From d5366538dc03894ead790646fb35761d35735b6f Mon Sep 17 00:00:00 2001 From: Llewellyn van der Merwe Date: Fri, 31 May 2024 11:35:41 +0200 Subject: [PATCH] Add PHP 8.3 images for Joomla 5.1 --- 5.1/php8.3/apache/Dockerfile | 184 +++++++++++++++ 5.1/php8.3/apache/docker-entrypoint.sh | 249 +++++++++++++++++++++ 5.1/php8.3/apache/makedb.php | 102 +++++++++ 5.1/php8.3/fpm-alpine/Dockerfile | 165 ++++++++++++++ 5.1/php8.3/fpm-alpine/docker-entrypoint.sh | 249 +++++++++++++++++++++ 5.1/php8.3/fpm-alpine/makedb.php | 102 +++++++++ 5.1/php8.3/fpm/Dockerfile | 167 ++++++++++++++ 5.1/php8.3/fpm/docker-entrypoint.sh | 249 +++++++++++++++++++++ 5.1/php8.3/fpm/makedb.php | 102 +++++++++ versions-helper.json | 7 + versions.json | 3 +- 11 files changed, 1578 insertions(+), 1 deletion(-) create mode 100644 5.1/php8.3/apache/Dockerfile create mode 100755 5.1/php8.3/apache/docker-entrypoint.sh create mode 100644 5.1/php8.3/apache/makedb.php create mode 100644 5.1/php8.3/fpm-alpine/Dockerfile create mode 100755 5.1/php8.3/fpm-alpine/docker-entrypoint.sh create mode 100644 5.1/php8.3/fpm-alpine/makedb.php create mode 100644 5.1/php8.3/fpm/Dockerfile create mode 100755 5.1/php8.3/fpm/docker-entrypoint.sh create mode 100644 5.1/php8.3/fpm/makedb.php diff --git a/5.1/php8.3/apache/Dockerfile b/5.1/php8.3/apache/Dockerfile new file mode 100644 index 0000000..efcbc75 --- /dev/null +++ b/5.1/php8.3/apache/Dockerfile @@ -0,0 +1,184 @@ +# +# NOTE: THIS DOCKERFILE IS GENERATED VIA "apply-templates.sh" +# +# PLEASE DO NOT EDIT IT DIRECTLY. +# + +# from https://downloads.joomla.org/technical-requirements +FROM php:8.3-apache +LABEL maintainer="Llewellyn van der Merwe (@Llewellynvdm), Harald Leithner (@HLeithner)" + +# Disable remote database security requirements. +ENV JOOMLA_INSTALLATION_DISABLE_LOCALHOST_CHECK=1 +RUN set -eux; \ + apt-get update; \ + apt-get install -y --no-install-recommends \ +# Ghostscript is required for rendering PDF previews + ghostscript \ +# Needed for the zst joomla package + zstd \ + ; \ + rm -rf /var/lib/apt/lists/* + +# install the PHP extensions we need. +RUN set -ex; \ + \ + savedAptMark="$(apt-mark showmanual)"; \ + \ + apt-get update; \ + apt-get install -y --no-install-recommends \ + libbz2-dev \ + libgmp-dev \ + libicu-dev \ + libfreetype6-dev \ + libjpeg-dev \ + libldap2-dev \ + libmemcached-dev \ + libmagickwand-dev \ + libpq-dev \ + libpng-dev \ + libwebp-dev \ + libzip-dev \ + ; \ + \ + docker-php-ext-configure gd \ + --with-freetype \ + --with-jpeg \ + --with-webp \ + ; \ + debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \ + docker-php-ext-configure ldap --with-libdir="lib/$debMultiarch"; \ + docker-php-ext-install -j "$(nproc)" \ + bz2 \ + bcmath \ + exif \ + gd \ + gmp \ + intl \ + ldap \ + mysqli \ + pdo_mysql \ + pdo_pgsql \ + pgsql \ + zip \ + ; \ +# https://pecl.php.net/package/imagick +# https://github.com/Imagick/imagick/commit/5ae2ecf20a1157073bad0170106ad0cf74e01cb6 (causes a lot of build failures, but strangely only intermittent ones) +# see also https://github.com/Imagick/imagick/pull/641 +# this is "pecl install imagick-3.7.0", but by hand so we can apply a small hack / part of the above commit +# Thanks to @tianon https://github.com/docker-library/wordpress/commit/509adb58cbc7463a03e317931df65868ec8a3e92 + curl -fL -o imagick.tgz 'https://pecl.php.net/get/imagick-3.7.0.tgz'; \ + echo '5a364354109029d224bcbb2e82e15b248be9b641227f45e63425c06531792d3e *imagick.tgz' | sha256sum -c -; \ + tar --extract --directory /tmp --file imagick.tgz imagick-3.7.0; \ + grep '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php; \ + test "$(grep -c '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php)" = '1'; \ + sed -i -e 's!^//#endif$!#endif!' /tmp/imagick-3.7.0/Imagick.stub.php; \ + grep '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php && exit 1 || :; \ + docker-php-ext-install /tmp/imagick-3.7.0; \ + rm -rf imagick.tgz /tmp/imagick-3.7.0; \ +# TODO when imagick has another release, we should ditch this whole block and just update instead + \ +# some misbehaving extensions end up outputting to stdout + out="$(php -r 'exit(0);')"; \ + [ -z "$out" ]; \ + err="$(php -r 'exit(0);' 3>&1 1>&2 2>&3)"; \ + [ -z "$err" ]; \ + \ + extDir="$(php -r 'echo ini_get("extension_dir");')"; \ + [ -d "$extDir" ]; \ +# pecl will claim success even if one install fails, so we need to perform each install separately + pecl install APCu-5.1.23; \ + pecl install memcached-3.2.0; \ + pecl install redis-6.0.2; \ + \ + docker-php-ext-enable \ + apcu \ + memcached \ + redis \ + ; \ + rm -r /tmp/pear; \ + \ +# reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies + apt-mark auto '.*' > /dev/null; \ + apt-mark manual $savedAptMark; \ + ldd "$extDir"/*.so \ + | awk '/=>/ { so = $(NF-1); if (index(so, "/usr/local/") == 1) { next }; gsub("^/(usr/)?", "", so); print so }' \ + | sort -u \ + | xargs -r dpkg-query --search \ + | cut -d: -f1 \ + | sort -u \ + | xargs -rt apt-mark manual; \ + \ + apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \ + rm -rf /var/lib/apt/lists/*; \ + \ + ! { ldd "$extDir"/*.so | grep 'not found'; }; \ +# check for output like "PHP Warning: PHP Startup: Unable to load dynamic library 'foo' (tried: ...) + err="$(php --version 3>&1 1>&2 2>&3)"; \ + [ -z "$err" ] + +# set recommended PHP.ini settings +# see https://secure.php.net/manual/en/opcache.installation.php +RUN set -eux; \ + docker-php-ext-enable opcache; \ + { \ + echo 'opcache.memory_consumption=128'; \ + echo 'opcache.interned_strings_buffer=8'; \ + echo 'opcache.max_accelerated_files=4000'; \ + echo 'opcache.revalidate_freq=2'; \ + } > /usr/local/etc/php/conf.d/opcache-recommended.ini +# set recommended error logging +RUN { \ +# https://www.php.net/manual/en/errorfunc.constants.php + echo 'error_reporting = E_ERROR | E_WARNING | E_PARSE | E_CORE_ERROR | E_CORE_WARNING | E_COMPILE_ERROR | E_COMPILE_WARNING | E_RECOVERABLE_ERROR'; \ + echo 'display_errors = Off'; \ + echo 'display_startup_errors = Off'; \ + echo 'log_errors = On'; \ + echo 'error_log = /dev/stderr'; \ + echo 'log_errors_max_len = 1024'; \ + echo 'ignore_repeated_errors = On'; \ + echo 'ignore_repeated_source = Off'; \ + echo 'html_errors = Off'; \ + } > /usr/local/etc/php/conf.d/error-logging.ini + +RUN set -eux; \ + a2enmod rewrite expires; \ + \ +# https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html + a2enmod remoteip; \ + { \ + echo 'RemoteIPHeader X-Forwarded-For'; \ +# these IP ranges are reserved for "private" use and should thus *usually* be safe inside Docker + echo 'RemoteIPInternalProxy 10.0.0.0/8'; \ + echo 'RemoteIPInternalProxy 172.16.0.0/12'; \ + echo 'RemoteIPInternalProxy 192.168.0.0/16'; \ + echo 'RemoteIPInternalProxy 169.254.0.0/16'; \ + echo 'RemoteIPInternalProxy 127.0.0.0/8'; \ + } > /etc/apache2/conf-available/remoteip.conf; \ + a2enconf remoteip; \ +# (replace all instances of "%h" with "%a" in LogFormat) + find /etc/apache2 -type f -name '*.conf' -exec sed -ri 's/([[:space:]]*LogFormat[[:space:]]+"[^"]*)%h([^"]*")/\1%a\2/g' '{}' + + +VOLUME /var/www/html + +# Define Joomla version and expected SHA512 signature +ENV JOOMLA_VERSION 5.1.1 +ENV JOOMLA_SHA512 e99aa94b5b455eeb3f3ce1fc330c83fda3d1ac1688e269351355692171705a1f7947005f62375345a62166cee46840bd8090b541301768466fc4e603bafa4c7b + +# Download package and extract to web volume +RUN set -ex; \ + curl -o joomla.tar.zst -SL https://github.com/joomla/joomla-cms/releases/download/5.1.1/Joomla_5.1.1-Stable-Full_Package.tar.zst; \ + echo "$JOOMLA_SHA512 *joomla.tar.zst" | sha512sum -c -; \ + mkdir /usr/src/joomla; \ + tar --zstd -xf joomla.tar.zst -C /usr/src/joomla; \ + rm joomla.tar.zst; \ + chown -R www-data:www-data /usr/src/joomla + +# Copy init scripts +COPY docker-entrypoint.sh /entrypoint.sh +COPY makedb.php /makedb.php + +ENTRYPOINT ["/entrypoint.sh"] +CMD ["apache2-foreground"] + + diff --git a/5.1/php8.3/apache/docker-entrypoint.sh b/5.1/php8.3/apache/docker-entrypoint.sh new file mode 100755 index 0000000..06d22d3 --- /dev/null +++ b/5.1/php8.3/apache/docker-entrypoint.sh @@ -0,0 +1,249 @@ +#!/bin/bash +set -e + +if [ -n "$JOOMLA_DB_PASSWORD_FILE" ] && [ -f "$JOOMLA_DB_PASSWORD_FILE" ]; then + JOOMLA_DB_PASSWORD=$(cat "$JOOMLA_DB_PASSWORD_FILE") +fi + +if [[ "$1" == apache2* ]] || [ "$1" == php-fpm ]; then + uid="$(id -u)" + gid="$(id -g)" + if [ "$uid" = '0' ]; then + case "$1" in + apache2*) + user="${APACHE_RUN_USER:-www-data}" + group="${APACHE_RUN_GROUP:-www-data}" + + # strip off any '#' symbol ('#1000' is valid syntax for Apache) + pound='#' + user="${user#$pound}" + group="${group#$pound}" + + # set user if not exist + if ! id "$user" &>/dev/null; then + # get the user name + : "${USER_NAME:=www-data}" + # change the user name + [[ "$USER_NAME" != "www-data" ]] && + usermod -l "$USER_NAME" www-data && + groupmod -n "$USER_NAME" www-data + # update the user ID + groupmod -o -g "$user" "$USER_NAME" + # update the user-group ID + usermod -o -u "$group" "$USER_NAME" + fi + ;; + *) # php-fpm + user='www-data' + group='www-data' + ;; + esac + else + user="$uid" + group="$gid" + fi + + if [ -n "$MYSQL_PORT_3306_TCP" ]; then + if [ -z "$JOOMLA_DB_HOST" ]; then + JOOMLA_DB_HOST='mysql' + else + echo >&2 "warning: both JOOMLA_DB_HOST and MYSQL_PORT_3306_TCP found" + echo >&2 " Connecting to JOOMLA_DB_HOST ($JOOMLA_DB_HOST)" + echo >&2 " instead of the linked mysql container" + fi + fi + + if [ -z "$JOOMLA_DB_HOST" ]; then + echo >&2 "error: missing JOOMLA_DB_HOST and MYSQL_PORT_3306_TCP environment variables" + echo >&2 " Did you forget to --link some_mysql_container:mysql or set an external db" + echo >&2 " with -e JOOMLA_DB_HOST=hostname:port?" + exit 1 + fi + + # If the DB user is 'root' then use the MySQL root password env var + : "${JOOMLA_DB_USER:=root}" + if [ "$JOOMLA_DB_USER" = 'root' ]; then + : ${JOOMLA_DB_PASSWORD:=$MYSQL_ENV_MYSQL_ROOT_PASSWORD} + fi + : "${JOOMLA_DB_NAME:=joomla}" + + if [ -z "$JOOMLA_DB_PASSWORD" ] && [ "$JOOMLA_DB_PASSWORD_ALLOW_EMPTY" != 'yes' ]; then + echo >&2 "error: missing required JOOMLA_DB_PASSWORD environment variable" + echo >&2 " Did you forget to -e JOOMLA_DB_PASSWORD=... ?" + echo >&2 + echo >&2 " (Also of interest might be JOOMLA_DB_USER and JOOMLA_DB_NAME.)" + exit 1 + fi + + if [ ! -e index.php ] && [ ! -e libraries/src/Version.php ]; then + # if the directory exists and Joomla doesn't appear to be installed AND the permissions of it are root:root, let's chown it (likely a Docker-created directory) + if [ "$uid" = '0' ] && [ "$(stat -c '%u:%g' .)" = '0:0' ]; then + chown "$user:$group" . + fi + + echo >&2 "Joomla not found in $PWD - copying now..." + if [ "$(ls -A)" ]; then + echo >&2 "WARNING: $PWD is not empty - press Ctrl+C now if this is an error!" + ( + set -x + ls -A + sleep 10 + ) + fi + # use full commands + # for clearer intent + sourceTarArgs=( + --create + --file - + --directory /usr/src/joomla + --one-file-system + --owner "$user" --group "$group" + ) + targetTarArgs=( + --extract + --file - + ) + if [ "$uid" != '0' ]; then + # avoid "tar: .: Cannot utime: Operation not permitted" and "tar: .: Cannot change mode to rwxr-xr-x: Operation not permitted" + targetTarArgs+=(--no-overwrite-dir) + fi + + tar "${sourceTarArgs[@]}" . | tar "${targetTarArgs[@]}" + + if [ ! -e .htaccess ]; then + # NOTE: The "Indexes" option is disabled in the php:apache base image so remove it as we enable .htaccess + sed -r 's/^(Options -Indexes.*)$/#\1/' htaccess.txt >.htaccess + chown "$user":"$group" .htaccess + fi + + echo >&2 "Complete! Joomla has been successfully copied to $PWD" + fi + + # Ensure the MySQL Database is created + php /makedb.php "$JOOMLA_DB_HOST" "$JOOMLA_DB_USER" "$JOOMLA_DB_PASSWORD" "$JOOMLA_DB_NAME" "${JOOMLA_DB_TYPE:-mysqli}" + + # Basic email regex for validation + email_regex="^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$" + + # Function to validate environment variables + validate_vars() { + # Check if JOOMLA_SITE_NAME is longer than 2 characters + if [[ "${#JOOMLA_SITE_NAME}" -le 2 ]]; then + echo >&2 "Error: JOOMLA_SITE_NAME must be longer than 2 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_USER is longer than 2 characters + if [[ "${#JOOMLA_ADMIN_USER}" -le 2 ]]; then + echo >&2 "Error: JOOMLA_ADMIN_USER must be longer than 2 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_USERNAME has no spaces, and is only alphabetical + if [[ "${JOOMLA_ADMIN_USERNAME}" =~ [^a-zA-Z] ]]; then + echo >&2 "Error: JOOMLA_ADMIN_USERNAME must contain no spaces and be only alphabetical!" + return 1 + fi + + # Check if JOOMLA_ADMIN_PASSWORD is longer than 12 characters + if [[ "${#JOOMLA_ADMIN_PASSWORD}" -le 12 ]]; then + echo >&2 "Error: JOOMLA_ADMIN_PASSWORD must be longer