# # https://syspass.org # https://doc.syspass.org # FROM composer:2.0 as bootstrap ENV SYSPASS_BRANCH="3.2.0" RUN git clone --depth 1 --branch ${SYSPASS_BRANCH} https://github.com/nuxsmin/sysPass.git \ && composer install \ --ignore-platform-reqs \ --no-interaction \ --no-plugins \ --no-scripts \ --prefer-dist \ --optimize-autoloader \ --working-dir /app/sysPass FROM php:7.4-apache-buster as app LABEL maintainer=nuxsmin@syspass.org version=3.2.0 php=7.4 RUN rm -rfv /etc/locale.gen COPY locale.gen /etc/locale.gen RUN for i in $(seq 1 8); do mkdir -p "/usr/share/man/man${i}"; done ################################################################## # adding normal sources list ################################################################## RUN rm /etc/apt/sources.list COPY sources.list /etc/apt/sources.list ################################################################## # installing utils ################################################################## RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections && \ apt-get update && \ apt-get install -y --allow-unauthenticated --no-install-recommends --no-install-suggests \ apt-transport-https \ apt-utils \ bash \ binutils \ ca-certificates \ cmatrix \ cmatrix-xfont \ console-cyrillic \ cron \ curl \ fontconfig \ git \ gnupg \ gnupg2 \ graphicsmagick \ htop \ iftop \ iputils-ping \ jq \ kmod \ libsvn-java \ libzip4 \ locales \ lsb-release \ lsof \ lynx \ mc \ mercurial \ nano \ nload \ nmap \ openssl \ perl \ procps \ rsync \ screenfetch \ smbclient \ software-properties-common \ subversion \ sudo \ telnet \ tini \ tmux \ tree \ ttf-dejavu \ util-linux \ uuid-runtime \ wget \ zip ################################################################## # installing php repo + smbclient ################################################################## RUN wget -O /etc/apt/trusted.gpg.d/php.gpg https://packages.sury.org/php/apt.gpg RUN sh -c 'echo "deb https://packages.sury.org/php/ buster main" > /etc/apt/sources.list.d/php.list' RUN apt-get update -y && apt-get install -y --allow-unauthenticated smbclient libsmbclient libsmbclient-dev RUN pecl install smbclient RUN docker-php-ext-enable smbclient ################################################################## # smb fix ################################################################## RUN rm -frv /etc/samba/smb.conf /usr/share/samba/smb.conf ADD smb.conf /etc/samba/ ADD smb.conf /usr/share/samba/ RUN apt-get update \ && apt-get install -y \ locales \ locales-all \ git \ gosu \ libicu-dev \ libldb-dev \ libldap2-dev \ libfreetype6-dev \ libjpeg62-turbo-dev \ libpng-dev \ unzip \ ssl-cert \ && apt-get clean \ && rm -r /var/lib/apt/lists/* RUN pecl install xdebug-2.9.8 \ && docker-php-ext-configure gd --with-freetype --with-jpeg \ && docker-php-ext-install -j$(nproc) ldap intl gettext pdo_mysql opcache gd \ && docker-php-ext-enable ldap xdebug intl pdo_mysql ENV APACHE_RUN_USER="www-data" \ SYSPASS_DIR="/var/www/html/sysPass" \ SYSPASS_UID=9001 \ SYSPASS_DEV=0 WORKDIR /var/www/html LABEL build=20122001 # Custom sysPass Apache config with SSL by default COPY ["syspass.conf", "/etc/apache2/sites-available/"] # Xdebug module config COPY xdebug.ini /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini # Custom entrypoint COPY entrypoint.sh common_fn.sh /usr/local/sbin/ RUN chmod 755 /usr/local/sbin/entrypoint.sh \ && a2dissite 000-default default-ssl \ && a2ensite syspass \ && a2enmod proxy_fcgi setenvif ssl rewrite \ && ln -sf /dev/stdout ${APACHE_LOG_DIR}/access.log \ && ln -sf /dev/stderr ${APACHE_LOG_DIR}/error.log # sysPass dependencies COPY --from=bootstrap /app/sysPass/ ${SYSPASS_DIR}/ # Composer binary COPY --from=bootstrap /usr/bin/composer /usr/bin/ RUN cd ${SYSPASS_DIR} && \ composer u && \ composer require syspass/plugin-authenticator EXPOSE 80 443 ENTRYPOINT ["/usr/local/sbin/entrypoint.sh"] CMD ["apache"]