mirror of
https://github.com/hoellen/docker-nextcloud.git
synced 2025-07-01 07:36:08 +00:00
Compare commits
16 Commits
version-23
...
version-22
| Author | SHA1 | Date | |
|---|---|---|---|
| 3715ca5861 | |||
| f44824f946 | |||
| 7e7c77ea75 | |||
| 5c9c873713 | |||
| eeac6d79d9 | |||
| c0229eabd6 | |||
| 7240120ac3 | |||
| 1a61a40cad | |||
| 90381a94d0 | |||
| 0b0a1da864 | |||
| 2bfc5e0eec | |||
| d2861829ac | |||
| e72b5f41c7 | |||
| a5d934b8a9 | |||
| 8c9f6b6cb7 | |||
| 9867cd0938 |
3
.github/workflows/build.yml
vendored
3
.github/workflows/build.yml
vendored
@ -3,7 +3,7 @@ name: build
|
||||
on:
|
||||
workflow_dispatch:
|
||||
push:
|
||||
branches: [ version-23 ]
|
||||
branches: [ version-22 ]
|
||||
schedule:
|
||||
# Build the image regularly (each Friday)
|
||||
- cron: '23 04 * * 5'
|
||||
@ -47,4 +47,3 @@ jobs:
|
||||
run: |
|
||||
docker push ghcr.io/${{ github.actor }}/nextcloud:$(grep -oP '(?<=NEXTCLOUD_VERSION=).*' Dockerfile | head -c6)
|
||||
docker push ghcr.io/${{ github.actor }}/nextcloud:$(grep -oP '(?<=NEXTCLOUD_VERSION=).*' Dockerfile | head -c2)
|
||||
|
||||
|
||||
2
.github/workflows/scan.yml
vendored
2
.github/workflows/scan.yml
vendored
@ -16,7 +16,7 @@ jobs:
|
||||
- name: Run Trivy vulnerability scanner
|
||||
uses: aquasecurity/trivy-action@master
|
||||
with:
|
||||
image-ref: 'ghcr.io/${{ github.actor }}/nextcloud'
|
||||
image-ref: 'ghcr.io/hoellen/nextcloud'
|
||||
format: 'template'
|
||||
template: '@/contrib/sarif.tpl'
|
||||
output: 'trivy-results.sarif'
|
||||
|
||||
11
Dockerfile
11
Dockerfile
@ -1,10 +1,10 @@
|
||||
# -------------- Build-time variables --------------
|
||||
ARG NEXTCLOUD_VERSION=23.0.12
|
||||
ARG NEXTCLOUD_VERSION=22.2.10
|
||||
ARG PHP_VERSION=8.0
|
||||
ARG NGINX_VERSION=1.20
|
||||
|
||||
ARG ALPINE_VERSION=3.15
|
||||
ARG HARDENED_MALLOC_VERSION=11
|
||||
ARG HARDENED_MALLOC_VERSION=8
|
||||
|
||||
ARG UID=1000
|
||||
ARG GID=1000
|
||||
@ -77,13 +77,12 @@ FROM alpine:${ALPINE_VERSION} as build-malloc
|
||||
|
||||
ARG HARDENED_MALLOC_VERSION
|
||||
ARG CONFIG_NATIVE=false
|
||||
ARG VARIANT=light
|
||||
|
||||
RUN apk --no-cache add build-base git gnupg && cd /tmp \
|
||||
&& wget -q https://github.com/thestinger.gpg && gpg --import thestinger.gpg \
|
||||
&& git clone --depth 1 --branch ${HARDENED_MALLOC_VERSION} https://github.com/GrapheneOS/hardened_malloc \
|
||||
&& cd hardened_malloc && git verify-tag $(git describe --tags) \
|
||||
&& make CONFIG_NATIVE=${CONFIG_NATIVE} VARIANT=${VARIANT}
|
||||
&& make CONFIG_NATIVE=${CONFIG_NATIVE}
|
||||
|
||||
|
||||
### Fetch nginx
|
||||
@ -95,7 +94,7 @@ FROM base as nextcloud
|
||||
|
||||
COPY --from=nginx /usr/sbin/nginx /usr/sbin/nginx
|
||||
COPY --from=nginx /etc/nginx /etc/nginx
|
||||
COPY --from=build-malloc /tmp/hardened_malloc/out-light/libhardened_malloc-light.so /usr/local/lib/
|
||||
COPY --from=build-malloc /tmp/hardened_malloc/libhardened_malloc.so /usr/local/lib/
|
||||
|
||||
ARG NEXTCLOUD_VERSION
|
||||
ARG GPG_nextcloud="2880 6A87 8AE4 23A2 8372 792E D758 99B9 A724 937A"
|
||||
@ -111,7 +110,7 @@ ENV UPLOAD_MAX_SIZE=10G \
|
||||
CRON_MEMORY_LIMIT=1g \
|
||||
DB_TYPE=sqlite3 \
|
||||
DOMAIN=localhost \
|
||||
LD_PRELOAD="/usr/local/lib/libhardened_malloc-light.so /usr/lib/preloadable_libiconv.so"
|
||||
LD_PRELOAD="/usr/local/lib/libhardened_malloc.so /usr/lib/preloadable_libiconv.so"
|
||||
|
||||
RUN apk --no-cache add \
|
||||
gnupg \
|
||||
|
||||
@ -55,12 +55,6 @@ cat >> /nextcloud/config/autoconfig.php <<EOF;
|
||||
?>
|
||||
EOF
|
||||
|
||||
until nc -z "${DB_HOST:-nextcloud-db}" "${DB_PORT:-3306}"
|
||||
do
|
||||
echo "waiting for the database container..."
|
||||
sleep 1
|
||||
done
|
||||
|
||||
echo "Starting automatic configuration..."
|
||||
# Execute setup
|
||||
(cd /nextcloud; php index.php &>/dev/null)
|
||||
|
||||
Reference in New Issue
Block a user