roundcubemail version
ARG VERSION
ENV ROUNDCUBEMAIL_VERSION $VERSION
# Download package and extract to web volume
RUN set -ex; \
chmod +x /docker-entrypoint.sh /usr/local/bin/apache2-foreground; \
curl -o roundcubemail.tar.gz -fSL https://github.com/roundcube/roundcubemail/releases/download/${ROUNDCUBEMAIL_VERSION}/roundcubemail-${ROUNDCUBEMAIL_VERSION}-complete.tar.gz; \
curl -o roundcubemail.tar.gz.asc -fSL https://github.com/roundcube/roundcubemail/releases/download/${ROUNDCUBEMAIL_VERSION}/roundcubemail-${ROUNDCUBEMAIL_VERSION}-complete.tar.gz.asc; \
export GNUPGHOME="$(mktemp -d)"; \
# workaround for "Cannot assign requested address", see e.g. https://github.com/inversepath/usbarmory-debian-base_image/issues/9
echo "disable-ipv6" > "$GNUPGHOME/dirmngr.conf"; \
# ha.pool.sks-keyservers.net seems to be unreliable, use pgp.mit.edu as fallback
gpg --batch --keyserver ha.pool.sks-keyservers.net --recv-keys F3E4C04BB3DB5D4215C45F7F5AB2BAA141C4F7D5 || gpg --batch --keyserver pgp.mit.edu --recv-keys F3E4C04BB3DB5D4215C45F7F5AB2BAA141C4F7D5; \
gpg --batch --verify roundcubemail.tar.gz.asc roundcubemail.tar.gz; \
gpgconf --kill all; \
mkdir /usr/src/roundcubemail; \
tar -xf roundcubemail.tar.gz -C /usr/src/roundcubemail --strip-components=1 --no-same-owner; \
rm -r "$GNUPGHOME" roundcubemail.tar.gz.asc roundcubemail.tar.gz; \
rm -rf /usr/src/roundcubemail/installer; \
chown -R www-data:www-data /usr/src/roundcubemail/logs
RUN set -ex; \
/usr/local/bin/composer.phar \
--working-dir=/usr/src/roundcubemail/ \
--prefer-dist --prefer-stable \
--no-update --no-interaction \
--optimize-autoloader --apcu-autoloader \
require \
roundcube/carddav \
; \
/usr/local/bin/composer.phar \
--working-dir=/usr/src/roundcubemail/ \
--prefer-dist --no-dev \
--no-interaction \
--optimize-autoloader --apcu-autoloader \
update;