than 12 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_EMAIL is a valid email + if [[ ! "${JOOMLA_ADMIN_EMAIL}" =~ $email_regex ]]; then + echo >&2 "Error: JOOMLA_ADMIN_EMAIL must be a valid email address!" + return 1 + fi + + # If all checks passed, return 0 + return 0 + } + + # Function to check that auto deploy can be done + can_auto_deploy() { + # Check if all NEEDED variables exist + if [[ -n "${JOOMLA_SITE_NAME}" && -n "${JOOMLA_ADMIN_USER}" && + -n "${JOOMLA_ADMIN_USERNAME}" && -n "${JOOMLA_ADMIN_PASSWORD}" && + -n "${JOOMLA_ADMIN_EMAIL}" ]]; then + + # All variables exist. Now validate them. + if validate_vars; then + # If all checks passed, return 0 + return 0 + fi + fi + + # If any needed variables does not exist fail, return 1 + return 1 + } + + # if the directory exists and we can auto deploy + if [ -d installation ] && [ -e installation/joomla.php ] && can_auto_deploy; then + # use full commands + # for clearer intent + installJoomlaArgs=( + --site-name="${JOOMLA_SITE_NAME}" + --admin-email="${JOOMLA_ADMIN_EMAIL}" + --admin-username="${JOOMLA_ADMIN_USERNAME}" + --admin-user="${JOOMLA_ADMIN_USER}" + --admin-password="${JOOMLA_ADMIN_PASSWORD}" + --db-type="${JOOMLA_DB_TYPE:-mysqli}" + --db-host="${JOOMLA_DB_HOST}" + --db-name="${JOOMLA_DB_NAME}" + --db-pass="${JOOMLA_DB_PASSWORD}" + --db-user="${JOOMLA_DB_USER}" + --db-prefix="${JOOMLA_DB_PREFIX:-joom_}" + --db-encryption=0 + ) + + # Run the auto deploy (install) + if php installation/joomla.php install "${installJoomlaArgs[@]}"; then + + # The PHP command succeeded (so we remove the installation folder) + rm -rf installation + + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + + # fix the configuration.php ownership + if [ "$uid" = '0' ] && [ "$(stat -c '%u:%g' configuration.php)" != "$user:$group" ]; then + # Set configuration to correct owner + if ! chown "$user:$group" configuration.php; then + echo >&2 + echo >&2 "Error: Ownership of configuration.php failed to be corrected." + fi + # Set configuration to correct permissions + if ! chmod 444 configuration.php; then + echo >&2 + echo >&2 "Error: Permissions of configuration.php failed to be corrected." + fi + fi + + echo >&2 + echo >&2 "========================================================================" + else + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + echo >&2 + echo >&2 "NOTE: You will need your database server address, database name," + echo >&2 "and database user credentials to install Joomla." + echo >&2 + echo >&2 "========================================================================" + fi + else + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + echo >&2 + echo >&2 "NOTE: You will need your database server address, database name," + echo >&2 "and database user credentials to install Joomla." + echo >&2 + echo >&2 "========================================================================" + fi +fi + +exec "$@" diff --git a/5.1/php8.3/apache/makedb.php b/5.1/php8.3/apache/makedb.php new file mode 100644 index 0000000..f6db25e --- /dev/null +++ b/5.1/php8.3/apache/makedb.php @@ -0,0 +1,102 @@ + makedb.php, 1 => "$JOOMLA_DB_HOST", 2 => "$JOOMLA_DB_USER", 3 => "$JOOMLA_DB_PASSWORD", 4 => "$JOOMLA_DB_NAME", 5 => "$JOOMLA_DB_TYPE" +$stderr = fopen('php://stderr', 'w'); +fwrite($stderr, "\nEnsuring Joomla database is present\n"); + +if (strpos($argv[1], ':') !== false) +{ + list($host, $port) = explode(':', $argv[1], 2); +} +else +{ + $host = $argv[1]; + $port = null; +} + +$user = $argv[2]; +$password = $argv[3]; +$db = $argv[4]; +$dbType = strtolower($argv[5]); + +if ($dbType === 'mysqli') +{ + $port = $port ? (int)$port : 3306; + $maxTries = 10; + + // set original default behaviour for PHP 8.1 and higher + // see https://www.php.net/manual/en/mysqli-driver.report-mode.php + mysqli_report(MYSQLI_REPORT_OFF); + do { + $mysql = new mysqli($host, $user, $password, '', $port); + + if ($mysql->connect_error) + { + fwrite($stderr, "\nMySQL Connection Error: ({$mysql->connect_errno}) {$mysql->connect_error}\n"); + --$maxTries; + + if ($maxTries <= 0) + { + exit(1); + } + + sleep(3); + } + } while ($mysql->connect_error); + + if (!$mysql->query('CREATE DATABASE IF NOT EXISTS `' . $mysql->real_escape_string($db) . '`')) + { + fwrite($stderr, "\nMySQL 'CREATE DATABASE' Error: " . $mysql->error . "\n"); + $mysql->close(); + exit(1); + } + + fwrite($stderr, "\nMySQL Database Created\n"); + + $mysql->close(); +} +elseif ($dbType === 'pgsql') +{ + $port = $port ? (int)$port : 5432; + $maxTries = 10; + + do { + $connection = "host={$host} port={$port} user={$user} password={$password}"; + $dbconn = @pg_connect($connection); + + if (!$dbconn) + { + fwrite($stderr, "\nPostgreSQL Connection Error\n"); + --$maxTries; + + if ($maxTries <= 0) + { + exit(1); + } + + sleep(3); + } + } while (!$dbconn); + + $query = "SELECT 1 FROM pg_database WHERE datname = '$db'"; + $result = pg_query($dbconn, $query); + + if (pg_num_rows($result) == 0) + { + $createDbQuery = "CREATE DATABASE \"$db\""; + if (!pg_query($dbconn, $createDbQuery)) + { + fwrite($stderr, "\nPostgreSQL 'CREATE DATABASE' Error\n"); + pg_close($dbconn); + exit(1); + } + } + + fwrite($stderr, "\nPostgreSQL Database Created\n"); + + pg_close($dbconn); +} +else +{ + fwrite($stderr, "\nInvalid database type. Please provide 'pgsql' or 'mysqli'.\n"); + exit(1); +} diff --git a/5.1/php8.3/fpm-alpine/Dockerfile b/5.1/php8.3/fpm-alpine/Dockerfile new file mode 100644 index 0000000..b15b503 --- /dev/null +++ b/5.1/php8.3/fpm-alpine/Dockerfile @@ -0,0 +1,165 @@ +# +# NOTE: THIS DOCKERFILE IS GENERATED VIA "apply-templates.sh" +# +# PLEASE DO NOT EDIT IT DIRECTLY. +# + +# from https://downloads.joomla.org/technical-requirements +FROM php:8.3-fpm-alpine +LABEL maintainer="Llewellyn van der Merwe (@Llewellynvdm), Harald Leithner (@HLeithner)" + +# Disable remote database security requirements. +ENV JOOMLA_INSTALLATION_DISABLE_LOCALHOST_CHECK=1 +RUN set -eux; \ + apk add --no-cache \ +# in theory, docker-entrypoint.sh is POSIX-compliant, but priority is a working, consistent image + bash \ +# Ghostscript is required for rendering PDF previews + ghostscript \ +# Alpine package for "imagemagick" contains ~120 .so files + imagemagick \ +# Needed for the zst joomla package + zstd \ + ; + +# install the PHP extensions we need. +RUN set -ex; \ + \ + apk add --no-cache --virtual .build-deps \ + $PHPIZE_DEPS \ + autoconf \ + bzip2-dev \ + gmp-dev \ + icu-dev \ + freetype-dev \ + imagemagick-dev \ + libjpeg-turbo-dev \ + libmemcached-dev \ + libpng-dev \ + libwebp-dev \ + libzip-dev \ + openldap-dev \ + pcre-dev \ + postgresql-dev \ + ; \ + \ + docker-php-ext-configure gd \ + --with-freetype \ + --with-jpeg \ + --with-webp \ + ; \ + docker-php-ext-configure ldap; \ + docker-php-ext-install -j "$(nproc)" \ + bz2 \ + bcmath \ + exif \ + gd \ + gmp \ + intl \ + ldap \ + mysqli \ + pdo_mysql \ + pdo_pgsql \ + pgsql \ + zip \ + ; \ +# WARNING: imagick is likely not supported on Alpine: https://github.com/Imagick/imagick/issues/328 +# https://pecl.php.net/package/imagick +# https://github.com/Imagick/imagick/commit/5ae2ecf20a1157073bad0170106ad0cf74e01cb6 (causes a lot of build failures, but strangely only intermittent ones) +# see also https://github.com/Imagick/imagick/pull/641 +# this is "pecl install imagick-3.7.0", but by hand so we can apply a small hack / part of the above commit +# Thanks to @tianon https://github.com/docker-library/wordpress/commit/509adb58cbc7463a03e317931df65868ec8a3e92 + curl -fL -o imagick.tgz 'https://pecl.php.net/get/imagick-3.7.0.tgz'; \ + echo '5a364354109029d224bcbb2e82e15b248be9b641227f45e63425c06531792d3e *imagick.tgz' | sha256sum -c -; \ + tar --extract --directory /tmp --file imagick.tgz imagick-3.7.0; \ + grep '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php; \ + test "$(grep -c '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php)" = '1'; \ + sed -i -e 's!^//#endif$!#endif!' /tmp/imagick-3.7.0/Imagick.stub.php; \ + grep '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php && exit 1 || :; \ + docker-php-ext-install /tmp/imagick-3.7.0; \ + rm -rf imagick.tgz /tmp/imagick-3.7.0; \ +# TODO when imagick has another release, we should ditch this whole block and just update instead + \ +# some misbehaving extensions end up outputting to stdout + out="$(php -r 'exit(0);')"; \ + [ -z "$out" ]; \ + err="$(php -r 'exit(0);' 3>&1 1>&2 2>&3)"; \ + [ -z "$err" ]; \ + \ + extDir="$(php -r 'echo ini_get("extension_dir");')"; \ + [ -d "$extDir" ]; \ + \ +# pecl will claim success even if one install fails, so we need to perform each install separately + pecl install APCu-5.1.23; \ + pecl install memcached-3.2.0; \ + pecl install redis-6.0.2; \ + \ + docker-php-ext-enable \ + apcu \ + memcached \ + redis \ + ; \ + rm -r /tmp/pear; \ + \ + runDeps="$( \ + scanelf --needed --nobanner --format '%n#p' --recursive "$extDir" \ + | tr ',' '\n' \ + | sort -u \ + | awk 'system("[ -e /usr/local/lib/" $1 " ]") == 0 { next } { print "so:" $1 }' \ + )"; \ + apk add --no-network --virtual .joomla-phpexts-rundeps $runDeps; \ + apk del --no-network .build-deps; \ + \ + ! { ldd "$extDir"/*.so | grep 'not found'; }; \ +# check for output like "PHP Warning: PHP Startup: Unable to load dynamic library 'foo' (tried: ...) + err="$(php --version 3>&1 1>&2 2>&3)"; \ + [ -z "$err" ] + +# set recommended PHP.ini settings +# see https://secure.php.net/manual/en/opcache.installation.php +RUN set -eux; \ + docker-php-ext-enable opcache; \ + { \ + echo 'opcache.memory_consumption=128'; \ + echo 'opcache.interned_strings_buffer=8'; \ + echo 'opcache.max_accelerated_files=4000'; \ + echo 'opcache.revalidate_freq=2'; \ + } > /usr/local/etc/php/conf.d/opcache-recommended.ini +# set recommended error logging +RUN { \ +# https://www.php.net/manual/en/errorfunc.constants.php + echo 'error_reporting = E_ERROR | E_WARNING | E_PARSE | E_CORE_ERROR | E_CORE_WARNING | E_COMPILE_ERROR | E_COMPILE_WARNING | E_RECOVERABLE_ERROR'; \ + echo 'display_errors = Off'; \ + echo 'display_startup_errors = Off'; \ + echo 'log_errors = On'; \ + echo 'error_log = /dev/stderr'; \ + echo 'log_errors_max_len = 1024'; \ + echo 'ignore_repeated_errors = On'; \ + echo 'ignore_repeated_source = Off'; \ + echo 'html_errors = Off'; \ + } > /usr/local/etc/php/conf.d/error-logging.ini + +VOLUME /var/www/html + +# Define Joomla version and expected SHA512 signature +ENV JOOMLA_VERSION 5.1.1 +ENV JOOMLA_SHA512 e99aa94b5b455eeb3f3ce1fc330c83fda3d1ac1688e269351355692171705a1f7947005f62375345a62166cee46840bd8090b541301768466fc4e603bafa4c7b + +# Download package and extract to web volume +RUN set -ex; \ + curl -o joomla.tar.zst -SL https://github.com/joomla/joomla-cms/releases/download/5.1.1/Joomla_5.1.1-Stable-Full_Package.tar.zst; \ + echo "$JOOMLA_SHA512 *joomla.tar.zst" | sha512sum -c -; \ + mkdir /usr/src/joomla; \ + tar --zstd -xf joomla.tar.zst -C /usr/src/joomla; \ + rm joomla.tar.zst; \ + chown -R www-data:www-data /usr/src/joomla + +# Copy init scripts +COPY docker-entrypoint.sh /entrypoint.sh +COPY makedb.php /makedb.php + +ENTRYPOINT ["/entrypoint.sh"] + +CMD ["php-fpm"] + + diff --git a/5.1/php8.3/fpm-alpine/docker-entrypoint.sh b/5.1/php8.3/fpm-alpine/docker-entrypoint.sh new file mode 100755 index 0000000..06d22d3 --- /dev/null +++ b/5.1/php8.3/fpm-alpine/docker-entrypoint.sh @@ -0,0 +1,249 @@ +#!/bin/bash +set -e + +if [ -n "$JOOMLA_DB_PASSWORD_FILE" ] && [ -f "$JOOMLA_DB_PASSWORD_FILE" ]; then + JOOMLA_DB_PASSWORD=$(cat "$JOOMLA_DB_PASSWORD_FILE") +fi + +if [[ "$1" == apache2* ]] || [ "$1" == php-fpm ]; then + uid="$(id -u)" + gid="$(id -g)" + if [ "$uid" = '0' ]; then + case "$1" in + apache2*) + user="${APACHE_RUN_USER:-www-data}" + group="${APACHE_RUN_GROUP:-www-data}" + + # strip off any '#' symbol ('#1000' is valid syntax for Apache) + pound='#' + user="${user#$pound}" + group="${group#$pound}" + + # set user if not exist + if ! id "$user" &>/dev/null; then + # get the user name + : "${USER_NAME:=www-data}" + # change the user name + [[ "$USER_NAME" != "www-data" ]] && + usermod -l "$USER_NAME" www-data && + groupmod -n "$USER_NAME" www-data + # update the user ID + groupmod -o -g "$user" "$USER_NAME" + # update the user-group ID + usermod -o -u "$group" "$USER_NAME" + fi + ;; + *) # php-fpm + user='www-data' + group='www-data' + ;; + esac + else + user="$uid" + group="$gid" + fi + + if [ -n "$MYSQL_PORT_3306_TCP" ]; then + if [ -z "$JOOMLA_DB_HOST" ]; then + JOOMLA_DB_HOST='mysql' + else + echo >&2 "warning: both JOOMLA_DB_HOST and MYSQL_PORT_3306_TCP found" + echo >&2 " Connecting to JOOMLA_DB_HOST ($JOOMLA_DB_HOST)" + echo >&2 " instead of the linked mysql container" + fi + fi + + if [ -z "$JOOMLA_DB_HOST" ]; then + echo >&2 "error: missing