new baseimage

Author: BertrandGouny

README.md

@@ -48,9 +48,9 @@ By default HTTPS is enable, a certificate is created with the container hostname
 
 Add your custom certificate, private key and CA certificate in the directory **image/service/phpldapadmin/assets/apache2/ssl** adjust filename in **image/env.yaml** and rebuild the image ([see manual build](#manual-build)).
 
-Or you can set your custom certificate at run time, by mouting your a directory containing thoses files to **/osixia/service/phpldapadmin/assets/apache2/ssl** and adjust there name with the following environment variables :
+Or you can set your custom certificate at run time, by mouting your a directory containing thoses files to **/container/service/phpldapadmin/assets/apache2/ssl** and adjust there name with the following environment variables :
 
-	docker run -v /path/to/certifates:/osixia/service/phpldapadmin/assets/apache2/ssl \
+	docker run -v /path/to/certifates:/container/service/phpldapadmin/assets/apache2/ssl \
 	-e SSL_CRT_FILENAME=my-phpldapadmin.crt \
 	-e SSL_KEY_FILENAME=my-phpldapadmin.key \
 	-e SSL_CA_CRT_FILENAME=the-ca.crt \
@@ -92,7 +92,7 @@ Environement variables defaults are set in **image/env.yaml**. You can modify en
 		$servers->setValue('server','host','ldap3.example.org');
 
 	If you want to set this variable at docker run command convert the yaml in python :
-	
+
 		docker run -e LDAP_HOSTS="[{'ldap.example.org': [{'server': [{'tls': True}]},{'login': [{'bind_id': 'cn=admin,dc=example,dc=org'}]}]}, 'ldap2.example.org', 'ldap3.example.org']" -d osixia/phpldapadmin
 
 	To convert yaml to python online :
@@ -111,9 +111,9 @@ Ldap client TLS/LDAPS options :
 
 - **USE_LDAP_CLIENT_SSL**: Enable ldap client tls config, ldap serveur certificate check and set client  certificate. Defaults to `true`
 - **LDAP_REQCERT**: Set ldap.conf TLS_REQCERT. Defaults to `demand`
-- **LDAP_CA_CRT_FILENAME**: Set ldap.conf TLS_CACERT to /osixia/service/phpldapadmin/ssl/$LDAP_CA_CRT_FILENAME. Defaults to `ldap-ca.crt`
-- **LDAP_CRT_FILENAME**: Set .ldaprc TLS_CERT to /osixia/service/phpldapadmin/ssl/$LDAP_CRT_FILENAME. Defaults to `ldap-client.crt`
-- **LDAP_KEY_FILENAME**: Set .ldaprc TLS_KEY to /osixia/service/phpldapadmin/ssl/$LDAP_KEY_FILENAME. Defaults to `ldap-client.key`
+- **LDAP_CA_CRT_FILENAME**: Set ldap.conf TLS_CACERT to /container/service/phpldapadmin/ssl/$LDAP_CA_CRT_FILENAME. Defaults to `ldap-ca.crt`
+- **LDAP_CRT_FILENAME**: Set .ldaprc TLS_CERT to /container/service/phpldapadmin/ssl/$LDAP_CRT_FILENAME. Defaults to `ldap-client.crt`
+- **LDAP_KEY_FILENAME**: Set .ldaprc TLS_KEY to /container/service/phpldapadmin/ssl/$LDAP_KEY_FILENAME. Defaults to `ldap-client.key`
 
 	More information at : http://www.openldap.org/doc/admin24/tls.html (16.2.2. Client Configuration)
 

image/Dockerfile

@@ -1,38 +1,42 @@
-FROM osixia/light-baseimage:0.1.0
+FROM osixia/web-baseimage:0.1.0
 MAINTAINER Bertrand Gouny <bertrand.gouny@osixia.net>
 
 # phpLDAPadmin version
 ENV PHPLDAPADMIN_VERSION 1.2.3
 ENV PHPLDAPADMIN_SHA1 669fca66c75e24137e106fdd02e3832f81146e23
 
-# Use baseimage-docker's init system.
-CMD ["/osixia/tool/run"]
+# Use baseimage's init system.
+# https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/run
+CMD ["/container/tool/run"]
 
