MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
MISP/docker/misp/Dockerfile

138 lines
4.2 KiB
Docker
Raw Permalink Blame History

ARG DOCKER_HUB_PROXY=""
# Install Composer
FROM "${DOCKER_HUB_PROXY}composer:latest" AS composer
# Base image with necessary extensions and configurations
FROM "${DOCKER_HUB_PROXY}php:8.2-fpm" AS base
ARG MISP_TAG_OR_BRANCH
USER root
# Copy Composer from Composer image
COPY --from=composer /usr/bin/composer /usr/bin/composer
# Install additional PHP extensions and system packages
RUN apt-get -y update \
&& apt-get install -y libicu-dev libpq-dev zip libzip-dev default-mysql-client gnupg supervisor git sendmail sudo \
&& docker-php-ext-configure intl \
&& docker-php-ext-install intl pdo pdo_mysql mysqli zip \
&& apt-get remove -y --purge libicu-dev libzip-dev \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/*
# Install pecl extensions
RUN pecl install -f brotli zstd igbinary redis \
&& docker-php-ext-enable brotli zstd igbinary redis
# Install PEAR packages
RUN pear install Crypt_GPG
# Copy custom php-fpm config file
COPY docker/misp/php/php-fpm.conf /usr/local/etc/php-fpm.conf
# Copy supervisord config file
COPY docker/misp/supervisor/conf.d/supervisor.conf /etc/supervisor/conf.d/supervisor.conf
# Copy MISP workers supervisor config file
COPY docker/misp/supervisor/conf.d/misp-workers.conf /etc/supervisor/conf.d/misp-workers.conf
# Set working directory
WORKDIR /var/www/html
# Set permissions for log file
RUN touch /var/run/php-fpm.pid /var/log/php-fpm.error.log /var/log/php-fpm.slow.log \
&& chown www-data:www-data /var/run/php-fpm.pid /var/log/php-fpm.error.log /var/log/php-fpm.slow.log
# Create logs directory
RUN mkdir /var/www/html/logs \
&& chown -R www-data:www-data /var/www/html/logs
# Create tmp directory
RUN mkdir /var/www/html/tmp \
&& chown -R www-data:www-data /var/www/html/tmp
# Copy entrypoint script and make it executable
COPY docker/misp/entrypoint.sh /usr/local/bin/
COPY docker/misp/healthcheck.sh /usr/local/bin/
RUN chmod +x /usr/local/bin/entrypoint.sh /usr/local/bin/healthcheck.sh
EXPOSE 9000
# Development image with additional packages and dependencies
FROM base AS dev
USER root
# Change user and group id to match host user
ARG UID=1000
ARG GID=1000
RUN groupmod --gid $GID www-data
RUN usermod --uid $UID --gid $GID www-data
# Copy application code
COPY . /var/www/html/
# Install development dependencies
RUN pecl install -f xdebug pcov \
&& docker-php-ext-enable xdebug pcov
# Install additional packages
# RUN apt-get update \
# && apt-get install -y \
# && <package> \
# && apt-get clean \
# && rm -rf /var/lib/apt/lists/*
# Write Xdebug configuration
RUN echo "xdebug.mode=debug" >> /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.start_with_request=debug" >> /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.client_host=host.docker.internal" >> /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.client_port=9003" >> /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini \
&& echo "xdebug.discover_client_host=1" >> /usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini
# Copy dev php.ini file
COPY docker/misp/php/php.dev.ini /usr/local/etc/php/php.ini
RUN chown -R www-data:www-data /var/www/html
# Install dependencies
USER www-data
RUN composer install --no-autoloader
RUN composer dump-autoload --optimize && \
composer run-script post-install-cmd
# Make cake shell executable
RUN chmod +x /var/www/html/bin/cake
USER root
CMD ["php-fpm", "-F"]
# Production image with only necessary packages and dependencies
FROM base AS prod
USER root
# Install additional packages
RUN apt-get update \
&& apt-get install -y \
git \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/*
# Clone MISP repository
RUN git clone --branch ${MISP_TAG_OR_BRANCH} --depth 1 https://github.com/MISP/MISP.git /var/www/html
WORKDIR /var/www/html
RUN git submodule update --init --recursive .
USER www-data
# Copy prod php.ini file
COPY docker/misp/php/php.ini /usr/local/etc/php/php.ini
# Install only production dependencies
RUN composer install --no-dev --optimize-autoloader --no-cache --no-interaction --no-progress --no-suggest --no-scripts
# Make cake shell executable
RUN chmod +x /var/www/html/bin/cake
CMD ["php-fpm", "-F"]
Reference in New Issue View Git Blame Copy Permalink