#
# https://syspass.org
# https://doc.syspass.org
#
FROM composer:2.0 as bootstrap
ENV SYSPASS_BRANCH="3.2.0"
RUN git clone --depth 1 --branch ${SYSPASS_BRANCH} https://github.com/nuxsmin/sysPass.git \
&& composer install \
--ignore-platform-reqs \
--no-interaction \
--no-plugins \
--no-scripts \
--prefer-dist \
--optimize-autoloader \
--working-dir /app/sysPass
FROM php:7.4-apache-buster as app
LABEL maintainer=nuxsmin@syspass.org version=3.2.0 php=7.4
RUN rm -rfv /etc/locale.gen
COPY locale.gen /etc/locale.gen
RUN for i in $(seq 1 8); do mkdir -p "/usr/share/man/man${i}"; done
##################################################################
# adding normal sources list
##################################################################
RUN rm /etc/apt/sources.list
COPY sources.list /etc/apt/sources.list
##################################################################
# installing utils
##################################################################
RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections && \
apt-get update && \
apt-get install -y --allow-unauthenticated --no-install-recommends --no-install-suggests \
apt-transport-https \
apt-utils \
bash \
binutils \
ca-certificates \
cmatrix \
cmatrix-xfont \
console-cyrillic \
cron \
curl \
fontconfig \
git \
gnupg \
gnupg2 \
graphicsmagick \
htop \
iftop \
iputils-ping \
jq \
kmod \
libsvn-java \
libzip4 \
locales \
lsb-release \
lsof \
lynx \
mc \
mercurial \
nano \
nload \
nmap \
openssl \
perl \
procps \
rsync \
screenfetch \
smbclient \
software-properties-common \
subversion \
sudo \
telnet \
tini \
tmux \
tree \
ttf-dejavu \
util-linux \
uuid-runtime \
wget \
zip
##################################################################
# installing php repo + smbclient
##################################################################
RUN apt-get update -y && apt-get install -y --allow-unauthenticated smbclient libsmbclient libsmbclient-dev
RUN pecl install smbclient
RUN docker-php-ext-enable smbclient
##################################################################
# smb fix
##################################################################
RUN rm -frv /etc/samba/smb.conf /usr/share/samba/smb.conf
ADD smb.conf /etc/samba/
ADD smb.conf /usr/share/samba/
RUN apt-get update \
&& apt-get install -y \
locales \
locales-all \
git \
gosu \
libicu-dev \
libldb-dev \
libldap2-dev \
libfreetype6-dev \
libjpeg62-turbo-dev \
libpng-dev \
unzip \
ssl-cert \
&& apt-get clean \
&& rm -r /var/lib/apt/lists/*
RUN pecl install xdebug-2.9.8 \
&& docker-php-ext-configure gd --with-freetype --with-jpeg \
&& docker-php-ext-install -j$(nproc) ldap intl gettext pdo_mysql opcache gd \
&& docker-php-ext-enable ldap xdebug intl pdo_mysql
ENV APACHE_RUN_USER="www-data" \
SYSPASS_DIR="/var/www/html/sysPass" \
SYSPASS_UID=9001 \
SYSPASS_DEV=0
WORKDIR /var/www/html
LABEL build=20122001
# Custom sysPass Apache config with SSL by default
COPY ["syspass.conf", "/etc/apache2/sites-available/"]
# Xdebug module config
COPY xdebug.ini /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini
# Custom entrypoint
COPY entrypoint.sh common_fn.sh /usr/local/sbin/
RUN chmod 755 /usr/local/sbin/entrypoint.sh \
&& a2dissite 000-default default-ssl \
&& a2ensite syspass \
&& a2enmod proxy_fcgi setenvif ssl rewrite \
&& ln -sf /dev/stdout ${APACHE_LOG_DIR}/access.log \
&& ln -sf /dev/stderr ${APACHE_LOG_DIR}/error.log
# sysPass dependencies
COPY --from=bootstrap /app/sysPass/ ${SYSPASS_DIR}/
# Composer binary
COPY --from=bootstrap /usr/bin/composer /usr/bin/
RUN cd ${SYSPASS_DIR} && \
composer u && \
composer require syspass/plugin-authenticator
EXPOSE 80 443
ENTRYPOINT ["/usr/local/sbin/entrypoint.sh"]
CMD ["apache"]