docker-images/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2025-11-04 04:11:42 +03:00
Code Activity

Merge pull request #2905 from NginxProxyManager/develop

Browse Source 
v2.10.3
This commit is contained in:
jc21
2023-05-10 14:09:04 +10:00
committed by GitHub
parent 86ddd9c83c 0127dc7f03
commit 3d2406ac3d
17 changed files with 101 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.version
View File

@@ -1 +1 @@
2.10.2 2.10.3

2
README.md
View File

@@ -1,7 +1,7 @@
<p align="center"> <p align="center">
<img src="https://nginxproxymanager.com/github.png"> <img src="https://nginxproxymanager.com/github.png">
<br><br> <br><br>
<img src="https://img.shields.io/badge/version-2.10.2-green.svg?style=for-the-badge"> <img src="https://img.shields.io/badge/version-2.10.3-green.svg?style=for-the-badge">
<a href="https://hub.docker.com/repository/docker/jc21/nginx-proxy-manager"> <a href="https://hub.docker.com/repository/docker/jc21/nginx-proxy-manager">
<img src="https://img.shields.io/docker/stars/jc21/nginx-proxy-manager.svg?style=for-the-badge"> <img src="https://img.shields.io/docker/stars/jc21/nginx-proxy-manager.svg?style=for-the-badge">
</a> </a>

6
docker/Dockerfile
View File

@@ -10,9 +10,13 @@ ARG BUILD_VERSION
ARG BUILD_COMMIT ARG BUILD_COMMIT
ARG BUILD_DATE ARG BUILD_DATE
# See: https://github.com/just-containers/s6-overlay/blob/master/README.md
ENV SUPPRESS_NO_CONFIG_WARNING=1 \ ENV SUPPRESS_NO_CONFIG_WARNING=1 \
S6_FIX_ATTRS_HIDDEN=1 \
S6_BEHAVIOUR_IF_STAGE2_FAILS=1 \ S6_BEHAVIOUR_IF_STAGE2_FAILS=1 \
S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0 \
S6_FIX_ATTRS_HIDDEN=1 \
S6_KILL_FINISH_MAXTIME=10000 \
S6_VERBOSITY=1 \
NODE_ENV=production \ NODE_ENV=production \
NPM_BUILD_VERSION="${BUILD_VERSION}" \ NPM_BUILD_VERSION="${BUILD_VERSION}" \
NPM_BUILD_COMMIT="${BUILD_COMMIT}" \ NPM_BUILD_COMMIT="${BUILD_COMMIT}" \

10
docker/dev/Dockerfile
View File

@@ -1,9 +1,13 @@
FROM jc21/nginx-full:certbot-node FROM jc21/nginx-full:certbot-node
LABEL maintainer="Jamie Curnow <jc@jc21.com>" LABEL maintainer="Jamie Curnow <jc@jc21.com>"
ENV S6_LOGGING=0 \ # See: https://github.com/just-containers/s6-overlay/blob/master/README.md
SUPPRESS_NO_CONFIG_WARNING=1 \ ENV SUPPRESS_NO_CONFIG_WARNING=1 \
S6_FIX_ATTRS_HIDDEN=1 S6_BEHAVIOUR_IF_STAGE2_FAILS=1 \
S6_CMD_WAIT_FOR_SERVICES_MAXTIME=0 \
S6_FIX_ATTRS_HIDDEN=1 \
S6_KILL_FINISH_MAXTIME=10000 \
S6_VERBOSITY=2
RUN echo "fs.file-max = 65535" > /etc/sysctl.conf \ RUN echo "fs.file-max = 65535" > /etc/sysctl.conf \
&& apt-get update \ && apt-get update \

1
docker/docker-compose.ci.yml
View File

@@ -35,6 +35,7 @@ services:
DB_SQLITE_FILE: '/data/mydb.sqlite' DB_SQLITE_FILE: '/data/mydb.sqlite'
PUID: 1000 PUID: 1000
PGID: 1000 PGID: 1000
DISABLE_IPV6: 'true'
volumes: volumes:
- npm_data:/data - npm_data:/data
expose: expose:

12
docker/rootfs/bin/common.sh
View File

@@ -12,6 +12,11 @@ export CYAN BLUE YELLOW RED RESET
PUID=${PUID:-0} PUID=${PUID:-0}
PGID=${PGID:-0} PGID=${PGID:-0}
NPMUSER=npm
NPMGROUP=npm
NPMHOME=/tmp/npmuserhome
export NPMUSER NPMGROUP NPMHOME
if [[ "$PUID" -ne '0' ]] && [ "$PGID" = '0' ]; then if [[ "$PUID" -ne '0' ]] && [ "$PGID" = '0' ]; then
# set group id to same as user id, # set group id to same as user id,
# the user probably forgot to specify the group id and # the user probably forgot to specify the group id and
@@ -40,3 +45,10 @@ log_fatal () {
/run/s6/basedir/bin/halt /run/s6/basedir/bin/halt
exit 1 exit 1
} }
# param $1: group_name
get_group_id () {
if [ "${1:-}" != '' ]; then
getent group "$1" | cut -d: -f3
fi
}