JOOMLA_DB_HOST and MYSQL_PORT_3306_TCP environment variables" + echo >&2 " Did you forget to --link some_mysql_container:mysql or set an external db" + echo >&2 " with -e JOOMLA_DB_HOST=hostname:port?" + exit 1 + fi + + # If the DB user is 'root' then use the MySQL root password env var + : "${JOOMLA_DB_USER:=root}" + if [ "$JOOMLA_DB_USER" = 'root' ]; then + : ${JOOMLA_DB_PASSWORD:=$MYSQL_ENV_MYSQL_ROOT_PASSWORD} + fi + : "${JOOMLA_DB_NAME:=joomla}" + + if [ -z "$JOOMLA_DB_PASSWORD" ] && [ "$JOOMLA_DB_PASSWORD_ALLOW_EMPTY" != 'yes' ]; then + echo >&2 "error: missing required JOOMLA_DB_PASSWORD environment variable" + echo >&2 " Did you forget to -e JOOMLA_DB_PASSWORD=... ?" + echo >&2 + echo >&2 " (Also of interest might be JOOMLA_DB_USER and JOOMLA_DB_NAME.)" + exit 1 + fi + + if [ ! -e index.php ] && [ ! -e libraries/src/Version.php ]; then + # if the directory exists and Joomla doesn't appear to be installed AND the permissions of it are root:root, let's chown it (likely a Docker-created directory) + if [ "$uid" = '0' ] && [ "$(stat -c '%u:%g' .)" = '0:0' ]; then + chown "$user:$group" . + fi + + echo >&2 "Joomla not found in $PWD - copying now..." + if [ "$(ls -A)" ]; then + echo >&2 "WARNING: $PWD is not empty - press Ctrl+C now if this is an error!" + ( + set -x + ls -A + sleep 10 + ) + fi + # use full commands + # for clearer intent + sourceTarArgs=( + --create + --file - + --directory /usr/src/joomla + --one-file-system + --owner "$user" --group "$group" + ) + targetTarArgs=( + --extract + --file - + ) + if [ "$uid" != '0' ]; then + # avoid "tar: .: Cannot utime: Operation not permitted" and "tar: .: Cannot change mode to rwxr-xr-x: Operation not permitted" + targetTarArgs+=(--no-overwrite-dir) + fi + + tar "${sourceTarArgs[@]}" . | tar "${targetTarArgs[@]}" + + if [ ! -e .htaccess ]; then + # NOTE: The "Indexes" option is disabled in the php:apache base image so remove it as we enable .htaccess + sed -r 's/^(Options -Indexes.*)$/#\1/' htaccess.txt >.htaccess + chown "$user":"$group" .htaccess + fi + + echo >&2 "Complete! Joomla has been successfully copied to $PWD" + fi + + # Ensure the MySQL Database is created + php /makedb.php "$JOOMLA_DB_HOST" "$JOOMLA_DB_USER" "$JOOMLA_DB_PASSWORD" "$JOOMLA_DB_NAME" "${JOOMLA_DB_TYPE:-mysqli}" + + # Basic email regex for validation + email_regex="^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$" + + # Function to validate environment variables + validate_vars() { + # Check if JOOMLA_SITE_NAME is longer than 2 characters + if [[ "${#JOOMLA_SITE_NAME}" -le 2 ]]; then + echo >&2 "Error: JOOMLA_SITE_NAME must be longer than 2 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_USER is longer than 2 characters + if [[ "${#JOOMLA_ADMIN_USER}" -le 2 ]]; then + echo >&2 "Error: JOOMLA_ADMIN_USER must be longer than 2 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_USERNAME has no spaces, and is only alphabetical + if [[ "${JOOMLA_ADMIN_USERNAME}" =~ [^a-zA-Z] ]]; then + echo >&2 "Error: JOOMLA_ADMIN_USERNAME must contain no spaces and be only alphabetical!" + return 1 + fi + + # Check if JOOMLA_ADMIN_PASSWORD is longer than 12 characters + if [[ "${#JOOMLA_ADMIN_PASSWORD}" -le 12 ]]; then + echo >&2 "Error: JOOMLA_ADMIN_PASSWORD must be longer than 12 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_EMAIL is a valid email + if [[ ! "${JOOMLA_ADMIN_EMAIL}" =~ $email_regex ]]; then + echo >&2 "Error: JOOMLA_ADMIN_EMAIL must be a valid email address!" + return 1 + fi + + # If all checks passed, return 0 + return 0 + } + + # Function to check that auto deploy can be done + can_auto_deploy() { + # Check if all NEEDED variables exist + if [[ -n "${JOOMLA_SITE_NAME}" && -n "${JOOMLA_ADMIN_USER}" && + -n "${JOOMLA_ADMIN_USERNAME}" && -n "${JOOMLA_ADMIN_PASSWORD}" && + -n "${JOOMLA_ADMIN_EMAIL}" ]]; then + + # All variables exist. Now validate them. + if validate_vars; then + # If all checks passed, return 0 + return 0 + fi + fi + + # If any needed variables does not exist fail, return 1 + return 1 + } + + # if the directory exists and we can auto deploy + if [ -d installation ] && [ -e installation/joomla.php ] && can_auto_deploy; then + # use full commands + # for clearer intent + installJoomlaArgs=( + --site-name="${JOOMLA_SITE_NAME}" + --admin-email="${JOOMLA_ADMIN_EMAIL}" + --admin-username="${JOOMLA_ADMIN_USERNAME}" + --admin-user="${JOOMLA_ADMIN_USER}" + --admin-password="${JOOMLA_ADMIN_PASSWORD}" + --db-type="${JOOMLA_DB_TYPE:-mysqli}" + --db-host="${JOOMLA_DB_HOST}" + --db-name="${JOOMLA_DB_NAME}" + --db-pass="${JOOMLA_DB_PASSWORD}" + --db-user="${JOOMLA_DB_USER}" + --db-prefix="${JOOMLA_DB_PREFIX:-joom_}" + --db-encryption=0 + ) + + # Run the auto deploy (install) + if php installation/joomla.php install "${installJoomlaArgs[@]}"; then + + # The PHP command succeeded (so we remove the installation folder) + rm -rf installation + + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + + # fix the configuration.php ownership + if [ "$uid" = '0' ] && [ "$(stat -c '%u:%g' configuration.php)" != "$user:$group" ]; then + # Set configuration to correct owner + if ! chown "$user:$group" configuration.php; then + echo >&2 + echo >&2 "Error: Ownership of configuration.php failed to be corrected." + fi + # Set configuration to correct permissions + if ! chmod 444 configuration.php; then + echo >&2 + echo >&2 "Error: Permissions of configuration.php failed to be corrected." + fi + fi + + echo >&2 + echo >&2 "========================================================================" + else + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + echo >&2 + echo >&2 "NOTE: You will need your database server address, database name," + echo >&2 "and database user credentials to install Joomla." + echo >&2 + echo >&2 "========================================================================" + fi + else + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + echo >&2 + echo >&2 "NOTE: You will need your database server address, database name," + echo >&2 "and database user credentials to install Joomla." + echo >&2 + echo >&2 "========================================================================" + fi +fi + +exec "$@" diff --git a/5.1/php8.3/fpm-alpine/makedb.php b/5.1/php8.3/fpm-alpine/makedb.php new file mode 100644 index 0000000..f6db25e --- /dev/null +++ b/5.1/php8.3/fpm-alpine/makedb.php @@ -0,0 +1,102 @@ + makedb.php, 1 => "$JOOMLA_DB_HOST", 2 => "$JOOMLA_DB_USER", 3 => "$JOOMLA_DB_PASSWORD", 4 => "$JOOMLA_DB_NAME", 5 => "$JOOMLA_DB_TYPE" +$stderr = fopen('php://stderr', 'w'); +fwrite($stderr, "\nEnsuring Joomla database is present\n"); + +if (strpos($argv[1], ':') !