 # Install apache2 and php5-fpm using osixia/baseimage utils
 # Caution: /sbin/add-service-available arguments order is important
 # php5-fpm install will detect apache2 and configure it
 
 # Download, check integrity and unzip phpLDAPadmin to /var/www/phpldapadmin_bootstrap
-RUN apt-get update && /sbin/add-multiple-process-stack \
-	&& /sbin/add-service-available apache2 php5-fpm ssl-helper-openssl ssl-helper-gnutls \
-	&& LC_ALL=C DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends \
-	patch \
-	php5-ldap \
-	php5-readline \
-	curl \
-	&& curl -o phpldapadmin.tgz -SL http://downloads.sourceforge.net/project/phpldapadmin/phpldapadmin-php5/${PHPLDAPADMIN_VERSION}/phpldapadmin-${PHPLDAPADMIN_VERSION}.tgz \
-	&& echo "$PHPLDAPADMIN_SHA1 *phpldapadmin.tgz" | sha1sum -c - \
-	&& mkdir -p /var/www/phpldapadmin_bootstrap /var/www/phpldapadmin \
-	&& tar -xzf phpldapadmin.tgz --strip 1 -C /var/www/phpldapadmin_bootstrap \
-	&& apt-get remove -y --purge --auto-remove curl
-
-# Add service directory to /osixia/service
-ADD service /osixia/service
+RUN apt-get update \
+		&& /container/tool/install-multiple-process-stack \
+		&& /container/tool/install-service-available apache2 php5-fpm ssl-helper-openssl ssl-helper-gnutls \
+		&& LC_ALL=C DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends \
+			 patch \
+			 php5-ldap \
+			 php5-readline \
+			 curl \
+		&& curl -o phpldapadmin.tgz -SL http://downloads.sourceforge.net/project/phpldapadmin/phpldapadmin-php5/${PHPLDAPADMIN_VERSION}/phpldapadmin-${PHPLDAPADMIN_VERSION}.tgz \
+		&& echo "$PHPLDAPADMIN_SHA1 *phpldapadmin.tgz" | sha1sum -c - \
+		&& mkdir -p /var/www/phpldapadmin_bootstrap /var/www/phpldapadmin \
+		&& tar -xzf phpldapadmin.tgz --strip 1 -C /var/www/phpldapadmin_bootstrap \
+		&& apt-get remove -y --purge --auto-remove curl
+
+# Add service directory to /container/service
+ADD service /container/service
 
 # Use baseimage install-service script and clean all
-RUN ./sbin/install-service \
-	&& rm phpldapadmin.tgz \
-	&& apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
+# https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/install-service
+RUN /container/tool/install-service \
+		&& rm phpldapadmin.tgz \
+		&& apt-get clean \
+    && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
 
 # Add default env variables
 ADD env.yaml /etc/env.yaml

image/env.yaml

@@ -15,7 +15,7 @@ SERVER_ADMIN: webmaster@example.org
 
 # To use your custom certificat and key 2 options :
 # - add them in service/phpldapadmin/assets/apache2/ssl and build the image
-# - or during docker run mount a data volume with thoses files to /osixia/service/phpldapadmin/assets/apache2/ssl
+# - or during docker run mount a data volume with thoses files to /container/service/phpldapadmin/assets/apache2/ssl
 HTTPS: true
 SSL_CRT_FILENAME: phpldapadmin.crt
 SSL_KEY_FILENAME: phpldapadmin.key

image/service/phpldapadmin/assets/apache2/phpldapadmin-ssl.conf

@@ -17,9 +17,9 @@
 
 		Include /etc/apache2/conf-available/vhost-partial-ssl.conf
 
-		SSLCertificateFile    /osixia/service/phpldapadmin/assets/apache2/ssl/${SSL_CRT_FILENAME}
-		SSLCertificateKeyFile /osixia/service/phpldapadmin/assets/apache2/ssl/${SSL_KEY_FILENAME}
-		#SSLCACertificateFile /osixia/service/phpldapadmin/assets/apache2/ssl/${SSL_CA_CRT_FILENAME}
+		SSLCertificateFile    /container/service/phpldapadmin/assets/apache2/ssl/${SSL_CRT_FILENAME}
+		SSLCertificateKeyFile /container/service/phpldapadmin/assets/apache2/ssl/${SSL_KEY_FILENAME}
+		#SSLCACertificateFile /container/service/phpldapadmin/assets/apache2/ssl/${SSL_CA_CRT_FILENAME}
 
