dw/docker-dotclear
1
0
Fork 0
Code Issues Pull requests Packages Wiki Activity

Compare commits

merge into: dw:master
Branches Tags
dw:master
dw:2.32.1
dw:2.32
...
pull from: dw:2.32.1
Branches Tags
dw:master
dw:2.32.1
dw:2.32

7 commits
master ... 2.32.1

Author SHA1 Message Date
Jean-Christian Denis
2cff1bf93e
bump sysInfo from 9.8 to 10.4 2024-12-25 10:27:10 +01:00
Jean-Christian Denis
8a203b605b
oops 2024-12-21 17:09:40 +01:00
Jean-Christian Denis
6797bdc473
fix docker organization 2024-12-21 17:05:24 +01:00
Jean-Christian Denis
60f2fbed61
oops 2024-12-21 16:57:19 +01:00
Jean-Christian Denis
59a78c4fb0
add docker scout 2024-12-21 16:52:49 +01:00
Jean-Christian Denis
f65cf587bd
add builds plateforms 2024-12-21 16:13:41 +01:00
Jean-Christian Denis
f5a689576a
Fix dockerfile from master 2024-12-14 19:21:20 +01:00
6 changed files with 105 additions and 39 deletions
Show stats Expand all files Collapse all files

13
.github/workflows/release_branch.yml vendored
View file

@ -55,10 +55,21 @@ jobs:
${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ github.ref_name }} ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ github.ref_name }}
ghcr.io/${{ env.GITHUB_REPOSITORY }}:${{ github.ref_name }} ghcr.io/${{ env.GITHUB_REPOSITORY }}:${{ github.ref_name }}
build-args: CANAL=stable build-args: CANAL=stable
platforms: linux/386,linux/amd64,linux/arm64,linux/arm/V7 platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64/v8,linux/ppc64le,linux/s390x
cache-from: type=gha cache-from: type=gha
cache-to: type=gha,mode=max cache-to: type=gha,mode=max
- name: Docker Scout
id: docker-scout
uses: docker/scout-action@v1.16.1
with:
command: environment,quickview,cves,recommendations
image: ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ github.ref_name }}
environment: stable
organization: ${{ env.DOCKER_NAMESPACE }}
write-comment: true
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Send Telegram Message Ok - name: Send Telegram Message Ok
uses: appleboy/telegram-action@master uses: appleboy/telegram-action@master
env: env:

30
.github/workflows/release_stable.yml vendored
View file

@ -59,6 +59,12 @@ jobs:
SUMMARY=$'Image ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ steps.dotclear.outputs.tag }} found.' SUMMARY=$'Image ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ steps.dotclear.outputs.tag }} found.'
echo "$SUMMARY" >> $GITHUB_STEP_SUMMARY echo "$SUMMARY" >> $GITHUB_STEP_SUMMARY
- name: rebuild
if: ((steps.registry.outputs.image_exists == 'true') && (github.event.inputs.force_rebuild == 'true'))
run: |
SUMMARY=$'Rebuilding image ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ steps.dotclear.outputs.tag }} is forced.'
echo "$SUMMARY" >> $GITHUB_STEP_SUMMARY
- name: Check repository branch - name: Check repository branch
id: branch id: branch
uses: GuillaumeFalourd/branch-exists@v1.1 uses: GuillaumeFalourd/branch-exists@v1.1
@ -140,10 +146,32 @@ jobs:
ghcr.io/${{ env.GITHUB_REPOSITORY }}:${{ needs.check_image.outputs.version }} ghcr.io/${{ env.GITHUB_REPOSITORY }}:${{ needs.check_image.outputs.version }}
ghcr.io/${{ env.GITHUB_REPOSITORY }}:latest ghcr.io/${{ env.GITHUB_REPOSITORY }}:latest
build-args: CANAL=${{ env.DOTCLEAR_CANAL }} build-args: CANAL=${{ env.DOTCLEAR_CANAL }}
platforms: linux/386,linux/amd64,linux/arm64,linux/arm/V7 platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64/v8,linux/ppc64le,linux/s390x
cache-from: type=gha cache-from: type=gha
cache-to: type=gha,mode=max cache-to: type=gha,mode=max
- name: Docker Scout stable
id: docker-scout
uses: docker/scout-action@v1.16.1
with:
command: environment,quickview,cves,recommendations
image: ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ needs.check_image.outputs.version }}
environment: stable
organization: ${{ env.DOCKER_NAMESPACE }}
write-comment: true
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Docker Scout latest
id: docker-scout2
uses: docker/scout-action@v1.16.1
with:
command: environment,quickview,cves,recommendations
image: ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:latest
environment: latest
organization: ${{ env.DOCKER_NAMESPACE }}
write-comment: true
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Send Telegram Message Ok - name: Send Telegram Message Ok
uses: appleboy/telegram-action@master uses: appleboy/telegram-action@master
env: env:

