From 770cfae7a9d31712a9a2805d32e74a5eedc36261 Mon Sep 17 00:00:00 2001 From: Bitnami Bot Date: Thu, 6 May 2021 15:06:15 +0000 Subject: [PATCH] 5.7.1-debian-10-r21 release --- bitnami/wordpress/5/debian-10/Dockerfile | 77 +- .../wordpress/5/debian-10/docker-compose.yml | 8 +- .../prebuildfs/build/bitnami-user.sh | 6 - .../prebuildfs/build/install-nami.sh | 7 - .../opt/bitnami/.bitnami_components.json | 10 +- .../prebuildfs/opt/bitnami/base/functions | 120 -- .../prebuildfs/opt/bitnami/base/helpers | 40 - .../opt/bitnami/scripts/libbitnami.sh | 51 + .../opt/bitnami/scripts/libcomponent.sh | 65 + .../prebuildfs/opt/bitnami/scripts/libfile.sh | 80 ++ .../prebuildfs/opt/bitnami/scripts/libfs.sh | 183 +++ .../prebuildfs/opt/bitnami/scripts/libhook.sh | 16 + .../prebuildfs/opt/bitnami/scripts/liblog.sh | 112 ++ .../prebuildfs/opt/bitnami/scripts/libnet.sh | 142 +++ .../prebuildfs/opt/bitnami/scripts/libos.sh | 350 ++++++ .../opt/bitnami/scripts/libpersistence.sh | 122 ++ .../opt/bitnami/scripts/libservice.sh | 235 ++++ .../opt/bitnami/scripts/libvalidations.sh | 248 ++++ .../opt/bitnami/scripts/libversion.sh | 49 + .../opt/bitnami/scripts/libwebserver.sh | 424 +++++++ .../debian-10/prebuildfs/usr/sbin/bitnami-pkg | 222 ---- .../5/debian-10/rootfs/apache-init.sh | 24 - .../5/debian-10/rootfs/apache-inputs.json | 5 - .../5/debian-10/rootfs/app-entrypoint.sh | 16 - .../debian-10/rootfs/mysql-client-inputs.json | 13 - .../apache/conf/bitnami/certs/server.crt | 17 + .../apache/conf/bitnami/certs/server.key | 27 + .../opt/bitnami/apache/conf/deflate.conf | 5 + .../apache/conf/vhosts/00_status-vhost.conf | 7 + .../rootfs/opt/bitnami/scripts/apache-env.sh | 76 ++ .../scripts/apache-modphp/postunpack.sh | 37 + .../app-generic-http-vhost.conf.tpl | 5 + .../app-generic-https-vhost.conf.tpl | 8 + .../app-generic-prefix.conf.tpl | 1 + .../bitnami-templates/app-http-vhost.conf.tpl | 13 + .../app-https-vhost.conf.tpl | 16 + .../bitnami-templates/app-prefix.conf.tpl | 9 + .../app-proxy-http-vhost.conf.tpl | 6 + .../app-proxy-https-vhost.conf.tpl | 8 + .../app-proxy-prefix.conf.tpl | 10 + .../app-ruby-passenger-http-vhost.conf.tpl | 14 + .../app-ruby-passenger-https-vhost.conf.tpl | 17 + .../app-ruby-passenger-prefix.conf.tpl | 9 + .../bitnami-templates/bitnami-ssl.conf.tpl | 29 + .../apache/bitnami-templates/bitnami.conf.tpl | 18 + .../opt/bitnami/scripts/apache/entrypoint.sh | 27 + .../opt/bitnami/scripts/apache/postunpack.sh | 115 ++ .../opt/bitnami/scripts/apache/reload.sh | 18 + .../opt/bitnami/scripts/apache/restart.sh | 17 + .../rootfs/opt/bitnami/scripts/apache/run.sh | 18 + .../opt/bitnami/scripts/apache/setup.sh | 60 + .../opt/bitnami/scripts/apache/start.sh | 32 + .../opt/bitnami/scripts/apache/status.sh | 21 + .../rootfs/opt/bitnami/scripts/apache/stop.sh | 32 + .../rootfs/opt/bitnami/scripts/libapache.sh | 671 +++++++++++ .../opt/bitnami/scripts/libmysqlclient.sh | 1043 +++++++++++++++++ .../rootfs/opt/bitnami/scripts/libphp.sh | 256 ++++ .../opt/bitnami/scripts/libwordpress.sh | 639 ++++++++++ .../opt/bitnami/scripts/mysql-client-env.sh | 124 ++ .../scripts/mysql-client/postunpack.sh | 19 + .../opt/bitnami/scripts/mysql-client/setup.sh | 19 + .../rootfs/opt/bitnami/scripts/php-env.sh | 85 ++ .../opt/bitnami/scripts/php/postunpack.sh | 38 + .../rootfs/opt/bitnami/scripts/php/reload.sh | 35 + .../rootfs/opt/bitnami/scripts/php/restart.sh | 17 + .../rootfs/opt/bitnami/scripts/php/run.sh | 19 + .../rootfs/opt/bitnami/scripts/php/setup.sh | 32 + .../rootfs/opt/bitnami/scripts/php/start.sh | 32 + .../rootfs/opt/bitnami/scripts/php/status.sh | 21 + .../rootfs/opt/bitnami/scripts/php/stop.sh | 32 + .../opt/bitnami/scripts/wordpress-env.sh | 179 +++ .../apache-nip-io-redirect.conf.tpl | 5 + .../apache-wordpress-basic.conf.tpl | 10 + ...che-wordpress-multisite-subdomain.conf.tpl | 18 + ...che-wordpress-multisite-subfolder.conf.tpl | 18 + .../apache-wordpress-volume-rewrite.conf.tpl | 6 + .../nginx-nip-io-redirect.conf.tpl | 5 + .../nginx-wordpress-basic.conf.tpl | 19 + ...ress-multisite-subdomain-external.conf.tpl | 8 + ...inx-wordpress-multisite-subdomain.conf.tpl | 25 + ...ress-multisite-subfolder-external.conf.tpl | 11 + ...inx-wordpress-multisite-subfolder.conf.tpl | 26 + .../nginx-wordpress-volume-rewrite.conf.tpl | 5 + .../wordpress/bitnami-templates/wp.tpl | 8 + .../bitnami/scripts/wordpress/entrypoint.sh | 31 + .../bitnami/scripts/wordpress/postunpack.sh | 63 + .../opt/bitnami/scripts/wordpress/setup.sh | 39 + .../5/debian-10/rootfs/wordpress-init.sh | 35 - .../5/debian-10/rootfs/wordpress-inputs.json | 31 - bitnami/wordpress/README.md | 612 +++++----- bitnami/wordpress/docker-compose-mysql.yml | 8 +- bitnami/wordpress/docker-compose.yml | 8 +- 92 files changed, 6699 insertions(+), 850 deletions(-) delete mode 100755 bitnami/wordpress/5/debian-10/prebuildfs/build/bitnami-user.sh delete mode 100755 bitnami/wordpress/5/debian-10/prebuildfs/build/install-nami.sh delete mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/functions delete mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/helpers create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libbitnami.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libcomponent.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfile.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfs.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libhook.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/liblog.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libnet.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libpersistence.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libservice.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libvalidations.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libversion.sh create mode 100644 bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libwebserver.sh delete mode 100755 bitnami/wordpress/5/debian-10/prebuildfs/usr/sbin/bitnami-pkg delete mode 100644 bitnami/wordpress/5/debian-10/rootfs/apache-init.sh delete mode 100644 bitnami/wordpress/5/debian-10/rootfs/apache-inputs.json delete mode 100755 bitnami/wordpress/5/debian-10/rootfs/app-entrypoint.sh delete mode 100644 bitnami/wordpress/5/debian-10/rootfs/mysql-client-inputs.json create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.crt create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.key create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/deflate.conf create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/vhosts/00_status-vhost.conf create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-env.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-modphp/postunpack.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-http-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-https-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-prefix.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-http-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-https-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-prefix.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-http-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-https-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-prefix.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-http-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-https-vhost.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-prefix.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami-ssl.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami.conf.tpl create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/entrypoint.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/postunpack.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/reload.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/restart.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/run.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/setup.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/start.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/status.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/stop.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libapache.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libmysqlclient.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libphp.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libwordpress.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client-env.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/postunpack.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/setup.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php-env.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/postunpack.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/reload.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/restart.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/run.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/setup.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/start.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/status.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/stop.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress-env.sh create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-nip-io-redirect.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-basic.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subdomain.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subfolder.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-volume-rewrite.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-nip-io-redirect.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-basic.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain-external.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder-external.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-volume-rewrite.conf.tpl create mode 100644 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/wp.tpl create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/entrypoint.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/postunpack.sh create mode 100755 bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/setup.sh delete mode 100644 bitnami/wordpress/5/debian-10/rootfs/wordpress-init.sh delete mode 100644 bitnami/wordpress/5/debian-10/rootfs/wordpress-inputs.json diff --git a/bitnami/wordpress/5/debian-10/Dockerfile b/bitnami/wordpress/5/debian-10/Dockerfile index 5acfd9770617..f81fea964238 100644 --- a/bitnami/wordpress/5/debian-10/Dockerfile +++ b/bitnami/wordpress/5/debian-10/Dockerfile @@ -1,33 +1,36 @@ FROM docker.io/bitnami/minideb:buster LABEL maintainer "Bitnami " -ENV BITNAMI_PKG_CHMOD="-R g+rwX" \ - HOME="/" \ - PATH="/opt/bitnami/php/bin:/opt/bitnami/php/sbin:/opt/bitnami/apache/bin:/opt/bitnami/wp-cli/bin:/opt/bitnami/mysql/bin:/opt/bitnami/common/bin:/opt/bitnami/nami/bin:$PATH" +ENV HOME="/" \ + OS_ARCH="amd64" \ + OS_FLAVOUR="debian-10" \ + OS_NAME="linux" COPY prebuildfs / # Install required system packages and dependencies -RUN install_packages ca-certificates curl gzip libaudit1 libbsd0 libbz2-1.0 libc6 libcap-ng0 libcom-err2 libcurl4 libexpat1 libffi6 libfftw3-double3 libfontconfig1 libfreetype6 libgcc1 libgcrypt20 libglib2.0-0 libgmp10 libgnutls30 libgomp1 libgpg-error0 libgssapi-krb5-2 libhogweed4 libicu63 libidn2-0 libjemalloc2 libjpeg62-turbo libk5crypto3 libkeyutils1 libkrb5-3 libkrb5support0 liblcms2-2 libldap-2.4-2 liblqr-1-0 libltdl7 liblzma5 libmagickcore-6.q16-6 libmagickwand-6.q16-6 libmcrypt4 libmemcached11 libmemcachedutil2 libncurses6 libnettle6 libnghttp2-14 libonig5 libp11-kit0 libpam0g libpcre3 libpng16-16 libpq5 libpsl5 libreadline7 librtmp1 libsasl2-2 libsodium23 libsqlite3-0 libssh2-1 libssl1.1 libstdc++6 libsybdb5 libtasn1-6 libtidy5deb1 libtinfo6 libunistring2 libuuid1 libwebp6 libx11-6 libxau6 libxcb1 libxdmcp6 libxext6 libxml2 libxslt1.1 libzip4 procps sudo tar unzip zlib1g -RUN /build/bitnami-user.sh -RUN /build/install-nami.sh -RUN bitnami-pkg install php-7.4.18-0 --checksum 09470a7be5514796c09044b0c2d60fc8c1eeee88daf197dcc9f3e47de9802da6 -RUN bitnami-pkg unpack apache-2.4.46-7 --checksum cfb1835e471967ec5a6df8c622bdd907be03fb5b57b4f86f68eb7b73fe0f6be3 -RUN bitnami-pkg install wp-cli-2.4.0-2 --checksum 33c3b53e87e9e433291ac3511e68263c80b43aa4de3dead9502934f506b7f2e6 -RUN bitnami-pkg unpack mysql-client-10.3.28-0 --checksum 9398376ca9e2033d5bc193232e8aa9b57d91d4ccf06fa67bfa0d30ef36e44c25 -RUN bitnami-pkg install libphp-7.4.18-0 --checksum a388371c0a6a7306ee43fc00ea48df18337d088f72f18e630e69d25eec440f0b -RUN bitnami-pkg unpack wordpress-5.7.1-6 --checksum f7f230ded28d75dfe5f3e47ebdb645a4512b316c8e26367ccd42367ebed68eac -RUN bitnami-pkg install tini-0.19.0-1 --checksum 9b1f1c095944bac88a62c1b63f3bff1bb123aa7ccd371c908c0e5b41cec2528d -RUN bitnami-pkg install gosu-1.12.0-2 --checksum 4d858ac600c38af8de454c27b7f65c0074ec3069880cb16d259a6e40a46bbc50 -RUN ln -sf /dev/stdout /opt/bitnami/apache/logs/access_log && \ - ln -sf /dev/stderr /opt/bitnami/apache/logs/error_log +RUN install_packages acl ca-certificates curl gzip less libaudit1 libbsd0 libbz2-1.0 libc6 libcap-ng0 libcom-err2 libcurl4 libexpat1 libffi6 libfftw3-double3 libfontconfig1 libfreetype6 libgcc1 libgcrypt20 libglib2.0-0 libgmp10 libgnutls30 libgomp1 libgpg-error0 libgssapi-krb5-2 libhogweed4 libicu63 libidn2-0 libjemalloc2 libjpeg62-turbo libk5crypto3 libkeyutils1 libkrb5-3 libkrb5support0 liblcms2-2 libldap-2.4-2 liblqr-1-0 libltdl7 liblzma5 libmagickcore-6.q16-6 libmagickwand-6.q16-6 libmcrypt4 libmemcached11 libmemcachedutil2 libncurses6 libnettle6 libnghttp2-14 libonig5 libp11-kit0 libpam0g libpcre3 libpng16-16 libpq5 libpsl5 libreadline7 librtmp1 libsasl2-2 libsodium23 libsqlite3-0 libssh2-1 libssl1.1 libstdc++6 libsybdb5 libtasn1-6 libtidy5deb1 libtinfo6 libunistring2 libuuid1 libwebp6 libx11-6 libxau6 libxcb1 libxdmcp6 libxext6 libxml2 libxslt1.1 libzip4 procps tar zlib1g +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "php" "7.4.18-0" --checksum 09470a7be5514796c09044b0c2d60fc8c1eeee88daf197dcc9f3e47de9802da6 +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "apache" "2.4.46-7" --checksum cfb1835e471967ec5a6df8c622bdd907be03fb5b57b4f86f68eb7b73fe0f6be3 +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "wp-cli" "2.4.0-2" --checksum 33c3b53e87e9e433291ac3511e68263c80b43aa4de3dead9502934f506b7f2e6 +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "mysql-client" "10.3.28-0" --checksum 9398376ca9e2033d5bc193232e8aa9b57d91d4ccf06fa67bfa0d30ef36e44c25 +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "libphp" "7.4.18-0" --checksum a388371c0a6a7306ee43fc00ea48df18337d088f72f18e630e69d25eec440f0b +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "wordpress" "5.7.1-7" --checksum a4e965a807152ed6c578fbbe9beff6820c637afc5346805a729cef03158e1d31 +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "render-template" "1.0.0-3" --checksum 8179ad1371c9a7d897fe3b1bf53bbe763f94edafef19acad2498dd48b3674efe +RUN . /opt/bitnami/scripts/libcomponent.sh && component_unpack "gosu" "1.12.0-2" --checksum 4d858ac600c38af8de454c27b7f65c0074ec3069880cb16d259a6e40a46bbc50 +RUN chmod g+rwX /opt/bitnami COPY rootfs / +RUN /opt/bitnami/scripts/mysql-client/postunpack.sh +RUN /opt/bitnami/scripts/php/postunpack.sh +RUN /opt/bitnami/scripts/apache/postunpack.sh +RUN /opt/bitnami/scripts/apache-modphp/postunpack.sh +RUN /opt/bitnami/scripts/wordpress/postunpack.sh ENV ALLOW_EMPTY_PASSWORD="no" \ APACHE_ENABLE_CUSTOM_PORTS="no" \ - APACHE_HTTPS_PORT_NUMBER="8443" \ - APACHE_HTTP_PORT_NUMBER="8080" \ + APACHE_HTTPS_PORT_NUMBER="" \ + APACHE_HTTP_PORT_NUMBER="" \ BITNAMI_APP_NAME="wordpress" \ - BITNAMI_IMAGE_VERSION="5.7.1-debian-10-r20" \ + BITNAMI_IMAGE_VERSION="5.7.1-debian-10-r21" \ MARIADB_HOST="mariadb" \ MARIADB_PORT_NUMBER="3306" \ MARIADB_ROOT_PASSWORD="" \ @@ -38,40 +41,10 @@ ENV ALLOW_EMPTY_PASSWORD="no" \ MYSQL_CLIENT_CREATE_DATABASE_USER="" \ MYSQL_CLIENT_ENABLE_SSL="no" \ MYSQL_CLIENT_SSL_CA_FILE="" \ - NAMI_PREFIX="/.nami" \ - OS_ARCH="amd64" \ - OS_FLAVOUR="debian-10" \ - OS_NAME="linux" \ - PHP_MEMORY_LIMIT="256M" \ - PHP_OPCACHE_ENABLED="yes" \ - SMTP_HOST="" \ - SMTP_PASSWORD="" \ - SMTP_PORT="" \ - SMTP_PROTOCOL="" \ - SMTP_USER="" \ - SMTP_USERNAME="" \ - WORDPRESS_BLOG_NAME="User's Blog!" \ - WORDPRESS_DATABASE_NAME="bitnami_wordpress" \ - WORDPRESS_DATABASE_PASSWORD="" \ - WORDPRESS_DATABASE_SSL_CA_FILE="" \ - WORDPRESS_DATABASE_USER="bn_wordpress" \ - WORDPRESS_EMAIL="user@example.com" \ - WORDPRESS_EXTRA_WP_CONFIG_CONTENT="" \ - WORDPRESS_FIRST_NAME="FirstName" \ - WORDPRESS_HTACCESS_OVERRIDE_NONE="yes" \ - WORDPRESS_HTACCESS_PERSISTENCE_ENABLED="no" \ - WORDPRESS_HTTPS_PORT="8443" \ - WORDPRESS_HTTP_PORT="8080" \ - WORDPRESS_LAST_NAME="LastName" \ - WORDPRESS_PASSWORD="bitnami" \ - WORDPRESS_RESET_DATA_PERMISSIONS="no" \ - WORDPRESS_SCHEME="http" \ - WORDPRESS_SKIP_INSTALL="no" \ - WORDPRESS_TABLE_PREFIX="wp_" \ - WORDPRESS_USERNAME="user" + PATH="/opt/bitnami/php/bin:/opt/bitnami/php/sbin:/opt/bitnami/apache/bin:/opt/bitnami/wp-cli/bin:/opt/bitnami/mysql/bin:/opt/bitnami/common/bin:$PATH" EXPOSE 8080 8443 USER 1001 -ENTRYPOINT [ "/app-entrypoint.sh" ] -CMD [ "httpd", "-f", "/opt/bitnami/apache/conf/httpd.conf", "-DFOREGROUND" ] +ENTRYPOINT [ "/opt/bitnami/scripts/wordpress/entrypoint.sh" ] +CMD [ "/opt/bitnami/scripts/apache/run.sh" ] diff --git a/bitnami/wordpress/5/debian-10/docker-compose.yml b/bitnami/wordpress/5/debian-10/docker-compose.yml index 4269c71ece21..83820421c3c5 100644 --- a/bitnami/wordpress/5/debian-10/docker-compose.yml +++ b/bitnami/wordpress/5/debian-10/docker-compose.yml @@ -5,9 +5,9 @@ services: volumes: - 'mariadb_data:/bitnami/mariadb' environment: + - ALLOW_EMPTY_PASSWORD=yes - MARIADB_USER=bn_wordpress - MARIADB_DATABASE=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes wordpress: image: docker.io/bitnami/wordpress:5 ports: @@ -18,11 +18,11 @@ services: depends_on: - mariadb environment: - - MARIADB_HOST=mariadb - - MARIADB_PORT_NUMBER=3306 + - ALLOW_EMPTY_PASSWORD=yes + - WORDPRESS_DATABASE_HOST=mariadb + - WORDPRESS_DATABASE_PORT_NUMBER=3306 - WORDPRESS_DATABASE_USER=bn_wordpress - WORDPRESS_DATABASE_NAME=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes volumes: mariadb_data: driver: local diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/build/bitnami-user.sh b/bitnami/wordpress/5/debian-10/prebuildfs/build/bitnami-user.sh deleted file mode 100755 index 0b21a219a4f3..000000000000 --- a/bitnami/wordpress/5/debian-10/prebuildfs/build/bitnami-user.sh +++ /dev/null @@ -1,6 +0,0 @@ -#!/bin/bash - -useradd -ms /bin/bash bitnami -mkdir -p /opt/bitnami -sed -i -e 's/\s*Defaults\s*secure_path\s*=/# Defaults secure_path=/' /etc/sudoers -echo 'bitnami ALL=NOPASSWD: ALL' >> /etc/sudoers diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/build/install-nami.sh b/bitnami/wordpress/5/debian-10/prebuildfs/build/install-nami.sh deleted file mode 100755 index d6ab4bd87f9c..000000000000 --- a/bitnami/wordpress/5/debian-10/prebuildfs/build/install-nami.sh +++ /dev/null @@ -1,7 +0,0 @@ -#!/bin/bash - -curl --silent -L https://nami-prod.s3.amazonaws.com/tools/nami/releases/nami-2.0.1-0-linux-x64.tar.gz > /tmp/nami-linux-x64.tar.gz -echo "05e6e1e86cbb419cd80f832650ad06d97bcabca2c3a9e953e81b2674a29cc94e /tmp/nami-linux-x64.tar.gz" | sha256sum --check -mkdir -p /opt/bitnami/nami /opt/bitnami/licenses -tar xzf /tmp/nami-linux-x64.tar.gz --strip 1 -C /opt/bitnami/nami && rm /tmp/nami-linux-x64.tar.gz -curl --silent -L https://raw.githubusercontent.com/bitnami/nami/master/COPYING > /opt/bitnami/licenses/nami-2.0.1-0.txt diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/.bitnami_components.json index 9fea346b4998..f773f64ad942 100644 --- a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/.bitnami_components.json +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/.bitnami_components.json @@ -34,19 +34,19 @@ "type": "NAMI", "version": "7.4.18-0" }, - "tini": { + "render-template": { "arch": "amd64", - "digest": "9b1f1c095944bac88a62c1b63f3bff1bb123aa7ccd371c908c0e5b41cec2528d", + "digest": "8179ad1371c9a7d897fe3b1bf53bbe763f94edafef19acad2498dd48b3674efe", "distro": "debian-10", "type": "NAMI", - "version": "0.19.0-1" + "version": "1.0.0-3" }, "wordpress": { "arch": "amd64", - "digest": "f7f230ded28d75dfe5f3e47ebdb645a4512b316c8e26367ccd42367ebed68eac", + "digest": "a4e965a807152ed6c578fbbe9beff6820c637afc5346805a729cef03158e1d31", "distro": "debian-10", "type": "NAMI", - "version": "5.7.1-6" + "version": "5.7.1-7" }, "wp-cli": { "arch": "amd64", diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/functions b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/functions deleted file mode 100644 index c0eaff78f63e..000000000000 --- a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/functions +++ /dev/null @@ -1,120 +0,0 @@ -#!/bin/bash - -[[ ${BASH_DEBUG:-false} = true ]] && set -x - -# Constants -MODULE="$(basename "$0")" -BITNAMI_PREFIX=/opt/bitnami - -# Color Palette -RESET='\033[0m' -BOLD='\033[1m' - -## Foreground -BLACK='\033[38;5;0m' -RED='\033[38;5;1m' -GREEN='\033[38;5;2m' -YELLOW='\033[38;5;3m' -BLUE='\033[38;5;4m' -MAGENTA='\033[38;5;5m' -CYAN='\033[38;5;6m' -WHITE='\033[38;5;7m' - -## Background -ON_BLACK='\033[48;5;0m' -ON_RED='\033[48;5;1m' -ON_GREEN='\033[48;5;2m' -ON_YELLOW='\033[48;5;3m' -ON_BLUE='\033[48;5;4m' -ON_MAGENTA='\033[48;5;5m' -ON_CYAN='\033[48;5;6m' -ON_WHITE='\033[48;5;7m' - -# Functions - -######################## -# Print to STDERR -# Arguments: -# Message to print -# Returns: -# None -######################### -stderr_print() { - printf "%b\\n" "${*}" >&2 -} - -######################## -# Log message -# Arguments: -# Message to log -# Returns: -# None -######################### -log() { - stderr_print "${NAMI_DEBUG:+${CYAN}${MODULE:-} ${MAGENTA}$(date "+%T.%2N ")}${RESET}${*}" -} -######################## -# Log an 'info' message -# Arguments: -# Message to log -# Returns: -# None -######################### -info() { - log "${GREEN}INFO ${RESET} ==> ${*}" -} -######################## -# Log message -# Arguments: -# Message to log -# Returns: -# None -######################### -warn() { - log "${YELLOW}WARN ${RESET} ==> ${*}" -} -######################## -# Log an 'error' message -# Arguments: -# Message to log -# Returns: -# None -######################### -error() { - log "${RED}ERROR${RESET} ==> ${*}" -} -######################## -# Print the welcome page -# Globals: -# DISABLE_WELCOME_MESSAGE -# BITNAMI_APP_NAME -# Arguments: -# None -# Returns: -# None -######################### -print_welcome_page() { - if [[ -z "${DISABLE_WELCOME_MESSAGE:-}" ]]; then - if [[ -n "$BITNAMI_APP_NAME" ]]; then - print_image_welcome_page - fi - fi -} -######################## -# Print the welcome page for a Bitnami Docker image -# Globals: -# BITNAMI_APP_NAME -# Arguments: -# None -# Returns: -# None -######################### -print_image_welcome_page() { - local github_url="https://github.com/bitnami/bitnami-docker-${BITNAMI_APP_NAME}" - - log "" - log "${BOLD}Welcome to the Bitnami ${BITNAMI_APP_NAME} container${RESET}" - log "Subscribe to project updates by watching ${BOLD}${github_url}${RESET}" - log "Submit issues and feature requests at ${BOLD}${github_url}/issues${RESET}" - log "" -} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/helpers b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/helpers deleted file mode 100644 index 0ea003d94b0a..000000000000 --- a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/base/helpers +++ /dev/null @@ -1,40 +0,0 @@ -#!/bin/bash - -. /opt/bitnami/base/functions - -######################## -# Helper function to initialize a single nami module -# Arguments: -# Module to initialize -# Returns: -# None -# Description: -# Initialize an unpacked nami module with the `nami initialize` command. -# Command arguments can be specified as function argumnts after the module name. -# `--log-level trace` flag is added to the command if `NAMI_DEBUG` env variable exists. -# The log level can be overridden using the `NAMI_LOG_LEVEL` env variable. -######################### -nami_initialize_one() { - local module="${1:?module not specified}" - if nami inspect $module | grep -q '"lifecycle": "unpacked"'; then - local inputs= - if [[ -f "/${module}-inputs.json" ]]; then - inputs="--inputs-file=/${module}-inputs.json" - fi - nami ${NAMI_DEBUG:+--log-level ${NAMI_LOG_LEVEL:-trace}} initialize $module $inputs "${@:2}" - fi -} - -######################## -# Helper function to initialize one or more nami modules -# Arguments: -# Module to initialize -# Returns: -# None -######################### -nami_initialize() { - local module="${1:?module not specified}" - for module in "${@}"; do - nami_initialize_one $module - done -} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libbitnami.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libbitnami.sh new file mode 100644 index 000000000000..ef29e361dad1 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libbitnami.sh @@ -0,0 +1,51 @@ +#!/bin/bash +# +# Bitnami custom library + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh + +# Constants +BOLD='\033[1m' + +# Functions + +######################## +# Print the welcome page +# Globals: +# DISABLE_WELCOME_MESSAGE +# BITNAMI_APP_NAME +# Arguments: +# None +# Returns: +# None +######################### +print_welcome_page() { + if [[ -z "${DISABLE_WELCOME_MESSAGE:-}" ]]; then + if [[ -n "$BITNAMI_APP_NAME" ]]; then + print_image_welcome_page + fi + fi +} + +######################## +# Print the welcome page for a Bitnami Docker image +# Globals: +# BITNAMI_APP_NAME +# Arguments: +# None +# Returns: +# None +######################### +print_image_welcome_page() { + local github_url="https://github.com/bitnami/bitnami-docker-${BITNAMI_APP_NAME}" + + log "" + log "${BOLD}Welcome to the Bitnami ${BITNAMI_APP_NAME} container${RESET}" + log "Subscribe to project updates by watching ${BOLD}${github_url}${RESET}" + log "Submit issues and feature requests at ${BOLD}${github_url}/issues${RESET}" + log "" +} + diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libcomponent.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libcomponent.sh new file mode 100644 index 000000000000..1d8c6bf24375 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libcomponent.sh @@ -0,0 +1,65 @@ +#!