 		<Directory /var/www/phpldapadmin/htdocs >
 			Require all granted

image/service/phpldapadmin/assets/apache2/ssl/README.md

@@ -1,2 +1,2 @@
 Add your https ssl crt, key and ca crt here
-or during docker run mount a data volume with thoses files to /osixia/service/phpldapadmin/assets/apache2/ssl
+or during docker run mount a data volume with thoses files to /container/service/phpldapadmin/assets/apache2/ssl

image/service/phpldapadmin/assets/ssl/README.md

@@ -1,2 +1,2 @@
 Add your ldap ssl crt, key and ca crt here
-or during docker run mount a data volume with thoses files to /osixia/service/phpldapadmin/assets/ssl
+or during docker run mount a data volume with thoses files to /container/service/phpldapadmin/assets/ssl

image/service/phpldapadmin/container-start.sh

@@ -9,11 +9,11 @@ if [ ! -e "$FIRST_START_DONE" ]; then
   if [ "${HTTPS,,}" == "true" ]; then
 
     # check certificat and key or create it
-    /sbin/ssl-helper "/osixia/service/phpldapadmin/assets/apache2/ssl/$SSL_CRT_FILENAME" "/osixia/service/phpldapadmin/assets/apache2/ssl/$SSL_KEY_FILENAME" --ca-crt=/osixia/service/phpldapadmin/assets/apache2/ssl/$SSL_CA_CRT_FILENAME
+    /sbin/ssl-helper "/container/service/phpldapadmin/assets/apache2/ssl/$SSL_CRT_FILENAME" "/container/service/phpldapadmin/assets/apache2/ssl/$SSL_KEY_FILENAME" --ca-crt=/container/service/phpldapadmin/assets/apache2/ssl/$SSL_CA_CRT_FILENAME
 
     # add CA certificat config if CA cert exists
-    if [ -e "/osixia/service/phpldapadmin/assets/apache2/ssl/$SSL_CA_CRT_FILENAME" ]; then
-      sed -i "s/#SSLCACertificateFile/SSLCACertificateFile/g" /osixia/service/phpldapadmin/assets/apache2/phpldapadmin-ssl.conf
+    if [ -e "/container/service/phpldapadmin/assets/apache2/ssl/$SSL_CA_CRT_FILENAME" ]; then
+      sed -i "s/#SSLCACertificateFile/SSLCACertificateFile/g" /container/service/phpldapadmin/assets/apache2/phpldapadmin-ssl.conf
     fi
 
     a2ensite phpldapadmin-ssl
@@ -122,20 +122,20 @@ if [ ! -e "$FIRST_START_DONE" ]; then
     if [ "${USE_LDAP_CLIENT_SSL,,}" == "true" ]; then
 
       # check certificat and key or create it
-      /sbin/ssl-helper "/osixia/service/phpldapadmin/assets/ssl/${LDAP_CRT_FILENAME}" "/osixia/service/phpldapadmin/assets/ssl/${LDAP_KEY_FILENAME}" --ca-crt=/osixia/service/phpldapadmin/assets/ssl/${LDAP_CA_CRT_FILENAME} --gnutls
+      /sbin/ssl-helper "/container/service/phpldapadmin/assets/ssl/${LDAP_CRT_FILENAME}" "/container/service/phpldapadmin/assets/ssl/${LDAP_KEY_FILENAME}" --ca-crt=/container/service/phpldapadmin/assets/ssl/${LDAP_CA_CRT_FILENAME} --gnutls
 