15
.github/workflows/release_testing.yml vendored
View file

@ -2,7 +2,7 @@ name: Build and push testing image
on: on:
schedule: schedule:
- cron: '0 1 * * *' - cron: '15 4 * * *'
workflow_dispatch: workflow_dispatch:
env: env:
@ -88,10 +88,21 @@ jobs:
${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ env.DOTCLEAR_CANAL }} ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ env.DOTCLEAR_CANAL }}
ghcr.io/${{ env.GITHUB_REPOSITORY }}:${{ env.DOTCLEAR_CANAL }} ghcr.io/${{ env.GITHUB_REPOSITORY }}:${{ env.DOTCLEAR_CANAL }}
build-args: CANAL=${{ env.DOTCLEAR_CANAL }} build-args: CANAL=${{ env.DOTCLEAR_CANAL }}
platforms: linux/386,linux/amd64,linux/arm64,linux/arm/V7 platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64/v8,linux/ppc64le,linux/s390x
cache-from: type=gha cache-from: type=gha
cache-to: type=gha,mode=max cache-to: type=gha,mode=max
- name: Docker Scout
id: docker-scout
uses: docker/scout-action@v1.16.1
with:
command: environment,quickview,cves,recommendations
image: ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:${{ env.DOTCLEAR_CANAL }}
environment: testing
organization: ${{ env.DOCKER_NAMESPACE }}
write-comment: true
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Send Telegram Message Ok - name: Send Telegram Message Ok
uses: appleboy/telegram-action@master uses: appleboy/telegram-action@master
env: env:

15
.github/workflows/release_unstable.yml vendored
View file

@ -2,7 +2,7 @@ name: Build and push dev image
on: on:
schedule: schedule:
- cron: '0 1 * * *' - cron: '15 4 * * *'
workflow_dispatch: workflow_dispatch:
env: env:
@ -55,10 +55,21 @@ jobs:
${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:dev ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:dev
ghcr.io/${{ env.GITHUB_REPOSITORY }}:dev ghcr.io/${{ env.GITHUB_REPOSITORY }}:dev
build-args: CANAL=${{ env.DOTCLEAR_CANAL }} build-args: CANAL=${{ env.DOTCLEAR_CANAL }}
platforms: linux/386,linux/amd64,linux/arm64,linux/arm/V7 platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64/v8,linux/ppc64le,linux/s390x
cache-from: type=gha cache-from: type=gha
cache-to: type=gha,mode=max cache-to: type=gha,mode=max
- name: Docker Scout
id: docker-scout
uses: docker/scout-action@v1.16.1
with:
command: environment,quickview,cves,recommendations
image: ${{ env.DOCKER_NAMESPACE }}/${{ env.DOTCLEAR_IMAGE }}:dev
environment: unstable
organization: ${{ env.DOCKER_NAMESPACE }}
write-comment: true
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Send Telegram Message Ok - name: Send Telegram Message Ok
uses: appleboy/telegram-action@master uses: appleboy/telegram-action@master
env: env:

54
Dockerfile
View file

@ -6,7 +6,7 @@
## ##
# Use latest Alpine docker release # Use latest Alpine docker release
FROM alpine:latest FROM alpine:3.21.0
# Set system timezone # Set system timezone
RUN echo "UTC" > /etc/timezone RUN echo "UTC" > /etc/timezone
@ -15,29 +15,30 @@ RUN echo "UTC" > /etc/timezone
ARG CANAL stable ARG CANAL stable
ENV CNL_DOTCLEAR=$CANAL ENV CNL_DOTCLEAR=$CANAL
# Create user
RUN adduser -D -g 'www' www
# Image label # Image label
LABEL org.opencontainers.image.source=https://github.com/JcDenis/docker-dotclear LABEL "org.opencontainers.image.authors"="Jean-Christian Paul Denis"
LABEL org.opencontainers.image.description="Dotclear docker image $CNL_DOTCLEAR" LABEL "org.opencontainers.image.source"="https://github.com/JcDenis/docker-dotclear"
LABEL org.opencontainers.image.licenses=AGPL-3.0 LABEL "org.opencontainers.image.description"="Dotclear docker image $CNL_DOTCLEAR"
LABEL "org.opencontainers.image.licenses"="AGPL-3.0"
## ##
# Nginx # Nginx
## ##
# Create user
RUN adduser -D -g 'www' www
# Install required package # Install required package
RUN apk add --no-cache --update \ RUN apk add --no-cache --update \
nginx \ nginx \
curl \ curl \
tar \ tar \
unzip \ unzip \
xq libxml2-utils
# Create directories structure # Create directories structure
RUN mkdir -p /var/www/dotclear RUN mkdir -p /var/www/dotclear \
RUN chown -R www:www /var/lib/nginx /var/www && chown -R www:www /var/lib/nginx /var/www
# Copy nginx configuration # Copy nginx configuration
COPY etc/nginx.conf /etc/nginx/nginx.conf COPY etc/nginx.conf /etc/nginx/nginx.conf
@ -45,6 +46,9 @@ COPY etc/snippets_subfolder.conf /etc/nginx/snippets/snippets_subfolder.conf
COPY etc/snippets_subdomain.conf /etc/nginx/snippets/snippets_subdomain.conf COPY etc/snippets_subdomain.conf /etc/nginx/snippets/snippets_subdomain.conf
COPY etc/snippets_common.conf /etc/nginx/snippets/snippets_common.conf COPY etc/snippets_common.conf /etc/nginx/snippets/snippets_common.conf
# Fix vuln alpine/curl 8.11.0-r2
RUN apk upgrade curl
## ##
# PHP # PHP
## ##
@ -92,18 +96,14 @@ COPY etc/php-fpm.conf /etc/${VER_PHP}/php-fpm.d/www.conf
# Download latest Dotclear version # Download latest Dotclear version
RUN curl -fsSL -o versions.xml "http://download.dotclear.org/versions.xml" \ RUN curl -fsSL -o versions.xml "http://download.dotclear.org/versions.xml" \
&& curl -fsSL -o dotclear.zip $(cat versions.xml | xq -x "//release[@name='$CNL_DOTCLEAR']/@href") \ && curl -fsSL -o dotclear.zip $(xmllint --xpath "//release[@name='$CNL_DOTCLEAR']/@href" versions.xml | awk -F'[="]' '!/>/{print $(NF-1)}') \
&& echo "$(cat versions.xml | xq -x "//release[@name='$CNL_DOTCLEAR']/@checksum") dotclear.zip" | md5sum -c - \ && echo "$(xmllint --xpath "//release[@name='$CNL_DOTCLEAR']/@checksum" versions.xml | awk -F'[="]' '!/>/{print $(NF-1)}') dotclear.zip" | md5sum -c - \
&& mkdir -p /usr/src/dotclear \ && mkdir -p /usr/src/dotclear \
&& unzip -d /usr/src dotclear.zip \ && unzip -d /usr/src dotclear.zip \
&& rm dotclear.zip \ && rm dotclear.zip
&& chown -R www:www /usr/src/dotclear \
&& chmod -R 755 /usr/src/dotclear/public /usr/src/dotclear/cache \
&& rm -f /var/www/dotclear/app/*
# Create www structure # Create predefined www structure
COPY www /var/lib/dotclear COPY www /var/lib/dotclear
RUN chown -R www:www /var/lib/dotclear
# These variables are only used for first install, see inc/config.php, from dotclear 2.32 # These variables are only used for first install, see inc/config.php, from dotclear 2.32
# Custom path for dotclear config file # Custom path for dotclear config file
@ -120,29 +120,29 @@ ENV DC_VAR=/var/www/dotclear/var
## ##
# DotclearWatch # DotclearWatch
ENV VER_DW=0.9.3 ENV VER_PLUGIN_DW=0.9.3
RUN curl -fsSL -o plugin.zip "https://github.com/JcDenis/DotclearWatch/releases/download/v$VER_DW/plugin-DotclearWatch.zip" \ RUN curl -fsSL -o plugin.zip "https://github.com/JcDenis/DotclearWatch/releases/download/v$VER_PLUGIN_DW/plugin-DotclearWatch.zip" \
&& mkdir -p /var/lib/dotclear/plugins/DotclearWatch \ && mkdir -p /var/lib/dotclear/plugins/DotclearWatch \
&& unzip -d /var/lib/dotclear/plugins plugin.zip \ && unzip -d /var/lib/dotclear/plugins plugin.zip \
&& chown -R www:www /var/lib/dotclear/plugins \
&& rm plugin.zip && rm plugin.zip
# dcLog # dcLog
ENV VER_DL=1.7.3 ENV VER_PLUGIN_DL=1.7.3
RUN curl -fsSL -o plugin.zip "https://github.com/JcDenis/dcLog/releases/download/v$VER_DL/plugin-dcLog.zip" \ RUN curl -fsSL -o plugin.zip "https://github.com/JcDenis/dcLog/releases/download/v$VER_PLUGIN_DL/plugin-dcLog.zip" \
&& mkdir -p /var/lib/dotclear/plugins/dcLog \ && mkdir -p /var/lib/dotclear/plugins/dcLog \
&& unzip -d /var/lib/dotclear/plugins plugin.zip \ && unzip -d /var/lib/dotclear/plugins plugin.zip \
&& chown -R www:www /var/lib/dotclear/plugins \
&& rm plugin.zip && rm plugin.zip
# sysInfo # sysInfo
ENV VER_SI=9.8 ENV VER_PLUGIN_SI=10.4
RUN curl -fsSL -o plugin.zip "https://github.com/franck-paul/sysInfo/releases/download/$VER_SI/plugin-sysInfo-$VER_SI.zip" \ RUN curl -fsSL -o plugin.zip "https://github.com/franck-paul/sysInfo/releases/download/$VER_PLUGIN_SI/plugin-sysInfo-$VER_PLUGIN_SI.zip" \
&& mkdir -p /var/lib/dotclear/plugins/sysInfo \ && mkdir -p /var/lib/dotclear/plugins/sysInfo \
&& unzip -d /var/lib/dotclear/plugins plugin.zip \ && unzip -d /var/lib/dotclear/plugins plugin.zip \
&& chown -R www:www /var/lib/dotclear/plugins \
&& rm plugin.zip && rm plugin.zip
# Fix ownership
RUN chown -R www:www /var/lib/dotclear /usr/src/dotclear
## ##
# END # END