2
docker/rootfs/etc/nginx/nginx.conf
View File

@@ -1,7 +1,7 @@
# run nginx in foreground # run nginx in foreground
daemon off; daemon off;
pid /run/nginx/nginx.pid; pid /run/nginx/nginx.pid;
user npmuser; user npm;
# Set number of worker processes automatically based on number of CPU cores. # Set number of worker processes automatically based on number of CPU cores.
worker_processes auto; worker_processes auto;

6
docker/rootfs/etc/s6-overlay/s6-rc.d/backend/run
View File

@@ -10,12 +10,12 @@ cd /app || exit 1
log_info 'Starting backend ...' log_info 'Starting backend ...'
if [ "${DEVELOPMENT:-}" = 'true' ]; then if [ "${DEVELOPMENT:-}" = 'true' ]; then
s6-setuidgid npmuser yarn install s6-setuidgid "$PUID:$PGID" yarn install
exec s6-setuidgid npmuser bash -c 'export HOME=/tmp/npmuserhome;node --max_old_space_size=250 --abort_on_uncaught_exception node_modules/nodemon/bin/nodemon.js' exec s6-setuidgid "$PUID:$PGID" bash -c "export HOME=$NPMHOME;node --max_old_space_size=250 --abort_on_uncaught_exception node_modules/nodemon/bin/nodemon.js"
else else
while : while :
do do
s6-setuidgid npmuser bash -c 'export HOME=/tmp/npmuserhome;node --abort_on_uncaught_exception --max_old_space_size=250 index.js' s6-setuidgid "$PUID:$PGID" bash -c "export HOME=$NPMHOME;node --abort_on_uncaught_exception --max_old_space_size=250 index.js"
sleep 1 sleep 1
done done
fi fi

6
docker/rootfs/etc/s6-overlay/s6-rc.d/frontend/run
View File

@@ -8,14 +8,14 @@ set -e
if [ "$DEVELOPMENT" = 'true' ]; then if [ "$DEVELOPMENT" = 'true' ]; then
. /bin/common.sh . /bin/common.sh
cd /app/frontend || exit 1 cd /app/frontend || exit 1
HOME=/tmp/npmuserhome HOME=$NPMHOME
export HOME export HOME
mkdir -p /app/frontend/dist mkdir -p /app/frontend/dist
chown -R "$PUID:$PGID" /app/frontend/dist chown -R "$PUID:$PGID" /app/frontend/dist
log_info 'Starting frontend ...' log_info 'Starting frontend ...'
s6-setuidgid npmuser yarn install s6-setuidgid "$PUID:$PGID" yarn install
exec s6-setuidgid npmuser yarn watch exec s6-setuidgid "$PUID:$PGID" yarn watch
else else
exit 0 exit 0
fi fi

2
docker/rootfs/etc/s6-overlay/s6-rc.d/nginx/run
View File

@@ -6,4 +6,4 @@ set -e
. /bin/common.sh . /bin/common.sh
log_info 'Starting nginx ...' log_info 'Starting nginx ...'
exec s6-setuidgid npmuser nginx exec s6-setuidgid "$PUID:$PGID" nginx

6
docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/00-all.sh
View File

@@ -9,7 +9,11 @@ if [ "$(id -u)" != "0" ]; then
log_fatal "This docker container must be run as root, do not specify a user.\nYou can specify PUID and PGID env vars to run processes as that user and group after initialization." log_fatal "This docker container must be run as root, do not specify a user.\nYou can specify PUID and PGID env vars to run processes as that user and group after initialization."
fi fi
. /etc/s6-overlay/s6-rc.d/prepare/10-npmuser.sh if [ "$DEBUG" = "true" ]; then
set -x
fi
. /etc/s6-overlay/s6-rc.d/prepare/10-usergroup.sh
. /etc/s6-overlay/s6-rc.d/prepare/20-paths.sh . /etc/s6-overlay/s6-rc.d/prepare/20-paths.sh
. /etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh . /etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh
. /etc/s6-overlay/s6-rc.d/prepare/40-dynamic.sh . /etc/s6-overlay/s6-rc.d/prepare/40-dynamic.sh

20
docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/10-npmuser.sh
View File

@@ -1,20 +0,0 @@
#!/command/with-contenv bash
# shellcheck shell=bash
set -e
log_info 'Configuring npmuser ...'
if id -u npmuser; then
# user already exists
usermod -u "$PUID" npmuser || exit 1
else
# Add npmuser user
useradd -o -u "$PUID" -U -d /tmp/npmuserhome -s /bin/false npmuser || exit 1
fi
usermod -G "$PGID" npmuser || exit 1
groupmod -o -g "$PGID" npmuser || exit 1
# Home for npmuser
mkdir -p /tmp/npmuserhome
chown -R "$PUID:$PGID" /tmp/npmuserhome

40
docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/10-usergroup.sh Executable file
View File

