Google Git
Sign in
apache / whimsy / fdae26c1f78e346a18b6131f58113b435c0dc55c / . / Dockerfile
blob: e7692af3c747ac96eab568264e43a5bad3159bf7 [file] [log] [blame]
FROM ubuntu:20.04
# N.B. passenger --install_dir=/var/lib/gems/m.n.o must agree with ruby version
ENV GEM_HOME="/srv/gems" \
LANG=C.UTF-8 \
LC_ALL=C.UTF-8
RUN apt-get update && \
apt-get install -y curl software-properties-common apt-utils && \
curl -sL https://deb.nodesource.com/setup_14.x | bash - && \
echo "deb http://opensource.wandisco.com/ubuntu bionic svn110" > \
/etc/apt/sources.list.d/subversion.list && \
curl -sL http://opensource.wandisco.com/wandisco-debian-new.gpg | \
apt-key add - &&\
apt-get update && \
DEBIAN_FRONTEND='noninteractive' apt-get install -y \
apache2 \
subversion \
git \
build-essential \
libgmp3-dev \
libldap2-dev \
libsasl2-dev \
python3-pip \
ruby-dev \
zlib1g-dev \
imagemagick \
img2pdf \
nodejs \
procmail \
poppler-utils \
texlive-extra-utils \
gnupg2 \
libcurl4-openssl-dev \
libssl-dev \
apache2-dev \
libapr1-dev \
libaprutil1-dev && \
gem update --system &&\
gem install bundler passenger --install_dir=/var/lib/gems/2.7.0 && \
passenger-install-apache2-module --auto && \
passenger-install-apache2-module --snippet > \
/etc/apache2/conf-enabled/passenger.conf && \
pip3 install img2pdf && \
a2enmod cgi && \
a2enmod headers && \
a2enmod rewrite && \
a2enmod authnz_ldap && \
a2enmod speling && \
a2enmod remoteip && \
a2enmod expires && \
a2enmod proxy_wstunnel &&\
echo "ServerName whimsy.local" > /etc/apache2/conf-enabled/servername.conf
RUN echo 'SetEnv GEM_HOME /srv/gems' > /etc/apache2/conf-enabled/gemhome.conf
# Add new items at the end so previous layers can be re-used
# for editing/viewing files only in the container
RUN DEBIAN_FRONTEND='noninteractive' apt-get install -y vim
# for checking ldap settings etc
RUN DEBIAN_FRONTEND='noninteractive' apt-get install -y ldap-utils
# Install puppeteer
RUN curl -sL https://dl-ssl.google.com/linux/linux_signing_key.pub | apt-key add -
RUN echo "deb [arch=amd64] http://dl.google.com/linux/chrome/deb/ stable main" > /etc/apt/sources.list.d/google.list
RUN apt update && apt install -y google-chrome-stable
RUN npm install -g puppeteer --unsafe-perm=true
# For testing agenda, you may need the following:
# Find the chrome version:
# google-chrome --version
# Install chromedriver:
# e.g. curl -o chromedriver.zip https://chromedriver.storage.googleapis.com/99.0.4844.51/chromedriver_linux64.zip
# unzip it:
# unzip chromedriver.zip
# mv chromedriver /usr/bin/chromedriver
# chown root:root /usr/bin/chromedriver
# chmod +x /usr/bin/chromedriver
# This should be last, as the source is likely to change
# It also takes very little time, so it does not matter if it has to be redone
# N.B. These files need to be allowed in the .dockerignore file
COPY docker-config/whimsy.conf /etc/apache2/sites-enabled/000-default.conf
COPY docker-config/25-authz_ldap_group_membership.conf /etc/apache2/conf-enabled/25-authz_ldap_group_membership.conf
# Define the LDAP hosts; must agree with those used in the above HTTPD files or TLS cert problems may occur
RUN echo "uri ldaps://ldap-us.apache.org ldaps://ldap-eu.apache.org" >>/etc/ldap/ldap.conf
# Allow www-data user to use Git repo owned by root
COPY docker-config/gitconfig-www /var/www/.gitconfig
# disable security check and telemetry
RUN sed -i -e '$i PassengerDisableSecurityUpdateCheck on' /etc/apache2/conf-enabled/passenger.conf
RUN sed -i -e '$i PassengerDisableAnonymousTelemetry on' /etc/apache2/conf-enabled/passenger.conf
# Must use the same user and group as apache
RUN sed -i -e '$i PassengerUser www-data' /etc/apache2/conf-enabled/passenger.conf
RUN sed -i -e '$i PassengerGroup www-data' /etc/apache2/conf-enabled/passenger.conf
WORKDIR /srv/whimsy
EXPOSE 80
CMD ["/usr/local/bin/rake", "docker:entrypoint"]