FROM php:%%PHP_VERSION%%-%%VARIANT%%-bookworm # entrypoint.sh and cron.sh dependencies RUN set -ex; \ \ apt-get update; \ apt-get install -y --no-install-recommends \ rsync \ bzip2 \ # For mail() support msmtp \ tini \ ; ENV GOSU_VERSION 1.14 RUN set -eux; \ # save list of currently installed packages for later so we can clean up savedAptMark="$(apt-mark showmanual)"; \ apt-get update; \ apt-get install -y --no-install-recommends ca-certificates wget; \ if ! command -v gpg; then \ apt-get install -y --no-install-recommends gnupg2 dirmngr; \ elif gpg --version | grep -q '^gpg (GnuPG) 1\.'; then \ # "This package provides support for HKPS keyservers." (GnuPG 1.x only) apt-get install -y --no-install-recommends gnupg-curl; \ fi; \ rm -rf /var/lib/apt/lists/*; \ \ dpkgArch="$(dpkg --print-architecture | awk -F- '{ print $NF }')"; \ wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch"; \ wget -O /usr/local/bin/gosu.asc "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch.asc"; \ \ # verify the signature export GNUPGHOME="$(mktemp -d)"; \ gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4; \ gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \ command -v gpgconf && gpgconf --kill all || :; \ rm -rf "$GNUPGHOME" /usr/local/bin/gosu.asc; \ \ # clean up fetch dependencies apt-mark auto '.*' > /dev/null; \ [ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; \ apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \ \ chmod +x /usr/local/bin/gosu; \ # verify that the binary works gosu --version; \ gosu nobody true # install the PHP extensions we need # see https://friendi.ca/resources/requirements/ RUN set -ex; \ \ savedAptMark="$(apt-mark showmanual)"; \ \ apt-get update; \ apt-get install -y --no-install-recommends \ mariadb-client \ bash \ libpng-dev \ libjpeg62-turbo-dev \ libtool \ libmagick++-dev \ libmemcached-dev \ zlib1g-dev \ libssl-dev \ libgraphicsmagick1-dev \ libfreetype6-dev \ libwebp-dev \ librsvg2-2 \ libzip-dev \ libldap2-dev \ libgmp-dev \ libmagickcore-6.q16-6-extra \ ; \ \ debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \ \ docker-php-ext-configure gd \ --with-freetype \ --with-jpeg \ --with-webp \ ; \ docker-php-ext-configure ldap \ --with-libdir=lib/$debMultiarch/ \ ;\ docker-php-ext-install -j "$(nproc)" \ pdo_mysql \ gd \ exif \ zip \ opcache \ ctype \ pcntl \ ldap \ gmp \ intl \ ; \ \ # pecl will claim success even if one install fails, so we need to perform each install separately pecl install apcu-%%APCU_VERSION%%; \ pecl install memcached-%%MEMCACHED_VERSION%%; \ pecl install redis-%%REDIS_VERSION%%; \ pecl install imagick-%%IMAGICK_VERSION%%; \ \ docker-php-ext-enable \ apcu \ memcached \ redis \ imagick \ ; \ \ # reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies apt-mark auto '.*' > /dev/null; \ apt-mark manual $savedAptMark; \ ldd "$(php -r 'echo ini_get("extension_dir");')"/*.so \ | awk '/=>/ { print $3 }' \ | sort -u \ | xargs -r dpkg-query -S \ | cut -d: -f1 \ | sort -u \ | xargs -rt apt-mark manual; \ \ apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \ rm -rf /var/lib/apt/lists/* # set recommended PHP.ini settings ENV PHP_MEMORY_LIMIT 512M ENV PHP_UPLOAD_LIMIT 512M RUN set -ex; \ { \ echo 'opcache.enable=1' ; \ echo 'opcache.interned_strings_buffer=8'; \ echo 'opcache.max_accelerated_files=10000'; \ echo 'opcache.memory_consumption=128'; \ echo 'opcache.save_comments=1'; \ echo 'opcache.revalidte_freq=1'; \ } > /usr/local/etc/php/conf.d/opcache-recommended.ini; \ \ { \ echo sendmail_path = "/usr/bin/msmtp -t"; \ } > /usr/local/etc/php/conf.d/sendmail.ini; \ \ echo 'apc.enable_cli=1' >> /usr/local/etc/php/conf.d/docker-php-ext-apcu.ini; \ \ { \ echo 'memory_limit=${PHP_MEMORY_LIMIT}'; \ echo 'upload_max_filesize=${PHP_UPLOAD_LIMIT}'; \ echo 'post_max_size=${PHP_UPLOAD_LIMIT}'; \ } > /usr/local/etc/php/conf.d/friendica.ini; \ ln -s /usr/local/etc/php/php.ini-production /usr/local/etc/php/php.ini; \ \ mkdir /var/www/data; \ chown -R www-data:root /var/www; \ chmod -R g=u /var/www VOLUME /var/www/html %%VARIANT_EXTRAS%% # 39 = LOG_PID | LOG_ODELAY | LOG_CONS | LOG_PERROR ENV FRIENDICA_SYSLOG_FLAGS 39 ENV FRIENDICA_VERSION "%%VERSION%%" ENV FRIENDICA_ADDONS "%%VERSION%%" %%DOWNLOAD_SHA256%% %%INSTALL_EXTRAS%% COPY *.sh upgrade.exclude / COPY config/* /usr/src/friendica/config/ ENTRYPOINT ["/%%ENTRYPOINT%%"] CMD ["%%CMD%%"]