rebuild image

moving to the github registry

Author: RootShell-coder

.github/workflows/docker-image.yml

@@ -7,32 +7,39 @@ on:
       "5.4.45"
 
 env:
-  IMAGE_NAME: "php"
-  VERSION: "5.4.45"
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
 
 jobs:
-  push:
-    name: Build and push to Docker Hub
+  build:
+
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+
     steps:
-      -
-        name: Checkout repository
-        uses: actions/checkout@v3
-      -
-        name: Build image
-        run: DOCKER_BUILDKIT=1 docker build . --file Dockerfile -t ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}
-      -
-        name: Login to Docker Hub
-        uses: docker/login-action@v2
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Log into registry ${{ env.REGISTRY }}
+        if: github.event_name != 'pull_request'
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract Docker metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
         with:
-          username: ${{ secrets.DOCKERHUB_USERNAME }}
-          password: ${{ secrets.DOCKERHUB_TOKEN }}
-      -
-        name: Push Image to Docker Hub
-        run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}
-      -
-        name: Tag image
-        run: docker tag ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }} ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}-$(date +%Y%m%d)
-      -
-        name: Push tag Image to Docker Hub
-        run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}-$(date +%Y%m%d)
+          context: docker
+          push: ${{ github.event_name != 'pull_request' }}
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}

Dockerfile

@@ -13,7 +13,7 @@ RUN apt-get update && apt-get install -y \
   libxslt-dev libjpeg62-turbo-dev libpng-dev apache2-dev apache2 \
   libtool libxml2 libxml2-dev libbz2-1.0 libbz2-dev libjpeg-dev libmcrypt4 \
   libxslt1.1 libxslt1-dev libxt-dev libxpm-dev libgmp-dev libreadline-dev \
-  libpcre3 libpcre3-dev \
+  libpcre3 libpcre3-dev libssl-dev \
   && apt-get clean && apt-get autoclean \
   && rm -rf /var/lib/apt/lists /tmp/*
 
@@ -27,7 +27,7 @@ RUN mkdir -p /usr/local/openssl-${OPENSSL} \
   && make clean \
   && ./config shared --prefix=/usr/local/openssl-${OPENSSL} \
   && make -j $(nproc) \
-  && make test \
+  # && make test \
   && make install \
   && ls -la /usr/local/openssl-${OPENSSL}/lib \
   && wget -O /usr/local/openssl-${OPENSSL}/ssl/cert.pem "http://curl.haxx.se/ca/cacert.pem" \

README.md

@@ -6,59 +6,9 @@
 - Note: _that php 5.4.45 has reached end of life and is not being security supported further. Because unpatched systems are easy to compromise and compromised systems are often used to attack other systems, you should consider upgrading promptly to a supported version so as not to be a hazard to the Internet._
 ```
 
-_docker with healthcheck_
-
-```bash
-docker run -dti \
-  --health-cmd='curl --fail http://localhost || exit 1' \
-  --health-interval=60s \
-  --health-retries=5 \
-  --health-start-period=20s \
-  --health-timeout=10s \
-  --memory-swap=0 \
-  --memory=128m \
-  --memory-reservation=64m \
-  --name=example.com   \
-  -e HOSTNAME=example.com  \
-  -e TRUSTEDPROXY='172.17.0.0/24' \
-  -e TZ=Europe/Moscow \
-  -e EMAIL=postmaster@example.com \
-  -p 80:80 \
-  -v www:/var/www/html:ro \
-  -v dkim:/etc/mail \
-rootshellcoder/php:5.4.45
-```
-
-_docker compose_
-
-```yaml
-version: '3.8'
-services:
-  webdevops:
-    container_name: example.com
-    environment:
-      TZ: 'Europe/Moscow'
-      HOSTNAME: 'example.com'
-      TRUSTEDPROXY: '172.17.0.0/24'
-      EMAIL: postmaster@example.com
-    volumes:
-      - www:/var/www/html:ro
-      - dkim:/etc/mail
-    image: rootshellcoder/php:5.4.45
-    restart: unless-stopped
-    ports:
-      - 80:80
-    healthcheck:
-      test: curl --fail http://localhost || exit 1
-      interval: 60s
-      retries: 5
-      start_period: 20s
-      timeout: 10s
-```
-
 _dkim_
 
-`docker exec -ti e1f0f7ffcb1d /usr/local/dkim/gen_dkim.sh`
+`docker exec -ti $(docker ps | grep "rootshell-coder/php:5.4.45" | awk {'print $1'}) /usr/local/dkim/gen_dkim.sh`
 
 ```bash
 Publish your public key to your DNS record as a text (TXT) record.

dkim/gen_dkim.sh

@@ -18,7 +18,7 @@ if [ -f $KEYDIR/$HOSTNAME.key -a -f $KEYDIR/$HOSTNAME.pub ]; then
     echo "And add SPF TXT record \"v=spf1 ip4:"$MYIP" ~all\""
     echo ""
 else
-    mkdir $KEYDIR/
+    mkdir -p $KEYDIR/
     $OPENSSLDIR/openssl genrsa -out $KEYDIR/$HOSTNAME.key 2048
     $OPENSSLDIR/openssl rsa -in $KEYDIR/$HOSTNAME.key -out $KEYDIR/$HOSTNAME.pub -pubout -outform PEM
 

docker-compose.yml

@@ -0,0 +1,24 @@
+version: "3.8"
+volumes:
+  www:
+  dkim:
+services:
+  php:
+    image: ghcr.io/rootshell-coder/php:5.4.45
+    environment:
+      TZ: "Europe/Moscow"
+      HOSTNAME: "example.com"
+      TRUSTEDPROXY: "172.17.0.0/24"
+      EMAIL: postmaster@example.com
+    volumes:
+      - www:/var/www/html:ro
+      - dkim:/etc/mail
+    restart: unless-stopped
+    ports:
+      - 80:80
+    healthcheck:
+      test: curl --fail http://localhost || exit 1
+      interval: 60s
+      retries: 5
+      start_period: 20s
+      timeout: 10s

entrypoint.sh

@@ -29,10 +29,6 @@ if [ -n "$EMAIL" ]; then
     sed -i 's;webmaster@localhost;'"$EMAIL"';' /etc/apache2/sites-available/000-default.conf
 fi
 
-if [ -n "$CHOWN" && "$CHOWN" = 'true' ]; then
-    chown -R 33:33 /var/www/html/*
-fi
-
 /usr/local/dkim/gen_dkim.sh
 update-exim4.conf
 exec "$@"