/bin/bash +# +# Library for managing Bitnami components + +# Constants +CACHE_ROOT="/tmp/bitnami/pkg/cache" +DOWNLOAD_URL="https://downloads.bitnami.com/files/stacksmith" + +# Functions + +######################## +# Download and unpack a Bitnami package +# Globals: +# OS_NAME +# OS_ARCH +# OS_FLAVOUR +# Arguments: +# $1 - component's name +# $2 - component's version +# Returns: +# None +######################### +component_unpack() { + local name="${1:?name is required}" + local version="${2:?version is required}" + local base_name="${name}-${version}-${OS_NAME}-${OS_ARCH}-${OS_FLAVOUR}" + local package_sha256="" + local directory="/opt/bitnami" + + # Validate arguments + shift 2 + while [ "$#" -gt 0 ]; do + case "$1" in + -c|--checksum) + shift + package_sha256="${1:?missing package checksum}" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + + echo "Downloading $base_name package" + if [ -f "${CACHE_ROOT}/${base_name}.tar.gz" ]; then + echo "${CACHE_ROOT}/${base_name}.tar.gz already exists, skipping download." + cp "${CACHE_ROOT}/${base_name}.tar.gz" . + rm "${CACHE_ROOT}/${base_name}.tar.gz" + if [ -f "${CACHE_ROOT}/${base_name}.tar.gz.sha256" ]; then + echo "Using the local sha256 from ${CACHE_ROOT}/${base_name}.tar.gz.sha256" + package_sha256="$(< "${CACHE_ROOT}/${base_name}.tar.gz.sha256")" + rm "${CACHE_ROOT}/${base_name}.tar.gz.sha256" + fi + else + curl --remote-name --silent "${DOWNLOAD_URL}/${base_name}.tar.gz" + fi + if [ -n "$package_sha256" ]; then + echo "Verifying package integrity" + echo "$package_sha256 ${base_name}.tar.gz" | sha256sum --check - + fi + tar --directory "${directory}" --extract --gunzip --file "${base_name}.tar.gz" --no-same-owner --strip-components=2 "${base_name}/files/" + rm "${base_name}.tar.gz" +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfile.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfile.sh new file mode 100644 index 000000000000..b09575cbe4a6 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfile.sh @@ -0,0 +1,80 @@ +#!/bin/bash +# +# Library for managing files + +# Functions + +######################## +# Replace a regex in a file +# Arguments: +# $1 - filename +# $2 - match regex +# $3 - substitute regex +# $4 - use POSIX regex. Default: true +# Returns: +# None +######################### +replace_in_file() { + local filename="${1:?filename is required}" + local match_regex="${2:?match regex is required}" + local substitute_regex="${3:?substitute regex is required}" + local posix_regex=${4:-true} + + local result + + # We should avoid using 'sed in-place' substitutions + # 1) They are not compatible with files mounted from ConfigMap(s) + # 2) We found incompatibility issues with Debian10 and "in-place" substitutions + del=$'\001' # Use a non-printable character as a 'sed' delimiter to avoid issues + if [[ $posix_regex = true ]]; then + result="$(sed -E "s${del}${match_regex}${del}${substitute_regex}${del}g" "$filename")" + else + result="$(sed "s${del}${match_regex}${del}${substitute_regex}${del}g" "$filename")" + fi + echo "$result" > "$filename" +} + +######################## +# Remove a line in a file based on a regex +# Arguments: +# $1 - filename +# $2 - match regex +# $3 - use POSIX regex. Default: true +# Returns: +# None +######################### +remove_in_file() { + local filename="${1:?filename is required}" + local match_regex="${2:?match regex is required}" + local posix_regex=${3:-true} + local result + + # We should avoid using 'sed in-place' substitutions + # 1) They are not compatible with files mounted from ConfigMap(s) + # 2) We found incompatibility issues with Debian10 and "in-place" substitutions + if [[ $posix_regex = true ]]; then + result="$(sed -E "/$match_regex/d" "$filename")" + else + result="$(sed "/$match_regex/d" "$filename")" + fi + echo "$result" > "$filename" +} + +######################## +# Appends text after the last line matching a pattern +# Arguments: +# $1 - file +# $2 - match regex +# $3 - contents to add +# Returns: +# None +######################### +append_file_after_last_match() { + local file="${1:?missing file}" + local match_regex="${2:?missing pattern}" + local value="${3:?missing value}" + + # We read the file in reverse, replace the first match (0,/pattern/s) and then reverse the results again + result="$(tac "$file" | sed -E "0,/($match_regex)/s||${value}\n\1|" | tac)" + echo "$result" > "$file" +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfs.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfs.sh new file mode 100644 index 000000000000..ae5e2459c377 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libfs.sh @@ -0,0 +1,183 @@ +#!/bin/bash +# +# Library for file system actions + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh + +# Functions + +######################## +# Ensure a file/directory is owned (user and group) but the given user +# Arguments: +# $1 - filepath +# $2 - owner +# Returns: +# None +######################### +owned_by() { + local path="${1:?path is missing}" + local owner="${2:?owner is missing}" + + chown "$owner":"$owner" "$path" +} + +######################## +# Ensure a directory exists and, optionally, is owned by the given user +# Arguments: +# $1 - directory +# $2 - owner +# Returns: +# None +######################### +ensure_dir_exists() { + local dir="${1:?directory is missing}" + local owner="${2:-}" + + mkdir -p "${dir}" + if [[ -n $owner ]]; then + owned_by "$dir" "$owner" + fi +} + +######################## +# Checks whether a directory is empty or not +# arguments: +# $1 - directory +# returns: +# boolean +######################### +is_dir_empty() { + local dir="${1:?missing directory}" + + if [[ ! -e "$dir" ]] || [[ -z "$(ls -A "$dir")" ]]; then + true + else + false + fi +} + +######################## +# Checks whether a mounted directory is empty or not +# arguments: +# $1 - directory +# returns: +# boolean +######################### +is_mounted_dir_empty() { + local dir="${1:?missing directory}" + + if is_dir_empty "$dir" || find "$dir" -mindepth 1 -maxdepth 1 -not -name ".snapshot" -not -name "lost+found" -exec false {} +; then + true + else + false + fi +} + +######################## +# Checks whether a file can be written to or not +# arguments: +# $1 - file +# returns: +# boolean +######################### +is_file_writable() { + local file="${1:?missing file}" + local dir + dir="$(dirname "$file")" + + if [[ ( -f "$file" && -w "$file" ) || ( ! -f "$file" && -d "$dir" && -w "$dir" ) ]]; then + true + else + false + fi +} + +######################## +# Relativize a path +# arguments: +# $1 - path +# $2 - base +# returns: +# None +######################### +relativize() { + local -r path="${1:?missing path}" + local -r base="${2:?missing base}" + pushd "$base" >/dev/null || exit + realpath -q --no-symlinks --relative-base="$base" "$path" | sed -e 's|^/$|.|' -e 's|^/||' + popd >/dev/null || exit +} + +######################## +# Configure permisions and ownership recursively +# Globals: +# None +# Arguments: +# $1 - paths (as a string). +# Flags: +# -f|--file-mode - mode for directories. +# -d|--dir-mode - mode for files. +# -u|--user - user +# -g|--group - group +# Returns: +# None +######################### +configure_permissions_ownership() { + local -r paths="${1:?paths is missing}" + local dir_mode="" + local file_mode="" + local user="" + local group="" + + # Validate arguments + shift 1 + while [ "$#" -gt 0 ]; do + case "$1" in + -f|--file-mode) + shift + file_mode="${1:?missing mode for files}" + ;; + -d|--dir-mode) + shift + dir_mode="${1:?missing mode for directories}" + ;; + -u|--user) + shift + user="${1:?missing user}" + ;; + -g|--group) + shift + group="${1:?missing group}" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + + read -r -a filepaths <<< "$paths" + for p in "${filepaths[@]}"; do + if [[ -e "$p" ]]; then + if [[ -n $dir_mode ]]; then + find -L "$p" -type d -exec chmod "$dir_mode" {} \; + fi + if [[ -n $file_mode ]]; then + find -L "$p" -type f -exec chmod "$file_mode" {} \; + fi + if [[ -n $user ]] && [[ -n $group ]]; then + chown -LR "$user":"$group" "$p" + elif [[ -n $user ]] && [[ -z $group ]]; then + chown -LR "$user" "$p" + elif [[ -z $user ]] && [[ -n $group ]]; then + chgrp -LR "$group" "$p" + fi + else + stderr_print "$p does not exist" + fi + done +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libhook.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libhook.sh new file mode 100644 index 000000000000..9694852a7d25 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libhook.sh @@ -0,0 +1,16 @@ +#!/bin/bash +# +# Library to use for scripts expected to be used as Kubernetes lifecycle hooks + +# shellcheck disable=SC1091 + +# Load generic libraries +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libos.sh + +# Override functions that log to stdout/stderr of the current process, so they print to process 1 +for function_to_override in stderr_print debug_execute; do + # Output is sent to output of process 1 and thus end up in the container log + # The hook output in general isn't saved + eval "$(declare -f "$function_to_override") >/proc/1/fd/1 2>/proc/1/fd/2" +done diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/liblog.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/liblog.sh new file mode 100644 index 000000000000..c7c0f6d4422a --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/liblog.sh @@ -0,0 +1,112 @@ +#!/bin/bash +# +# Library for logging functions + +# Constants +RESET='\033[0m' +RED='\033[38;5;1m' +GREEN='\033[38;5;2m' +YELLOW='\033[38;5;3m' +MAGENTA='\033[38;5;5m' +CYAN='\033[38;5;6m' + +# Functions + +######################## +# Print to STDERR +# Arguments: +# Message to print +# Returns: +# None +######################### +stderr_print() { + # 'is_boolean_yes' is defined in libvalidations.sh, but depends on this file so we cannot source it + local bool="${BITNAMI_QUIET:-false}" + # comparison is performed without regard to the case of alphabetic characters + shopt -s nocasematch + if ! [[ "$bool" = 1 || "$bool" =~ ^(yes|true)$ ]]; then + printf "%b\\n" "${*}" >&2 + fi +} + +######################## +# Log message +# Arguments: +# Message to log +# Returns: +# None +######################### +log() { + stderr_print "${CYAN}${MODULE:-} ${MAGENTA}$(date "+%T.%2N ")${RESET}${*}" +} +######################## +# Log an 'info' message +# Arguments: +# Message to log +# Returns: +# None +######################### +info() { + log "${GREEN}INFO ${RESET} ==> ${*}" +} +######################## +# Log message +# Arguments: +# Message to log +# Returns: +# None +######################### +warn() { + log "${YELLOW}WARN ${RESET} ==> ${*}" +} +######################## +# Log an 'error' message +# Arguments: +# Message to log +# Returns: +# None +######################### +error() { + log "${RED}ERROR${RESET} ==> ${*}" +} +######################## +# Log a 'debug' message +# Globals: +# BITNAMI_DEBUG +# Arguments: +# None +# Returns: +# None +######################### +debug() { + # 'is_boolean_yes' is defined in libvalidations.sh, but depends on this file so we cannot source it + local bool="${BITNAMI_DEBUG:-false}" + # comparison is performed without regard to the case of alphabetic characters + shopt -s nocasematch + if [[ "$bool" = 1 || "$bool" =~ ^(yes|true)$ ]]; then + log "${MAGENTA}DEBUG${RESET} ==> ${*}" + fi +} + +######################## +# Indent a string +# Arguments: +# $1 - string +# $2 - number of indentation characters (default: 4) +# $3 - indentation character (default: " ") +# Returns: +# None +######################### +indent() { + local string="${1:-}" + local num="${2:?missing num}" + local char="${3:-" "}" + # Build the indentation unit string + local indent_unit="" + for ((i = 0; i < num; i++)); do + indent_unit="${indent_unit}${char}" + done + # shellcheck disable=SC2001 + # Complex regex, see https://github.com/koalaman/shellcheck/wiki/SC2001#exceptions + echo "$string" | sed "s/^/${indent_unit}/" +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libnet.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libnet.sh new file mode 100644 index 000000000000..4391dacc7853 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libnet.sh @@ -0,0 +1,142 @@ +#!/bin/bash +# +# Library for network functions + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh + +# Functions + +######################## +# Resolve IP address for a host/domain (i.e. DNS lookup) +# Arguments: +# $1 - Hostname to resolve +# $2 - IP address version (v4, v6), leave empty for resolving to any version +# Returns: +# IP +######################### +dns_lookup() { + local host="${1:?host is missing}" + local ip_version="${2:-}" + getent "ahosts${ip_version}" "$host" | awk '/STREAM/ {print $1 }' | head -n 1 +} + +######################### +# Wait for a hostname and return the IP +# Arguments: +# $1 - hostname +# $2 - number of retries +# $3 - seconds to wait between retries +# Returns: +# - IP address that corresponds to the hostname +######################### +wait_for_dns_lookup() { + local hostname="${1:?hostname is missing}" + local retries="${2:-5}" + local seconds="${3:-1}" + check_host() { + if [[ $(dns_lookup "$hostname") == "" ]]; then + false + else + true + fi + } + # Wait for the host to be ready + retry_while "check_host ${hostname}" "$retries" "$seconds" + dns_lookup "$hostname" +} + +######################## +# Get machine's IP +# Arguments: +# None +# Returns: +# Machine IP +######################### +get_machine_ip() { + local -a ip_addresses + local hostname + hostname="$(hostname)" + read -r -a ip_addresses <<< "$(dns_lookup "$hostname" | xargs echo)" + if [[ "${#ip_addresses[@]}" -gt 1 ]]; then + warn "Found more than one IP address associated to hostname ${hostname}: ${ip_addresses[*]}, will use ${ip_addresses[0]}" + elif [[ "${#ip_addresses[@]}" -lt 1 ]]; then + error "Could not find any IP address associated to hostname ${hostname}" + exit 1 + fi + echo "${ip_addresses[0]}" +} + +######################## +# Check if the provided argument is a resolved hostname +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_hostname_resolved() { + local -r host="${1:?missing value}" + if [[ -n "$(dns_lookup "$host")" ]]; then + true + else + false + fi +} + +######################## +# Parse URL +# Globals: +# None +# Arguments: +# $1 - uri - String +# $2 - component to obtain. Valid options (scheme, authority, userinfo, host, port, path, query or fragment) - String +# Returns: +# String +parse_uri() { + local uri="${1:?uri is missing}" + local component="${2:?component is missing}" + + # Solution based on https://tools.ietf.org/html/rfc3986#appendix-B with + # additional sub-expressions to split authority into userinfo, host and port + # Credits to Patryk Obara (see https://stackoverflow.com/a/45977232/6694969) + local -r URI_REGEX='^(([^:/?#]+):)?(//((([^@/?#]+)@)?([^:/?#]+)(:([0-9]+))?))?(/([^?#]*))?(\?([^#]*))?(#(.*))?' + # || | ||| | | | | | | | | | + # |2 scheme | ||6 userinfo 7 host | 9 port | 11 rpath | 13 query | 15 fragment + # 1 scheme: | |5 userinfo@ 8 :... 10 path 12 ?... 14 #... + # | 4 authority + # 3 //... + local index=0 + case "$component" in + scheme) + index=2 + ;; + authority) + index=4 + ;; + userinfo) + index=6 + ;; + host) + index=7 + ;; + port) + index=9 + ;; + path) + index=10 + ;; + query) + index=13 + ;; + fragment) + index=14 + ;; + *) + stderr_print "unrecognized component $component" + return 1 + ;; + esac + [[ "$uri" =~ $URI_REGEX ]] && echo "${BASH_REMATCH[${index}]}" +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh new file mode 100644 index 000000000000..6a7512281470 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libos.sh @@ -0,0 +1,350 @@ +#!/bin/bash +# +# Library for operating system actions + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libfs.sh + +# Functions + +######################## +# Check if an user exists in the system +# Arguments: +# $1 - user +# Returns: +# Boolean +######################### +user_exists() { + local user="${1:?user is missing}" + id "$user" >/dev/null 2>&1 +} + +######################## +# Check if a group exists in the system +# Arguments: +# $1 - group +# Returns: +# Boolean +######################### +group_exists() { + local group="${1:?group is missing}" + getent group "$group" >/dev/null 2>&1 +} + +######################## +# Create a group in the system if it does not exist already +# Arguments: +# $1 - group +# Flags: +# -s|--system - Whether to create new user as system user (uid <= 999) +# Returns: +# None +######################### +ensure_group_exists() { + local group="${1:?group is missing}" + local is_system_user=false + + # Validate arguments + shift 1 + while [ "$#" -gt 0 ]; do + case "$1" in + -s|--system) + is_system_user=true + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + + if ! group_exists "$group"; then + local -a args=("$group") + $is_system_user && args+=("--system") + groupadd "${args[@]}" >/dev/null 2>&1 + fi +} + +######################## +# Create an user in the system if it does not exist already +# Arguments: +# $1 - user +# Flags: +# -g|--group - the group the new user should belong to +# -h|--home - the home directory for the new user +# -s|--system - whether to create new user as system user (uid <= 999) +# Returns: +# None +######################### +ensure_user_exists() { + local user="${1:?user is missing}" + local group="" + local home="" + local is_system_user=false + + # Validate arguments + shift 1 + while [ "$#" -gt 0 ]; do + case "$1" in + -g|--group) + shift + group="${1:?missing group}" + ;; + -h|--home) + shift + home="${1:?missing home directory}" + ;; + -s|--system) + is_system_user=true + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + + if ! user_exists "$user"; then + local -a user_args=("-N" "$user") + $is_system_user && user_args+=("--system") + useradd "${user_args[@]}" >/dev/null 2>&1 + fi + + if [[ -n "$group" ]]; then + local -a group_args=("$group") + $is_system_user && group_args+=("--system") + ensure_group_exists "${group_args[@]}" + usermod -g "$group" "$user" >/dev/null 2>&1 + fi + + if [[ -n "$home" ]]; then + mkdir -p "$home" + usermod -d "$home" "$user" >/dev/null 2>&1 + configure_permissions_ownership "$home" -d "775" -f "664" -u "$user" -g "$group" + fi +} + +######################## +# Check if the script is currently running as root +# Arguments: +# $1 - user +# $2 - group +# Returns: +# Boolean +######################### +am_i_root() { + if [[ "$(id -u)" = "0" ]]; then + true + else + false + fi +} + +######################## +# Get total memory available +# Arguments: +# None +# Returns: +# Memory in bytes +######################### +get_total_memory() { + echo $(($(grep MemTotal /proc/meminfo | awk '{print $2}') / 1024)) +} + +######################## +# Get machine size depending on specified memory +# Globals: +# None +# Arguments: +# None +# Flags: +# --memory - memory size (optional) +# Returns: +# Detected instance size +######################### +get_machine_size() { + local memory="" + # Validate arguments + while [[ "$#" -gt 0 ]]; do + case "$1" in + --memory) + shift + memory="${1:?missing memory}" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + if [[ -z "$memory" ]]; then + debug "Memory was not specified, detecting available memory automatically" + memory="$(get_total_memory)" + fi + sanitized_memory=$(convert_to_mb "$memory") + if [[ "$sanitized_memory" -gt 26000 ]]; then + echo 2xlarge + elif [[ "$sanitized_memory" -gt 13000 ]]; then + echo xlarge + elif [[ "$sanitized_memory" -gt 6000 ]]; then + echo large + elif [[ "$sanitized_memory" -gt 3000 ]]; then + echo medium + elif [[ "$sanitized_memory" -gt 1500 ]]; then + echo small + else + echo micro + fi +} + +######################## +# Get machine size depending on specified memory +# Globals: +# None +# Arguments: +# $1 - memory size (optional) +# Returns: +# Detected instance size +######################### +get_supported_machine_sizes() { + echo micro small medium large xlarge 2xlarge +} + +######################## +# Convert memory size from string to amount of megabytes (i.e. 2G -> 2048) +# Globals: +# None +# Arguments: +# $1 - memory size +# Returns: +# Result of the conversion +######################### +convert_to_mb() { + local amount="${1:-}" + if [[ $amount =~ ^([0-9]+)(m|M|g|G) ]]; then + size="${BASH_REMATCH[1]}" + unit="${BASH_REMATCH[2]}" + if [[ "$unit" = "g" || "$unit" = "G" ]]; then + amount="$((size * 1024))" + else + amount="$size" + fi + fi + echo "$amount" +} + + +######################### +# Redirects output to /dev/null if debug mode is disabled +# Globals: +# BITNAMI_DEBUG +# Arguments: +# $@ - Command to execute +# Returns: +# None +######################### +debug_execute() { + if ${BITNAMI_DEBUG:-false}; then + "$@" + else + "$@" >/dev/null 2>&1 + fi +} + +######################## +# Retries a command a given number of times +# Arguments: +# $1 - cmd (as a string) +# $2 - max retries. Default: 12 +# $3 - sleep between retries (in seconds). Default: 5 +# Returns: +# Boolean +######################### +retry_while() { + local cmd="${1:?cmd is missing}" + local retries="${2:-12}" + local sleep_time="${3:-5}" + local return_value=1 + + read -r -a command <<< "$cmd" + for ((i = 1 ; i <= retries ; i+=1 )); do + "${command[@]}" && return_value=0 && break + sleep "$sleep_time" + done + return $return_value +} + +######################## +# Generate a random string +# Arguments: +# -t|--type - String type (ascii, alphanumeric, numeric), defaults to ascii +# -c|--count - Number of characters, defaults to 32 +# Arguments: +# None +# Returns: +# None +# Returns: +# String +######################### +generate_random_string() { + local type="ascii" + local count="32" + local filter + local result + # Validate arguments + while [[ "$#" -gt 0 ]]; do + case "$1" in + -t|--type) + shift + type="$1" + ;; + -c|--count) + shift + count="$1" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + # Validate type + case "$type" in + ascii) + filter="[:print:]" + ;; + alphanumeric) + filter="a-zA-Z0-9" + ;; + numeric) + filter="0-9" + ;; + *) + echo "Invalid type ${type}" >&2 + return 1 + esac + # Obtain count + 10 lines from /dev/urandom to ensure that the resulting string has the expected size + # Note there is a very small chance of strings starting with EOL character + # Therefore, the higher amount of lines read, this will happen less frequently + result="$(head -n "$((count + 10))" /dev/urandom | tr -dc "$filter" | head -c "$count")" + echo "$result" +} + +######################## +# Create md5 hash from a string +# Arguments: +# $1 - string +# Returns: +# md5 hash - string +######################### +generate_md5_hash() { + local -r str="${1:?missing input string}" + echo -n "$str" | md5sum | awk '{print $1}' +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libpersistence.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libpersistence.sh new file mode 100644 index 000000000000..264a9291d634 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libpersistence.sh @@ -0,0 +1,122 @@ +#!/bin/bash +# +# Bitnami persistence library +# Used for bringing persistence capabilities to applications that don't have clear separation of data and logic + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libversion.sh + +# Functions + +######################## +# Persist an application directory +# Globals: +# BITNAMI_ROOT_DIR +# BITNAMI_VOLUME_DIR +# Arguments: +# $1 - App folder name +# $2 - List of app files to persist +# Returns: +# true if all steps succeeded, false otherwise +######################### +persist_app() { + local -r app="${1:?missing app}" + local -a files_to_restore + read -r -a files_to_persist <<< "$2" + local -r install_dir="${BITNAMI_ROOT_DIR}/${app}" + local -r persist_dir="${BITNAMI_VOLUME_DIR}/${app}" + # Persist the individual files + if [[ "${#files_to_persist[@]}" -lt 0 ]]; then + warn "No files are configured to be persisted" + return + fi + pushd "$install_dir" >/dev/null || exit + local file_to_persist_relative file_to_persist_destination file_to_persist_destination_folder + local -r tmp_file="/tmp/perms.acl" + for file_to_persist in "${files_to_persist[@]}"; do + if [[ ! -f "$file_to_persist" && ! -d "$file_to_persist" ]]; then + error "Cannot persist '${file_to_persist}' because it does not exist" + return 1 + fi + file_to_persist_relative="$(relativize "$file_to_persist" "$install_dir")" + file_to_persist_destination="${persist_dir}/${file_to_persist_relative}" + file_to_persist_destination_folder="$(dirname "$file_to_persist_destination")" + # Get original permissions for existing files, which will be applied later + # Exclude the root directory with 'sed', to avoid issues when copying the entirety of it to a volume + getfacl -R "$file_to_persist_relative" | sed -E '/# file: (\..+|[^.])/,$!d' > "$tmp_file" + # Copy directories to the volume + ensure_dir_exists "$file_to_persist_destination_folder" + cp -Lr --preserve=links "$file_to_persist_relative" "$file_to_persist_destination_folder" + # Restore permissions + pushd "$persist_dir" >/dev/null || exit + if am_i_root; then + setfacl --restore="$tmp_file" + else + # When running as non-root, don't change ownership + setfacl --restore=<(grep -E -v '^# (owner|group):' "$tmp_file") + fi + popd >/dev/null || exit + done + popd >/dev/null || exit + rm -f "$tmp_file" + # Install the persisted files into the installation directory, via symlinks + restore_persisted_app "$@" +} + +######################## +# Restore a persisted application directory +# Globals: +# BITNAMI_ROOT_DIR +# BITNAMI_VOLUME_DIR +# FORCE_MAJOR_UPGRADE +# Arguments: +# $1 - App folder name +# $2 - List of app files to restore +# Returns: +# true if all steps succeeded, false otherwise +######################### +restore_persisted_app() { + local -r app="${1:?missing app}" + local -a files_to_restore + read -r -a files_to_restore <<< "$2" + local -r install_dir="${BITNAMI_ROOT_DIR}/${app}" + local -r persist_dir="${BITNAMI_VOLUME_DIR}/${app}" + # Restore the individual persisted files + if [[ "${#files_to_restore[@]}" -lt 0 ]]; then + warn "No persisted files are configured to be restored" + return + fi + local file_to_restore_relative file_to_restore_origin file_to_restore_destination + for file_to_restore in "${files_to_restore[@]}"; do + file_to_restore_relative="$(relativize "$file_to_restore" "$install_dir")" + # We use 'realpath --no-symlinks' to ensure that the case of '.' is covered and the directory is removed + file_to_restore_origin="$(realpath --no-symlinks "${install_dir}/${file_to_restore_relative}")" + file_to_restore_destination="$(realpath --no-symlinks "${persist_dir}/${file_to_restore_relative}")" + rm -rf "$file_to_restore_origin" + ln -sfn "$file_to_restore_destination" "$file_to_restore_origin" + done +} + +######################## +# Check if an application directory was already persisted +# Globals: +# BITNAMI_VOLUME_DIR +# Arguments: +# $1 - App folder name +# Returns: +# true if all steps succeeded, false otherwise +######################### +is_app_initialized() { + local -r app="${1:?missing app}" + local -r persist_dir="${BITNAMI_VOLUME_DIR}/${app}" + if ! is_mounted_dir_empty "$persist_dir"; then + true + else + false + fi +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libservice.