-
Notifications
You must be signed in to change notification settings - Fork 11
/
Copy pathDockerfile
105 lines (92 loc) · 4.11 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
FROM php:7.2-fpm-alpine3.7
MAINTAINER Dmitri Pisarev <dimaip@gmail.com>
ARG PHP_REDIS_VERSION="3.1.6"
ARG PHP_YAML_VERSION="2.0.2"
ARG PHP_XDEBUG_VERSION="2.6.0beta1"
ARG S6_VERSION="1.21.2.2"
ENV FLOW_REWRITEURLS 1
ENV COMPOSER_VERSION 1.6.2
ENV COMPOSER_HOME /composer
ENV PATH /composer/vendor/bin:$PATH
ENV COMPOSER_ALLOW_SUPERUSER 1
# Set default values for env vars used in init scripts, override them if needed
ENV DB_DATABASE db
ENV DB_HOST db
ENV DB_USER admin
ENV DB_PASS pass
ENV VERSION master
# Basic build-time metadata as defined at http://label-schema.org
LABEL org.label-schema.docker.dockerfile="/Dockerfile" \
org.label-schema.license="MIT" \
org.label-schema.name="Neos Alpine Docker Image" \
org.label-schema.url="/~https://github.com/psmb/docker-neos-alpine" \
org.label-schema.vcs-url="/~https://github.com/psmb/docker-neos-alpine" \
org.label-schema.vcs-type="Git"
RUN set -x \
&& apk update \
&& apk add tar rsync curl sed bash yaml python py-pip py-setuptools groff less mysql-client git nginx optipng freetype libjpeg-turbo-utils icu-dev openssh pwgen sudo s6 \
&& pip install awscli \
&& apk del py-pip py-setuptools \
&& apk add --virtual .phpize-deps $PHPIZE_DEPS libtool freetype-dev libpng-dev libjpeg-turbo-dev yaml-dev \
&& docker-php-ext-configure gd \
--with-gd \
--with-freetype-dir=/usr/include/ \
--with-png-dir=/usr/include/ \
--with-jpeg-dir=/usr/include/ \
&& docker-php-ext-install \
gd \
pdo \
pdo_mysql \
mbstring \
opcache \
intl \
exif \
json \
tokenizer \
&& pecl install redis-${PHP_REDIS_VERSION} yaml-${PHP_YAML_VERSION} xdebug-${PHP_XDEBUG_VERSION} \
&& docker-php-ext-enable xdebug \
&& docker-php-ext-enable redis \
&& docker-php-ext-enable yaml \
&& apk del .phpize-deps \
&& curl -o /tmp/composer-setup.php https://getcomposer.org/installer \
&& php /tmp/composer-setup.php --no-ansi --install-dir=/usr/local/bin --filename=composer --version=${COMPOSER_VERSION} && rm -rf /tmp/composer-setup.php \
&& curl -s http://beard.famelo.com/ > /usr/local/bin/beard \
&& chmod +x /usr/local/bin/beard \
&& git config --global user.email "server@server.com" \
&& git config --global user.name "Server" \
&& rm -rf /var/cache/apk/*
# Copy configuration
COPY root /
# Download s6
ADD /~https://github.com/just-containers/s6-overlay/releases/download/v${S6_VERSION}/s6-overlay-amd64.tar.gz /tmp/
RUN tar xzf /tmp/s6-overlay-amd64.tar.gz -C / && rm /tmp/s6-overlay-amd64.tar.gz \
&& echo "xdebug.remote_enable=0" >> $PHP_INI_DIR/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.remote_connect_back=1" >> $PHP_INI_DIR/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.max_nesting_level=512" >> $PHP_INI_DIR/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.idekey=\"PHPSTORM\"" >> $PHP_INI_DIR/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.remote_host=172.17.0.1" >> $PHP_INI_DIR/conf.d/docker-php-ext-xdebug.ini \
&& deluser www-data \
&& delgroup cdrw \
&& addgroup -g 80 www-data \
&& adduser -u 80 -G www-data -s /bin/bash -D www-data -h /data \
&& rm -Rf /home/www-data \
&& sed -i -e "s#listen = 9000#listen = /var/run/php-fpm.sock#" /usr/local/etc/php-fpm.d/zz-docker.conf \
&& echo "clear_env = no" >> /usr/local/etc/php-fpm.d/zz-docker.conf \
&& echo "listen.owner = www-data" >> /usr/local/etc/php-fpm.d/zz-docker.conf \
&& echo "listen.group = www-data" >> /usr/local/etc/php-fpm.d/zz-docker.conf \
&& echo "listen.mode = 0660" >> /usr/local/etc/php-fpm.d/zz-docker.conf \
&& chown 80:80 -R /var/lib/nginx \
&& chmod +x /github-keys.sh \
&& sed -i -r 's/.?UseDNS\syes/UseDNS no/' /etc/ssh/sshd_config \
&& sed -i -r 's/.?PasswordAuthentication.+/PasswordAuthentication no/' /etc/ssh/sshd_config \
&& sed -i -r 's/.?ChallengeResponseAuthentication.+/ChallengeResponseAuthentication no/' /etc/ssh/sshd_config \
&& sed -i -r 's/.?PermitRootLogin.+/PermitRootLogin no/' /etc/ssh/sshd_config \
&& sed -i '/secure_path/d' /etc/sudoers \
&& echo 'www-data ALL=(ALL) NOPASSWD: ALL' > /etc/sudoers.d/www \
&& /bin/bash -c "source /init-php-conf.sh"
# Expose ports
EXPOSE 80 22
# Define working directory
WORKDIR /data
# Define entrypoint and command
ENTRYPOINT ["/init"]