mirror of
https://github.com/friendica/docker
synced 2025-01-09 16:09:27 +01:00
179 lines
5.3 KiB
Docker
179 lines
5.3 KiB
Docker
# DO NOT EDIT: created by update.sh from Dockerfile-debian.template
|
|
FROM php:7.4-apache-bullseye
|
|
|
|
# entrypoint.sh and cron.sh dependencies
|
|
RUN set -ex; \
|
|
\
|
|
apt-get update; \
|
|
apt-get install -y --no-install-recommends \
|
|
rsync \
|
|
bzip2 \
|
|
# For mail() support
|
|
msmtp \
|
|
tini \
|
|
;
|
|
|
|
ENV GOSU_VERSION 1.14
|
|
RUN set -eux; \
|
|
# save list of currently installed packages for later so we can clean up
|
|
savedAptMark="$(apt-mark showmanual)"; \
|
|
apt-get update; \
|
|
apt-get install -y --no-install-recommends ca-certificates wget; \
|
|
if ! command -v gpg; then \
|
|
apt-get install -y --no-install-recommends gnupg2 dirmngr; \
|
|
elif gpg --version | grep -q '^gpg (GnuPG) 1\.'; then \
|
|
# "This package provides support for HKPS keyservers." (GnuPG 1.x only)
|
|
apt-get install -y --no-install-recommends gnupg-curl; \
|
|
fi; \
|
|
rm -rf /var/lib/apt/lists/*; \
|
|
\
|
|
dpkgArch="$(dpkg --print-architecture | awk -F- '{ print $NF }')"; \
|
|
wget -O /usr/local/bin/gosu "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch"; \
|
|
wget -O /usr/local/bin/gosu.asc "https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$dpkgArch.asc"; \
|
|
\
|
|
# verify the signature
|
|
export GNUPGHOME="$(mktemp -d)"; \
|
|
gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4; \
|
|
gpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \
|
|
command -v gpgconf && gpgconf --kill all || :; \
|
|
rm -rf "$GNUPGHOME" /usr/local/bin/gosu.asc; \
|
|
\
|
|
# clean up fetch dependencies
|
|
apt-mark auto '.*' > /dev/null; \
|
|
[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark; \
|
|
apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \
|
|
\
|
|
chmod +x /usr/local/bin/gosu; \
|
|
# verify that the binary works
|
|
gosu --version; \
|
|
gosu nobody true
|
|
|
|
# install the PHP extensions we need
|
|
# see https://friendi.ca/resources/requirements/
|
|
RUN set -ex; \
|
|
\
|
|
savedAptMark="$(apt-mark showmanual)"; \
|
|
\
|
|
apt-get update; \
|
|
apt-get install -y --no-install-recommends \
|
|
mariadb-client \
|
|
bash \
|
|
libpng-dev \
|
|
libjpeg62-turbo-dev \
|
|
libtool \
|
|
libmagick++-dev \
|
|
libmemcached-dev \
|
|
libgraphicsmagick1-dev \
|
|
libfreetype6-dev \
|
|
libwebp-dev \
|
|
librsvg2-2 \
|
|
libzip-dev \
|
|
libldap2-dev \
|
|
; \
|
|
\
|
|
debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \
|
|
\
|
|
docker-php-ext-configure gd \
|
|
--with-freetype \
|
|
--with-jpeg \
|
|
--with-webp \
|
|
; \
|
|
docker-php-ext-configure ldap \
|
|
--with-libdir=lib/$debMultiarch/ \