17
docker-entrypoint.sh
View file

@ -82,17 +82,22 @@ rm -f /var/www/dotclear/servers/default.conf
# Fix www permissions # Fix www permissions
echo >&2 "Setting up permissions..." echo >&2 "Setting up permissions..."
chown -R www:www /var/www/dotclear chown -R www:www /var/www/dotclear
[ -e /var/www/dotclear/config.php ] && chmod 600 /var/www/dotclear/config.php
chmod 600 -R /var/www/dotclear/servers
# Print summary to docker logs # Print summary to docker logs
VERSION_INSTALLED=$(sed -n "s/^\s*\"release_version\":\s*\"\(.*\)\",/\1/p" release.json) VERSION_INSTALLED=$(sed -n "s/^\s*\"release_version\":\s*\"\(.*\)\",/\1/p" release.json)
echo >&2 "| Summary: " echo >&2 '┌──'
echo >&2 "| Alpine $(cat /etc/alpine-release)" echo >&2 "│ Summary: "
echo >&2 "| Nginx $(nginx -v 2>&1 | sed 's/nginx version: nginx\///')" echo >&2 "│ ◦ Alpine $(cat /etc/alpine-release)"
echo >&2 "| PHP $(php -r "echo PHP_VERSION;")" echo >&2 "│ ◦ Nginx $(nginx -v 2>&1 | sed 's/nginx version: nginx\///')"
echo >&2 "| Dotclear ${VERSION_INSTALLED}" echo >&2 "│ ◦ PHP $(php83 -r "echo PHP_VERSION;")"
echo >&2 "│ ◦ Dotclear ${VERSION_INSTALLED}"
echo >&2 '└──'
# Start web server # Start web server
php-fpm83 -D # FPM must start first in daemon mode php-fpm83 -D # FPM must start first in daemon mode
nginx # Then nginx in no daemon mode nginx # Then nginx in no daemon mode
exec "$@" # Switch from user root to wwww
exec runuser -u www "$@"