@@ -0,0 +1,40 @@
#!/command/with-contenv bash
# shellcheck shell=bash
set -e
log_info "Configuring $NPMUSER user ..."
if id -u "$NPMUSER" 2>/dev/null; then
# user already exists
usermod -u "$PUID" "$NPMUSER"
else
# Add user
useradd -o -u "$PUID" -U -d "$NPMHOME" -s /bin/false "$NPMUSER"
fi
log_info "Configuring $NPMGROUP group ..."
if [ "$(get_group_id "$NPMGROUP")" = '' ]; then
# Add group. This will not set the id properly if it's already taken
groupadd -f -g "$PGID" "$NPMGROUP"
else
groupmod -o -g "$PGID" "$NPMGROUP"
fi
# Set the group ID and check it
groupmod -o -g "$PGID" "$NPMGROUP"
if [ "$(get_group_id "$NPMGROUP")" != "$PGID" ]; then
echo "ERROR: Unable to set group id properly"
exit 1
fi
# Set the group against the user and check it
usermod -G "$PGID" "$NPMGROUP"
if [ "$(id -g "$NPMUSER")" != "$PGID" ] ; then
echo "ERROR: Unable to set group against the user properly"
exit 1
fi
# Home for user
mkdir -p "$NPMHOME"
chown -R "$PUID:$PGID" "$NPMHOME"

24
docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/30-ownership.sh
View File

@@ -8,17 +8,17 @@ log_info 'Setting ownership ...'
# root # root
chown root /tmp/nginx chown root /tmp/nginx
# npmuser # npm user and group
chown -R "$PUID:$PGID" /data \ chown -R "$PUID:$PGID" /data
/etc/letsencrypt \ chown -R "$PUID:$PGID" /etc/letsencrypt
/run/nginx \ chown -R "$PUID:$PGID" /run/nginx
/tmp/nginx \ chown -R "$PUID:$PGID" /tmp/nginx
/var/cache/nginx \ chown -R "$PUID:$PGID" /var/cache/nginx
/var/lib/logrotate \ chown -R "$PUID:$PGID" /var/lib/logrotate
/var/lib/nginx \ chown -R "$PUID:$PGID" /var/lib/nginx
/var/log/nginx chown -R "$PUID:$PGID" /var/log/nginx
# Don't chown entire /etc/nginx folder as this causes crashes on some systems # Don't chown entire /etc/nginx folder as this causes crashes on some systems
chown -R "$PUID:$PGID" /etc/nginx/nginx \ chown -R "$PUID:$PGID" /etc/nginx/nginx
/etc/nginx/nginx.conf \ chown -R "$PUID:$PGID" /etc/nginx/nginx.conf
/etc/nginx/conf.d chown -R "$PUID:$PGID" /etc/nginx/conf.d

7
docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/50-ipv6.sh
View File

@@ -1,8 +1,11 @@
#!/bin/bash #!/command/with-contenv bash
# shellcheck shell=bash
# This command reads the `DISABLE_IPV6` env var and will either enable # This command reads the `DISABLE_IPV6` env var and will either enable
# or disable ipv6 in all nginx configs based on this setting. # or disable ipv6 in all nginx configs based on this setting.
set -e
log_info 'IPv6 ...' log_info 'IPv6 ...'
# Lowercase # Lowercase
@@ -28,7 +31,7 @@ process_folder () {
sed -E -i "$SED_REGEX" "$FILE" sed -E -i "$SED_REGEX" "$FILE"
done done
# ensure the files are still owned by the npmuser # ensure the files are still owned by the npm user
chown -R "$PUID:$PGID" "$1" chown -R "$PUID:$PGID" "$1"
} }

5
docker/rootfs/etc/s6-overlay/s6-rc.d/prepare/90-banner.sh
View File

@@ -2,6 +2,7 @@
# shellcheck shell=bash # shellcheck shell=bash
set -e set -e
set +x
echo " echo "
------------------------------------- -------------------------------------
@@ -11,7 +12,7 @@ echo "
| |\ | __/| | | | | |\ | __/| | | |
|_| \_|_| |_| |_| |_| \_|_| |_| |_|
------------------------------------- -------------------------------------
User ID: $PUID User: $NPMUSER PUID:$PUID ID:$(id -u "$NPMUSER") GROUP:$(id -g "$NPMUSER")
Group ID: $PGID Group: $NPMGROUP PGID:$PGID ID:$(get_group_id "$NPMGROUP")
------------------------------------- -------------------------------------
" "

2
docker/scripts/install-s6
View File

@@ -8,7 +8,7 @@ BLUE='\E[1;34m'
GREEN='\E[1;32m' GREEN='\E[1;32m'
RESET='\E[0m' RESET='\E[0m'
S6_OVERLAY_VERSION=3.1.4.1 S6_OVERLAY_VERSION=3.1.5.0
TARGETPLATFORM=${1:unspecified} TARGETPLATFORM=${1:unspecified}
# Determine the correct binary file for the architecture given # Determine the correct binary file for the architecture given