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libservice.sh new file mode 100644 index 000000000000..ae8f310137d2 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libservice.sh @@ -0,0 +1,235 @@ +#!/bin/bash +# +# Library for managing services + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/libvalidations.sh +. /opt/bitnami/scripts/liblog.sh + +# Functions + +######################## +# Read the provided pid file and returns a PID +# Arguments: +# $1 - Pid file +# Returns: +# PID +######################### +get_pid_from_file() { + local pid_file="${1:?pid file is missing}" + + if [[ -f "$pid_file" ]]; then + if [[ -n "$(< "$pid_file")" ]] && [[ "$(< "$pid_file")" -gt 0 ]]; then + echo "$(< "$pid_file")" + fi + fi +} + +######################## +# Check if a provided PID corresponds to a running service +# Arguments: +# $1 - PID +# Returns: +# Boolean +######################### +is_service_running() { + local pid="${1:?pid is missing}" + + kill -0 "$pid" 2>/dev/null +} + +######################## +# Stop a service by sending a termination signal to its pid +# Arguments: +# $1 - Pid file +# $2 - Signal number (optional) +# Returns: +# None +######################### +stop_service_using_pid() { + local pid_file="${1:?pid file is missing}" + local signal="${2:-}" + local pid + + pid="$(get_pid_from_file "$pid_file")" + [[ -z "$pid" ]] || ! is_service_running "$pid" && return + + if [[ -n "$signal" ]]; then + kill "-${signal}" "$pid" + else + kill "$pid" + fi + + local counter=10 + while [[ "$counter" -ne 0 ]] && is_service_running "$pid"; do + sleep 1 + counter=$((counter - 1)) + done +} + +######################## +# Start cron daemon +# Arguments: +# None +# Returns: +# true if started correctly, false otherwise +######################### +cron_start() { + if [[ -x "/usr/sbin/cron" ]]; then + /usr/sbin/cron + elif [[ -x "/usr/sbin/crond" ]]; then + /usr/sbin/crond + else + false + fi +} + +######################## +# Generate a cron configuration file for a given service +# Arguments: +# $1 - Service name +# $2 - Command +# Flags: +# --run-as - User to run as (default: root) +# --schedule - Cron schedule configuration (default: * * * * *) +# Returns: +# None +######################### +generate_cron_conf() { + local service_name="${1:?service name is missing}" + local cmd="${2:?command is missing}" + local run_as="root" + local schedule="* * * * *" + local clean="true" + + local clean="true" + + # Parse optional CLI flags + shift 2 + while [[ "$#" -gt 0 ]]; do + case "$1" in + --run-as) + shift + run_as="$1" + ;; + --schedule) + shift + schedule="$1" + ;; + --no-clean) + clean="false" + ;; + *) + echo "Invalid command line flag ${1}" >&2 + return 1 + ;; + esac + shift + done + + mkdir -p /etc/cron.d + if "$clean"; then + echo "${schedule} ${run_as} ${cmd}" > /etc/cron.d/"$service_name" + else + echo "${schedule} ${run_as} ${cmd}" >> /etc/cron.d/"$service_name" + fi +} + +######################## +# Generate a monit configuration file for a given service +# Arguments: +# $1 - Service name +# $2 - Pid file +# $3 - Start command +# $4 - Stop command +# Flags: +# --disabled - Whether to disable the monit configuration +# Returns: +# None +######################### +generate_monit_conf() { + local service_name="${1:?service name is missing}" + local pid_file="${2:?pid file is missing}" + local start_command="${3:?start command is missing}" + local stop_command="${4:?stop command is missing}" + local monit_conf_dir="/etc/monit/conf.d" + local disabled="no" + + # Parse optional CLI flags + shift 4 + while [[ "$#" -gt 0 ]]; do + case "$1" in + --disabled) + shift + disabled="$1" + ;; + *) + echo "Invalid command line flag ${1}" >&2 + return 1 + ;; + esac + shift + done + + is_boolean_yes "$disabled" && conf_suffix=".disabled" + mkdir -p "$monit_conf_dir" + cat >"${monit_conf_dir}/${service_name}.conf${conf_suffix:-}" <&2 + return 1 + ;; + esac + shift + done + + mkdir -p "$logrotate_conf_dir" + cat <"${logrotate_conf_dir}/${service_name}" +${log_path} { + ${period} + rotate ${rotations} + dateext + compress + copytruncate + missingok +$(indent "$extra" 2) +} +EOF +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libvalidations.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libvalidations.sh new file mode 100644 index 000000000000..ca5afc91c7b5 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libvalidations.sh @@ -0,0 +1,248 @@ +#!/bin/bash +# +# Validation functions library + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh + +# Functions + +######################## +# Check if the provided argument is an integer +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_int() { + local -r int="${1:?missing value}" + if [[ "$int" =~ ^-?[0-9]+ ]]; then + true + else + false + fi +} + +######################## +# Check if the provided argument is a positive integer +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_positive_int() { + local -r int="${1:?missing value}" + if is_int "$int" && (( "${int}" >= 0 )); then + true + else + false + fi +} + +######################## +# Check if the provided argument is a boolean or is the string 'yes/true' +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_boolean_yes() { + local -r bool="${1:-}" + # comparison is performed without regard to the case of alphabetic characters + shopt -s nocasematch + if [[ "$bool" = 1 || "$bool" =~ ^(yes|true)$ ]]; then + true + else + false + fi +} + +######################## +# Check if the provided argument is a boolean yes/no value +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_yes_no_value() { + local -r bool="${1:-}" + if [[ "$bool" =~ ^(yes|no)$ ]]; then + true + else + false + fi +} + +######################## +# Check if the provided argument is a boolean true/false value +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_true_false_value() { + local -r bool="${1:-}" + if [[ "$bool" =~ ^(true|false)$ ]]; then + true + else + false + fi +} + +######################## +# Check if the provided argument is an empty string or not defined +# Arguments: +# $1 - Value to check +# Returns: +# Boolean +######################### +is_empty_value() { + local -r val="${1:-}" + if [[ -z "$val" ]]; then + true + else + false + fi +} + +######################## +# Validate if the provided argument is a valid port +# Arguments: +# $1 - Port to validate +# Returns: +# Boolean and error message +######################### +validate_port() { + local value + local unprivileged=0 + + # Parse flags + while [[ "$#" -gt 0 ]]; do + case "$1" in + -unprivileged) + unprivileged=1 + ;; + --) + shift + break + ;; + -*) + stderr_print "unrecognized flag $1" + return 1 + ;; + *) + break + ;; + esac + shift + done + + if [[ "$#" -gt 1 ]]; then + echo "too many arguments provided" + return 2 + elif [[ "$#" -eq 0 ]]; then + stderr_print "missing port argument" + return 1 + else + value=$1 + fi + + if [[ -z "$value" ]]; then + echo "the value is empty" + return 1 + else + if ! is_int "$value"; then + echo "value is not an integer" + return 2 + elif [[ "$value" -lt 0 ]]; then + echo "negative value provided" + return 2 + elif [[ "$value" -gt 65535 ]]; then + echo "requested port is greater than 65535" + return 2 + elif [[ "$unprivileged" = 1 && "$value" -lt 1024 ]]; then + echo "privileged port requested" + return 3 + fi + fi +} + +######################## +# Validate if the provided argument is a valid IPv4 address +# Arguments: +# $1 - IP to validate +# Returns: +# Boolean +######################### +validate_ipv4() { + local ip="${1:?ip is missing}" + local stat=1 + + if [[ $ip =~ ^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$ ]]; then + read -r -a ip_array <<< "$(tr '.' ' ' <<< "$ip")" + [[ ${ip_array[0]} -le 255 && ${ip_array[1]} -le 255 \ + && ${ip_array[2]} -le 255 && ${ip_array[3]} -le 255 ]] + stat=$? + fi + return $stat +} + +######################## +# Validate a string format +# Arguments: +# $1 - String to validate +# Returns: +# Boolean +######################### +validate_string() { + local string + local min_length=-1 + local max_length=-1 + + # Parse flags + while [ "$#" -gt 0 ]; do + case "$1" in + -min-length) + shift + min_length=${1:-} + ;; + -max-length) + shift + max_length=${1:-} + ;; + --) + shift + break + ;; + -*) + stderr_print "unrecognized flag $1" + return 1 + ;; + *) + break + ;; + esac + shift + done + + if [ "$#" -gt 1 ]; then + stderr_print "too many arguments provided" + return 2 + elif [ "$#" -eq 0 ]; then + stderr_print "missing string" + return 1 + else + string=$1 + fi + + if [[ "$min_length" -ge 0 ]] && [[ "${#string}" -lt "$min_length" ]]; then + echo "string length is less than $min_length" + return 1 + fi + if [[ "$max_length" -ge 0 ]] && [[ "${#string}" -gt "$max_length" ]]; then + echo "string length is great than $max_length" + return 1 + fi +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libversion.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libversion.sh new file mode 100644 index 000000000000..f3bc7568bfa5 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libversion.sh @@ -0,0 +1,49 @@ +#!/bin/bash +# +# Library for managing versions strings + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh + +# Functions +######################## +# Gets semantic version +# Arguments: +# $1 - version: string to extract major.minor.patch +# $2 - section: 1 to extract major, 2 to extract minor, 3 to extract patch +# Returns: +# array with the major, minor and release +######################### +get_sematic_version () { + local version="${1:?version is required}" + local section="${2:?section is required}" + local -a version_sections + + #Regex to parse versions: x.y.z + local -r regex='([0-9]+)(\.([0-9]+)(\.([0-9]+))?)?' + + if [[ "$version" =~ $regex ]]; then + local i=1 + local j=1 + local n=${#BASH_REMATCH[*]} + + while [[ $i -lt $n ]]; do + if [[ -n "${BASH_REMATCH[$i]}" ]] && [[ "${BASH_REMATCH[$i]:0:1}" != '.' ]]; then + version_sections[$j]=${BASH_REMATCH[$i]} + ((j++)) + fi + ((i++)) + done + + local number_regex='^[0-9]+$' + if [[ "$section" =~ $number_regex ]] && (( section > 0 )) && (( section <= 3 )); then + echo "${version_sections[$section]}" + return + else + stderr_print "Section allowed values are: 1, 2, and 3" + return 1 + fi + fi +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libwebserver.sh b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libwebserver.sh new file mode 100644 index 000000000000..1280134f015c --- /dev/null +++ b/bitnami/wordpress/5/debian-10/prebuildfs/opt/bitnami/scripts/libwebserver.sh @@ -0,0 +1,424 @@ +#!/bin/bash +# +# Bitnami web server handler library + +# shellcheck disable=SC1090,SC1091 + +# Load generic libraries +. /opt/bitnami/scripts/liblog.sh + +######################## +# Execute a command (or list of commands) with the web server environment and library loaded +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_execute() { + local -r web_server="${1:?missing web server}" + shift + # Run program in sub-shell to avoid web server environment getting loaded when not necessary + ( + . "/opt/bitnami/scripts/lib${web_server}.sh" + . "/opt/bitnami/scripts/${web_server}-env.sh" + "$@" + ) +} + +######################## +# Prints the list of enabled web servers +# Globals: +# None +# Arguments: +# None +# Returns: +# None +######################### +web_server_list() { + local -r -a supported_web_servers=(apache nginx) + local -a existing_web_servers=() + for web_server in "${supported_web_servers[@]}"; do + [[ -f "/opt/bitnami/scripts/${web_server}-env.sh" ]] && existing_web_servers+=("$web_server") + done + echo "${existing_web_servers[@]:-}" +} + +######################## +# Prints the currently-enabled web server type (only one, in order of preference) +# Globals: +# None +# Arguments: +# None +# Returns: +# None +######################### +web_server_type() { + local -a web_servers + read -r -a web_servers <<< "$(web_server_list)" + echo "${web_servers[0]:-}" +} + +######################## +# Validate that a supported web server is configured +# Globals: +# None +# Arguments: +# None +# Returns: +# None +######################### +web_server_validate() { + local error_code=0 + local supported_web_servers=("apache" "nginx") + + # Auxiliary functions + print_validation_error() { + error "$1" + error_code=1 + } + + if [[ -z "$(web_server_type)" || ! " ${supported_web_servers[*]} " == *" $(web_server_type) "* ]]; then + print_validation_error "Could not detect any supported web servers. It must be one of: ${supported_web_servers[*]}" + elif ! web_server_execute "$(web_server_type)" type -t "is_$(web_server_type)_running" >/dev/null; then + print_validation_error "Could not load the $(web_server_type) web server library from /opt/bitnami/scripts. Check that it exists and is readable." + fi + + return "$error_code" +} + +######################## +# Check whether the web server is running +# Globals: +# * +# Arguments: +# None +# Returns: +# true if the web server is running, false otherwise +######################### +is_web_server_running() { + "is_$(web_server_type)_running" +} + +######################## +# Start web server +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_start() { + info "Starting $(web_server_type) in background" + "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/start.sh" +} + +######################## +# Stop web server +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_stop() { + info "Stopping $(web_server_type)" + "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/stop.sh" +} + +######################## +# Restart web server +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_restart() { + info "Restarting $(web_server_type)" + "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/restart.sh" +} + +######################## +# Reload web server +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_reload() { + "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/reload.sh" +} + +######################## +# Ensure a web server application configuration exists (i.e. Apache virtual host format or NGINX server block) +# It serves as a wrapper for the specific web server function +# Globals: +# * +# Arguments: +# $1 - App name +# Flags: +# --hosts - Hosts to enable +# --type - Application type, which has an effect on which configuration template to use +# --allow-remote-connections - Whether to allow remote connections or to require local connections +# --disabled - Whether to render the file with a .disabled prefix +# --enable-https - Enable app configuration on HTTPS port +# --http-port - HTTP port number +# --https-port - HTTPS port number +# --document-root - Path to document root directory +# Apache-specific flags: +# --apache-additional-configuration - Additional vhost configuration (no default) +# --apache-before-vhost-configuration - Configuration to add before the directive (no default) +# --apache-allow-override - Whether to allow .htaccess files (only allowed when --move-htaccess is set to 'no') +# --apache-extra-directory-configuration - Extra configuration for the document root directory +# --apache-move-htaccess - Move .htaccess files to a common place so they can be loaded during Apache startup +# NGINX-specific flags: +# --nginx-additional-configuration - Additional server block configuration (no default) +# --nginx-external-configuration - Configuration external to server block (no default) +# Returns: +# true if the configuration was enabled, false otherwise +######################## +ensure_web_server_app_configuration_exists() { + local app="${1:?missing app}" + shift + local -a apache_args nginx_args web_servers args_var + apache_args=("$app") + nginx_args=("$app") + # Validate arguments + while [[ "$#" -gt 0 ]]; do + case "$1" in + # Common flags + --hosts \ + | --type \ + | --allow-remote-connections \ + | --disabled \ + | --enable-https \ + | --http-port \ + | --https-port \ + | --document-root \ + ) + apache_args+=("$1" "${2:?missing value}") + nginx_args+=("$1" "${2:?missing value}") + shift + ;; + + # Specific Apache flags + --apache-additional-configuration \ + | --apache-before-vhost-configuration \ + | --apache-allow-override \ + | --apache-extra-directory-configuration \ + | --apache-proxy-address \ + | --apache-move-htaccess \ + ) + apache_args+=("${1//apache-/}" "${2:?missing value}") + shift + ;; + + # Specific NGINX flags + --nginx-additional-configuration \ + | --nginx-external-configuration) + nginx_args+=("${1//nginx-/}" "${2:?missing value}") + shift + ;; + + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + read -r -a web_servers <<< "$(web_server_list)" + for web_server in "${web_servers[@]}"; do + args_var="${web_server}_args[@]" + web_server_execute "$web_server" "ensure_${web_server}_app_configuration_exists" "${!args_var}" + done +} + +######################## +# Ensure a web server application configuration does not exist anymore (i.e. Apache virtual host format or NGINX server block) +# It serves as a wrapper for the specific web server function +# Globals: +# * +# Arguments: +# $1 - App name +# Returns: +# true if the configuration was disabled, false otherwise +######################## +ensure_web_server_app_configuration_not_exists() { + local app="${1:?missing app}" + local -a web_servers + read -r -a web_servers <<< "$(web_server_list)" + for web_server in "${web_servers[@]}"; do + web_server_execute "$web_server" "ensure_${web_server}_app_configuration_not_exists" "$app" + done +} + +######################## +# Ensure the web server loads the configuration for an application in a URL prefix +# It serves as a wrapper for the specific web server function +# Globals: +# * +# Arguments: +# $1 - App name +# Flags: +# --allow-remote-connections - Whether to allow remote connections or to require local connections +# --document-root - Path to document root directory +# --prefix - URL prefix from where it will be accessible (i.e. /myapp) +# --type - Application type, which has an effect on what configuration template will be used +# Apache-specific flags: +# --apache-additional-configuration - Additional vhost configuration (no default) +# --apache-allow-override - Whether to allow .htaccess files (only allowed when --move-htaccess is set to 'no') +# --apache-extra-directory-configuration - Extra configuration for the document root directory +# --apache-move-htaccess - Move .htaccess files to a common place so they can be loaded during Apache startup +# NGINX-specific flags: +# --nginx-additional-configuration - Additional server block configuration (no default) +# Returns: +# true if the configuration was enabled, false otherwise +######################## +ensure_web_server_prefix_configuration_exists() { + local app="${1:?missing app}" + shift + local -a apache_args nginx_args web_servers args_var + apache_args=("$app") + nginx_args=("$app") + # Validate arguments + while [[ "$#" -gt 0 ]]; do + case "$1" in + # Common flags + --allow-remote-connections \ + | --document-root \ + | --prefix \ + | --type \ + ) + apache_args+=("$1" "${2:?missing value}") + nginx_args+=("$1" "${2:?missing value}") + shift + ;; + + # Specific Apache flags + --apache-additional-configuration \ + | --apache-allow-override \ + | --apache-extra-directory-configuration \ + | --apache-move-htaccess \ + ) + apache_args+=("${1//apache-/}" "$2") + shift + ;; + + # Specific NGINX flags + --nginx-additional-configuration) + nginx_args+=("${1//nginx-/}" "$2") + shift + ;; + + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + read -r -a web_servers <<< "$(web_server_list)" + for web_server in "${web_servers[@]}"; do + args_var="${web_server}_args[@]" + web_server_execute "$web_server" "ensure_${web_server}_prefix_configuration_exists" "${!args_var}" + done +} + +######################## +# Ensure a web server application configuration is updated with the runtime configuration (i.e. ports) +# It serves as a wrapper for the specific web server function +# Globals: +# * +# Arguments: +# $1 - App name +# Flags: +# --hosts - Hosts to enable +# --enable-https - Update HTTPS app configuration +# --http-port - HTTP port number +# --https-port - HTTPS port number +# Returns: +# true if the configuration was updated, false otherwise +######################## +web_server_update_app_configuration() { + local app="${1:?missing app}" + shift + local -a args web_servers + args=("$app") + # Validate arguments + while [[ "$#" -gt 0 ]]; do + case "$1" in + # Common flags + --hosts \ + | --enable-https \ + | --http-port \ + | --https-port \ + ) + args+=("$1" "${2:?missing value}") + shift + ;; + + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + read -r -a web_servers <<< "$(web_server_list)" + for web_server in "${web_servers[@]}"; do + web_server_execute "$web_server" "${web_server}_update_app_configuration" "${args[@]}" + done +} + +######################## +# Enable loading page, which shows users that the initialization process is not yet completed +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_enable_loading_page() { + ensure_web_server_app_configuration_exists "__loading" --hosts "_default_" \ + --apache-additional-configuration " +# Show a HTTP 503 Service Unavailable page by default +RedirectMatch 503 ^/$ +# Show index.html if server is answering with 404 Not Found or 503 Service Unavailable status codes +ErrorDocument 404 /index.html +ErrorDocument 503 /index.html" \ + --nginx-additional-configuration " +# Show a HTTP 503 Service Unavailable page by default +location / { + return 503; +} +# Show index.html if server is answering with 404 Not Found or 503 Service Unavailable status codes +error_page 404 @installing; +error_page 503 @installing; +location @installing { + rewrite ^(.*)$ /index.html break; +}" + web_server_reload +} + +######################## +# Enable loading page, which shows users that the initialization process is not yet completed +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +web_server_disable_install_page() { + ensure_web_server_app_configuration_not_exists "__loading" + web_server_reload +} diff --git a/bitnami/wordpress/5/debian-10/prebuildfs/usr/sbin/bitnami-pkg b/bitnami/wordpress/5/debian-10/prebuildfs/usr/sbin/bitnami-pkg deleted file mode 100755 index 775126332da4..000000000000 --- a/bitnami/wordpress/5/debian-10/prebuildfs/usr/sbin/bitnami-pkg +++ /dev/null @@ -1,222 +0,0 @@ -#!/bin/bash -e -. /opt/bitnami/base/functions - -print_usage() { - log "Usage: bitnami-pkg - [OPTIONS] -- [ARGS]" - log "" - log "Download and install Bitnami packages" - log "" - log "Commands:" - log " install Download and install a package." - log " unpack Download and unpack a package." - log "" - log "Options:" - log " -b, --bucket Package release bucket (default: stacksmith)." - log " -c, --checksum SHA256 verification checksum." - log " -h, --help Show this help message and exit." - log "" - log "If the package is already available in the /tmp/bitnami/pkg/cache/" - log "directory, the download will be skipped. If there is a corresponding" - log "file of the same name post-fixed with .sha256 in the directory," - log "that sha will be used instead of the --checksum option." - log "" - log "Examples:" - log " - Unpack package" - log " \$ bitnami-pkg unpack nginx-1.9.10-0" - log "" - log " - Verify and Install package" - log " \$ bitnami-pkg install nginx-1.9.10-0 --checksum 15565d06b18c2e3710fc08e579ddb3d0e39aa663264a0f7404f0743cb4cdb58d" - log "" - log " - Install package with arguments" - log " \$ bitnami-pkg install mariadb-10.1.11-0 -- --password bitnami" - log "" - log " - Install package from testing" - log " \$ bitnami-pkg install mariadb-10.1.11-0 --bucket testing" - log "" -} - -identify_distro() { - distro="${IMAGE_OS:-unknown}" - if [ "${distro}" == "unknown" -a -f /etc/os-release ]; then - distro="$(grep "^ID=" /etc/os-release | cut -d'=' -f2 | cut -d'"' -f2)-$(grep "^VERSION_ID=" /etc/os-release | cut -d'=' -f2 | cut -d'"' -f2 | cut -d'.' -f1)" - fi - echo "$distro" -} - -identify_arch() { - local arch=$(uname -m) - - case "${arch}" in - ppc64le) ;; - # no-op - x86_64) - case $(identify_distro) in - debian-*) - arch=amd64 - ;; - ubuntu-*) - arch=amd64 - ;; - ol-*) - arch=x86_64 - ;; - centos-*) - arch=x86_64 - ;; - rhel-*) - arch=x86_64 - ;; - photon-*) - arch=x86_64 - ;; - esac - ;; - *) - arch="unknown" - ;; - esac - echo $arch -} - -# break up command line for easy parsing and check legal options -ARGS=$(getopt -o b:c:h -l "bucket:,checksum:,help" -n "bitnami-pkg" -- "$@") -if [ $? -ne 0 ]; then - exit 1 -fi - -eval set -- "$ARGS" -while true; do - case "$1" in - -b | --bucket) - shift - if [ -n "$1" ]; then - RELEASE_BUCKET=$1 - shift - fi - ;; - -c | --checksum) - shift - if [ -n "$1" ]; then - PACKAGE_SHA256=$1 - shift - fi - ;; - -h | --help) - print_usage - exit 0 - ;; - --) - shift - break - ;; - esac -done - -# weed out unrecognized commands -case "$1" in -install | unpack) ;; -*) - error "Unrecognized command: $1" - print_usage - exit 1 - ;; -esac - -# install/unpack command need to be supplied a package name -if [ $# -lt 2 ]; then - print_usage - exit 1 -fi - -INSTALL_ROOT=/tmp/bitnami/pkg/install -CACHE_ROOT=/tmp/bitnami/pkg/cache - -PACKAGE="$2-linux-$(identify_arch)-$(identify_distro)" -PACKAGE_ARGS=${@:3} -PACKAGE_NAME=$(echo $PACKAGE | sed 's/-[0-9].