mirror of
https://gitlab.com/alemaire/buildx.git
synced 2025-01-10 10:43:28 +00:00
134 lines
4.8 KiB
Docker
134 lines
4.8 KiB
Docker
FROM debian:buster-20210408-slim
|
|
ENV APACHE_CONFDIR /etc/apache2
|
|
ENV APACHE_ENVVARS $APACHE_CONFDIR/envvars
|
|
RUN set -ex; \
|
|
apt-get update -qqy; \
|
|
apt-get install -qqy --no-install-recommends \
|
|
php-exif \
|
|
php-gd \
|
|
php-intl \
|
|
php-ldap \
|
|
php-pdo-mysql \
|
|
php-pdo-pgsql \
|
|
php-pdo-sqlite \
|
|
php-zip \
|
|
php-imagick \
|
|
php-cli \
|
|
php-mbstring \
|
|
php-xml \
|
|
apache2 \
|
|
libapache2-mod-php \
|
|
rsync \
|
|
curl \
|
|
gnupg \
|
|
dirmngr \
|
|
locales \
|
|
libc-l10n \
|
|
; \
|
|
rm -rf /var/lib/apt/lists/*; \
|
|
a2dismod mpm_event && a2enmod mpm_prefork && a2enmod rewrite; \
|
|
mkdir -p /etc/ssl/certs; \
|
|
curl -fLSko /etc/ssl/certs/cacert.pem https://curl.se/ca/cacert.pem; \
|
|
sed -ri 's/^export ([^=]+)=(.*)$/: ${\1:=\2}\nexport \1/' "$APACHE_ENVVARS"; \
|
|
\
|
|
. "$APACHE_ENVVARS"; \
|
|
for dir in \
|
|
"$APACHE_LOCK_DIR" \
|
|
"$APACHE_RUN_DIR" \
|
|
"$APACHE_LOG_DIR" \
|
|
; do \
|
|
rm -rvf "$dir"; \
|
|
mkdir -p "$dir"; \
|
|
chown "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$dir"; \
|
|
chmod 777 "$dir"; \
|
|
done; \
|
|
\
|
|
rm -rvf /var/www/html/*; \
|
|
chmod 777 /var/www/html; \
|
|
\
|
|
# logs should go to stdout / stderr
|
|
ln -sfT /dev/stderr "$APACHE_LOG_DIR/error.log"; \
|
|
ln -sfT /dev/stdout "$APACHE_LOG_DIR/access.log"; \
|
|
ln -sfT /dev/stdout "$APACHE_LOG_DIR/other_vhosts_access.log"; \
|
|
chown -R --no-dereference "$APACHE_RUN_USER:$APACHE_RUN_GROUP" "$APACHE_LOG_DIR"; \
|
|
{ \
|
|
echo '<FilesMatch \.php$>'; \
|
|
echo '\tSetHandler application/x-httpd-php'; \
|
|
echo '</FilesMatch>'; \
|
|
echo; \
|
|
echo 'DirectoryIndex disabled'; \
|
|
echo 'DirectoryIndex index.php index.html'; \
|
|
echo; \
|
|
echo '<Directory /var/www/>'; \
|
|
echo '\tOptions -Indexes'; \
|
|
echo '\tAllowOverride All'; \
|
|
echo '</Directory>'; \
|
|
} | tee "$APACHE_CONFDIR/conf-available/docker-php.conf" \
|
|
&& a2enconf docker-php
|
|
|
|
ENV CURL_CA_BUNDLE=/etc/ssl/certs/cacert.pem \
|
|
SSL_CERT_FILE=/etc/ssl/certs/cacert.pem
|
|
|
|
# install composer
|
|
RUN set -ex; \
|
|
php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');"; \
|
|
php -r "if (hash_file('sha384', 'composer-setup.php') === '756890a4488ce9024fc62c56153228907f1545c228516cbf63f885e036d37e9a59d27d63f46af1d4d07ee0f76181c7d3') { echo 'Installer verified'; } else { echo 'Installer corrupt'; unlink('composer-setup.php'); } echo PHP_EOL;"; \
|
|
php composer-setup.php --install-dir=/usr/local/bin/ --version=2.0.9; \
|
|