       # ldap client config
-      sed -i "s,TLS_CACERT.*,TLS_CACERT /osixia/service/phpldapadmin/assets/ssl/${LDAP_CA_CRT_FILENAME},g" /etc/ldap/ldap.conf
+      sed -i "s,TLS_CACERT.*,TLS_CACERT /container/service/phpldapadmin/assets/ssl/${LDAP_CA_CRT_FILENAME},g" /etc/ldap/ldap.conf
       echo "TLS_REQCERT $LDAP_REQCERT" >> /etc/ldap/ldap.conf
 
       www_data_homedir=$( getent passwd "www-data" | cut -d: -f6 )
 
       [[ -f "$www_data_homedir/.ldaprc" ]] && rm -f $www_data_homedir/.ldaprc
       touch $www_data_homedir/.ldaprc
-      echo "TLS_CERT /osixia/service/phpldapadmin/assets/ssl/${LDAP_CRT_FILENAME}" >> $www_data_homedir/.ldaprc
-      echo "TLS_KEY /osixia/service/phpldapadmin/assets/ssl/${LDAP_KEY_FILENAME}" >> $www_data_homedir/.ldaprc
+      echo "TLS_CERT /container/service/phpldapadmin/assets/ssl/${LDAP_CRT_FILENAME}" >> $www_data_homedir/.ldaprc
+      echo "TLS_KEY /container/service/phpldapadmin/assets/ssl/${LDAP_KEY_FILENAME}" >> $www_data_homedir/.ldaprc
 
-      chown www-data:www-data -R /osixia/service/phpldapadmin/assets/ssl/
+      chown www-data:www-data -R /container/service/phpldapadmin/assets/ssl/
     fi
 
   fi

image/service/phpldapadmin/install.sh

@@ -2,14 +2,14 @@
 # this script is run during the image build
 
 # Add phpLDAPadmin virtualhosts
-ln -s /osixia/service/phpldapadmin/assets/apache2/phpldapadmin.conf /etc/apache2/sites-available/phpldapadmin.conf
-ln -s /osixia/service/phpldapadmin/assets/apache2/phpldapadmin-ssl.conf /etc/apache2/sites-available/phpldapadmin-ssl.conf
+ln -s /container/service/phpldapadmin/assets/apache2/phpldapadmin.conf /etc/apache2/sites-available/phpldapadmin.conf
+ln -s /container/service/phpldapadmin/assets/apache2/phpldapadmin-ssl.conf /etc/apache2/sites-available/phpldapadmin-ssl.conf
 
-cp /osixia/service/phpldapadmin/assets/config.php /var/www/phpldapadmin_bootstrap/config/config.php
-rm /osixia/service/phpldapadmin/assets/config.php
+cp /container/service/phpldapadmin/assets/config.php /var/www/phpldapadmin_bootstrap/config/config.php
+rm /container/service/phpldapadmin/assets/config.php
 
-cat /osixia/service/phpldapadmin/assets/php5-fpm/pool.conf >> /etc/php5/fpm/pool.d/www.conf
-rm /osixia/service/phpldapadmin/assets/php5-fpm/pool.conf
+cat /container/service/phpldapadmin/assets/php5-fpm/pool.conf >> /etc/php5/fpm/pool.d/www.conf
+rm /container/service/phpldapadmin/assets/php5-fpm/pool.conf
 
 mkdir -p /var/www/tmp
 chown www-data:www-data /var/www/tmp
@@ -22,7 +22,7 @@ rm -rf /var/www/html
 rm -rf /var/www/phpldapadmin_bootstrap/doc
 
 # apply php5.5 patch
-patch -p1 -d /var/www/phpldapadmin_bootstrap < /osixia/service/phpldapadmin/assets/php5.5.patch
+patch -p1 -d /var/www/phpldapadmin_bootstrap < /container/service/phpldapadmin/assets/php5.5.patch
 sed -i "s/password_hash/password_hash_custom/g" /var/www/phpldapadmin_bootstrap/lib/TemplateRender.php
 
 # fix php5-fpm $_SERVER['SCRIPT_NAME'] bad value with cgi.fix_pathinfo=0