*//') -RELEASE_BUCKET=${RELEASE_BUCKET:-stacksmith} - -mkdir -p $INSTALL_ROOT -cd $INSTALL_ROOT - -info "Downloading $PACKAGE package" -if [ -f $CACHE_ROOT/$PACKAGE.tar.gz ]; then - info "$CACHE_ROOT/$PACKAGE.tar.gz already exists, skipping download." - cp $CACHE_ROOT/$PACKAGE.tar.gz . - if [ -f $CACHE_ROOT/$PACKAGE.tar.gz.sha256 ]; then - info "Using the local sha256 from $CACHE_ROOT/$PACKAGE.tar.gz.sha256" - PACKAGE_SHA256=$(cat $CACHE_ROOT/$PACKAGE.tar.gz.sha256) - fi -else - # display cURL progress bar when a tty is attached - if tty -s; then - CURL_ARGS="-#" - else - CURL_ARGS="-sS" - fi - if ! curl $CURL_ARGS -LOf "https://downloads.bitnami.com/files/$RELEASE_BUCKET/$PACKAGE.tar.gz"; then - warn "Package name '$PACKAGE' does not exist, will try '${PACKAGE%-$(identify_distro)}'..." - if curl $CURL_ARGS -LOf "https://downloads.bitnami.com/files/$RELEASE_BUCKET/${PACKAGE%-$(identify_distro)}.tar.gz"; then - PACKAGE="${PACKAGE%-$(identify_distro)}" - else - error "Could not find the requested package..." - exit 1 - fi - fi -fi - -if ! tar tzf $PACKAGE.tar.gz >/dev/null 2>&1; then - error "Invalid or corrupt '$PACKAGE' package." - exit 1 -fi - -if [ "$PACKAGE_SHA256" ]; then - info "Verifying package integrity" - echo "$PACKAGE_SHA256 $PACKAGE.tar.gz" | sha256sum -c - -fi - -# If the tarball has too many files, it can trigger a bug -# in overlayfs when using tar. Install bsdtar in the container image -# to workaround it. As the overhead is too big (~40 MB), it is not added by -# default. Source: https://github.com/coreos/bugs/issues/1095 -if which bsdtar >/dev/null 2>&1; then - bsdtar -xf $PACKAGE.tar.gz -else - tar xzf $PACKAGE.tar.gz -fi - -case "$1" in -install) info "Installing $PACKAGE" ;; -unpack) info "Unpacking $PACKAGE" ;; -esac - -nami $1 $PACKAGE $PACKAGE_ARGS - -if [[ $PACKAGE =~ git-.* ]]; then - # Due to a nami unpack issue, git binaries are copied instead of using hard symlinks. - # This workaround overwrites these binaries with the original ones, preserving links - # and saving ~500 MB - info "Patching ${PACKAGE}" - cp -a --force "${INSTALL_ROOT}/${PACKAGE}/files/git/." "/opt/bitnami/git" -fi - -rm -rf $INSTALL_ROOT - -if [ "$BITNAMI_PKG_EXTRA_DIRS" ]; then - info "Creating extra directories" - for i in ${BITNAMI_PKG_EXTRA_DIRS}; do - mkdir -p $i - done -fi - -if [ "$BITNAMI_PKG_CHMOD" ]; then - DIRS="/.nami /bitnami $BITNAMI_PKG_EXTRA_DIRS" - if ! [[ $PACKAGE_NAME =~ .*-client ]]; then - mkdir -p /bitnami/$PACKAGE_NAME - fi - # We need to be in $HOME in order to nami inspect works - cd $HOME - DIRS+=" $(nami inspect $PACKAGE_NAME | grep -e '"installdir"' | cut -f4 -d\")" - info "Fixing permissions: chmod $BITNAMI_PKG_CHMOD $DIRS" - chmod $BITNAMI_PKG_CHMOD $DIRS -fi diff --git a/bitnami/wordpress/5/debian-10/rootfs/apache-init.sh b/bitnami/wordpress/5/debian-10/rootfs/apache-init.sh deleted file mode 100644 index b22b41cc9e72..000000000000 --- a/bitnami/wordpress/5/debian-10/rootfs/apache-init.sh +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/bash - -# Check whether Apache ports must be configured -if [[ -n "${APACHE_HTTP_PORT_NUMBER:-}" || -n "${APACHE_HTTPS_PORT_NUMBER:-}" ]]; then - export APACHE_ENABLE_CUSTOM_PORTS="yes" -fi - -# Copy vhosts file -if [[ "$(ls -A /vhosts 2>/dev/null)" ]]; then - info "Found vhost definitions in /vhosts. Copying them to /opt/bitnami/apache/conf/vhosts" - cp -r /vhosts/* /opt/bitnami/apache/conf/vhosts -fi - -# Mount certificate files -if [[ -d "/opt/bitnami/apache/certs" ]]; then - warn "The directory '/opt/bitnami/apache/certs' was externally mounted. This is a legacy configuration and will be deprecated soon. Please mount certificate files at '/opt/bitnami/apache/conf/bitnami/certs' instead. Find an example at: https://github.com/bitnami/bitnami-docker-apache#using-custom-ssl-certificates" - warn "Restoring certificates at '/opt/bitnami/apache/certs' to '/opt/bitnami/apache/conf/bitnami/certs'..." - rm -rf /opt/bitnami/apache/conf/bitnami/certs - ln -sf /opt/bitnami/apache/certs /opt/bitnami/apache/conf/bitnami/certs -elif [ "$(ls -A /certs 2>/dev/null)" ]; then - info "Mounting certificates files from /certs..." - rm -rf /opt/bitnami/apache/conf/bitnami/certs - ln -sf /certs /opt/bitnami/apache/conf/bitnami/certs -fi diff --git a/bitnami/wordpress/5/debian-10/rootfs/apache-inputs.json b/bitnami/wordpress/5/debian-10/rootfs/apache-inputs.json deleted file mode 100644 index 77ab9593775e..000000000000 --- a/bitnami/wordpress/5/debian-10/rootfs/apache-inputs.json +++ /dev/null @@ -1,5 +0,0 @@ -{ - "enableCustomPorts": "{{$global.env.APACHE_ENABLE_CUSTOM_PORTS}}", - "httpPort": "{{$global.env.APACHE_HTTP_PORT_NUMBER}}", - "httpsPort": "{{$global.env.APACHE_HTTPS_PORT_NUMBER}}" -} \ No newline at end of file diff --git a/bitnami/wordpress/5/debian-10/rootfs/app-entrypoint.sh b/bitnami/wordpress/5/debian-10/rootfs/app-entrypoint.sh deleted file mode 100755 index b074933e6f41..000000000000 --- a/bitnami/wordpress/5/debian-10/rootfs/app-entrypoint.sh +++ /dev/null @@ -1,16 +0,0 @@ -#!/bin/bash -e - -. /opt/bitnami/base/functions -. /opt/bitnami/base/helpers - -print_welcome_page - -if [[ "$1" == "nami" && "$2" == "start" ]] || [[ "$1" == "httpd" ]]; then - . /apache-init.sh - . /wordpress-init.sh - nami_initialize apache mysql-client wordpress - info "Starting gosu... " - . /post-init.sh -fi - -exec tini -- "$@" diff --git a/bitnami/wordpress/5/debian-10/rootfs/mysql-client-inputs.json b/bitnami/wordpress/5/debian-10/rootfs/mysql-client-inputs.json deleted file mode 100644 index eee1b745ba79..000000000000 --- a/bitnami/wordpress/5/debian-10/rootfs/mysql-client-inputs.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "allowEmptyPassword": "{{$global.env.ALLOW_EMPTY_PASSWORD}}", - "createDatabaseName": "{{$global.env.MYSQL_CLIENT_CREATE_DATABASE_NAME}}", - "createDatabasePassword": "{{$global.env.MYSQL_CLIENT_CREATE_DATABASE_PASSWORD}}", - "createDatabasePrivileges": "{{$global.env.MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES}}", - "createDatabaseUser": "{{$global.env.MYSQL_CLIENT_CREATE_DATABASE_USER}}", - "host": "{{$global.env.MARIADB_HOST}}", - "port": "{{$global.env.MARIADB_PORT_NUMBER}}", - "rootPassword": "{{$global.env.MARIADB_ROOT_PASSWORD}}", - "rootUser": "{{$global.env.MARIADB_ROOT_USER}}", - "sslCAFile": "{{$global.env.MYSQL_CLIENT_SSL_CA_FILE}}", - "sslEnable": "{{$global.env.MYSQL_CLIENT_ENABLE_SSL}}" -} \ No newline at end of file diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.crt b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.crt new file mode 100644 index 000000000000..466bbeab9ff4 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.crt @@ -0,0 +1,17 @@ +-----BEGIN CERTIFICATE----- +MIICqDCCAZACCQCz8T3726LYsjANBgkqhkiG9w0BAQUFADAWMRQwEgYDVQQDDAtl +eGFtcGxlLmNvbTAeFw0xMjExMTQxMTE4MjdaFw0yMjExMTIxMTE4MjdaMBYxFDAS +BgNVBAMMC2V4YW1wbGUuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC +AQEA5NHl5TfZtO6zugau2tp5mWIcQYJhuwKTmYeXDLYAGJpoD2SixwPL5c8glneI +Rz1N2EQIZVeaWGbS0FLFlPdOkCkplpW9isYVC4XqKrk5b4HW4+YC+Cup0k+Kd4NM +eZOTUvWr5N6dIpdibkVumBc/pao8VtdwywlCL/PwGRsQtkXrRICzdtRa3MXqTmEF +foyVCGgBRtronlB9x4Plfb8Psk4GrPkjrWYgO8peKrl0O5+F+sYg7Gj95zCH73BQ +ANzCVNrgD9fs9cyx3ru9CUdEoIxAAJwQFkjm7xr6xqhIlSgnQ7B0uOSTNRcXY6rw +s+PxGneec/kRPRgzjC/QHY6n8QIDAQABMA0GCSqGSIb3DQEBBQUAA4IBAQBbyMqF +RDsX8zX1EW5qA8AQ8Jb2XqWrVeSO8blMV3WagJ2airMm3+c/82FCwsd/cZ08UXhA +/Kou0gi/F16tV26PiiUdp590Qao3d8H2qxc1rzzULimZPgxH4iA4vRyMHtyZN6h4 +7Fdn7O9xNMPu8siOz8rrzsEdEX5URbOMkDLCZsbTIUWVv2XmqrR0K10d5VuLWeLi +r+4G6c6jpa244WmqT9ClqceJ12G1Wnmezy7ybiW0l5M2iuIKFEiRP5Hj0J15o1I2 +pXAbKysAdWRHsJSQOtcgO8Vh9k0wo3tKg4HDp1hbrEzoGzOv92Vjg3lG8X+hzbMJ +MQURotHkD4Gk57wL +-----END CERTIFICATE----- diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.key b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.key new file mode 100644 index 000000000000..1904ca7090ae --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/bitnami/certs/server.key @@ -0,0 +1,27 @@ +-----BEGIN RSA PRIVATE KEY----- +MIIEpAIBAAKCAQEA5NHl5TfZtO6zugau2tp5mWIcQYJhuwKTmYeXDLYAGJpoD2Si +xwPL5c8glneIRz1N2EQIZVeaWGbS0FLFlPdOkCkplpW9isYVC4XqKrk5b4HW4+YC ++Cup0k+Kd4NMeZOTUvWr5N6dIpdibkVumBc/pao8VtdwywlCL/PwGRsQtkXrRICz +dtRa3MXqTmEFfoyVCGgBRtronlB9x4Plfb8Psk4GrPkjrWYgO8peKrl0O5+F+sYg +7Gj95zCH73BQANzCVNrgD9fs9cyx3ru9CUdEoIxAAJwQFkjm7xr6xqhIlSgnQ7B0 +uOSTNRcXY6rws+PxGneec/kRPRgzjC/QHY6n8QIDAQABAoIBACo3G131tuGtpFTu +xLW11vdYZXQklNlGuWp63IBI162yVv54B5wF9Ek6tH1uIiNaiREcRBxGVEB4/+3V +R4SbN9Ba98RDbgu7TcipdTFaqOEMqFO1bNjSXWtip14zSBmqA2Ur1AHOnFj0awGD +J8tBhsmOpcEz0Ch1VdO5ApPvLV8jH9wQiMI/Q6yYQMtmzTMCUMYdMqe+LOziIOzL +oqN/WXnKL5E5TiO1bIxSpWPbT+IVn1c3/PShmvmRrLWsFUQlkwXJKMYZPO+rCCfe +b+Q9lMLMnj+vOnM3z16WC3aiiJGCZjVTvQ+x22YrBTRPxZmHO2eZ4H/cUQM7Y/tw +I7RjEM0CgYEA9Kxt1t8bWonzBii3P0rwyx0IECvg63k+pp4BpxpeWQKL7NVdSzk3 +AyJVcNjUoZgi2kVPdxzZGLrnZfuZ691xQB3oZF0LwBzQ4GFHkTRCB0s8ZA5lcJaI +9pBu91bhz2VOZSTeQWpdMMURjXVyTXZInU1mwzmjVOIAYmO33shH9gcCgYEA72mX +UoIrFPLkOTSZOb7UbjYH01vf6ThQiYCEWg7mD3CbY7n9oobIcQMzNnt7xN4wOl/V +eKfZ7G56q8enfqm45Dyo9aCBCENVzmwO8wLe5UnvJBNL20KjvtwG8w5A6UZQzC7p +3QS+U2zxVQNEeaE6a8Wrq2d1PlhVAHYw8odgNEcCgYBN38+58xrmrz99d1oTuAt5 +6kyVsRGOgPGS4HmQMRFUbT4R7DscZSKASd4945WRtTVqmWLYe4MRnvNlfzYXX0zb +ZmmAAClsRP+qWuwHaEWXwrd+9SIOOqtvJrta1/lZJFpWUOy4j10H18Flb7sosnwc +LPWHL4Iv0xriNfDg5Iga4wKBgQDLJBU59SkJBW+Q+oho7vrg6QeK15IOGbJ8eYfT +woCC6VFwNQh5N1QsUELMH8rNKJpTba18SzAl5ThBOY9tciVnw/C5Og9CK6BLHnUw +zWbDtxAq1BSxXsIB2EAtTBLX3MoB9myJFNVJhE7hi3w2mA8yEu+u6IIa/Ghjk+XE +ZAnFUQKBgQDjMinRZrK5wA09jcetI+dNiLnKHoQG6OaXDDsNCatex0O2F36BvVXE +P78qDz/i5aBMWsLx6VDvWJAkBIpZoNS5UsOn17tFaocGUSkcm48bs8Dn6VvsE8Bd +XMPAHyKuILlKYifBvNq5T22KhqKX7yGmk/AeOOiKr2KeMnh27JYrCA== +-----END RSA PRIVATE KEY----- diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/deflate.conf b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/deflate.conf new file mode 100644 index 000000000000..ca9bc1d6e4b6 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/deflate.conf @@ -0,0 +1,5 @@ + + AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css + AddOutputFilterByType DEFLATE application/x-javascript application/javascript application/ecmascript + AddOutputFilterByType DEFLATE application/rss+xml + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/vhosts/00_status-vhost.conf b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/vhosts/00_status-vhost.conf new file mode 100644 index 000000000000..c0838da2a4e5 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/apache/conf/vhosts/00_status-vhost.conf @@ -0,0 +1,7 @@ + + ServerName status.localhost + + Require local + SetHandler server-status + + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-env.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-env.sh new file mode 100644 index 000000000000..eec592498ecd --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-env.sh @@ -0,0 +1,76 @@ +#!/bin/bash +# +# Environment configuration for apache + +# The values for all environment variables will be set in the below order of precedence +# 1. Custom environment variables defined below after Bitnami defaults +# 2. Constants defined in this file (environment variables with no default), i.e. BITNAMI_ROOT_DIR +# 3. Environment variables overridden via external files using *_FILE variables (see below) +# 4. Environment variables set externally (i.e. current Bash context/Dockerfile/userdata) + +# Load logging library +. /opt/bitnami/scripts/liblog.sh + +export BITNAMI_ROOT_DIR="/opt/bitnami" +export BITNAMI_VOLUME_DIR="/bitnami" + +# Logging configuration +export MODULE="${MODULE:-apache}" +export BITNAMI_DEBUG="${BITNAMI_DEBUG:-false}" + +# By setting an environment variable matching *_FILE to a file path, the prefixed environment +# variable will be overridden with the value specified in that file +apache_env_vars=( + APACHE_HTTP_PORT_NUMBER + APACHE_HTTPS_PORT_NUMBER + APACHE_HTTP_PORT + APACHE_HTTPS_PORT +) +for env_var in "${apache_env_vars[@]}"; do + file_env_var="${env_var}_FILE" + if [[ -n "${!file_env_var:-}" ]]; then + if [[ -r "${!file_env_var:-}" ]]; then + export "${env_var}=$(< "${!file_env_var}")" + unset "${file_env_var}" + else + warn "Skipping export of '${env_var}'. '${!file_env_var:-}' is not readable." + fi + fi +done +unset apache_env_vars +export WEB_SERVER_TYPE="apache" + +# Paths +export APACHE_BASE_DIR="${BITNAMI_ROOT_DIR}/apache" +export APACHE_BIN_DIR="${APACHE_BASE_DIR}/bin" +export APACHE_CONF_DIR="${APACHE_BASE_DIR}/conf" +export APACHE_HTDOCS_DIR="${APACHE_BASE_DIR}/htdocs" +export APACHE_TMP_DIR="${APACHE_BASE_DIR}/var/run" +export APACHE_LOGS_DIR="${APACHE_BASE_DIR}/logs" +export APACHE_VHOSTS_DIR="${APACHE_CONF_DIR}/vhosts" +export APACHE_HTACCESS_DIR="${APACHE_VHOSTS_DIR}/htaccess" +export APACHE_MOD_PAGESPEED_CACHE_DIR="${APACHE_BASE_DIR}/var/cache" +export APACHE_CONF_FILE="${APACHE_CONF_DIR}/httpd.conf" +export APACHE_PID_FILE="${APACHE_TMP_DIR}/httpd.pid" +export PATH="${APACHE_BIN_DIR}:${BITNAMI_ROOT_DIR}/common/bin:${PATH}" + +# System users (when running with a privileged user) +export APACHE_DAEMON_USER="daemon" +export WEB_SERVER_DAEMON_USER="$APACHE_DAEMON_USER" +export APACHE_DAEMON_GROUP="daemon" +export WEB_SERVER_DAEMON_GROUP="$APACHE_DAEMON_GROUP" +export WEB_SERVER_GROUP="$APACHE_DAEMON_GROUP" + +# Apache configuration +export APACHE_DEFAULT_HTTP_PORT_NUMBER="8080" +export WEB_SERVER_DEFAULT_HTTP_PORT_NUMBER="$APACHE_DEFAULT_HTTP_PORT_NUMBER" # only used at build time +export APACHE_DEFAULT_HTTPS_PORT_NUMBER="8443" +export WEB_SERVER_DEFAULT_HTTPS_PORT_NUMBER="$APACHE_DEFAULT_HTTPS_PORT_NUMBER" # only used at build time +APACHE_HTTP_PORT_NUMBER="${APACHE_HTTP_PORT_NUMBER:-"${APACHE_HTTP_PORT:-}"}" +export APACHE_HTTP_PORT_NUMBER="${APACHE_HTTP_PORT_NUMBER:-}" +export WEB_SERVER_HTTP_PORT_NUMBER="$APACHE_HTTP_PORT_NUMBER" +APACHE_HTTPS_PORT_NUMBER="${APACHE_HTTPS_PORT_NUMBER:-"${APACHE_HTTPS_PORT:-}"}" +export APACHE_HTTPS_PORT_NUMBER="${APACHE_HTTPS_PORT_NUMBER:-}" +export WEB_SERVER_HTTPS_PORT_NUMBER="$APACHE_HTTPS_PORT_NUMBER" + +# Custom environment variables may be defined below diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-modphp/postunpack.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-modphp/postunpack.sh new file mode 100755 index 000000000000..8b5bb7a7dd58 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache-modphp/postunpack.sh @@ -0,0 +1,37 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load libraries +. /opt/bitnami/scripts/libversion.sh +. /opt/bitnami/scripts/libapache.sh + +# Load Apache environment +. /opt/bitnami/scripts/apache-env.sh +. /opt/bitnami/scripts/php-env.sh + +# Enable required Apache modules +apache_enable_module "mpm_prefork_module" +php_version="$("${PHP_BIN_DIR}/php" -v | grep ^PHP | cut -d' ' -f2))" +php_major_version="$(get_sematic_version "$php_version" 1)" +if [[ "$php_major_version" -eq "8" ]]; then + apache_enable_module "php_module" "modules/libphp.so" +else + apache_enable_module "php${php_major_version}_module" "modules/libphp${php_major_version}.so" +fi + +# Disable incompatible Apache modules +apache_disable_module "mpm_event_module" + +# Write Apache configuration +apache_php_conf_file="${APACHE_CONF_DIR}/bitnami/php.conf" +cat > "$apache_php_conf_file" < + ServerAlias * + {{additional_configuration}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-https-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-https-vhost.conf.tpl new file mode 100644 index 000000000000..b7e33c754376 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-https-vhost.conf.tpl @@ -0,0 +1,8 @@ +{{before_vhost_configuration}} + + ServerAlias * + SSLEngine on + SSLCertificateFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.crt" + SSLCertificateKeyFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.key" + {{additional_configuration}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-prefix.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-prefix.conf.tpl new file mode 100644 index 000000000000..c895e537502a --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-generic-prefix.conf.tpl @@ -0,0 +1 @@ +{{additional_configuration}} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-http-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-http-vhost.conf.tpl new file mode 100644 index 000000000000..97bc1927b542 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-http-vhost.conf.tpl @@ -0,0 +1,13 @@ +{{before_vhost_configuration}} + + ServerAlias * + DocumentRoot {{document_root}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + {{extra_directory_configuration}} + + {{additional_configuration}} + {{htaccess_include}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-https-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-https-vhost.conf.tpl new file mode 100644 index 000000000000..c6debd7f56d4 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-https-vhost.conf.tpl @@ -0,0 +1,16 @@ +{{before_vhost_configuration}} + + ServerAlias * + SSLEngine on + SSLCertificateFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.crt" + SSLCertificateKeyFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.key" + DocumentRoot {{document_root}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + {{extra_directory_configuration}} + + {{additional_configuration}} + {{htaccess_include}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-prefix.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-prefix.conf.tpl new file mode 100644 index 000000000000..fc0f6c218196 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-prefix.conf.tpl @@ -0,0 +1,9 @@ +{{prefix_conf}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + {{extra_directory_configuration}} + +{{additional_configuration}} +{{htaccess_include}} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-http-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-http-vhost.conf.tpl new file mode 100644 index 000000000000..6c320e3f60e6 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-http-vhost.conf.tpl @@ -0,0 +1,6 @@ + + ServerAlias * + ProxyPass / {{proxy_address}} + ProxyPassReverse / {{proxy_address}} + {{additional_configuration}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-https-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-https-vhost.conf.tpl new file mode 100644 index 000000000000..2273f610dfad --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-https-vhost.conf.tpl @@ -0,0 +1,8 @@ + + ServerAlias * + SSLCertificateFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.crt" + SSLCertificateKeyFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.key" + ProxyPass / {{proxy_address}} + ProxyPassReverse / {{proxy_address}} + {{additional_configuration}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-prefix.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-prefix.conf.tpl new file mode 100644 index 000000000000..ffd0e72183c8 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-proxy-prefix.conf.tpl @@ -0,0 +1,10 @@ +{{prefix_conf}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + ProxyPass / {{proxy_address}} + ProxyPassReverse / {{proxy_address}} + {{extra_directory_configuration}} + +{{additional_configuration}} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-http-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-http-vhost.conf.tpl new file mode 100644 index 000000000000..e8a3788d8a62 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-http-vhost.conf.tpl @@ -0,0 +1,14 @@ +{{before_vhost_configuration}} +PassengerPreStart http://localhost:{{APACHE_DEFAULT_HTTP_PORT_NUMBER}}/ + + ServerAlias * + DocumentRoot {{document_root}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + PassengerEnabled on + {{extra_directory_configuration}} + + {{additional_configuration}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-https-vhost.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-https-vhost.conf.tpl new file mode 100644 index 000000000000..289a3b0959cd --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-https-vhost.conf.tpl @@ -0,0 +1,17 @@ +{{before_vhost_configuration}} +PassengerPreStart https://localhost:{{APACHE_DEFAULT_HTTPS_PORT_NUMBER}}/ + + ServerAlias * + SSLEngine on + SSLCertificateFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.crt" + SSLCertificateKeyFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.key" + DocumentRoot {{document_root}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + PassengerEnabled on + {{extra_directory_configuration}} + + {{additional_configuration}} + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-prefix.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-prefix.conf.tpl new file mode 100644 index 000000000000..2242d656b5a8 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/app-ruby-passenger-prefix.conf.tpl @@ -0,0 +1,9 @@ +{{prefix_conf}} + + Options -Indexes +FollowSymLinks -MultiViews + AllowOverride {{allow_override}} + {{acl_configuration}} + PassengerEnabled on + {{extra_directory_configuration}} + +{{additional_configuration}} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami-ssl.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami-ssl.conf.tpl new file mode 100644 index 000000000000..f1d31ed3ecc3 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami-ssl.conf.tpl @@ -0,0 +1,29 @@ +# Default SSL Virtual Host configuration. + + + LoadModule ssl_module modules/mod_ssl.so + + +Listen 443 +SSLProtocol all -SSLv2 -SSLv3 +SSLHonorCipherOrder on +SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS !EDH !RC4" +SSLPassPhraseDialog builtin +SSLSessionCache "shmcb:{{APACHE_LOGS_DIR}}/ssl_scache(512000)" +SSLSessionCacheTimeout 300 + + + DocumentRoot "{{APACHE_BASE_DIR}}/htdocs" + SSLEngine on + SSLCertificateFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.crt" + SSLCertificateKeyFile "{{APACHE_CONF_DIR}}/bitnami/certs/server.key" + + + Options Indexes FollowSymLinks + AllowOverride All + Require all granted + + + # Error Documents + ErrorDocument 503 /503.html + diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami.conf.tpl new file mode 100644 index 000000000000..6d3b22894445 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/bitnami-templates/bitnami.conf.tpl @@ -0,0 +1,18 @@ +# Default Virtual Host configuration. + +# Let Apache know we're behind a SSL reverse proxy +SetEnvIf X-Forwarded-Proto https HTTPS=on + + + DocumentRoot "{{APACHE_BASE_DIR}}/htdocs" + + Options Indexes FollowSymLinks + AllowOverride All + Require all granted + + + # Error Documents + ErrorDocument 503 /503.html + + +Include "{{APACHE_CONF_DIR}}/bitnami/bitnami-ssl.conf" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/entrypoint.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/entrypoint.sh new file mode 100755 index 000000000000..3d0e4ce6a903 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/entrypoint.sh @@ -0,0 +1,27 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +#set -o xtrace + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/libbitnami.sh +. /opt/bitnami/scripts/liblog.sh + +# Load Apache environment +. /opt/bitnami/scripts/apache-env.sh + +print_welcome_page + +if [[ "$*" == *"/opt/bitnami/scripts/apache/run.sh"* ]]; then + info "** Starting Apache setup **" + /opt/bitnami/scripts/apache/setup.sh + info "** Apache setup finished! **" +fi + +echo "" +exec "$@" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/postunpack.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/postunpack.sh new file mode 100755 index 000000000000..e7d67d19321d --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/postunpack.sh @@ -0,0 +1,115 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/liblog.sh + +######################## +# Sets up the default Bitnami configuration +# Globals: +# APACHE_* +# Arguments: +# None +# Returns: +# None +######################### +apache_setup_bitnami_config() { + local template_dir="${BITNAMI_ROOT_DIR}/scripts/apache/bitnami-templates" + + # Enable Apache modules + local -a modules_to_enable=( + "deflate_module" + "negotiation_module" + "proxy[^\s]*_module" + "rewrite_module" + "slotmem_shm_module" + "socache_shmcb_module" + "ssl_module" + "status_module" + "version_module" + ) + for module in "${modules_to_enable[@]}"; do + apache_enable_module "$module" + done + + # Disable Apache modules + local -a modules_to_disable=( + "http2_module" + "proxy_hcheck_module" + ) + for module in "${modules_to_disable[@]}"; do + apache_disable_module "$module" + done + + # Bitnami customizations + render-template "${template_dir}/bitnami.conf.tpl" > "${APACHE_CONF_DIR}/bitnami/bitnami.conf" + render-template "${template_dir}/bitnami-ssl.conf.tpl" > "${APACHE_CONF_DIR}/bitnami/bitnami-ssl.conf" + + # Add new configuration only once, to avoid a second postunpack run breaking Apache + local apache_conf_add + apache_conf_add="$(cat <>"$APACHE_CONF_FILE" < + RequestHeader unset Proxy + +EOF + fi +} + +# Load Apache environment +. /opt/bitnami/scripts/apache-env.sh + +apache_setup_bitnami_config + +# Ensure non-root user has write permissions on a set of directories +for dir in "$APACHE_TMP_DIR" "$APACHE_CONF_DIR" "$APACHE_LOGS_DIR" "$APACHE_VHOSTS_DIR" "$APACHE_HTACCESS_DIR" "$APACHE_HTDOCS_DIR" "$APACHE_MOD_PAGESPEED_CACHE_DIR"; do + ensure_dir_exists "$dir" + chmod -R g+rwX "$dir" +done + +# Create 'apache2' symlink pointing to the 'apache' directory, for compatibility with Bitnami Docs guides +ln -sf apache "${BITNAMI_ROOT_DIR}/apache2" + +ln -sf "/dev/stdout" "${APACHE_LOGS_DIR}/access_log" +ln -sf "/dev/stderr" "${APACHE_LOGS_DIR}/error_log" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/reload.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/reload.sh new file mode 100755 index 000000000000..3bf21a282611 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/reload.sh @@ -0,0 +1,18 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/liblog.sh + +# Load Apache environment +. /opt/bitnami/scripts/apache-env.sh + +info "** Reloading Apache configuration **" +exec "${APACHE_BIN_DIR}/apachectl" -k graceful diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/restart.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/restart.sh new file mode 100755 index 000000000000..8993aaa58d8e --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/restart.sh @@ -0,0 +1,17 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libapache.sh + +# Load Apache environment variables +. /opt/bitnami/scripts/apache-env.sh + +/opt/bitnami/scripts/apache/stop.sh +/opt/bitnami/scripts/apache/start.sh diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/run.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/run.sh new file mode 100755 index 000000000000..1ab422dd4c31 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/run.sh @@ -0,0 +1,18 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/liblog.sh + +# Load Apache environment +. /opt/bitnami/scripts/apache-env.sh + +info "** Starting Apache **" +exec "${APACHE_BIN_DIR}/httpd" -f "$APACHE_CONF_FILE" -D "FOREGROUND" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/setup.