php -r "unlink('composer-setup.php');"
|
|
|
|
# include the wait-for-it.sh script
|
|
RUN curl -fL https://raw.githubusercontent.com/vishnubob/wait-for-it/master/wait-for-it.sh > /wait-for-it.sh && chmod +x /wait-for-it.sh
|
|
|
|
# use custom PHP settings
|
|
COPY php.ini /usr/local/etc/php/conf.d/roundcube-defaults.ini
|
|
|
|
COPY docker-entrypoint.sh /
|
|
COPY apache2-foreground /usr/local/bin/
|
|
ENTRYPOINT ["/docker-entrypoint.sh"]
|
|
CMD ["apache2-foreground"]
|
|
|
|
# expose these volumes
|
|
VOLUME /var/roundcube/config
|
|
VOLUME /var/roundcube/db
|
|
VOLUME /var/www/html
|
|
VOLUME /tmp/roundcube-temp
|
|
WORKDIR /var/www/html
|
|
STOPSIGNAL SIGWINCH
|
|
# Define Roundcubemail version
|
|
ARG VERSION
|
|
ENV ROUNDCUBEMAIL_VERSION $VERSION
|
|
|
|
# Download package and extract to web volume
|
|
RUN set -ex; \
|
|
chmod +x /docker-entrypoint.sh /usr/local/bin/apache2-foreground; \
|
|
curl -o roundcubemail.tar.gz -fSL https://github.com/roundcube/roundcubemail/releases/download/${ROUNDCUBEMAIL_VERSION}/roundcubemail-${ROUNDCUBEMAIL_VERSION}-complete.tar.gz; \
|
|
curl -o roundcubemail.tar.gz.asc -fSL https://github.com/roundcube/roundcubemail/releases/download/${ROUNDCUBEMAIL_VERSION}/roundcubemail-${ROUNDCUBEMAIL_VERSION}-complete.tar.gz.asc; \
|
|
export GNUPGHOME="$(mktemp -d)"; \
|
|
# workaround for "Cannot assign requested address", see e.g. https://github.com/inversepath/usbarmory-debian-base_image/issues/9
|
|
echo "disable-ipv6" > "$GNUPGHOME/dirmngr.conf"; \
|
|
# ha.pool.sks-keyservers.net seems to be unreliable, use pgp.mit.edu as fallback
|
|
gpg --batch --keyserver ha.pool.sks-keyservers.net --recv-keys F3E4C04BB3DB5D4215C45F7F5AB2BAA141C4F7D5 || gpg --batch --keyserver pgp.mit.edu --recv-keys F3E4C04BB3DB5D4215C45F7F5AB2BAA141C4F7D5; \
|
|
gpg --batch --verify roundcubemail.tar.gz.asc roundcubemail.tar.gz; \
|
|
gpgconf --kill all; \
|
|
mkdir /usr/src/roundcubemail; \
|
|
tar -xf roundcubemail.tar.gz -C /usr/src/roundcubemail --strip-components=1 --no-same-owner; \
|
|
rm -r "$GNUPGHOME" roundcubemail.tar.gz.asc roundcubemail.tar.gz; \
|
|
rm -rf /usr/src/roundcubemail/installer; \
|
|
chown -R www-data:www-data /usr/src/roundcubemail/logs
|
|
|
|
RUN set -ex; \
|
|
/usr/local/bin/composer.phar \
|
|
--working-dir=/usr/src/roundcubemail/ \
|
|
--prefer-dist --prefer-stable \
|
|
--no-update --no-interaction \
|
|
--optimize-autoloader --apcu-autoloader \
|
|
require \
|
|
roundcube/carddav \
|
|
; \
|
|
/usr/local/bin/composer.phar \
|
|
--working-dir=/usr/src/roundcubemail/ \
|
|
--prefer-dist --no-dev \
|
|
--no-interaction \
|
|
--optimize-autoloader --apcu-autoloader \
|
|
update;
|