== false) +{ + list($host, $port) = explode(':', $argv[1], 2); +} +else +{ + $host = $argv[1]; + $port = null; +} + +$user = $argv[2]; +$password = $argv[3]; +$db = $argv[4]; +$dbType = strtolower($argv[5]); + +if ($dbType === 'mysqli') +{ + $port = $port ? (int)$port : 3306; + $maxTries = 10; + + // set original default behaviour for PHP 8.1 and higher + // see https://www.php.net/manual/en/mysqli-driver.report-mode.php + mysqli_report(MYSQLI_REPORT_OFF); + do { + $mysql = new mysqli($host, $user, $password, '', $port); + + if ($mysql->connect_error) + { + fwrite($stderr, "\nMySQL Connection Error: ({$mysql->connect_errno}) {$mysql->connect_error}\n"); + --$maxTries; + + if ($maxTries <= 0) + { + exit(1); + } + + sleep(3); + } + } while ($mysql->connect_error); + + if (!$mysql->query('CREATE DATABASE IF NOT EXISTS `' . $mysql->real_escape_string($db) . '`')) + { + fwrite($stderr, "\nMySQL 'CREATE DATABASE' Error: " . $mysql->error . "\n"); + $mysql->close(); + exit(1); + } + + fwrite($stderr, "\nMySQL Database Created\n"); + + $mysql->close(); +} +elseif ($dbType === 'pgsql') +{ + $port = $port ? (int)$port : 5432; + $maxTries = 10; + + do { + $connection = "host={$host} port={$port} user={$user} password={$password}"; + $dbconn = @pg_connect($connection); + + if (!$dbconn) + { + fwrite($stderr, "\nPostgreSQL Connection Error\n"); + --$maxTries; + + if ($maxTries <= 0) + { + exit(1); + } + + sleep(3); + } + } while (!$dbconn); + + $query = "SELECT 1 FROM pg_database WHERE datname = '$db'"; + $result = pg_query($dbconn, $query); + + if (pg_num_rows($result) == 0) + { + $createDbQuery = "CREATE DATABASE \"$db\""; + if (!pg_query($dbconn, $createDbQuery)) + { + fwrite($stderr, "\nPostgreSQL 'CREATE DATABASE' Error\n"); + pg_close($dbconn); + exit(1); + } + } + + fwrite($stderr, "\nPostgreSQL Database Created\n"); + + pg_close($dbconn); +} +else +{ + fwrite($stderr, "\nInvalid database type. Please provide 'pgsql' or 'mysqli'.\n"); + exit(1); +} diff --git a/5.1/php8.3/fpm/Dockerfile b/5.1/php8.3/fpm/Dockerfile new file mode 100644 index 0000000..e2e7238 --- /dev/null +++ b/5.1/php8.3/fpm/Dockerfile @@ -0,0 +1,167 @@ +# +# NOTE: THIS DOCKERFILE IS GENERATED VIA "apply-templates.sh" +# +# PLEASE DO NOT EDIT IT DIRECTLY. +# + +# from https://downloads.joomla.org/technical-requirements +FROM php:8.3-fpm +LABEL maintainer="Llewellyn van der Merwe (@Llewellynvdm), Harald Leithner (@HLeithner)" + +# Disable remote database security requirements. +ENV JOOMLA_INSTALLATION_DISABLE_LOCALHOST_CHECK=1 +RUN set -eux; \ + apt-get update; \ + apt-get install -y --no-install-recommends \ +# Ghostscript is required for rendering PDF previews + ghostscript \ +# Needed for the zst joomla package + zstd \ + ; \ + rm -rf /var/lib/apt/lists/* + +# install the PHP extensions we need. +RUN set -ex; \ + \ + savedAptMark="$(apt-mark showmanual)"; \ + \ + apt-get update; \ + apt-get install -y --no-install-recommends \ + libbz2-dev \ + libgmp-dev \ + libicu-dev \ + libfreetype6-dev \ + libjpeg-dev \ + libldap2-dev \ + libmemcached-dev \ + libmagickwand-dev \ + libpq-dev \ + libpng-dev \ + libwebp-dev \ + libzip-dev \ + ; \ + \ + docker-php-ext-configure gd \ + --with-freetype \ + --with-jpeg \ + --with-webp \ + ; \ + debMultiarch="$(dpkg-architecture --query DEB_BUILD_MULTIARCH)"; \ + docker-php-ext-configure ldap --with-libdir="lib/$debMultiarch"; \ + docker-php-ext-install -j "$(nproc)" \ + bz2 \ + bcmath \ + exif \ + gd \ + gmp \ + intl \ + ldap \ + mysqli \ + pdo_mysql \ + pdo_pgsql \ + pgsql \ + zip \ + ; \ +# https://pecl.php.net/package/imagick +# https://github.com/Imagick/imagick/commit/5ae2ecf20a1157073bad0170106ad0cf74e01cb6 (causes a lot of build failures, but strangely only intermittent ones) +# see also https://github.com/Imagick/imagick/pull/641 +# this is "pecl install imagick-3.7.0", but by hand so we can apply a small hack / part of the above commit +# Thanks to @tianon https://github.com/docker-library/wordpress/commit/509adb58cbc7463a03e317931df65868ec8a3e92 + curl -fL -o imagick.tgz 'https://pecl.php.net/get/imagick-3.7.0.tgz'; \ + echo '5a364354109029d224bcbb2e82e15b248be9b641227f45e63425c06531792d3e *imagick.tgz' | sha256sum -c -; \ + tar --extract --directory /tmp --file imagick.tgz imagick-3.7.0; \ + grep '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php; \ + test "$(grep -c '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php)" = '1'; \ + sed -i -e 's!^//#endif$!#endif!' /tmp/imagick-3.7.0/Imagick.stub.php; \ + grep '^//#endif$' /tmp/imagick-3.7.0/Imagick.stub.php && exit 1 || :; \ + docker-php-ext-install /tmp/imagick-3.7.0; \ + rm -rf imagick.tgz /tmp/imagick-3.7.0; \ +# TODO when imagick has another release, we should ditch this whole block and just update instead + \ +# some misbehaving extensions end up outputting to stdout + out="$(php -r 'exit(0);')"; \ + [ -z "$out" ]; \ + err="$(php -r 'exit(0);' 3>&1 1>&2 2>&3)"; \ + [ -z "$err" ]; \ + \ + extDir="$(php -r 'echo ini_get("extension_dir");')"; \ + [ -d "$extDir" ]; \ +# pecl will claim success even if one install fails, so we need to perform each install separately + pecl install APCu-5.1.23; \ + pecl install memcached-3.2.0; \ + pecl install redis-6.0.2; \ + \ + docker-php-ext-enable \ + apcu \ + memcached \ + redis \ + ; \ + rm -r /tmp/pear; \ + \ +# reset apt-mark's "manual" list so that "purge --auto-remove" will remove all build dependencies + apt-mark auto '.