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/setup.sh new file mode 100755 index 000000000000..4aec08b33dd0 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/setup.sh @@ -0,0 +1,60 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load libraries +. /opt/bitnami/scripts/libapache.sh + +# Load Apache environment +. /opt/bitnami/scripts/apache-env.sh + +# Ensure Apache environment variables are valid +apache_validate + +# Ensure Apache daemon user exists when running as 'root' +am_i_root && ensure_user_exists "$APACHE_DAEMON_USER" --group "$APACHE_DAEMON_GROUP" + +# Copy vhosts files +if ! is_dir_empty "/vhosts"; then + info "Found mounted virtual hosts in '/vhosts'. Copying them to '${APACHE_BASE_DIR}/conf/vhosts'" + cp -Lr "/vhosts/." "${APACHE_VHOSTS_DIR}" +fi + +# Mount certificate files +if ! is_dir_empty "${APACHE_BASE_DIR}/certs"; then + warn "The directory '${APACHE_BASE_DIR}/certs' was externally mounted. This is a legacy configuration and will be deprecated soon. Please mount certificate files at '/certs' instead. Find an example at: https://github.com/bitnami/bitnami-docker-apache#using-custom-ssl-certificates" + warn "Restoring certificates at '${APACHE_BASE_DIR}/certs' to '${APACHE_CONF_DIR}/bitnami/certs'" + rm -rf "${APACHE_CONF_DIR}/bitnami/certs" + ln -sf "${APACHE_BASE_DIR}/certs" "${APACHE_CONF_DIR}/bitnami/certs" +elif ! is_dir_empty "/certs"; then + info "Mounting certificates files from '/certs'" + rm -rf "${APACHE_CONF_DIR}/bitnami/certs" + ln -sf "/certs" "${APACHE_CONF_DIR}/bitnami/certs" +fi + +# Mount application files +if ! is_dir_empty "/app"; then + info "Mounting application files from '/app'" + rm -rf "$APACHE_HTDOCS_DIR" + ln -sf "/app" "$APACHE_HTDOCS_DIR" +fi + +# Restore persisted configuration files (deprecated) +if ! is_dir_empty "/bitnami/apache/conf"; then + warn "The directory '/bitnami/apache/conf' was externally mounted. This is a legacy configuration and will be deprecated soon. Please mount certificate files at '${APACHE_CONF_DIR}' instead. Find an example at: https://github.com/bitnami/bitnami-docker-apache#full-configuration" + warn "Restoring configuration at '/bitnami/apache/conf' to '${APACHE_CONF_DIR}'" + rm -rf "$APACHE_CONF_DIR" + ln -sf "/bitnami/apache/conf" "$APACHE_CONF_DIR" +fi + +# Update ports in configuration +[[ -n "$APACHE_HTTP_PORT_NUMBER" ]] && info "Configuring the HTTP port" && apache_configure_http_port "$APACHE_HTTP_PORT_NUMBER" +[[ -n "$APACHE_HTTPS_PORT_NUMBER" ]] && info "Configuring the HTTPS port" && apache_configure_https_port "$APACHE_HTTPS_PORT_NUMBER" + +# Fix logging issue when running as root +! am_i_root || chmod o+w "$(readlink /dev/stdout)" "$(readlink /dev/stderr)" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/start.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/start.sh new file mode 100755 index 000000000000..fe3678079ed1 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/start.sh @@ -0,0 +1,32 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/liblog.sh + +# Load Apache environment variables +. /opt/bitnami/scripts/apache-env.sh + +error_code=0 + +if is_apache_not_running; then + "${APACHE_BIN_DIR}/httpd" -f "$APACHE_CONF_FILE" + if ! retry_while "is_apache_running"; then + error "apache did not start" + error_code=1 + else + info "apache started" + fi +else + info "apache is already running" +fi + +exit "$error_code" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/status.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/status.sh new file mode 100755 index 000000000000..c6f434dd4407 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/status.sh @@ -0,0 +1,21 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/liblog.sh + +# Load Apache environment variables +. /opt/bitnami/scripts/apache-env.sh + +if is_apache_running; then + info "apache is already running" +else + info "apache is not running" +fi diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/stop.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/stop.sh new file mode 100755 index 000000000000..6ac7f07e8797 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/apache/stop.sh @@ -0,0 +1,32 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libapache.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/liblog.sh + +# Load Apache environment variables +. /opt/bitnami/scripts/apache-env.sh + +error_code=0 + +if is_apache_running; then + BITNAMI_QUIET=1 apache_stop + if ! retry_while "is_apache_not_running"; then + error "apache could not be stopped" + error_code=1 + else + info "apache stopped" + fi +else + info "apache is not running" +fi + +exit "$error_code" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libapache.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libapache.sh new file mode 100644 index 000000000000..18146f226eeb --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libapache.sh @@ -0,0 +1,671 @@ +#!/bin/bash +# +# Bitnami Apache library + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/libfile.sh +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/libvalidations.sh +. /opt/bitnami/scripts/libservice.sh + +######################## +# Validate settings in APACHE_* env vars +# Globals: +# APACHE_* +# Arguments: +# None +# Returns: +# None +######################### +apache_validate() { + debug "Validating settings in APACHE_* environment variables" + local error_code=0 + + # Auxiliary functions + print_validation_error() { + error "$1" + error_code=1 + } + + check_allowed_port() { + local port_var="${1:?missing port variable}" + local -a validate_port_args=() + ! am_i_root && validate_port_args+=("-unprivileged") + validate_port_args+=("${!port_var}") + if ! err=$(validate_port "${validate_port_args[@]}"); then + print_validation_error "An invalid port was specified in the environment variable ${port_var}: ${err}." + fi + } + + [[ -w "$APACHE_CONF_FILE" ]] || warn "The Apache configuration file '${APACHE_CONF_FILE}' is not writable. Configurations based on environment variables will not be applied." + + if [[ -n "$APACHE_HTTP_PORT_NUMBER" ]] && [[ -n "$APACHE_HTTPS_PORT_NUMBER" ]]; then + if [[ "$APACHE_HTTP_PORT_NUMBER" -eq "$APACHE_HTTPS_PORT_NUMBER" ]]; then + print_validation_error "APACHE_HTTP_PORT_NUMBER and APACHE_HTTPS_PORT_NUMBER are bound to the same port!" + fi + fi + + [[ -n "$APACHE_HTTP_PORT_NUMBER" ]] && check_allowed_port APACHE_HTTP_PORT_NUMBER + [[ -n "$APACHE_HTTPS_PORT_NUMBER" ]] && check_allowed_port APACHE_HTTPS_PORT_NUMBER + + [[ "$error_code" -eq 0 ]] || exit "$error_code" +} + +######################## +# Configure Apache's HTTP port +# Globals: +# APACHE_CONF_FILE, APACHE_CONF_DIR +# Arguments: +# None +# Returns: +# None +######################### +apache_configure_http_port() { + local -r port=${1:?missing port} + local -r listen_exp="s|^\s*Listen\s+([^:]*:)?[0-9]+\s*$|Listen ${port}|" + local -r server_name_exp="s|^\s*#?\s*ServerName\s+([^:\s]+)(:[0-9]+)?$|ServerName \1:${port}|" + local -r vhost_exp="s|VirtualHost\s+([^:>]+)(:[0-9]+)|VirtualHost \1:${port}|" + local apache_configuration + + if [[ -w "$APACHE_CONF_FILE" ]]; then + debug "Configuring port ${port} on file ${APACHE_CONF_FILE}" + apache_configuration="$(sed -E -e "$listen_exp" -e "$server_name_exp" "$APACHE_CONF_FILE")" + echo "$apache_configuration" > "$APACHE_CONF_FILE" + fi + + if [[ -w "${APACHE_CONF_DIR}/bitnami/bitnami.conf" ]]; then + debug "Configuring port ${port} on file ${APACHE_CONF_DIR}/bitnami/bitnami.conf" + apache_configuration="$(sed -E "$vhost_exp" "${APACHE_CONF_DIR}/bitnami/bitnami.conf")" + echo "$apache_configuration" > "${APACHE_CONF_DIR}/bitnami/bitnami.conf" + fi + + if [[ -w "${APACHE_VHOSTS_DIR}/00_status-vhost.conf" ]]; then + debug "Configuring port ${port} on file ${APACHE_VHOSTS_DIR}/00_status-vhost.conf" + apache_configuration="$(sed -E "$vhost_exp" "${APACHE_VHOSTS_DIR}/00_status-vhost.conf")" + echo "$apache_configuration" > "${APACHE_VHOSTS_DIR}/00_status-vhost.conf" + fi +} + +######################## +# Configure Apache's HTTPS port +# Globals: +# APACHE_CONF_DIR +# Arguments: +# None +# Returns: +# None +######################### +apache_configure_https_port() { + local -r port=${1:?missing port} + local -r listen_exp="s|^\s*Listen\s+([^:]*:)?[0-9]+\s*$|Listen ${port}|" + local -r vhost_exp="s|VirtualHost\s+([^:>]+)(:[0-9]+)|VirtualHost \1:${port}|" + local apache_configuration + + if [[ -w "${APACHE_CONF_DIR}/bitnami/bitnami-ssl.conf" ]]; then + debug "Configuring port ${port} on file ${APACHE_CONF_DIR}/bitnami/bitnami-ssl.conf" + apache_configuration="$(sed -E -e "$listen_exp" -e "$vhost_exp" "${APACHE_CONF_DIR}/bitnami/bitnami-ssl.conf")" + echo "$apache_configuration" > "${APACHE_CONF_DIR}/bitnami/bitnami-ssl.conf" + fi +} + +######################## +# Enable a module in the Apache configuration file +# Globals: +# APACHE_CONF_FILE +# Arguments: +# $1 - Module to enable +# $2 - Path to module .so file (optional if already defined in httpd.conf) +# Returns: +# None +######################### +apache_enable_module() { + local -r name="${1:?missing name}" + local -r file="${2:-}" + local -r regex="[#\s]*(LoadModule\s+${name}\s+.*)$" + local apache_configuration + + if [[ -w "$APACHE_CONF_FILE" ]]; then + debug "Enabling module '${name}'" + if grep -q -E "$regex" "$APACHE_CONF_FILE"; then + # Uncomment line if the module was already defined + replace_in_file "$APACHE_CONF_FILE" "$regex" "\1" + elif [[ -n "$file" ]]; then + # Add right after the last LoadModule, so all Apache modules are organized in the same section of the file + append_file_after_last_match "$APACHE_CONF_FILE" "^[#\s]*LoadModule" "LoadModule ${name} ${file}" + else + error "Module ${name} was not defined in ${APACHE_CONF_FILE}. Please specify the 'file' parameter for 'apache_enable_module'." + fi + fi +} + +######################## +# Disable a module in the Apache configuration file +# Globals: +# APACHE_CONF_FILE +# Arguments: +# $1 - Module to disable +# Returns: +# None +######################### +apache_disable_module() { + local -r name="${1:?missing name}" + local -r file="${2:-}" + local -r regex="[#\s]*(LoadModule\s+${name}\s+.*)$" + local apache_configuration + + if [[ -w "$APACHE_CONF_FILE" ]]; then + debug "Disabling module '${name}'" + replace_in_file "$APACHE_CONF_FILE" "$regex" "#\1" + fi +} + +######################## +# Stop Apache +# Globals: +# APACHE_* +# Arguments: +# None +# Returns: +# None +######################### +apache_stop() { + is_apache_not_running && return + stop_service_using_pid "$APACHE_PID_FILE" +} + +######################## +# Check if Apache is running +# Globals: +# APACHE_PID_FILE +# Arguments: +# None +# Returns: +# Whether Apache is running +######################## +is_apache_running() { + local pid + pid="$(get_pid_from_file "$APACHE_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if Apache is running +# Globals: +# APACHE_PID_FILE +# Arguments: +# None +# Returns: +# Whether Apache is not running +######################## +is_apache_not_running() { + ! is_apache_running +} + +######################## +# Ensure configuration gets added to the main Apache configuration file +# Globals: +# APACHE_* +# Arguments: +# $1 - configuration string +# $2 - pattern to use for checking if the configuration already exists (default: $1) +# Returns: +# None +######################## +ensure_apache_configuration_exists() { + local -r conf="${1:?conf missing}" + local -r pattern="${2:-"$conf"}" + # Enable configuration by appending to httpd.conf + if ! grep -E -q "$pattern" "$APACHE_CONF_FILE"; then + if is_file_writable "$APACHE_CONF_FILE"; then + cat >> "$APACHE_CONF_FILE" <<< "$conf" + else + error "Could not add the following configuration to '${APACHE_CONF_FILE}:" + error "" + error "$(indent "$conf" 4)" + error "" + error "Include the configuration manually and try again." + return 1 + fi + fi +} + +######################## +# Collect all the .htaccess files from /opt/bitnami/$name and write the result in the 'htaccess' directory +# Globals: +# APACHE_* +# Arguments: +# $1 - App name +# $2 - Overwrite the original .htaccess with the explanation text (defaults to 'yes') +# Flags: +# --document-root - Path to document root directory +# Returns: +# None +######################## +apache_replace_htaccess_files() { + local -r app="${1:?missing app}" + local -r result_file="${APACHE_HTACCESS_DIR}/${app}-htaccess.conf" + # Default options + local document_root="${BITNAMI_ROOT_DIR}/${app}" + local overwrite="yes" + local -a htaccess_files + local htaccess_dir + local htaccess_contents + # Validate arguments + shift + while [[ "$#" -gt 0 ]]; do + case "$1" in + --document-root) + shift + document_root="$1" + ;; + --overwrite) + shift + overwrite="$1" + ;; + *) + echo "Invalid command line flag ${1}" >&2 + return 1 + ;; + esac + shift + done + if is_file_writable "$result_file"; then + # Locate all .htaccess files inside the document root + read -r -a htaccess_files <<< "$(find "$document_root" -name .htaccess -print0 | xargs -0)" + [[ "${#htaccess_files[@]}" = 0 ]] && return + # Create file with root group write privileges, so it can be modified in non-root containers + [[ ! -f "$result_file" ]] && touch "$result_file" && chmod g+rw "$result_file" + for htaccess_file in "${htaccess_files[@]}"; do + htaccess_dir="$(dirname "$htaccess_file")" + htaccess_contents="$(indent "$(< "$htaccess_file")" 2)" + # Skip if it was already included to the resulting htaccess file + if grep -q "^" <<< "$htaccess_contents"; then + continue + fi + # Add to the htaccess file + cat >> "$result_file" < +${htaccess_contents} + +EOF + # Overwrite the original .htaccess with the explanation text + if is_boolean_yes "$overwrite"; then + echo "# This configuration has been moved to the ${result_file} config file for performance and security reasons" > "$htaccess_file" + fi + done + elif [[ ! -f "$result_file" ]]; then + error "Could not create htaccess for ${app} at '${result_file}'. Check permissions and ownership for parent directories." + return 1 + else + warn "The ${app} htaccess file '${result_file}' is not writable. Configurations based on environment variables will not be applied for this file." + return + fi +} + +######################## +# Ensure an Apache application configuration exists (in virtual host format) +# Globals: +# APACHE_* +# Arguments: +# $1 - App name +# Flags: +# --hosts - Hosts to enable +# --type - Application type, which has an effect on what configuration template will be used, allowed values: php, (empty) +# --allow-remote-connections - Whether to allow remote connections or to require local connections +# --disabled - Whether to render the file with a .disabled prefix +# --enable-https - Enable app configuration on HTTPS port +# --http-port - HTTP port number +# --https-port - HTTPS port number +# --move-htaccess - Move .htaccess files to a common place so they can be loaded during Apache startup +# --additional-configuration - Additional vhost configuration (no default) +# --before-vhost-configuration - Configuration to add before the directive (no default) +# --allow-override - Whether to allow .htaccess files (only allowed when --move-htaccess is set to 'no') +# --document-root - Path to document root directory +# --extra-directory-configuration - Extra configuration for the document root directory +# Returns: +# true if the configuration was enabled, false otherwise +######################## +ensure_apache_app_configuration_exists() { + local -r app="${1:?missing app}" + # Default options + local -a hosts=("127.0.0.1" "_default_") + local type="" + local allow_remote_connections="yes" + local disabled="no" + local enable_https="yes" + local http_port="${APACHE_HTTP_PORT_NUMBER:-"$APACHE_DEFAULT_HTTP_PORT_NUMBER"}" + local https_port="${APACHE_HTTPS_PORT_NUMBER:-"$APACHE_DEFAULT_HTTPS_PORT_NUMBER"}" + local move_htaccess="yes" + local var_name + # Template variables defaults + export additional_configuration="" + export before_vhost_configuration="" + export allow_override="All" + export document_root="${BITNAMI_ROOT_DIR}/${app}" + export extra_directory_configuration="" + export proxy_address="" + # Validate arguments + shift + while [[ "$#" -gt 0 ]]; do + case "$1" in + --hosts) + shift + read -r -a hosts <<< "$1" + ;; + --type \ + | --allow-remote-connections \ + | --disabled \ + | --enable-https \ + | --http-port \ + | --https-port \ + | --move-htaccess \ + | --additional-configuration \ + | --before-vhost-configuration \ + | --allow-override \ + | --document-root \ + | --extra-directory-configuration \ + | --proxy-address \ + ) + var_name="$(echo "$1" | sed -e "s/^--//" -e "s/-/_/g")" + shift + export "${var_name}"="$1" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + # Construct host string in the format of "host1:port1[ host2:port2[ ...]]" + export http_listen_addresses="" + export https_listen_addresses="" + for host in "${hosts[@]}"; do + http_listen="${host}:${http_port}" + https_listen="${host}:${https_port}" + [[ -z "${http_listen_addresses:-}" ]] && http_listen_addresses="$http_listen" || http_listen_addresses="${http_listen_addresses} ${http_listen}" + [[ -z "${https_listen_addresses:-}" ]] && https_listen_addresses="$https_listen" || https_listen_addresses="${https_listen_addresses} ${https_listen}" + done + # App .htaccess support + export htaccess_include + is_boolean_yes "$move_htaccess" && apache_replace_htaccess_files "$app" --document-root "$document_root" + if [[ -f "${APACHE_HTACCESS_DIR}/${app}-htaccess.conf" ]]; then + allow_override="None" + htaccess_include="Include \"${APACHE_HTACCESS_DIR}/${app}-htaccess.conf\"" + else + allow_override="$allow_override" + htaccess_include="" + fi + # ACL configuration + export acl_configuration + if is_boolean_yes "$allow_remote_connections"; then + acl_configuration="Require all granted" + else + acl_configuration="$(cat < "$http_vhost" + elif [[ ! -f "$http_vhost" ]]; then + error "Could not create virtual host for ${app} at '${http_vhost}'. Check permissions and ownership for parent directories." + return 1 + else + warn "The ${app} virtual host file '${http_vhost}' is not writable. Configurations based on environment variables will not be applied for this file." + fi + if is_boolean_yes "$enable_https"; then + if is_file_writable "$https_vhost"; then + # Create file with root group write privileges, so it can be modified in non-root containers + [[ ! -f "$https_vhost" ]] && touch "$https_vhost" && chmod g+rw "$https_vhost" + render-template "${template_dir}/${template_name}-https-vhost.conf.tpl" | sed '/^\s*$/d' > "$https_vhost" + elif [[ ! -f "$https_vhost" ]]; then + error "Could not create virtual host for ${app} at '${https_vhost}'. Check permissions and ownership for parent directories." + return 1 + else + warn "The ${app} virtual host file '${https_vhost}' is not writable. Configurations based on environment variables will not be applied for this file." + fi + fi +} + +######################## +# Ensure an Apache application configuration does not exist anymore (in virtual hosts format) +# Globals: +# * +# Arguments: +# $1 - App name +# Returns: +# true if the configuration was disabled, false otherwise +######################## +ensure_apache_app_configuration_not_exists() { + local -r app="${1:?missing app}" + local -r http_vhost="${APACHE_VHOSTS_DIR}/${app}-vhost.conf" + local -r https_vhost="${APACHE_VHOSTS_DIR}/${app}-https-vhost.conf" + # Note that 'rm -f' will not fail if the files don't exist + # However if we lack permissions to remove the file, it will result in a non-zero exit code, as expected by this function + rm -f "$http_vhost" "$https_vhost" +} + +######################## +# Ensure Apache loads the configuration for an application in a URL prefix +# Globals: +# APACHE_* +# Arguments: +# $1 - App name +# Flags: +# --type - Application type, which has an effect on what configuration template will be used, allowed values: php, (empty) +# --allow-remote-connections - Whether to allow remote connections or to require local connections +# --move-htaccess - Move .htaccess files to a common place so they can be loaded during Apache startup +# --prefix - URL prefix from where it will be accessible (i.e. /myapp) +# --additional-configuration - Additional vhost configuration (no default) +# --allow-override - Whether to allow .htaccess files (only allowed when --move-htaccess is set to 'no') +# --document-root - Path to document root directory +# --extra-directory-configuration - Extra configuration for the document root directory +# Returns: +# true if the configuration was enabled, false otherwise +######################## +ensure_apache_prefix_configuration_exists() { + local -r app="${1:?missing app}" + # Default options + local type="" + local allow_remote_connections="yes" + local move_htaccess="yes" + local prefix="/${app}" + local var_name + # Template variables defaults + export additional_configuration="" + export allow_override="All" + export document_root="${BITNAMI_ROOT_DIR}/${app}" + export extra_directory_configuration="" + # Validate arguments + shift + while [[ "$#" -gt 0 ]]; do + case "$1" in + --type \ + | --allow-remote-connections \ + | --move-htaccess \ + | --prefix \ + | --additional-configuration \ + | --allow-override \ + | --document-root \ + | --extra-directory-configuration \ + ) + var_name="$(echo "$1" | sed -e "s/^--//" -e "s/-/_/g")" + shift + declare "${var_name}"="$1" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + # App .htaccess support + export htaccess_include + is_boolean_yes "$move_htaccess" && apache_replace_htaccess_files "$app" --document-root "$document_root" + if [[ -f "${APACHE_HTACCESS_DIR}/${app}-htaccess.conf" ]]; then + allow_override="None" + htaccess_include="Include \"${APACHE_HTACCESS_DIR}/${app}-htaccess.conf\"" + else + allow_override="$allow_override" + htaccess_include="" + fi + # ACL configuration + export acl_configuration + if is_boolean_yes "$allow_remote_connections"; then + acl_configuration="Require all granted" + else + acl_configuration="$(cat < "$prefix_file" + ensure_apache_configuration_exists "Include \"$prefix_file\"" + elif [[ ! -f "$prefix_file" ]]; then + error "Could not create web server configuration file for ${app} at '${prefix_file}'. Check permissions and ownership for parent directories." + return 1 + else + warn "The ${app} web server configuration file '${prefix_file}' is not writable. Configurations based on environment variables will not be applied for this file." + fi +} + +######################## +# Ensure Apache application configuration is updated with the runtime configuration (i.e. ports) +# Globals: +# * +# Arguments: +# $1 - App name +# Flags: +# --hosts - Hosts to enable +# --enable-https - Update HTTPS app configuration +# --http-port - HTTP port number +# --https-port - HTTPS port number +# Returns: +# true if the configuration was updated, false otherwise +######################## +apache_update_app_configuration() { + local -r app="${1:?missing app}" + # Default options + local -a hosts=("127.0.0.1" "_default_") + local enable_https="yes" + local http_port="${APACHE_HTTP_PORT_NUMBER:-"$APACHE_DEFAULT_HTTP_PORT_NUMBER"}" + local https_port="${APACHE_HTTPS_PORT_NUMBER:-"$APACHE_DEFAULT_HTTPS_PORT_NUMBER"}" + # Validate arguments + shift + while [[ "$#" -gt 0 ]]; do + case "$1" in + --hosts) + shift + read -r -a hosts <<< "$1" + ;; + + # Common flags + --enable-https \ + | --http-port \ + | --https-port \ + ) + args+=("$1" "$2") + shift + ;; + + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + # Construct host string in the format of "host1:port1[ host2:port2[ ...]]" + export http_listen_addresses="" + export https_listen_addresses="" + for host in "${hosts[@]}"; do + http_listen="${host}:${http_port}" + https_listen="${host}:${https_port}" + [[ -z "${http_listen_addresses:-}" ]] && http_listen_addresses="$http_listen" || http_listen_addresses="${http_listen_addresses} ${http_listen}" + [[ -z "${https_listen_addresses:-}" ]] && https_listen_addresses="$https_listen" || https_listen_addresses="${https_listen_addresses} ${https_listen}" + done + # Update configuration + local -r http_vhost="${APACHE_VHOSTS_DIR}/${app}-vhost.conf" + local -r https_vhost="${APACHE_VHOSTS_DIR}/${app}-https-vhost.conf" + if is_file_writable "$http_vhost"; then + replace_in_file "$http_vhost" "^$" "" + else + warn "The ${app} virtual host file '${http_vhost}' is not writable. Configurations based on environment variables will not be applied for this file." + fi + if is_boolean_yes "$enable_https"; then + if is_file_writable "$https_vhost"; then + replace_in_file "$https_vhost" "^$" "" + else + warn "The ${app} virtual host file '${https_vhost}' is not writable. Configurations based on environment variables will not be applied for this file." + fi + fi +} + +######################## +# Create a password file for basic authentication and restrict its permissions +# Globals: +# * +# Arguments: +# $1 - file +# $2 - username +# $3 - password +# Returns: +# true if the configuration was updated, false otherwise +######################## +apache_create_password_file() { + local -r file="${1:?missing file}" + local -r username="${2:?missing username}" + local -r password="${3:?missing password}" + + "${APACHE_BIN_DIR}/htpasswd" -bc "$file" "$username" "$password" + am_i_root && configure_permissions_ownership "$file" --file-mode "600" --user "$APACHE_DAEMON_USER" --group "$APACHE_DAEMON_GROUP" +} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libmysqlclient.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libmysqlclient.sh new file mode 100644 index 000000000000..d89be47282f2 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libmysqlclient.sh @@ -0,0 +1,1043 @@ +#!