|
|
;\
|
|
docker-php-ext-install -j "$(nproc)" \
|
|
pdo_mysql \
|
|
gd \
|
|
exif \
|
|
zip \
|
|
opcache \
|
|
ctype \
|
|
pcntl \
|
|
ldap \
|
|
; \
|
|
\
|
|
# pecl will claim success even if one install fails, so we need to perform each install separately
|
|
pecl install apcu-5.1.21; \
|
|
pecl install memcached-3.1.5; \
|
|
pecl install redis-5.3.6; \
|
|
pecl install imagick-3.7.0; \
|
|
\
|
|
docker-php-ext-enable \
|
|
apcu \
|
|
memcached \
|
|
redis \
|
|
imagick \
|
|
; \
|
|
\
|
|
# reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies
|
|
apt-mark auto '.*' > /dev/null; \
|
|
apt-mark manual $savedAptMark; \
|
|
ldd "$(php -r 'echo ini_get("extension_dir");')"/*.so \
|
|
| awk '/=>/ { print $3 }' \
|
|
| sort -u \
|
|
| xargs -r dpkg-query -S \
|
|
| cut -d: -f1 \
|
|
| sort -u \
|
|
| xargs -rt apt-mark manual; \
|
|
\
|
|
apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \
|
|
rm -rf /var/lib/apt/lists/*
|
|
|
|
# set recommended PHP.ini settings
|
|
ENV PHP_MEMORY_LIMIT 512M
|
|
ENV PHP_UPLOAD_LIMIT 512M
|
|
RUN set -ex; \
|
|
{ \
|
|
echo 'opcache.enable=1' ; \
|
|
echo 'opcache.interned_strings_buffer=8'; \
|
|
echo 'opcache.max_accelerated_files=10000'; \
|
|
echo 'opcache.memory_consumption=128'; \
|
|
echo 'opcache.save_comments=1'; \
|
|
echo 'opcache.revalidte_freq=1'; \
|
|
} > /usr/local/etc/php/conf.d/opcache-recommended.ini; \
|
|
\
|
|
{ \
|
|
echo sendmail_path = "/usr/bin/msmtp -t"; \
|
|
} > /usr/local/etc/php/conf.d/sendmail.ini; \
|
|
\
|
|
echo 'apc.enable_cli=1' >> /usr/local/etc/php/conf.d/docker-php-ext-apcu.ini; \
|
|
\
|
|
{ \
|
|
echo 'memory_limit=${PHP_MEMORY_LIMIT}'; \
|
|
echo 'upload_max_filesize=${PHP_UPLOAD_LIMIT}'; \
|
|
echo 'post_max_size=${PHP_UPLOAD_LIMIT}'; \
|
|
} > /usr/local/etc/php/conf.d/friendica.ini; \
|
|
\
|
|
mkdir /var/www/data; \
|
|
chown -R www-data:root /var/www; \
|
|
chmod -R g=u /var/www
|
|
|
|
VOLUME /var/www/html
|
|
|
|
RUN set -ex;\
|
|
a2enmod rewrite remoteip ;\
|
|
{\
|
|
echo RemoteIPHeader X-Real-IP ;\
|
|
echo RemoteIPTrustedProxy 10.0.0.0/8 ;\
|
|
echo RemoteIPTrustedProxy 172.16.0.0/12 ;\
|
|
echo RemoteIPTrustedProxy 192.168.0.0/16 ;\
|
|
} > /etc/apache2/conf-available/remoteip.conf;\
|
|
a2enconf remoteip
|
|
|
|
# 39 = LOG_PID | LOG_ODELAY | LOG_CONS | LOG_PERROR
|
|
ENV FRIENDICA_SYSLOG_FLAGS 39
|
|
ENV FRIENDICA_VERSION "2022.05-dev"
|
|
ENV FRIENDICA_ADDONS "2022.05-dev"
|
|
|
|
RUN set -ex; \
|
|
fetchDeps=" \
|
|
gnupg \
|
|
"; \
|
|
apt-get update; \
|
|
apt-get install -y --no-install-recommends $fetchDeps;
|
|
|
|
COPY *.sh upgrade.exclude /
|
|
COPY config/* /usr/src/friendica/config/
|
|
|
|
ENTRYPOINT ["/entrypoint-dev.sh"]
|
|
CMD ["apache2-foreground"]
|