*' > /dev/null; \ + apt-mark manual $savedAptMark; \ + ldd "$extDir"/*.so \ + | awk '/=>/ { so = $(NF-1); if (index(so, "/usr/local/") == 1) { next }; gsub("^/(usr/)?", "", so); print so }' \ + | sort -u \ + | xargs -r dpkg-query --search \ + | cut -d: -f1 \ + | sort -u \ + | xargs -rt apt-mark manual; \ + \ + apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \ + rm -rf /var/lib/apt/lists/*; \ + \ + ! { ldd "$extDir"/*.so | grep 'not found'; }; \ +# check for output like "PHP Warning: PHP Startup: Unable to load dynamic library 'foo' (tried: ...) + err="$(php --version 3>&1 1>&2 2>&3)"; \ + [ -z "$err" ] + +# set recommended PHP.ini settings +# see https://secure.php.net/manual/en/opcache.installation.php +RUN set -eux; \ + docker-php-ext-enable opcache; \ + { \ + echo 'opcache.memory_consumption=128'; \ + echo 'opcache.interned_strings_buffer=8'; \ + echo 'opcache.max_accelerated_files=4000'; \ + echo 'opcache.revalidate_freq=2'; \ + } > /usr/local/etc/php/conf.d/opcache-recommended.ini +# set recommended error logging +RUN { \ +# https://www.php.net/manual/en/errorfunc.constants.php + echo 'error_reporting = E_ERROR | E_WARNING | E_PARSE | E_CORE_ERROR | E_CORE_WARNING | E_COMPILE_ERROR | E_COMPILE_WARNING | E_RECOVERABLE_ERROR'; \ + echo 'display_errors = Off'; \ + echo 'display_startup_errors = Off'; \ + echo 'log_errors = On'; \ + echo 'error_log = /dev/stderr'; \ + echo 'log_errors_max_len = 1024'; \ + echo 'ignore_repeated_errors = On'; \ + echo 'ignore_repeated_source = Off'; \ + echo 'html_errors = Off'; \ + } > /usr/local/etc/php/conf.d/error-logging.ini + +VOLUME /var/www/html + +# Define Joomla version and expected SHA512 signature +ENV JOOMLA_VERSION 5.1.1 +ENV JOOMLA_SHA512 e99aa94b5b455eeb3f3ce1fc330c83fda3d1ac1688e269351355692171705a1f7947005f62375345a62166cee46840bd8090b541301768466fc4e603bafa4c7b + +# Download package and extract to web volume +RUN set -ex; \ + curl -o joomla.tar.zst -SL https://github.com/joomla/joomla-cms/releases/download/5.1.1/Joomla_5.1.1-Stable-Full_Package.tar.zst; \ + echo "$JOOMLA_SHA512 *joomla.tar.zst" | sha512sum -c -; \ + mkdir /usr/src/joomla; \ + tar --zstd -xf joomla.tar.zst -C /usr/src/joomla; \ + rm joomla.tar.zst; \ + chown -R www-data:www-data /usr/src/joomla + +# Copy init scripts +COPY docker-entrypoint.sh /entrypoint.sh +COPY makedb.php /makedb.php + +ENTRYPOINT ["/entrypoint.sh"] + +CMD ["php-fpm"] + + diff --git a/5.1/php8.3/fpm/docker-entrypoint.sh b/5.1/php8.3/fpm/docker-entrypoint.sh new file mode 100755 index 0000000..06d22d3 --- /dev/null +++ b/5.1/php8.3/fpm/docker-entrypoint.sh @@ -0,0 +1,249 @@ +#!/bin/bash +set -e + +if [ -n "$JOOMLA_DB_PASSWORD_FILE" ] && [ -f "$JOOMLA_DB_PASSWORD_FILE" ]; then + JOOMLA_DB_PASSWORD=$(cat "$JOOMLA_DB_PASSWORD_FILE") +fi + +if [[ "$1" == apache2* ]] || [ "$1" == php-fpm ]; then + uid="$(id -u)" + gid="$(id -g)" + if [ "$uid" = '0' ]; then + case "$1" in + apache2*) + user="${APACHE_RUN_USER:-www-data}" + group="${APACHE_RUN_GROUP:-www-data}" + + # strip off any '#' symbol ('#1000' is valid syntax for Apache) + pound='#' + user="${user#$pound}" + group="${group#$pound}" + + # set user if not exist + if ! id "$user" &>/dev/null; then + # get the user name + : "${USER_NAME:=www-data}" + # change the user name + [[ "$USER_NAME" != "www-data" ]] && + usermod -l "$USER_NAME" www-data && + groupmod -n "$USER_NAME" www-data + # update the user ID + groupmod -o -g "$user" "$USER_NAME" + # update the user-group ID + usermod -o -u "$group" "$USER_NAME" + fi + ;; + *) # php-fpm + user='www-data' + group='www-data' + ;; + esac + else + user="$uid" + group="$gid" + fi + + if [ -n "$MYSQL_PORT_3306_TCP" ]; then + if [ -z "$JOOMLA_DB_HOST" ]; then + JOOMLA_DB_HOST='mysql' + else + echo >&2 "warning: both JOOMLA_DB_HOST and MYSQL_PORT_3306_TCP found" + echo >&2 " Connecting to JOOMLA_DB_HOST ($JOOMLA_DB_HOST)" + echo >&2 " instead of the linked mysql container" + fi + fi + + if [ -z "$JOOMLA_DB_HOST" ]; then + echo >&2 "error: missing JOOMLA_DB_HOST and MYSQL_PORT_3306_TCP environment variables" + echo >&2 " Did you forget to --link some_mysql_container:mysql or set an external db" + echo >&2 " with -e JOOMLA_DB_HOST=hostname:port?" + exit 1 + fi + + # If the DB user is 'root' then use the MySQL root password env var + : "${JOOMLA_DB_USER:=root}" + if [ "$JOOMLA_DB_USER" = 'root' ]; then + : ${JOOMLA_DB_PASSWORD:=$MYSQL_ENV_MYSQL_ROOT_PASSWORD} + fi + : "${JOOMLA_DB_NAME:=joomla}" + + if [ -z "$JOOMLA_DB_PASSWORD" ] && [ "$JOOMLA_DB_PASSWORD_ALLOW_EMPTY" != 'yes' ]; then + echo >&2 "error: missing required JOOMLA_DB_PASSWORD environment variable" + echo >&2 " Did you forget to -e JOOMLA_DB_PASSWORD=... ?" + echo >&2 + echo >&2 " (Also of interest might be JOOMLA_DB_USER and JOOMLA_DB_NAME.)" + exit 1 + fi + + if [ ! -e index.php ] && [ ! -e libraries/src/Version.php ]; then + # if the directory exists and Joomla doesn't appear to be installed AND the permissions of it are root:root, let's chown it (likely a Docker-created directory) + if [ "$uid" = '0' ] && [ "$(stat -c '%u:%g' .)" = '0:0' ]; then + chown "$user:$group" . + fi + + echo >&2 "Joomla not found in $PWD - copying now..." + if [ "$(ls -A)" ]; then + echo >&2 "WARNING: $PWD is not empty - press Ctrl+C now if this is an error!" + ( + set -x + ls -A + sleep 10 + ) + fi + # use full commands + # for clearer intent + sourceTarArgs=( + --create + --file - + --directory /usr/src/joomla + --one-file-system + --owner "$user" --group "$group" + ) + targetTarArgs=( + --extract + --file - + ) + if [ "$uid" != '0' ]; then + # avoid "tar: .: Cannot utime: Operation not permitted" and "tar: .: Cannot change mode to rwxr-xr-x: Operation not permitted" + targetTarArgs+=(--no-overwrite-dir) + fi + + tar "${sourceTarArgs[@]}" . | tar "${targetTarArgs[@]}" + + if [ ! -e .htaccess ]; then + # NOTE: The "Indexes" option is disabled in the php:apache base image so remove it as we enable .htaccess + sed -r 's/^(Options -Indexes.*)$/#\1/' htaccess.txt >.htaccess + chown "$user":"$group" .htaccess + fi + + echo >&2 "Complete! Joomla has been successfully copied to $PWD" + fi + + # Ensure the MySQL Database is created + php /makedb.php "$JOOMLA_DB_HOST" "$JOOMLA_DB_USER" "$JOOMLA_DB_PASSWORD" "$JOOMLA_DB_NAME" "${JOOMLA_DB_TYPE:-mysqli}" + + # Basic email regex for validation + email_regex="^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$" + + # Function to validate environment variables + validate_vars() { + # Check if JOOMLA_SITE_NAME is longer than 2 characters + if [[ "${#JOOMLA_SITE_NAME}" -le 2 ]]; then + echo >&2 "Error: JOOMLA_SITE_NAME must be longer than 2 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_USER is longer than 2 characters + if [[ "${#JOOMLA_ADMIN_USER}" -le 2 ]]; then + echo >&2 "Error: JOOMLA_ADMIN_USER must be longer than 2 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_USERNAME has no spaces, and is only alphabetical + if [[ "${JOOMLA_ADMIN_USERNAME}" =~ [^a-zA-Z] ]]; then + echo >&2 "Error: JOOMLA_ADMIN_USERNAME must contain no spaces