/bin/bash +# +# Bitnami MySQL Client library + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/libvalidations.sh + +######################## +# Validate settings in MYSQL_CLIENT_* environment variables +# Globals: +# MYSQL_CLIENT_* +# Arguments: +# None +# Returns: +# None +######################### +mysql_client_validate() { + info "Validating settings in MYSQL_CLIENT_* env vars" + local error_code=0 + + # Auxiliary functions + print_validation_error() { + error "$1" + error_code=1 + } + + empty_password_enabled_warn() { + warn "You set the environment variable ALLOW_EMPTY_PASSWORD=${ALLOW_EMPTY_PASSWORD}. For safety reasons, do not use this flag in a production environment." + } + empty_password_error() { + print_validation_error "The $1 environment variable is empty or not set. Set the environment variable ALLOW_EMPTY_PASSWORD=yes to allow the container to be started with blank passwords. This is recommended only for development." + } + backslash_password_error() { + print_validation_error "The password cannot contain backslashes ('\'). Set the environment variable $1 with no backslashes (more info at https://dev.mysql.com/doc/refman/8.0/en/string-comparison-functions.html)" + } + + check_yes_no_value() { + if ! is_yes_no_value "${!1}" && ! is_true_false_value "${!1}"; then + print_validation_error "The allowed values for ${1} are: yes no" + fi + } + + check_multi_value() { + if [[ " ${2} " != *" ${!1} "* ]]; then + print_validation_error "The allowed values for ${1} are: ${2}" + fi + } + + # Only validate environment variables if any action needs to be performed + check_yes_no_value "MYSQL_CLIENT_ENABLE_SSL_WRAPPER" + check_multi_value "MYSQL_CLIENT_FLAVOR" "mariadb mysql" + + if [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_USER" || -n "$MYSQL_CLIENT_CREATE_DATABASE_NAME" ]]; then + if is_boolean_yes "$ALLOW_EMPTY_PASSWORD"; then + empty_password_enabled_warn + else + if [[ -z "$MYSQL_CLIENT_DATABASE_ROOT_PASSWORD" ]]; then + empty_password_error "MYSQL_CLIENT_DATABASE_ROOT_PASSWORD" + fi + if [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_USER" ]] && [[ -z "$MYSQL_CLIENT_CREATE_DATABASE_PASSWORD" ]]; then + empty_password_error "MYSQL_CLIENT_CREATE_DATABASE_PASSWORD" + fi + fi + if [[ "${MYSQL_CLIENT_DATABASE_ROOT_PASSWORD:-}" = *\\* ]]; then + backslash_password_error "MYSQL_CLIENT_DATABASE_ROOT_PASSWORD" + fi + if [[ "${MYSQL_CLIENT_CREATE_DATABASE_PASSWORD:-}" = *\\* ]]; then + backslash_password_error "MYSQL_CLIENT_CREATE_DATABASE_PASSWORD" + fi + fi + return "$error_code" +} + +######################## +# Perform actions to a database +# Globals: +# DB_* +# MYSQL_CLIENT_* +# Arguments: +# None +# Returns: +# None +######################### +mysql_client_initialize() { + # Wrap binary to force the usage of SSL + if is_boolean_yes "$MYSQL_CLIENT_ENABLE_SSL_WRAPPER"; then + mysql_client_wrap_binary_for_ssl + fi + # Wait for the database to be accessible if any action needs to be performed + if [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_USER" || -n "$MYSQL_CLIENT_CREATE_DATABASE_NAME" ]]; then + info "Trying to connect to the database server" + check_mysql_connection() { + echo "SELECT 1" | mysql_execute "mysql" "$MYSQL_CLIENT_DATABASE_ROOT_USER" "$MYSQL_CLIENT_DATABASE_ROOT_PASSWORD" "-h" "$MYSQL_CLIENT_DATABASE_HOST" "-P" "$MYSQL_CLIENT_DATABASE_PORT_NUMBER" + } + if ! retry_while "check_mysql_connection"; then + error "Could not connect to the database server" + return 1 + fi + fi + # Ensure a database user exists in the server + if [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_USER" ]]; then + info "Creating database user ${MYSQL_CLIENT_CREATE_DATABASE_USER}" + local -a args=("$MYSQL_CLIENT_CREATE_DATABASE_USER" "--host" "$MYSQL_CLIENT_DATABASE_HOST" "--port" "$MYSQL_CLIENT_DATABASE_PORT_NUMBER") + [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_PASSWORD" ]] && args+=("-p" "$MYSQL_CLIENT_CREATE_DATABASE_PASSWORD") + [[ -n "$MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN" ]] && args+=("--auth-plugin" "$MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN") + mysql_ensure_optional_user_exists "${args[@]}" + fi + # Ensure a database exists in the server (and that the user has write privileges, if specified) + if [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_NAME" ]]; then + info "Creating database ${MYSQL_CLIENT_CREATE_DATABASE_NAME}" + local -a createdb_args=("$MYSQL_CLIENT_CREATE_DATABASE_NAME" "--host" "$MYSQL_CLIENT_DATABASE_HOST" "--port" "$MYSQL_CLIENT_DATABASE_PORT_NUMBER") + [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_USER" ]] && createdb_args+=("-u" "$MYSQL_CLIENT_CREATE_DATABASE_USER") + [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET" ]] && createdb_args+=("--character-set" "$MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET") + [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_COLLATE" ]] && createdb_args+=("--collate" "$MYSQL_CLIENT_CREATE_DATABASE_COLLATE") + [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES" ]] && createdb_args+=("--privileges" "$MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES") + mysql_ensure_optional_database_exists "${createdb_args[@]}" + fi +} + +######################## +# Wrap binary to force the usage of SSL +# Globals: +# DB_* +# MYSQL_CLIENT_* +# Arguments: +# None +# Returns: +# None +######################### +mysql_client_wrap_binary_for_ssl() { + local -r wrapper_file="${DB_BIN_DIR}/mysql" + local -r wrapped_binary_file="${DB_BASE_DIR}/.bin/mysql" + local -a ssl_opts=() + read -r -a ssl_opts <<< "$(mysql_client_extra_opts)" + + mv "$wrapper_file" "$wrapped_binary_file" + cat >"$wrapper_file" <> "$custom_conf_file" + cat "$old_custom_conf_file" >> "$custom_conf_file" + fi + if am_i_root; then + [[ -e "$DB_VOLUME_DIR/.initialized" ]] && rm "$DB_VOLUME_DIR/.initialized" + rm -rf "$DB_VOLUME_DIR/conf" + else + warn "Old custom configuration migrated, please manually remove the 'conf' directory from the volume use to persist data" + fi +} + +######################## +# Ensure a db user exists with the given password for the '%' host +# Globals: +# DB_* +# Flags: +# -p|--password - database password +# -u|--user - database user +# --auth-plugin - authentication plugin +# --use-ldap - authenticate user via LDAP +# --host - database host +# --port - database host +# Arguments: +# $1 - database user +# Returns: +# None +######################### +mysql_ensure_user_exists() { + local -r user="${1:?user is required}" + local password="" + local auth_plugin="" + local use_ldap="no" + local hosts + local auth_string="" + # For accessing an external database + local db_host="" + local db_port="" + + # Validate arguments + shift 1 + while [ "$#" -gt 0 ]; do + case "$1" in + -p|--password) + shift + password="${1:?missing database password}" + ;; + --auth-plugin) + shift + auth_plugin="${1:?missing authentication plugin}" + ;; + --use-ldap) + use_ldap="yes" + ;; + --host) + shift + db_host="${1:?missing database host}" + ;; + --port) + shift + db_port="${1:?missing database port}" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + if is_boolean_yes "$use_ldap"; then + auth_string="identified via pam using '$DB_FLAVOR'" + elif [[ -n "$password" ]]; then + if [[ -n "$auth_plugin" ]]; then + auth_string="identified with $auth_plugin by \"$password\"" + else + auth_string="identified by \"$password\"" + fi + fi + debug "creating database user \'$user\'" + + local -a mysql_execute_cmd=("mysql_execute") + local -a mysql_execute_print_output_cmd=("mysql_execute_print_output") + if [[ -n "$db_host" && -n "$db_port" ]]; then + mysql_execute_cmd=("mysql_remote_execute" "$db_host" "$db_port") + mysql_execute_print_output_cmd=("mysql_remote_execute_print_output" "$db_host" "$db_port") + fi + + local mysql_create_user_cmd + [[ "$DB_FLAVOR" = "mariadb" ]] && mysql_create_user_cmd="create or replace user" || mysql_create_user_cmd="create user if not exists" + "${mysql_execute_cmd[@]}" "mysql" "$DB_ROOT_USER" "$DB_ROOT_PASSWORD" <=10.4, the mysql.user table was replaced with a view: https://mariadb.com/kb/en/mysqluser-table/ + # Views have a definer user, in this case set to 'root', which needs to exist for the view to work + # In MySQL, to avoid issues when renaming the root user, they use the 'mysql.sys' user as a definer: https://dev.mysql.com/doc/refman/5.7/en/sys-schema.html + # However, for MariaDB that is not the case, so when the 'root' user is renamed the 'mysql.user' table stops working and the view needs to be fixed + if [[ "$user" != "root" && ! "$(mysql_get_version)" =~ ^10.[0123]. ]]; then + alter_view_str="$(mysql_execute_print_output "mysql" "$user" "$password" "-s" <&2 + return 1 + ;; + esac + shift + done + + local -a mysql_execute_cmd=("mysql_execute") + [[ -n "$db_host" && -n "$db_port" ]] && mysql_execute_cmd=("mysql_remote_execute" "$db_host" "$db_port") + + local -a create_database_args=() + [[ -n "$character_set" ]] && create_database_args+=("character set = '${character_set}'") + [[ -n "$collate" ]] && create_database_args+=("collate = '${collate}'") + + debug "Creating database $database" + "${mysql_execute_cmd[@]}" "mysql" "$DB_ROOT_USER" "$DB_ROOT_PASSWORD" <&2 + return 1 + ;; + esac + shift + done + + local -a flags=("$user") + [[ -n "$db_host" ]] && flags+=("--host" "${db_host}") + [[ -n "$db_port" ]] && flags+=("--port" "${db_port}") + if is_boolean_yes "$use_ldap"; then + flags+=("--use-ldap") + elif [[ -n "$password" ]]; then + flags+=("-p" "$password") + [[ -n "$auth_plugin" ]] && flags=("${flags[@]}" "--auth-plugin" "$auth_plugin") + fi + mysql_ensure_user_exists "${flags[@]}" +} + +######################## +# Optionally create the given database, and then optionally give a user +# full privileges on the database. +# Flags: +# -u|--user - database user +# --character-set - character set +# --collation - collation +# --host - database host +# --port - database port +# Arguments: +# $1 - database name +# Returns: +# None +######################### +mysql_ensure_optional_database_exists() { + local -r database="${1:?database is missing}" + local character_set="" + local collate="" + local user="" + local privileges="" + # For accessing an external database + local db_host="" + local db_port="" + + # Validate arguments + shift 1 + while [ "$#" -gt 0 ]; do + case "$1" in + --character-set) + shift + character_set="${1:?missing character set}" + ;; + --collate) + shift + collate="${1:?missing collate}" + ;; + -u|--user) + shift + user="${1:?missing database user}" + ;; + --host) + shift + db_host="${1:?missing database host}" + ;; + --port) + shift + db_port="${1:?missing database port}" + ;; + --privileges) + shift + privileges="${1:?missing privileges}" + ;; + *) + echo "Invalid command line flag $1" >&2 + return 1 + ;; + esac + shift + done + + local -a flags=("$database") + [[ -n "$character_set" ]] && flags+=("--character-set" "$character_set") + [[ -n "$collate" ]] && flags+=("--collate" "$collate") + [[ -n "$db_host" ]] && flags+=("--host" "$db_host") + [[ -n "$db_port" ]] && flags+=("--port" "$db_port") + mysql_ensure_database_exists "${flags[@]}" + + if [[ -n "$user" ]]; then + mysql_ensure_user_has_database_privileges "$user" "$database" "$privileges" "$db_host" "$db_port" + fi +} + +######################## +# Add or modify an entry in the MySQL configuration file ("$DB_CONF_FILE") +# Globals: +# DB_* +# Arguments: +# $1 - MySQL variable name +# $2 - Value to assign to the MySQL variable +# $3 - Section in the MySQL configuration file the key is located (default: mysqld) +# $4 - Configuration file (default: "$BD_CONF_FILE") +# Returns: +# None +######################### +mysql_conf_set() { + local -r key="${1:?key missing}" + local -r value="${2:?value missing}" + read -r -a sections <<<"${3:-mysqld}" + local -r file="${4:-"$DB_CONF_FILE"}" + info "Setting ${key} option" + debug "Setting ${key} to '${value}' in ${DB_FLAVOR} configuration file ${file}" + # Check if the configuration exists in the file + for section in "${sections[@]}"; do + ini-file set --section "$section" --key "$key" --value "$value" "$file" + done +} + +######################## +# Update MySQL/MariaDB configuration file with user custom inputs +# Globals: +# DB_* +# Arguments: +# None +# Returns: +# None +######################### +mysql_update_custom_config() { + # Persisted configuration files from old versions + ! is_dir_empty "$DB_VOLUME_DIR" && [[ -d "$DB_VOLUME_DIR/conf" ]] && mysql_migrate_old_configuration + + # User injected custom configuration + if [[ -f "$DB_CONF_DIR/my_custom.cnf" ]]; then + debug "Injecting custom configuration from my_custom.conf" + cat "$DB_CONF_DIR/my_custom.cnf" > "$DB_CONF_DIR/bitnami/my_custom.cnf" + fi + + ! is_empty_value "$DB_USER" && mysql_conf_set "user" "$DB_USER" "mysqladmin" + ! is_empty_value "$DB_PORT_NUMBER" && mysql_conf_set "port" "$DB_PORT_NUMBER" "mysqld client manager" + ! is_empty_value "$DB_CHARACTER_SET" && mysql_conf_set "character_set_server" "$DB_CHARACTER_SET" + ! is_empty_value "$DB_COLLATE" && mysql_conf_set "collation_server" "$DB_COLLATE" + ! is_empty_value "$DB_BIND_ADDRESS" && mysql_conf_set "bind_address" "$DB_BIND_ADDRESS" + ! is_empty_value "$DB_AUTHENTICATION_PLUGIN" && mysql_conf_set "default_authentication_plugin" "$DB_AUTHENTICATION_PLUGIN" + ! is_empty_value "$DB_SQL_MODE" && mysql_conf_set "sql_mode" "$DB_SQL_MODE" + + # Avoid exit code of previous commands to affect the result of this function + true +} + +######################## +# Find the path to the libjemalloc library file +# Globals: +# None +# Arguments: +# None +# Returns: +# Path to a libjemalloc shared object file +######################### +find_jemalloc_lib() { + local -a locations=( "/usr/lib" "/usr/lib64" ) + local -r pattern='libjemalloc.so.[0-9]' + local path + for dir in "${locations[@]}"; do + # Find the first element matching the pattern and quit + [[ ! -d "$dir" ]] && continue + path="$(find "$dir" -name "$pattern" -print -quit)" + [[ -n "$path" ]] && break + done + echo "${path:-}" +} + +######################## +# Execute a reliable health check against the current mysql instance +# Globals: +# DB_ROOT_PASSWORD, DB_MASTER_ROOT_PASSWORD +# Arguments: +# None +# Returns: +# mysqladmin output +######################### +mysql_healthcheck() { + local args=("-uroot" "-h0.0.0.0") + local root_password + + root_password="$(get_master_env_var_value ROOT_PASSWORD)" + if [[ -n "$root_password" ]]; then + args+=("-p${root_password}") + fi + + mysqladmin "${args[@]}" ping && mysqladmin "${args[@]}" status +} + +######################## +# Prints flavor of 'mysql' client (useful to determine proper CLI flags that can be used) +# Globals: +# DB_* +# Arguments: +# None +# Returns: +# mysql client flavor +######################### +mysql_client_flavor() { + if "${DB_BIN_DIR}/mysql" "--version" 2>&1 | grep -q MariaDB; then + echo "mariadb" + else + echo "mysql" + fi +} + +######################## +# Prints extra options for MySQL client calls (i.e. SSL options) +# Globals: +# DB_* +# Arguments: +# None +# Returns: +# List of options to pass to "mysql" CLI +######################### +mysql_client_extra_opts() { + # Helper to get the proper value for the MySQL client environment variable + mysql_client_env_value() { + local env_name="MYSQL_CLIENT_${1:?missing name}" + if [[ -n "${!env_name:-}" ]]; then + echo "${!env_name:-}" + else + env_name="DB_CLIENT_${1}" + echo "${!env_name:-}" + fi + } + local -a opts=() + local key value + if is_boolean_yes "${DB_ENABLE_SSL:-no}"; then + if [[ "$(mysql_client_flavor)" = "mysql" ]]; then + opts+=("--ssl-mode=REQUIRED") + else + opts+=("--ssl=TRUE") + fi + # Add "--ssl-ca", "--ssl-key" and "--ssl-cert" options if the env vars are defined + for key in ca key cert; do + value="$(mysql_client_env_value "SSL_${key^^}_FILE")" + [[ -n "${value}" ]] && opts+=("--ssl-${key}=${value}") + done + fi + echo "${opts[@]:-}" +} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libphp.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libphp.sh new file mode 100644 index 000000000000..c0a910a20394 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/libphp.sh @@ -0,0 +1,256 @@ +#!/bin/bash +# +# Bitnami PHP library + +# shellcheck disable=SC1091 + +# Load Generic Libraries +. /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/libfile.sh +. /opt/bitnami/scripts/libservice.sh +. /opt/bitnami/scripts/libvalidations.sh +. /opt/bitnami/scripts/libwebserver.sh + +######################## +# Add or modify an entry in the main PHP configuration file (php.ini) +# Globals: +# PHP_CONF_FILE +# Arguments: +# $1 - Key +# $2 - Value +# $3 - File to modify (default: $PHP_CONF_FILE) +# Returns: +# None +######################### +php_conf_set() { + local -r key="${1:?key missing}" + local -r value="${2:?value missing}" + local -r file="${3:-"$PHP_CONF_FILE"}" + local pattern="^[; ]*${key}\s*=.*$" + if [[ "$key" = "extension" || "$key" = "zend_extension" ]]; then + # The "extension" property works a bit different for PHP, as there is one per module to be included, meaning it is additive unlike other configurations + # Because of that, we first check if the extension was defined in the file to replace the proper entry + pattern="^[; ]*${key}\s*=\s*[\"]?${value}(\.so)?[\"]?\s*$" + fi + local -r entry="${key} = ${value}" + if is_file_writable "$file"; then + # Not using the ini-file tool since it does not play well with php.ini + if grep -q -E "$pattern" "$file"; then + replace_in_file "$file" "$pattern" "$entry" + else + cat >> "$file" <<< "$entry" + fi + else + warn "The PHP configuration file '${file}' is not writable. The '${key}' option will not be configured." + fi +} + +######################## +# Ensure PHP is initialized +# Globals: +# PHP_* +# Arguments: +# None +# Returns: +# None +######################### +php_initialize() { + # Configure PHP options based on the runtime environment + info "Configuring PHP options" + php_set_runtime_config "$PHP_CONF_FILE" + + # PHP-FPM configuration + ! is_empty_value "$PHP_FPM_LISTEN_ADDRESS" && info "Setting PHP-FPM listen option" && php_conf_set "listen" "$PHP_FPM_LISTEN_ADDRESS" "${PHP_CONF_DIR}/php-fpm.d/www.conf" + + # Avoid exit code of previous commands to affect the result of this function + true +} + +######################## +# Set PHP runtime options, based on user-provided environment variables +# Globals: +# PHP_* +# Arguments: +# None +# Returns: +# None +######################### +php_set_runtime_config() { + local -r conf_file="${1:?missing conf file}" + + ! is_empty_value "$PHP_ENABLE_OPCACHE" && info "Setting PHP opcache.enable option" && php_conf_set opcache.enable "$PHP_ENABLE_OPCACHE" "$conf_file" + ! is_empty_value "$PHP_EXPOSE_PHP" && info "Setting PHP expose_php option" && php_conf_set expose_php "$PHP_EXPOSE_PHP" "$conf_file" + ! is_empty_value "$PHP_MAX_EXECUTION_TIME" && info "Setting PHP max_execution_time option" && php_conf_set max_execution_time "$PHP_MAX_EXECUTION_TIME" "$conf_file" + ! is_empty_value "$PHP_MAX_INPUT_TIME" && info "Setting PHP max_input_time option" && php_conf_set max_input_time "$PHP_MAX_INPUT_TIME" "$conf_file" + ! is_empty_value "$PHP_MAX_INPUT_VARS" && info "Setting PHP max_input_vars option" && php_conf_set max_input_vars "$PHP_MAX_INPUT_VARS" "$conf_file" + ! is_empty_value "$PHP_MEMORY_LIMIT" && info "Setting PHP memory_limit option" && php_conf_set memory_limit "$PHP_MEMORY_LIMIT" "$conf_file" + ! is_empty_value "$PHP_POST_MAX_SIZE" && info "Setting PHP post_max_size option" && php_conf_set post_max_size "$PHP_POST_MAX_SIZE" "$conf_file" + ! is_empty_value "$PHP_UPLOAD_MAX_FILESIZE" && info "Setting PHP upload_max_filesize option" && php_conf_set upload_max_filesize "$PHP_UPLOAD_MAX_FILESIZE" "$conf_file" + + true +} + +######################## +# Convert a yes/no value to a PHP boolean +# Globals: +# None +# Arguments: +# $1 - yes/no value +# Returns: +# None +######################### +php_convert_to_boolean() { + local -r value="${1:?missing value}" + is_boolean_yes "$value" && echo "true" || echo "false" +} + +######################## +# Execute/run PHP code and print to stdout +# Globals: +# None +# Stdin: +# Code to execute +# Arguments: +# $1..$n - Input arguments to script +# Returns: +# None +######################### +php_execute_print_output() { + local php_cmd + # Obtain the command specified via stdin + php_cmd="$(>"$WORDPRESS_CONF_FILE" <<"EOF" + +/** + * Disable pingback.ping xmlrpc method to prevent WordPress from participating in DDoS attacks + * More info at: https://docs.bitnami.com/general/apps/wordpress/troubleshooting/xmlrpc-and-pingback/ + */ +if ( !defined( 'WP_CLI' ) ) { + // remove x-pingback HTTP header + add_filter("wp_headers", function($headers) { + unset($headers["X-Pingback"]); + return $headers; + }); + // disable pingbacks + add_filter( "xmlrpc_methods", function( $methods ) { + unset( $methods["pingback.ping"] ); + return $methods; + }); +} +EOF +} + +######################## +# Configure application URLs for WordPress (non-Multisite) +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +wordpress_configure_urls() { + # Set URL to dynamic value, depending on which host WordPress is accessed from (to be overridden later) + # Note that wp-config.php is officially indented via tabs, not spaces + wordpress_conf_append "$(cat <<"EOF" +/** + * The WP_SITEURL and WP_HOME options are configured to access from any hostname or IP address. + * If you want to access only from an specific domain, you can modify them. For example: + * define('WP_HOME','http://example.com'); + * define('WP_SITEURL','http://example.com'); + * + */ +if ( defined( 'WP_CLI' ) ) { + $_SERVER['HTTP_HOST'] = '127.0.0.1'; +} +EOF + )" + local wp_url_protocol="http" + ( is_boolean_yes "$WORDPRESS_ENABLE_HTTPS" || [[ "$WORDPRESS_SCHEME" = "https" ]] ) && wp_url_protocol="https" + local wp_url_string="'${wp_url_protocol}://' . \$_SERVER['HTTP_HOST'] . '/'" + wordpress_conf_set "WP_HOME" "$wp_url_string" yes + wordpress_conf_set "WP_SITEURL" "$wp_url_string" yes +} + +######################## +# Apply web server configuration to host WordPress +# Globals: +# * +# Arguments: +# None +# Returns: +# None +######################### +wordpress_generate_web_server_configuration() { + # Web server config files will be generated twice, in order to properly support WORDPRESS_HTACCESS_OVERRIDE_NONE + # At build time, htaccess files will not be moved - This will happen at runtime only if WORDPRESS_HTACCESS_OVERRIDE_NONE is enabled + local -a web_server_config_create_flags + if ! is_boolean_yes "$WORDPRESS_HTACCESS_OVERRIDE_NONE"; then + # Enable .htaccess files + web_server_config_create_flags+=("--apache-move-htaccess" "no" "--apache-allow-override" "All") + else + # Use htaccess.conf file loaded at web server startup + web_server_config_create_flags+=("--apache-move-htaccess" "yes" "--apache-allow-override" "None") + fi + local apache_config nginx_config + local template_dir="${BITNAMI_ROOT_DIR}/scripts/wordpress/bitnami-templates" + # Fix themes/plugins usage + apache_config="$(render-template "${template_dir}/apache-wordpress-volume-rewrite.conf.tpl")" + nginx_config="$(render-template "${template_dir}/nginx-wordpress-volume-rewrite.conf.tpl")" + nginx_external_config="" + # Enable friendly URLs + if ! is_boolean_yes "$WORDPRESS_ENABLE_MULTISITE"; then + # Basic configuration (non-Multisite) + apache_config+=$'\n'"$(render-template "${template_dir}/apache-wordpress-basic.conf.tpl")" + nginx_config+=$'\n'"$(render-template "${template_dir}/nginx-wordpress-basic.conf.tpl")" + elif [[ "$WORDPRESS_MULTISITE_NETWORK_TYPE" = "subfolder" || "$WORDPRESS_MULTISITE_NETWORK_TYPE" = "subdirectory" ]]; then + # Multisite configuration for subfolder/subdirectory network type + apache_config+=$'\n'"$(render-template "${template_dir}/apache-wordpress-multisite-subfolder.conf.tpl")" + nginx_config+=$'\n'"$(render-template "${template_dir}/nginx-wordpress-multisite-subfolder.conf.tpl")" + nginx_external_config+=$'\n'"$(render-template "${template_dir}/nginx-wordpress-multisite-subfolder-external.conf.tpl")" + elif [[ "$WORDPRESS_MULTISITE_NETWORK_TYPE" = "subdomain" ]]; then + # nip.io allows to create subdomains when WordPress Multisite is configured with an IP address + # It only makes sense for WordPress Multisite when using subdomain network type + # The redirection simply improves user experience so the site can be accessed via IP addresses without getting errors + if is_boolean_yes "$WORDPRESS_MULTISITE_ENABLE_NIP_IO_REDIRECTION"; then + apache_config+=$'\n'"$(render-template "${template_dir}/apache-nip-io-redirect.conf.tpl")" + nginx_config+=$'\n'"$(render-template "${template_dir}/nginx-nip-io-redirect.conf.tpl")" + fi + # Multisite configuration for subdomain network type + apache_config+=$'\n'"$(render-template "${template_dir}/apache-wordpress-multisite-subdomain.conf.tpl")" + nginx_config+=$'\n'"$(render-template "${template_dir}/nginx-wordpress-multisite-subdomain.conf.tpl")" + nginx_external_config+=$'\n'"$(render-template "${template_dir}/nginx-wordpress-multisite-subdomain-external.conf.tpl")" + else + error "Unknown WordPress Multisite network mode" + return 1 + fi + web_server_config_create_flags+=("--apache-extra-directory-configuration" "$apache_config" "--nginx-additional-configuration" "$nginx_config") + [[ -n "$nginx_external_config" ]] && web_server_config_create_flags+=("--nginx-external-configuration" "$nginx_external_config") + ensure_web_server_app_configuration_exists "wordpress" --type "php" "${web_server_config_create_flags[@]}" +} diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client-env.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client-env.sh new file mode 100644 index 000000000000..defd9bf6d4d5 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client-env.sh @@ -0,0 +1,124 @@ +#!/bin/bash +# +# Environment configuration for mysql + +# The values for all environment variables will be set in the below order of precedence +# 1. Custom environment variables defined below after Bitnami defaults +# 2. Constants defined in this file (environment variables with no default), i.e. BITNAMI_ROOT_DIR +# 3. Environment variables overridden via external files using *_FILE variables (see below) +# 4. Environment variables set externally (i.e. current Bash context/Dockerfile/userdata) + +# Load logging library +. /opt/bitnami/scripts/liblog.sh + +export BITNAMI_ROOT_DIR="/opt/bitnami" +export BITNAMI_VOLUME_DIR="/bitnami" + +# Logging configuration +export MODULE="${MODULE:-mysql}" +export BITNAMI_DEBUG="${BITNAMI_DEBUG:-false}" + +# By setting an environment variable matching *_FILE to a file path, the prefixed environment +# variable will be overridden with the value specified in that file +mysql_env_vars=( + MYSQL_CLIENT_FLAVOR + ALLOW_EMPTY_PASSWORD + MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN + MYSQL_CLIENT_DATABASE_HOST + MYSQL_CLIENT_DATABASE_PORT_NUMBER + MYSQL_CLIENT_DATABASE_ROOT_USER + MYSQL_CLIENT_DATABASE_ROOT_PASSWORD + MYSQL_CLIENT_CREATE_DATABASE_NAME + MYSQL_CLIENT_CREATE_DATABASE_USER + MYSQL_CLIENT_CREATE_DATABASE_PASSWORD + MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET + MYSQL_CLIENT_CREATE_DATABASE_COLLATE + MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES + MYSQL_CLIENT_ENABLE_SSL_WRAPPER + MYSQL_CLIENT_ENABLE_SSL + MYSQL_CLIENT_SSL_CA_FILE + MYSQL_CLIENT_SSL_CERT_FILE + MYSQL_CLIENT_SSL_KEY_FILE + MYSQL_CLIENT_EXTRA_FLAGS + MARIADB_AUTHENTICATION_PLUGIN + MARIADB_HOST + MARIADB_PORT_NUMBER + MARIADB_ROOT_USER + MARIADB_ROOT_PASSWORD +) +for env_var in "${mysql_env_vars[@]}"; do + file_env_var="${env_var}_FILE" + if [[ -n "${!file_env_var:-}" ]]; then + if [[ -r "${!file_env_var:-}" ]]; then + export "${env_var}=$(< "${!file_env_var}")" + unset "${file_env_var}" + else + warn "Skipping export of '${env_var}'. '${!file_env_var:-}' is not readable." + fi + fi +done +unset mysql_env_vars +export MYSQL_CLIENT_FLAVOR="${MYSQL_CLIENT_FLAVOR:-mariadb}" +export DB_FLAVOR="$MYSQL_CLIENT_FLAVOR" + +# Paths +export DB_BASE_DIR="${BITNAMI_ROOT_DIR}/mysql" +export DB_VOLUME_DIR="${BITNAMI_VOLUME_DIR}/mysql" +export DB_DATA_DIR="${DB_VOLUME_DIR}/data" +export DB_BIN_DIR="${DB_BASE_DIR}/bin" +export DB_SBIN_DIR="${DB_BASE_DIR}/bin" +export DB_CONF_DIR="${DB_BASE_DIR}/conf" +export DB_LOGS_DIR="${DB_BASE_DIR}/logs" +export DB_TMP_DIR="${DB_BASE_DIR}/tmp" +export DB_CONF_FILE="${DB_CONF_DIR}/my.cnf" +export DB_PID_FILE="${DB_TMP_DIR}/mysqld.pid" +export DB_SOCKET_FILE="${DB_TMP_DIR}/mysql.sock" +export PATH="${DB_SBIN_DIR}:${DB_BIN_DIR}:/opt/bitnami/common/bin:${PATH}" + +# System users (when running with a privileged user) +export DB_DAEMON_USER="mysql" +export DB_DAEMON_GROUP="mysql" + +# MySQL client configuration +export ALLOW_EMPTY_PASSWORD="${ALLOW_EMPTY_PASSWORD:-no}" +MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN="${MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN:-"${MARIADB_AUTHENTICATION_PLUGIN:-}"}" +export MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN="${MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN:-}" +export DB_AUTHENTICATION_PLUGIN="$MYSQL_CLIENT_DATABASE_AUTHENTICATION_PLUGIN" +MYSQL_CLIENT_DATABASE_HOST="${MYSQL_CLIENT_DATABASE_HOST:-"${MARIADB_HOST:-}"}" +export MYSQL_CLIENT_DATABASE_HOST="${MYSQL_CLIENT_DATABASE_HOST:-mariadb}" +export DB_HOST="$MYSQL_CLIENT_DATABASE_HOST" +MYSQL_CLIENT_DATABASE_PORT_NUMBER="${MYSQL_CLIENT_DATABASE_PORT_NUMBER:-"${MARIADB_PORT_NUMBER:-}"}" +export MYSQL_CLIENT_DATABASE_PORT_NUMBER="${MYSQL_CLIENT_DATABASE_PORT_NUMBER:-3306}" +export DB_PORT_NUMBER="$MYSQL_CLIENT_DATABASE_PORT_NUMBER" +MYSQL_CLIENT_DATABASE_ROOT_USER="${MYSQL_CLIENT_DATABASE_ROOT_USER:-"${MARIADB_ROOT_USER:-}"}" +export MYSQL_CLIENT_DATABASE_ROOT_USER="${MYSQL_CLIENT_DATABASE_ROOT_USER:-root}" +export DB_ROOT_USER="$MYSQL_CLIENT_DATABASE_ROOT_USER" # only used during the first initialization +MYSQL_CLIENT_DATABASE_ROOT_PASSWORD="${MYSQL_CLIENT_DATABASE_ROOT_PASSWORD:-"${MARIADB_ROOT_PASSWORD:-}"}" +export MYSQL_CLIENT_DATABASE_ROOT_PASSWORD="${MYSQL_CLIENT_DATABASE_ROOT_PASSWORD:-}" +export DB_ROOT_PASSWORD="$MYSQL_CLIENT_DATABASE_ROOT_PASSWORD" # only used during the first initialization +export MYSQL_CLIENT_CREATE_DATABASE_NAME="${MYSQL_CLIENT_CREATE_DATABASE_NAME:-}" +export DB_CREATE_DATABASE_NAME="$MYSQL_CLIENT_CREATE_DATABASE_NAME" # only used during the first initialization +export MYSQL_CLIENT_CREATE_DATABASE_USER="${MYSQL_CLIENT_CREATE_DATABASE_USER:-}" +export DB_CREATE_DATABASE_USER="$MYSQL_CLIENT_CREATE_DATABASE_USER" +export MYSQL_CLIENT_CREATE_DATABASE_PASSWORD="${MYSQL_CLIENT_CREATE_DATABASE_PASSWORD:-}" +export DB_CREATE_DATABASE_PASSWORD="$MYSQL_CLIENT_CREATE_DATABASE_PASSWORD" +export MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET="${MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET:-}" +export DB_CREATE_DATABASE_CHARACTER_SET="$MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET" +export MYSQL_CLIENT_CREATE_DATABASE_COLLATE="${MYSQL_CLIENT_CREATE_DATABASE_COLLATE:-}" +export DB_CREATE_DATABASE_COLLATE="$MYSQL_CLIENT_CREATE_DATABASE_COLLATE" +export MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES="${MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES:-}" +export DB_CREATE_DATABASE_PRIVILEGES="$MYSQL_CLIENT_CREATE_DATABASE_PRIVILEGES" +export MYSQL_CLIENT_ENABLE_SSL_WRAPPER="${MYSQL_CLIENT_ENABLE_SSL_WRAPPER:-no}" +export DB_ENABLE_SSL_WRAPPER="$MYSQL_CLIENT_ENABLE_SSL_WRAPPER" +export MYSQL_CLIENT_ENABLE_SSL="${MYSQL_CLIENT_ENABLE_SSL:-no}" +export DB_ENABLE_SSL="$MYSQL_CLIENT_ENABLE_SSL" +export MYSQL_CLIENT_SSL_CA_FILE="${MYSQL_CLIENT_SSL_CA_FILE:-}" +export DB_SSL_CA_FILE="$MYSQL_CLIENT_SSL_CA_FILE" +export MYSQL_CLIENT_SSL_CERT_FILE="${MYSQL_CLIENT_SSL_CERT_FILE:-}" +export DB_SSL_CERT_FILE="$MYSQL_CLIENT_SSL_CERT_FILE" +export MYSQL_CLIENT_SSL_KEY_FILE="${MYSQL_CLIENT_SSL_KEY_FILE:-}" +export DB_SSL_KEY_FILE="$MYSQL_CLIENT_SSL_KEY_FILE" +export MYSQL_CLIENT_EXTRA_FLAGS="${MYSQL_CLIENT_EXTRA_FLAGS:-no}" +export DB_EXTRA_FLAGS="$MYSQL_CLIENT_EXTRA_FLAGS" + +# Custom environment variables may be defined below diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/postunpack.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/postunpack.sh new file mode 100755 index 000000000000..4cb766f7197f --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/postunpack.sh @@ -0,0 +1,19 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libfs.sh + +# Load MySQL Client environment variables +. /opt/bitnami/scripts/mysql-client-env.sh + +for dir in "$DB_BIN_DIR" "${DB_BASE_DIR}/.bin"; do + ensure_dir_exists "$dir" + chmod g+rwX "$dir" +done diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/setup.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/setup.sh new file mode 100755 index 000000000000..4061c70547e1 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/mysql-client/setup.sh @@ -0,0 +1,19 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libmysqlclient.sh + +# Load MySQL Client environment variables +. /opt/bitnami/scripts/mysql-client-env.sh + +# Ensure MySQL Client environment variables settings are valid +mysql_client_validate +# Ensure MySQL Client is initialized +mysql_client_initialize diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php-env.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php-env.sh new file mode 100644 index 000000000000..d38b3b2e02c9 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php-env.sh @@ -0,0 +1,85 @@ +#!/bin/bash +# +# Environment configuration for php + +# The values for all environment variables will be set in the below order of precedence +# 1. Custom environment variables defined below after Bitnami defaults +# 2. Constants defined in this file (environment variables with no default), i.e. BITNAMI_ROOT_DIR +# 3. Environment variables overridden via external files using *_FILE variables (see below) +# 4. Environment variables set externally (i.e. current Bash context/Dockerfile/userdata) + +# Load logging library +. /opt/bitnami/scripts/liblog.sh + +export BITNAMI_ROOT_DIR="/opt/bitnami" +export BITNAMI_VOLUME_DIR="/bitnami" + +# Logging configuration +export MODULE="${MODULE:-php}" +export BITNAMI_DEBUG="${BITNAMI_DEBUG:-false}" + +# By setting an environment variable matching *_FILE to a file path, the prefixed environment +# variable will be overridden with the value specified in that file +php_env_vars=( + PHP_FPM_LISTEN_ADDRESS + PHP_ENABLE_OPCACHE + PHP_EXPOSE_PHP + PHP_MAX_EXECUTION_TIME + PHP_MAX_INPUT_TIME + PHP_MAX_INPUT_VARS + PHP_MEMORY_LIMIT + PHP_POST_MAX_SIZE + PHP_UPLOAD_MAX_FILESIZE + PHP_OPCACHE_ENABLED +) +for env_var in "${php_env_vars[@]}"; do + file_env_var="${env_var}_FILE" + if [[ -n "${!file_env_var:-}" ]]; then + if [[ -r "${!file_env_var:-}" ]]; then + export "${env_var}=$(< "${!file_env_var}")" + unset "${file_env_var}" + else + warn "Skipping export of '${env_var}'. '${!file_env_var:-}' is not readable." + fi + fi +done +unset php_env_vars + +# Paths +export PHP_BASE_DIR="${BITNAMI_ROOT_DIR}/php" +export PHP_BIN_DIR="${PHP_BASE_DIR}/bin" +export PHP_CONF_DIR="${PHP_BASE_DIR}/etc" +export PHP_TMP_DIR="${PHP_BASE_DIR}/var/run" +export PHP_CONF_FILE="${PHP_CONF_DIR}/php.ini" + +# PHP default build-time configuration +export PHP_DEFAULT_OPCACHE_INTERNED_STRINGS_BUFFER="16" # only used at build time +export PHP_DEFAULT_OPCACHE_MEMORY_CONSUMPTION="192" # only used at build time +export PHP_DEFAULT_OPCACHE_FILE_CACHE="${PHP_TMP_DIR}/opcache_file" # only used at build time + +# PHP-FPM configuration +export PHP_FPM_SBIN_DIR="${PHP_BASE_DIR}/sbin" +export PHP_FPM_LOGS_DIR="${PHP_BASE_DIR}/logs" +export PHP_FPM_LOG_FILE="${PHP_FPM_LOGS_DIR}/php-fpm.log" +export PHP_FPM_CONF_FILE="${PHP_CONF_DIR}/php-fpm.conf" +export PHP_FPM_PID_FILE="${PHP_TMP_DIR}/php-fpm.pid" +export PHP_FPM_DEFAULT_LISTEN_ADDRESS="${PHP_TMP_DIR}/www.sock" # only used at build time +export PHP_FPM_LISTEN_ADDRESS="${PHP_FPM_LISTEN_ADDRESS:-}" +export PATH="${PHP_FPM_SBIN_DIR}:${PHP_BIN_DIR}:${BITNAMI_ROOT_DIR}/common/bin:${PATH}" + +# System users (when running with a privileged user) +export PHP_FPM_DAEMON_USER="daemon" +export PHP_FPM_DAEMON_GROUP="daemon" + +# PHP configuration +PHP_ENABLE_OPCACHE="${PHP_ENABLE_OPCACHE:-"${PHP_OPCACHE_ENABLED:-}"}" +export PHP_ENABLE_OPCACHE="${PHP_ENABLE_OPCACHE:-}" +export PHP_EXPOSE_PHP="${PHP_EXPOSE_PHP:-}" +export PHP_MAX_EXECUTION_TIME="${PHP_MAX_EXECUTION_TIME:-}" +export PHP_MAX_INPUT_TIME="${PHP_MAX_INPUT_TIME:-}" +export PHP_MAX_INPUT_VARS="${PHP_MAX_INPUT_VARS:-}" +export PHP_MEMORY_LIMIT="${PHP_MEMORY_LIMIT:-}" +export PHP_POST_MAX_SIZE="${PHP_POST_MAX_SIZE:-}" +export PHP_UPLOAD_MAX_FILESIZE="${PHP_UPLOAD_MAX_FILESIZE:-}" + +# Custom environment variables may be defined below diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/postunpack.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/postunpack.sh new file mode 100755 index 000000000000..93b7d5871d9c --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/postunpack.sh @@ -0,0 +1,38 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/libfs.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +# PHP OPcache optimizations +php_conf_set "opcache.interned_strings_buffer" "$PHP_DEFAULT_OPCACHE_INTERNED_STRINGS_BUFFER" +php_conf_set "opcache.memory_consumption" "$PHP_DEFAULT_OPCACHE_MEMORY_CONSUMPTION" +php_conf_set "opcache.file_cache" "$PHP_DEFAULT_OPCACHE_FILE_CACHE" + +# PHP-FPM configuration +php_conf_set "listen" "$PHP_FPM_DEFAULT_LISTEN_ADDRESS" "${PHP_CONF_DIR}/php-fpm.d/www.conf" + +# TMP dir configuration +php_conf_set upload_tmp_dir "$PHP_TMP_DIR" + +# Ensure directories used by PHP-FPM exist and have proper ownership and permissions +for dir in "$PHP_CONF_DIR" "$PHP_TMP_DIR" "$PHP_FPM_LOGS_DIR"; do + ensure_dir_exists "$dir" + chmod -R g+rwX "$dir" +done + +info "Disabling PHP-FPM daemon user/group configuration" +mv "${PHP_CONF_DIR}/common.conf" "${PHP_CONF_DIR}/common.conf.disabled" +touch "${PHP_CONF_DIR}/common.conf" + +ln -sf "/dev/stdout" "$PHP_FPM_LOG_FILE" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/reload.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/reload.sh new file mode 100755 index 000000000000..f0977ed2d47a --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/reload.sh @@ -0,0 +1,35 @@ +#!/bin/bash + +# shellcheck disable=SC1090,SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libwebserver.sh + +# Load PHP-FPM environment +. /opt/bitnami/scripts/php-env.sh + +# Load web server environment and functions +. "/opt/bitnami/scripts/$(web_server_type)-env.sh" + +error_code=0 + +if is_php_fpm_enabled; then + if is_php_fpm_not_running; then + error "php-fpm is not running" + error_code=1 + else + info "** Reloading PHP-FPM configuration **" + php_fpm_reload + fi +else + web_server_reload +fi + +exit "$error_code" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/restart.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/restart.sh new file mode 100755 index 000000000000..686174792b72 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/restart.sh @@ -0,0 +1,17 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +/opt/bitnami/scripts/php/stop.sh +/opt/bitnami/scripts/php/start.sh diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/run.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/run.sh new file mode 100755 index 000000000000..d74d672196d4 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/run.sh @@ -0,0 +1,19 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/liblog.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +info "** Starting PHP-FPM **" +declare -a args=("--pid" "$PHP_FPM_PID_FILE" "--fpm-config" "$PHP_FPM_CONF_FILE" "-c" "$PHP_CONF_DIR" "-F") +exec "${PHP_FPM_SBIN_DIR}/php-fpm" "${args[@]}" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/setup.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/setup.sh new file mode 100755 index 000000000000..b6f5924ff717 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/setup.sh @@ -0,0 +1,32 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/libos.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +# Ensure PHP-FPM daemon user exists and required folder belongs to this user when running as 'root' +if am_i_root; then + ensure_user_exists "$PHP_FPM_DAEMON_USER" --group "$PHP_FPM_DAEMON_GROUP" + ensure_dir_exists "$PHP_TMP_DIR" + chown -R "${PHP_FPM_DAEMON_USER}:${PHP_FPM_DAEMON_GROUP}" "$PHP_TMP_DIR" + # Enable daemon configuration + if [[ ! -f "${PHP_CONF_DIR}/common.conf" ]]; then + cp "${PHP_CONF_DIR}/common.conf.disabled" "${PHP_CONF_DIR}/common.conf" + fi +fi + +php_initialize + +# Fix logging issue when running as root +! am_i_root || chmod o+w "$(readlink /dev/stdout)" "$(readlink /dev/stderr)" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/start.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/start.sh new file mode 100755 index 000000000000..7ecc98b209c3 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/start.sh @@ -0,0 +1,32 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/liblog.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +error_code=0 + +if is_php_fpm_not_running; then + nohup /opt/bitnami/scripts/php/run.sh >/dev/null 2>&1 & + if ! retry_while "is_php_fpm_running"; then + error "php-fpm did not start" + error_code=1 + else + info "php-fpm started" + fi +else + info "php-fpm is already running" +fi + +exit "$error_code" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/status.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/status.sh new file mode 100755 index 000000000000..d2f4b058ba3e --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/status.sh @@ -0,0 +1,21 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/liblog.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +if is_php_fpm_running; then + info "php-fpm is already running" +else + info "php-fpm is not running" +fi diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/stop.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/stop.sh new file mode 100755 index 000000000000..ab1592be7c3f --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/php/stop.sh @@ -0,0 +1,32 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + +# Load libraries +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/liblog.sh + +# Load PHP-FPM environment variables +. /opt/bitnami/scripts/php-env.sh + +error_code=0 + +if is_php_fpm_running; then + BITNAMI_QUIET=1 php_fpm_stop + if ! retry_while "is_php_fpm_not_running"; then + error "php-fpm could not be stopped" + error_code=1 + else + info "php-fpm stopped" + fi +else + info "php-fpm is not running" +fi + +exit "$error_code" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress-env.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress-env.sh new file mode 100644 index 000000000000..8d8a6a17acca --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress-env.sh @@ -0,0 +1,179 @@ +#!/bin/bash +# +# Environment configuration for wordpress + +# The values for all environment variables will be set in the below order of precedence +# 1. Custom environment variables defined below after Bitnami defaults +# 2. Constants defined in this file (environment variables with no default), i.e. BITNAMI_ROOT_DIR +# 3. Environment variables overridden via external files using *_FILE variables (see below) +# 4. Environment variables set externally (i.e. current Bash context/Dockerfile/userdata) + +# Load logging library +. /opt/bitnami/scripts/liblog.sh + +export BITNAMI_ROOT_DIR="/opt/bitnami" +export BITNAMI_VOLUME_DIR="/bitnami" + +# Logging configuration +export MODULE="${MODULE:-wordpress}" +export BITNAMI_DEBUG="${BITNAMI_DEBUG:-false}" + +# By setting an environment variable matching *_FILE to a file path, the prefixed environment +# variable will be overridden with the value specified in that file +wordpress_env_vars=( + WORDPRESS_DATA_TO_PERSIST + WORDPRESS_ENABLE_HTTPS + WORDPRESS_BLOG_NAME + WORDPRESS_SCHEME + WORDPRESS_HTACCESS_OVERRIDE_NONE + WORDPRESS_ENABLE_HTACCESS_PERSISTENCE + WORDPRESS_RESET_DATA_PERMISSIONS + WORDPRESS_TABLE_PREFIX + WORDPRESS_PLUGINS + WORDPRESS_EXTRA_INSTALL_ARGS + WORDPRESS_EXTRA_WP_CONFIG_CONTENT + WORDPRESS_SKIP_BOOTSTRAP + WORDPRESS_AUTO_UPDATE_LEVEL + WORDPRESS_USERNAME + WORDPRESS_PASSWORD + WORDPRESS_EMAIL + WORDPRESS_FIRST_NAME + WORDPRESS_LAST_NAME + WORDPRESS_ENABLE_MULTISITE + WORDPRESS_MULTISITE_NETWORK_TYPE + WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER + WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER + WORDPRESS_MULTISITE_HOST + WORDPRESS_MULTISITE_ENABLE_NIP_IO_REDIRECTION + WORDPRESS_MULTISITE_FILEUPLOAD_MAXK + WORDPRESS_SMTP_HOST + WORDPRESS_SMTP_PORT_NUMBER + WORDPRESS_SMTP_USER + WORDPRESS_SMTP_PASSWORD + WORDPRESS_SMTP_PROTOCOL + WORDPRESS_DATABASE_HOST + WORDPRESS_DATABASE_PORT_NUMBER + WORDPRESS_DATABASE_NAME + WORDPRESS_DATABASE_USER + WORDPRESS_DATABASE_PASSWORD + WORDPRESS_ENABLE_DATABASE_SSL + WORDPRESS_VERIFY_DATABASE_SSL + WORDPRESS_DATABASE_SSL_CERT_FILE + WORDPRESS_DATABASE_SSL_KEY_FILE + WORDPRESS_DATABASE_SSL_CA_FILE + WORDPRESS_HTACCESS_PERSISTENCE_ENABLED + WORDPRESS_SKIP_INSTALL + WORDPRESS_HTTP_PORT + WORDPRESS_HTTP_PORT_NUMBER + WORDPRESS_HTTPS_PORT + WORDPRESS_HTTPS_PORT_NUMBER + SMTP_HOST + SMTP_PORT + WORDPRESS_SMTP_PORT + SMTP_USER + SMTP_PASSWORD + SMTP_PROTOCOL + MARIADB_HOST + MARIADB_PORT_NUMBER + MARIADB_DATABASE_NAME + MARIADB_DATABASE_USER + MARIADB_DATABASE_PASSWORD +) +for env_var in "${wordpress_env_vars[@]}"; do + file_env_var="${env_var}_FILE" + if [[ -n "${!file_env_var:-}" ]]; then + if [[ -r "${!file_env_var:-}" ]]; then + export "${env_var}=$(< "${!file_env_var}")" + unset "${file_env_var}" + else + warn "Skipping export of '${env_var}'. '${!file_env_var:-}' is not readable." + fi + fi +done +unset wordpress_env_vars + +# Paths +export WORDPRESS_BASE_DIR="${BITNAMI_ROOT_DIR}/wordpress" +export WORDPRESS_CONF_FILE="${WORDPRESS_BASE_DIR}/wp-config.php" +export WORDPRESS_CLI_BASE_DIR="${BITNAMI_ROOT_DIR}/wp-cli" +export WORDPRESS_CLI_BIN_DIR="${WORDPRESS_CLI_BASE_DIR}/bin" +export WORDPRESS_CLI_CONF_DIR="${WORDPRESS_CLI_BASE_DIR}/conf" +export WORDPRESS_CLI_CONF_FILE="${WORDPRESS_CLI_CONF_DIR}/wp-cli.yml" + +# WordPress persistence configuration +export WORDPRESS_VOLUME_DIR="${BITNAMI_VOLUME_DIR}/wordpress" +export WORDPRESS_DATA_TO_PERSIST="${WORDPRESS_DATA_TO_PERSIST:-wp-config.php wp-content}" + +# WordPress configuration +export WORDPRESS_ENABLE_HTTPS="${WORDPRESS_ENABLE_HTTPS:-no}" # only used during the first initialization +export WORDPRESS_BLOG_NAME="${WORDPRESS_BLOG_NAME:-"User's blog"}" # only used during the first initialization +export WORDPRESS_SCHEME="${WORDPRESS_SCHEME:-http}" # only used during the first initialization +export WORDPRESS_HTACCESS_OVERRIDE_NONE="${WORDPRESS_HTACCESS_OVERRIDE_NONE:-yes}" # only used during the first initialization +WORDPRESS_ENABLE_HTACCESS_PERSISTENCE="${WORDPRESS_ENABLE_HTACCESS_PERSISTENCE:-"${WORDPRESS_HTACCESS_PERSISTENCE_ENABLED:-}"}" +export WORDPRESS_ENABLE_HTACCESS_PERSISTENCE="${WORDPRESS_ENABLE_HTACCESS_PERSISTENCE:-no}" # only used during the first initialization +export WORDPRESS_RESET_DATA_PERMISSIONS="${WORDPRESS_RESET_DATA_PERMISSIONS:-no}" +export WORDPRESS_TABLE_PREFIX="${WORDPRESS_TABLE_PREFIX:-wp_}" # only used during the first initialization +export WORDPRESS_PLUGINS="${WORDPRESS_PLUGINS:-none}" # only used during the first initialization +export WORDPRESS_EXTRA_INSTALL_ARGS="${WORDPRESS_EXTRA_INSTALL_ARGS:-}" # only used during the first initialization +export WORDPRESS_EXTRA_WP_CONFIG_CONTENT="${WORDPRESS_EXTRA_WP_CONFIG_CONTENT:-}" # only used during the first initialization +WORDPRESS_SKIP_BOOTSTRAP="${WORDPRESS_SKIP_BOOTSTRAP:-"${WORDPRESS_SKIP_INSTALL:-}"}" +export WORDPRESS_SKIP_BOOTSTRAP="${WORDPRESS_SKIP_BOOTSTRAP:-no}" # only used during the first initialization +export WORDPRESS_AUTO_UPDATE_LEVEL="${WORDPRESS_AUTO_UPDATE_LEVEL:-none}" # only used during the first initialization + +# WordPress credentials +export WORDPRESS_USERNAME="${WORDPRESS_USERNAME:-user}" # only used during the first initialization +export WORDPRESS_PASSWORD="${WORDPRESS_PASSWORD:-bitnami}" # only used during the first initialization +export WORDPRESS_EMAIL="${WORDPRESS_EMAIL:-user@example.com}" # only used during the first initialization +export WORDPRESS_FIRST_NAME="${WORDPRESS_FIRST_NAME:-UserName}" # only used during the first initialization +export WORDPRESS_LAST_NAME="${WORDPRESS_LAST_NAME:-LastName}" # only used during the first initialization + +# WordPress Multisite inputs +export WORDPRESS_ENABLE_MULTISITE="${WORDPRESS_ENABLE_MULTISITE:-no}" # only used during the first initialization +export WORDPRESS_MULTISITE_NETWORK_TYPE="${WORDPRESS_MULTISITE_NETWORK_TYPE:-subdomain}" # only used during the first initialization +WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER="${WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER:-"${WORDPRESS_HTTP_PORT:-}"}" +WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER="${WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER:-"${WORDPRESS_HTTP_PORT_NUMBER:-}"}" +export WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER="${WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER:-80}" # only used during the first initialization +WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER="${WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER:-"${WORDPRESS_HTTPS_PORT:-}"}" +WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER="${WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER:-"${WORDPRESS_HTTPS_PORT_NUMBER:-}"}" +export WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER="${WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER:-443}" # only used during the first initialization +export WORDPRESS_MULTISITE_HOST="${WORDPRESS_MULTISITE_HOST:-}" # only used during the first initialization +export WORDPRESS_MULTISITE_ENABLE_NIP_IO_REDIRECTION="${WORDPRESS_MULTISITE_ENABLE_NIP_IO_REDIRECTION:-no}" # only used during the first initialization +export WORDPRESS_MULTISITE_FILEUPLOAD_MAXK="${WORDPRESS_MULTISITE_FILEUPLOAD_MAXK:-81920}" # only used during the first initialization + +# WordPress SMTP credentials +WORDPRESS_SMTP_HOST="${WORDPRESS_SMTP_HOST:-"${SMTP_HOST:-}"}" +export WORDPRESS_SMTP_HOST="${WORDPRESS_SMTP_HOST:-}" # only used during the first initialization +WORDPRESS_SMTP_PORT_NUMBER="${WORDPRESS_SMTP_PORT_NUMBER:-"${SMTP_PORT:-}"}" +WORDPRESS_SMTP_PORT_NUMBER="${WORDPRESS_SMTP_PORT_NUMBER:-"${WORDPRESS_SMTP_PORT:-}"}" +export WORDPRESS_SMTP_PORT_NUMBER="${WORDPRESS_SMTP_PORT_NUMBER:-}" # only used during the first initialization +WORDPRESS_SMTP_USER="${WORDPRESS_SMTP_USER:-"${SMTP_USER:-}"}" +export WORDPRESS_SMTP_USER="${WORDPRESS_SMTP_USER:-}" # only used during the first initialization +WORDPRESS_SMTP_PASSWORD="${WORDPRESS_SMTP_PASSWORD:-"${SMTP_PASSWORD:-}"}" +export WORDPRESS_SMTP_PASSWORD="${WORDPRESS_SMTP_PASSWORD:-}" # only used during the first initialization +WORDPRESS_SMTP_PROTOCOL="${WORDPRESS_SMTP_PROTOCOL:-"${SMTP_PROTOCOL:-}"}" +export WORDPRESS_SMTP_PROTOCOL="${WORDPRESS_SMTP_PROTOCOL:-}" # only used during the first initialization + +# Database configuration +export WORDPRESS_DEFAULT_DATABASE_HOST="mariadb" # only used at build time +WORDPRESS_DATABASE_HOST="${WORDPRESS_DATABASE_HOST:-"${MARIADB_HOST:-}"}" +export WORDPRESS_DATABASE_HOST="${WORDPRESS_DATABASE_HOST:-$WORDPRESS_DEFAULT_DATABASE_HOST}" # only used during the first initialization +WORDPRESS_DATABASE_PORT_NUMBER="${WORDPRESS_DATABASE_PORT_NUMBER:-"${MARIADB_PORT_NUMBER:-}"}" +export WORDPRESS_DATABASE_PORT_NUMBER="${WORDPRESS_DATABASE_PORT_NUMBER:-3306}" # only used during the first initialization +WORDPRESS_DATABASE_NAME="${WORDPRESS_DATABASE_NAME:-"${MARIADB_DATABASE_NAME:-}"}" +export WORDPRESS_DATABASE_NAME="${WORDPRESS_DATABASE_NAME:-bitnami_wordpress}" # only used during the first initialization +WORDPRESS_DATABASE_USER="${WORDPRESS_DATABASE_USER:-"${MARIADB_DATABASE_USER:-}"}" +export WORDPRESS_DATABASE_USER="${WORDPRESS_DATABASE_USER:-bn_wordpress}" # only used during the first initialization +WORDPRESS_DATABASE_PASSWORD="${WORDPRESS_DATABASE_PASSWORD:-"${MARIADB_DATABASE_PASSWORD:-}"}" +export WORDPRESS_DATABASE_PASSWORD="${WORDPRESS_DATABASE_PASSWORD:-}" # only used during the first initialization +export WORDPRESS_ENABLE_DATABASE_SSL="${WORDPRESS_ENABLE_DATABASE_SSL:-no}" # only used during the first initialization +export WORDPRESS_VERIFY_DATABASE_SSL="${WORDPRESS_VERIFY_DATABASE_SSL:-yes}" # only used during the first initialization +export WORDPRESS_DATABASE_SSL_CERT_FILE="${WORDPRESS_DATABASE_SSL_CERT_FILE:-}" # only used during the first initialization +export WORDPRESS_DATABASE_SSL_KEY_FILE="${WORDPRESS_DATABASE_SSL_KEY_FILE:-}" # only used during the first initialization +export WORDPRESS_DATABASE_SSL_CA_FILE="${WORDPRESS_DATABASE_SSL_CA_FILE:-}" # only used during the first initialization + +# PHP configuration +export PHP_DEFAULT_MEMORY_LIMIT="512M" # only used at build time +export PHP_DEFAULT_POST_MAX_SIZE="80M" # only used at build time +export PHP_DEFAULT_UPLOAD_MAX_FILESIZE="80M" # only used at build time + +# Custom environment variables may be defined below diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-nip-io-redirect.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-nip-io-redirect.conf.tpl new file mode 100644 index 000000000000..9eabb0d5f7a1 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-nip-io-redirect.conf.tpl @@ -0,0 +1,5 @@ +# BEGIN nip.io redirection +RewriteEngine On +RewriteCond %{HTTP_HOST} ^([0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3})(:[0-9]{1,5})?$ +RewriteRule ^/?(.