and be only alphabetical!" + return 1 + fi + + # Check if JOOMLA_ADMIN_PASSWORD is longer than 12 characters + if [[ "${#JOOMLA_ADMIN_PASSWORD}" -le 12 ]]; then + echo >&2 "Error: JOOMLA_ADMIN_PASSWORD must be longer than 12 characters!" + return 1 + fi + + # Check if JOOMLA_ADMIN_EMAIL is a valid email + if [[ ! "${JOOMLA_ADMIN_EMAIL}" =~ $email_regex ]]; then + echo >&2 "Error: JOOMLA_ADMIN_EMAIL must be a valid email address!" + return 1 + fi + + # If all checks passed, return 0 + return 0 + } + + # Function to check that auto deploy can be done + can_auto_deploy() { + # Check if all NEEDED variables exist + if [[ -n "${JOOMLA_SITE_NAME}" && -n "${JOOMLA_ADMIN_USER}" && + -n "${JOOMLA_ADMIN_USERNAME}" && -n "${JOOMLA_ADMIN_PASSWORD}" && + -n "${JOOMLA_ADMIN_EMAIL}" ]]; then + + # All variables exist. Now validate them. + if validate_vars; then + # If all checks passed, return 0 + return 0 + fi + fi + + # If any needed variables does not exist fail, return 1 + return 1 + } + + # if the directory exists and we can auto deploy + if [ -d installation ] && [ -e installation/joomla.php ] && can_auto_deploy; then + # use full commands + # for clearer intent + installJoomlaArgs=( + --site-name="${JOOMLA_SITE_NAME}" + --admin-email="${JOOMLA_ADMIN_EMAIL}" + --admin-username="${JOOMLA_ADMIN_USERNAME}" + --admin-user="${JOOMLA_ADMIN_USER}" + --admin-password="${JOOMLA_ADMIN_PASSWORD}" + --db-type="${JOOMLA_DB_TYPE:-mysqli}" + --db-host="${JOOMLA_DB_HOST}" + --db-name="${JOOMLA_DB_NAME}" + --db-pass="${JOOMLA_DB_PASSWORD}" + --db-user="${JOOMLA_DB_USER}" + --db-prefix="${JOOMLA_DB_PREFIX:-joom_}" + --db-encryption=0 + ) + + # Run the auto deploy (install) + if php installation/joomla.php install "${installJoomlaArgs[@]}"; then + + # The PHP command succeeded (so we remove the installation folder) + rm -rf installation + + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + + # fix the configuration.php ownership + if [ "$uid" = '0' ] && [ "$(stat -c '%u:%g' configuration.php)" != "$user:$group" ]; then + # Set configuration to correct owner + if ! chown "$user:$group" configuration.php; then + echo >&2 + echo >&2 "Error: Ownership of configuration.php failed to be corrected." + fi + # Set configuration to correct permissions + if ! chmod 444 configuration.php; then + echo >&2 + echo >&2 "Error: Permissions of configuration.php failed to be corrected." + fi + fi + + echo >&2 + echo >&2 "========================================================================" + else + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + echo >&2 + echo >&2 "NOTE: You will need your database server address, database name," + echo >&2 "and database user credentials to install Joomla." + echo >&2 + echo >&2 "========================================================================" + fi + else + echo >&2 "========================================================================" + echo >&2 + echo >&2 "This server is now configured to run Joomla!" + echo >&2 + echo >&2 "NOTE: You will need your database server address, database name," + echo >&2 "and database user credentials to install Joomla." + echo >&2 + echo >&2 "========================================================================" + fi +fi + +exec "$@" diff --git a/5.1/php8.3/fpm/makedb.php b/5.1/php8.3/fpm/makedb.php new file mode 100644 index 0000000..f6db25e --- /dev/null +++ b/5.1/php8.3/fpm/makedb.php @@ -0,0 +1,102 @@ + makedb.php, 1 => "$JOOMLA_DB_HOST", 2 => "$JOOMLA_DB_USER", 3 => "$JOOMLA_DB_PASSWORD", 4 => "$JOOMLA_DB_NAME", 5 => "$JOOMLA_DB_TYPE" +$stderr = fopen('php://stderr', 'w'); +fwrite($stderr, "\nEnsuring Joomla database is present\n"); + +if (strpos($argv[1], ':') !== false) +{ + list($host, $port) = explode(':', $argv[1], 2); +} +else +{ + $host = $argv[1]; + $port = null; +} + +$user = $argv[2]; +$password = $argv[3]; +$db = $argv[4]; +$dbType = strtolower($argv[5]); + +if ($dbType === 'mysqli') +{ + $port = $port ? (int)$port : 3306; + $maxTries = 10; + + // set original default behaviour for PHP 8.1 and higher + // see https://www.php.net/manual/en/mysqli-driver.report-mode.php + mysqli_report(MYSQLI_REPORT_OFF); + do { + $mysql = new mysqli($host, $user, $password, '', $port); + + if ($mysql->connect_error) + { + fwrite($stderr, "\nMySQL Connection Error: ({$mysql->connect_errno}) {$mysql->connect_error}\n"); + --$maxTries; + + if ($maxTries <= 0) + { + exit(1); + } + + sleep(3); + } + } while ($mysql->connect_error); + + if (!$mysql->query('CREATE DATABASE IF NOT EXISTS `' . $mysql->real_escape_string($db) . '`')) + { + fwrite($stderr, "\nMySQL 'CREATE DATABASE' Error: " . $mysql->error . "\n"); + $mysql->close(); + exit(1); + } + + fwrite($stderr, "\nMySQL Database Created\n"); + + $mysql->close(); +} +elseif ($dbType === 'pgsql') +{ + $port = $port ? (int)$port : 5432; + $maxTries = 10; + + do { + $connection = "host={$host} port={$port} user={$user} password={$password}"; + $dbconn = @pg_connect($connection); + + if (!$dbconn) + { + fwrite($stderr, "\nPostgreSQL Connection Error\n"); + --$maxTries; + + if ($maxTries <= 0) + { + exit(1); + } + + sleep(3); + } + } while (!$dbconn); + + $query = "SELECT 1 FROM pg_database WHERE datname = '$db'"; + $result = pg_query($dbconn, $query); + + if (pg_num_rows($result) == 0) + { + $createDbQuery = "CREATE DATABASE \"$db\""; + if (!pg_query($dbconn, $createDbQuery)) + { + fwrite($stderr, "\nPostgreSQL 'CREATE DATABASE' Error\n"); + pg_close($dbconn); + exit(1); + } + } + + fwrite($stderr, "\nPostgreSQL Database Created\n"); + + pg_close($dbconn); +} +else +{ + fwrite($stderr, "\nInvalid database type. Please provide 'pgsql' or 'mysqli'.\n"); + exit(1); +} diff --git a/versions-helper.json b/versions-helper.json index 7630524..94bd995 100644 --- a/versions-helper.json +++ b/versions-helper.json @@ -5,6 +5,13 @@ "php": "8.2", "aliases": [5, "latest"], "phpVersions": { + "8.3": { + "pecl": { + "APCu": "5.1.23", + "memcached": "3.2.0", + "redis": "6.0.2" + } + }, "8.2": { "pecl": { "APCu": "5.1.23", diff --git a/versions.json b/versions.json index d9e6b5f..3d417b8 100644 --- a/versions.json +++ b/versions.json @@ -29,7 +29,8 @@ "php": "8.2", "phpVersions": [ "8.1", - "8.2" + "8.2", + "8.3" ], "sha512": "e99aa94b5b455eeb3f3ce1fc330c83fda3d1ac1688e269351355692171705a1f7947005f62375345a62166cee46840bd8090b541301768466fc4e603bafa4c7b", "variant": "apache",