*) %{REQUEST_SCHEME}://%1.nip.io%2/$1 [L,R=302,NE] +# END nip.io redirection diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-basic.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-basic.conf.tpl new file mode 100644 index 000000000000..827a35c91dec --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-basic.conf.tpl @@ -0,0 +1,10 @@ +# BEGIN WordPress +# https://wordpress.org/support/article/htaccess/#basic-wp +RewriteEngine On +RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] +RewriteBase / +RewriteRule ^index\.php$ - [L] +RewriteCond %{REQUEST_FILENAME} !-f +RewriteCond %{REQUEST_FILENAME} !-d +RewriteRule . /index.php [L] +# END WordPress diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subdomain.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subdomain.conf.tpl new file mode 100644 index 000000000000..3c75add90cf5 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subdomain.conf.tpl @@ -0,0 +1,18 @@ +# BEGIN WordPress Multisite +# Using subdomain network type: https://wordpress.org/support/article/htaccess/#multisite + +RewriteEngine On +RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] +RewriteBase / +RewriteRule ^index\.php$ - [L] + +# add a trailing slash to /wp-admin +RewriteRule ^wp-admin$ wp-admin/ [R=301,L] + +RewriteCond %{REQUEST_FILENAME} -f [OR] +RewriteCond %{REQUEST_FILENAME} -d +RewriteRule ^ - [L] +RewriteRule ^(wp-(content|admin|includes).*) $1 [L] +RewriteRule ^(.*\.php)$ $1 [L] +RewriteRule . index.php [L] +# END WordPress Multisite diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subfolder.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subfolder.conf.tpl new file mode 100644 index 000000000000..ef8d9f7667ad --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-multisite-subfolder.conf.tpl @@ -0,0 +1,18 @@ +# BEGIN WordPress Multisite +# Using subfolder network type: https://wordpress.org/support/article/htaccess/#multisite + +RewriteEngine On +RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] +RewriteBase / +RewriteRule ^index\.php$ - [L] + +# add a trailing slash to /wp-admin +RewriteRule ^([_0-9a-zA-Z-]+/)?wp-admin$ $1wp-admin/ [R=301,L] + +RewriteCond %{REQUEST_FILENAME} -f [OR] +RewriteCond %{REQUEST_FILENAME} -d +RewriteRule ^ - [L] +RewriteRule ^([_0-9a-zA-Z-]+/)?(wp-(content|admin|includes).*) $2 [L] +RewriteRule ^([_0-9a-zA-Z-]+/)?(.*\.php)$ $2 [L] +RewriteRule . index.php [L] +# END WordPress Multisite diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-volume-rewrite.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-volume-rewrite.conf.tpl new file mode 100644 index 000000000000..0b69325b76ec --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/apache-wordpress-volume-rewrite.conf.tpl @@ -0,0 +1,6 @@ +# BEGIN WordPress fix for plugins and themes +# Certain WordPress plugins and themes do not properly link to PHP files because of symbolic links +# https://github.com/bitnami/bitnami-docker-wordpress-nginx/issues/43 +RewriteEngine On +RewriteRule ^bitnami/wordpress(/.*) $1 [L] +# END WordPress fix for plugins and themes diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-nip-io-redirect.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-nip-io-redirect.conf.tpl new file mode 100644 index 000000000000..848427588a89 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-nip-io-redirect.conf.tpl @@ -0,0 +1,5 @@ +# BEGIN nip.io redirection +if ($host ~ "^(?[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3})(?:[0-9]{1,5})?$") { + return 302 $scheme://$ip.nip.io$port$uri; +} +# END nip.io redirection diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-basic.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-basic.conf.tpl new file mode 100644 index 000000000000..b1436123a526 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-basic.conf.tpl @@ -0,0 +1,19 @@ +# BEGIN WordPress +# https://wordpress.org/support/article/nginx/#general-wordpress-rules +location = /favicon.ico { + log_not_found off; + access_log off; +} +location = /robots.txt { + allow all; + log_not_found off; + access_log off; +} +location / { + try_files $uri $uri/ /index.php?$args; +} +location ~* \.(js|css|png|jpg|jpeg|gif|ico)$ { + expires max; + log_not_found off; +} +# END WordPress diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain-external.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain-external.conf.tpl new file mode 100644 index 000000000000..2add045298eb --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain-external.conf.tpl @@ -0,0 +1,8 @@ +# BEGIN WordPress Multisite variable mapping for NGINX +# https://wordpress.org/support/article/nginx/#wordpress-multisite-subdomains-rules +map $http_host $blogid { + default -999; + # Ref: https://wordpress.org/extend/plugins/nginx-helper/ + #include /opt/bitnami/wordpress/wp-content/plugins/nginx-helper/map.conf; +} +# END WordPress Multisite variable mapping for NGINX diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain.conf.tpl new file mode 100644 index 000000000000..178d5bde9002 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subdomain.conf.tpl @@ -0,0 +1,25 @@ +# BEGIN WordPress Multisite +# Using subdomain network type: https://wordpress.org/support/article/nginx/#wordpress-multisite-subdomains-rules + +location / { + try_files $uri $uri/ /index.php?$args ; +} + +# WPMU Files +location ~ ^/files/(.*)$ { + try_files /wp-content/blogs.dir/$blogid/$uri /wp-includes/ms-files.php?file=$1 ; + access_log off; + log_not_found off; + expires max; +} + +# WPMU x-sendfile to avoid php readfile() +location ^~ /blogs.dir { + internal; + alias {{WORDPRESS_BASE_DIR}}/wp-content/blogs.dir; + access_log off; + log_not_found off; + expires max; +} + +# END WordPress Multisite diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder-external.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder-external.conf.tpl new file mode 100644 index 000000000000..c16ec33e6f3f --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder-external.conf.tpl @@ -0,0 +1,11 @@ +# BEGIN WordPress Multisite variable mapping for NGINX +# https://wordpress.org/support/article/nginx/#wordpress-multisite-subdirectory-rules +map $uri $blogname { + ~^(?P/[^/]+/)files/(.*) $blogpath; +} +map $blogname $blogid { + default -999; + # Ref: https://wordpress.org/extend/plugins/nginx-helper/ + #include /opt/bitnami/wordpress/wp-content/plugins/nginx-helper/map.conf; +} +# END WordPress Multisite variable mapping for NGINX diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder.conf.tpl new file mode 100644 index 000000000000..fe1b45a8d543 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-multisite-subfolder.conf.tpl @@ -0,0 +1,26 @@ +# BEGIN WordPress Multisite +# Using subfolder network type: https://wordpress.org/support/article/nginx/#wordpress-multisite-subdirectory-rules + +location ~ ^(/[^/]+/)?files/(.+) { + try_files /wp-content/blogs.dir/$blogid/files/$2 /wp-includes/ms-files.php?file=$2 ; + access_log off; log_not_found off; expires max; +} + +#avoid php readfile() +location ^~ /blogs.dir { + internal; + alias {{WORDPRESS_BASE_DIR}}/wp-content/blogs.dir ; + access_log off; log_not_found off; expires max; +} + +if (!-e $request_filename) { + rewrite /wp-admin$ $scheme://$host$request_uri/ permanent; + rewrite ^(/[^/]+)?(/wp-.*) $2 last; + rewrite ^(/[^/]+)?(/.*\.php) $2 last; +} + +location / { + try_files $uri $uri/ /index.php?$args ; +} + +# END WordPress Multisite diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-volume-rewrite.conf.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-volume-rewrite.conf.tpl new file mode 100644 index 000000000000..f7594b0f0458 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/nginx-wordpress-volume-rewrite.conf.tpl @@ -0,0 +1,5 @@ +# BEGIN Fix for WordPress plugins and themes +# Certain WordPress plugins and themes do not properly link to PHP files because of symbolic links +# https://github.com/bitnami/bitnami-docker-wordpress-nginx/issues/43 +rewrite ^/bitnami/wordpress(/.*) $1 last; +# END Fix for WordPress plugins and themes diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/wp.tpl b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/wp.tpl new file mode 100644 index 000000000000..d1fe61194532 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/bitnami-templates/wp.tpl @@ -0,0 +1,8 @@ +#!/bin/bash + +export WP_CLI_CONFIG_PATH="{{WORDPRESS_CLI_CONF_FILE}}" +export WP_CLI_PHP_USED="{{PHP_BIN_DIR}}/php" + +command -v less > /dev/null || export PAGER=cat + +exec {{PHP_BIN_DIR}}/php {{WORDPRESS_CLI_BIN_DIR}}/wp-cli.phar "$@" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/entrypoint.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/entrypoint.sh new file mode 100755 index 000000000000..5746b9248e11 --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/entrypoint.sh @@ -0,0 +1,31 @@ +#!/bin/bash + +# shellcheck disable=SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load WordPress environment +. /opt/bitnami/scripts/wordpress-env.sh + +# Load libraries +. /opt/bitnami/scripts/libbitnami.sh +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libwebserver.sh + +print_welcome_page + +if [[ "$1" = "/opt/bitnami/scripts/$(web_server_type)/run.sh" || "$1" = "/opt/bitnami/scripts/nginx-php-fpm/run.sh" ]]; then + info "** Starting WordPress setup **" + /opt/bitnami/scripts/"$(web_server_type)"/setup.sh + /opt/bitnami/scripts/php/setup.sh + /opt/bitnami/scripts/mysql-client/setup.sh + /opt/bitnami/scripts/wordpress/setup.sh + /post-init.sh + info "** WordPress setup finished! **" +fi + +echo "" +exec "$@" diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/postunpack.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/postunpack.sh new file mode 100755 index 000000000000..e4e953fa336c --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/postunpack.sh @@ -0,0 +1,63 @@ +#!/bin/bash + +# shellcheck disable=SC1090,SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load WordPress environment +. /opt/bitnami/scripts/wordpress-env.sh + +# Load PHP environment for 'php_conf_set' (after 'wordpress-env.sh' so that MODULE is not set to a wrong value) +. /opt/bitnami/scripts/php-env.sh + +# Load libraries +. /opt/bitnami/scripts/libwordpress.sh +. /opt/bitnami/scripts/libfile.sh +. /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libphp.sh +. /opt/bitnami/scripts/libwebserver.sh + +# Load web server environment (after WordPress environment file so MODULE is not set to a wrong value) +. "/opt/bitnami/scripts/$(web_server_type)-env.sh" + +# Enable WordPress configuration file +[[ ! -f "$WORDPRESS_CONF_FILE" ]] && cp "${WORDPRESS_BASE_DIR}/wp-config-sample.php" "$WORDPRESS_CONF_FILE" + +# Ensure the WordPress base directory exists and has proper permissions +info "Configuring file permissions for WordPress" +ensure_user_exists "$WEB_SERVER_DAEMON_USER" --group "$WEB_SERVER_DAEMON_GROUP" +# Some directories are needed for wp-cli to be able to install languages/plugins/etc as a non-root user +# However they are not included in the WordPress source tarball, so we create them at this point with proper ownership +# All of them are used by different wp-cli commands, such as 'wp language', 'wp plugin', or 'wp media', amongst others +for dir in "$WORDPRESS_BASE_DIR" "$WORDPRESS_VOLUME_DIR" "${WORDPRESS_BASE_DIR}/wp-content/languages" "${WORDPRESS_BASE_DIR}/wp-content/upgrade" "${WORDPRESS_BASE_DIR}/wp-content/uploads"; do + ensure_dir_exists "$dir" + # Use daemon:root ownership for compatibility when running as a non-root user + configure_permissions_ownership "$dir" -d "g+rwx" -f "g+rw" -u "$WEB_SERVER_DAEMON_USER" -g "root" +done + +# Configure wp-cli +ensure_dir_exists "$WORDPRESS_CLI_CONF_DIR" +cat >"$WORDPRESS_CLI_CONF_FILE" < "${WORDPRESS_CLI_BIN_DIR}/wp" +configure_permissions_ownership "${WORDPRESS_CLI_BIN_DIR}/wp" -f "755" + +info "Configuring default PHP options for WordPress" +php_conf_set memory_limit "$PHP_DEFAULT_MEMORY_LIMIT" +php_conf_set upload_max_filesize "$PHP_DEFAULT_UPLOAD_MAX_FILESIZE" +php_conf_set post_max_size "$PHP_DEFAULT_POST_MAX_SIZE" +# Memcached extension is required for W3 Total Cache plugin +php_conf_set extension "memcached" + +# Enable default web server configuration for WordPress +info "Creating default web server configuration for WordPress" +web_server_validate +# Do not move htaccess files via WORDPRESS_HTACCESS_OVERRIDE_NONE +# so that users can choose whether to do it or not during initialization +WORDPRESS_HTACCESS_OVERRIDE_NONE=no wordpress_generate_web_server_configuration diff --git a/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/setup.sh b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/setup.sh new file mode 100755 index 000000000000..0210c9c273eb --- /dev/null +++ b/bitnami/wordpress/5/debian-10/rootfs/opt/bitnami/scripts/wordpress/setup.sh @@ -0,0 +1,39 @@ +#!/bin/bash + +# shellcheck disable=SC1090,SC1091 + +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purpose + +# Load WordPress environment +. /opt/bitnami/scripts/wordpress-env.sh + +# Load PHP environment for 'wp_execute' (after 'wordpress-env.sh' so that MODULE is not set to a wrong value) +. /opt/bitnami/scripts/php-env.sh + +# Load MySQL Client environment for 'mysql_remote_execute' (after 'wordpress-env.sh' so that MODULE is not set to a wrong value) +if [[ -f /opt/bitnami/scripts/mysql-client-env.sh ]]; then + . /opt/bitnami/scripts/mysql-client-env.sh +elif [[ -f /opt/bitnami/scripts/mysql-env.sh ]]; then + . /opt/bitnami/scripts/mysql-env.sh +elif [[ -f /opt/bitnami/scripts/mariadb-env.sh ]]; then + . /opt/bitnami/scripts/mariadb-env.sh +fi + +# Load libraries +. /opt/bitnami/scripts/libwordpress.sh +. /opt/bitnami/scripts/libwebserver.sh + +# Load web server environment (after WordPress environment file so MODULE is not set to a wrong value) +. "/opt/bitnami/scripts/$(web_server_type)-env.sh" + +# Ensure WordPress environment variables are valid +wordpress_validate + +# Re-create web server configuration with runtime environment (needs to happen before the initialization) +wordpress_generate_web_server_configuration + +# Ensure WordPress is initialized +wordpress_initialize diff --git a/bitnami/wordpress/5/debian-10/rootfs/wordpress-init.sh b/bitnami/wordpress/5/debian-10/rootfs/wordpress-init.sh deleted file mode 100644 index 2e856ebf289e..000000000000 --- a/bitnami/wordpress/5/debian-10/rootfs/wordpress-init.sh +++ /dev/null @@ -1,35 +0,0 @@ -#!/bin/bash - -## -## @brief Helper function to show an error when a password is empty and exit -## param $1 Input name -## -empty_password_error() { - error "The $1 environment variable is empty or not set. Set the environment variable ALLOW_EMPTY_PASSWORD=yes to allow the container to be started with blank passwords. This is recommended only for development." - exit 1 -} - -## -## @brief Helper function to show a warning when the ALLOW_EMPTY_PASSWORD flag is enabled -## -empty_password_enabled_warn() { - warn "You set the environment variable ALLOW_EMPTY_PASSWORD=${ALLOW_EMPTY_PASSWORD}. For safety reasons, do not use this flag in a production environment." -} - -# Validate passwords -if [[ "$ALLOW_EMPTY_PASSWORD" =~ ^(yes|Yes|YES)$ ]]; then - empty_password_enabled_warn -else - # Database creation by MySQL client - if [[ -n "$MYSQL_CLIENT_CREATE_DATABASE_USER" && -z "$MYSQL_CLIENT_CREATE_DATABASE_PASSWORD" ]]; then - empty_password_error MYSQL_CLIENT_CREATE_DATABASE_PASSWORD - fi - # WordPress database - if [[ -z "$WORDPRESS_DATABASE_PASSWORD" ]]; then - empty_password_error WORDPRESS_DATABASE_PASSWORD - fi -fi - -if [[ -e "/htaccess/wordpress-htaccess.conf" ]]; then - cp -L "/htaccess/wordpress-htaccess.conf" "/opt/bitnami/wordpress/wordpress-htaccess.conf" -fi diff --git a/bitnami/wordpress/5/debian-10/rootfs/wordpress-inputs.json b/bitnami/wordpress/5/debian-10/rootfs/wordpress-inputs.json deleted file mode 100644 index 973f25c11224..000000000000 --- a/bitnami/wordpress/5/debian-10/rootfs/wordpress-inputs.json +++ /dev/null @@ -1,31 +0,0 @@ -{ - "blogName": "{{$global.env.WORDPRESS_BLOG_NAME}}", - "databaseName": "{{$global.env.WORDPRESS_DATABASE_NAME}}", - "databasePassword": "{{$global.env.WORDPRESS_DATABASE_PASSWORD}}", - "databaseSSLCAFile": "{{$global.env.WORDPRESS_DATABASE_SSL_CA_FILE}}", - "databaseServerHost": "{{$global.env.MARIADB_HOST}}", - "databaseServerPort": "{{$global.env.MARIADB_PORT_NUMBER}}", - "databaseUser": "{{$global.env.WORDPRESS_DATABASE_USER}}", - "email": "{{$global.env.WORDPRESS_EMAIL}}", - "extraWPConfigContent": "{{$global.env.WORDPRESS_EXTRA_WP_CONFIG_CONTENT}}", - "firstName": "{{$global.env.WORDPRESS_FIRST_NAME}}", - "htaccessOverrideNone": "{{$global.env.WORDPRESS_HTACCESS_OVERRIDE_NONE}}", - "htaccessPersistenceEnabled": "{{$global.env.WORDPRESS_HTACCESS_PERSISTENCE_ENABLED}}", - "httpPort": "{{$global.env.WORDPRESS_HTTP_PORT}}", - "httpsPort": "{{$global.env.WORDPRESS_HTTPS_PORT}}", - "lastName": "{{$global.env.WORDPRESS_LAST_NAME}}", - "password": "{{$global.env.WORDPRESS_PASSWORD}}", - "phpMemoryLimit": "{{$global.env.PHP_MEMORY_LIMIT}}", - "phpOpcacheEnabled": "{{$global.env.PHP_OPCACHE_ENABLED}}", - "resetDataPermissions": "{{$global.env.WORDPRESS_RESET_DATA_PERMISSIONS}}", - "scheme": "{{$global.env.WORDPRESS_SCHEME}}", - "skipInstall": "{{$global.env.WORDPRESS_SKIP_INSTALL}}", - "smtpHost": "{{$global.env.SMTP_HOST}}", - "smtpPassword": "{{$global.env.SMTP_PASSWORD}}", - "smtpPort": "{{$global.env.SMTP_PORT}}", - "smtpProtocol": "{{$global.env.SMTP_PROTOCOL}}", - "smtpUser": "{{$global.env.SMTP_USER}}", - "smtpUsername": "{{$global.env.SMTP_USERNAME}}", - "tablePrefix": "{{$global.env.WORDPRESS_TABLE_PREFIX}}", - "username": "{{$global.env.WORDPRESS_USERNAME}}" -} \ No newline at end of file diff --git a/bitnami/wordpress/README.md b/bitnami/wordpress/README.md index 4a9175bc9fb9..bbf1058911f9 100644 --- a/bitnami/wordpress/README.md +++ b/bitnami/wordpress/README.md @@ -1,28 +1,28 @@ -# What is WordPress? +# Bitnami Docker Image for WordPress + +## What is WordPress? > WordPress is one of the most versatile open source content management systems on the market. WordPress is built for high performance and is scalable to many servers, has easy integration via REST, JSON, SOAP and other formats, and features a whopping 15,000 plugins to extend and customize the application for just about any type of website. [https://www.wordpress.org/](https://www.wordpress.org/) -# TL;DR - -## Docker Compose +## TL;DR ```console -$ curl -LO https://raw.githubusercontent.com/bitnami/bitnami-docker-wordpress/master/docker-compose.yml -$ docker-compose up +$ curl -sSL https://raw.githubusercontent.com/bitnami/bitnami-docker-wordpress/master/docker-compose.yml > docker-compose.yml +$ docker-compose up -d ``` You can find the default credentials and available configuration options in the [Environment Variables](#environment-variables) section. -# Why use Bitnami Images? +## Why use Bitnami Images? -* Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. -* With Bitnami images the latest bug fixes and features are available as soon as possible. -* Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. -* All our images are based on [minideb](https://github.com/bitnami/minideb) a minimalist Debian based container image which gives you a small base container image and the familiarity of a leading Linux distribution. -* All Bitnami images available in Docker Hub are signed with [Docker Content Trust (DCT)](https://docs.docker.com/engine/security/trust/content_trust/). You can use `DOCKER_CONTENT_TRUST=1` to verify the integrity of the images. -* Bitnami container images are released daily with the latest distribution packages available. +- Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. +- With Bitnami images the latest bug fixes and features are available as soon as possible. +- Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. +- All our images are based on [minideb](https://github.com/bitnami/minideb) a minimalist Debian based container image which gives you a small base container image and the familiarity of a leading Linux distribution. +- All Bitnami images available in Docker Hub are signed with [Docker Content Trust (DCT)](https://docs.docker.com/engine/security/trust/content_trust/). You can use `DOCKER_CONTENT_TRUST=1` to verify the integrity of the images. +- Bitnami container images are released daily with the latest distribution packages available. > This [CVE scan report](https://quay.io/repository/bitnami/wordpress?tab=tags) contains a security report with all open CVEs. To get the list of actionable security issues, find the "latest" tag, click the vulnerability report link under the corresponding "Security scan" field and then select the "Only show fixable" filter on the next page. @@ -32,28 +32,44 @@ Deploying Bitnami applications as Helm Charts is the easiest way to get started Bitnami containers can be used with [Kubeapps](https://kubeapps.com/) for deployment and management of Helm Charts in clusters. -# Why use a non-root container? +## Why use a non-root container? Non-root container images add an extra layer of security and are generally recommended for production environments. However, because they run as a non-root user, privileged tasks are typically off-limits. Learn more about non-root containers [in our docs](https://docs.bitnami.com/tutorials/work-with-non-root-containers/). -# Supported tags and respective `Dockerfile` links +## Supported tags and respective `Dockerfile` links Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.bitnami.com/tutorials/understand-rolling-tags-containers/). -* [`5`, `5-debian-10`, `5.7.1`, `5.7.1-debian-10-r20`, `latest` (5/debian-10/Dockerfile)](https://github.com/bitnami/bitnami-docker-wordpress/blob/5.7.1-debian-10-r20/5/debian-10/Dockerfile) +- [`5`, `5-debian-10`, `5.7.1`, `5.7.1-debian-10-r21`, `latest` (5/debian-10/Dockerfile)](https://github.com/bitnami/bitnami-docker-wordpress/blob/5.7.1-debian-10-r21/5/debian-10/Dockerfile) Subscribe to project updates by watching the [bitnami/wordpress GitHub repo](https://github.com/bitnami/bitnami-docker-wordpress). -# Prerequisites +## Get this image -To run this application you need [Docker Engine](https://www.docker.com/products/docker-engine) >= `1.10.0`. [Docker Compose](https://www.docker.com/products/docker-compose) is recommended with a version `1.6.0` or later. +The recommended way to get the Bitnami WordPress Docker Image is to pull the prebuilt image from the [Docker Hub Registry](https://hub.docker.com/r/bitnami/wordpress). -# How to use this image +```console +$ docker pull bitnami/wordpress:latest +``` -WordPress requires access to a MySQL or MariaDB database to store information. We'll use our very own [MariaDB image](https://www.github.com/bitnami/bitnami-docker-mariadb) for the database requirements. +To use a specific version, you can pull a versioned tag. You can view the [list of available versions](https://hub.docker.com/r/bitnami/wordpress/tags/) in the Docker Hub Registry. -## Run the application using Docker Compose +```console +$ docker pull bitnami/wordpress:[TAG] +``` + +If you wish, you can also build the image yourself. + +```console +$ docker build -t bitnami/wordpress:latest 'https://github.com/bitnami/bitnami-docker-wordpress.git#master:5/debian-10' +``` + +## How to use this image + +WordPress requires access to a MySQL or MariaDB database to store information. We'll use the [Bitnami Docker Image for MariaDB](https://www.github.com/bitnami/bitnami-docker-mariadb) for the database requirements. + +### Run the application using Docker Compose The main folder of this repository contains a functional [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file. Run the application using it as shown below: @@ -62,30 +78,31 @@ $ curl -sSL https://raw.githubusercontent.com/bitnami/bitnami-docker-wordpress/m $ docker-compose up -d ``` -## Using the Docker Command Line +### Using the Docker Command Line If you want to run the application manually instead of using `docker-compose`, these are the basic steps you need to run: -### Step 1: Create a network +#### Step 1: Create a network ```console $ docker network create wordpress-network ``` -### Step 2: Create a volume for MariaDB persistence and create a MariaDB container +#### Step 2: Create a volume for MariaDB persistence and create a MariaDB container ```console $ docker volume create --name mariadb_data $ docker run -d --name mariadb \ --env ALLOW_EMPTY_PASSWORD=yes \ --env MARIADB_USER=bn_wordpress \ + --env MARIADB_PASSWORD=bitnami \ --env MARIADB_DATABASE=bitnami_wordpress \ --network wordpress-network \ --volume mariadb_data:/bitnami/mariadb \ bitnami/mariadb:latest ``` -### Step 3: Create volumes for WordPress persistence and launch the container +#### Step 3: Create volumes for WordPress persistence and launch the container ```console $ docker volume create --name wordpress_data @@ -93,31 +110,30 @@ $ docker run -d --name wordpress \ -p 8080:8080 -p 8443:8443 \ --env ALLOW_EMPTY_PASSWORD=yes \ --env WORDPRESS_DATABASE_USER=bn_wordpress \ + --env WORDPRESS_DATABASE_PASSWORD=bitnami \ --env WORDPRESS_DATABASE_NAME=bitnami_wordpress \ --network wordpress-network \ --volume wordpress_data:/bitnami/wordpress \ bitnami/wordpress:latest ``` -Access your application at http://your-ip/ +Access your application at *http://your-ip/* ## Persisting your application -If you remove the container all your data and configurations will be lost, and the next time you run the image the database will be reinitialized. To avoid this loss of data, you should mount a volume that will persist even after the container is removed. +If you remove the container all your data will be lost, and the next time you run the image the database will be reinitialized. To avoid this loss of data, you should mount a volume that will persist even after the container is removed. -For persistence you should mount a volume at the `/bitnami/wordpress` path. Additionally you should mount a volume for [persistence of the MariaDB data](https://github.com/bitnami/bitnami-docker-mariadb#persisting-your-database). +For persistence you should mount a directory at the `/bitnami/wordpress` path. If the mounted directory is empty, it will be initialized on the first run. Additionally you should [mount a volume for persistence of the MariaDB data](https://github.com/bitnami/bitnami-docker-mariadb#persisting-your-database). -The above examples define docker volumes namely `mariadb_data` and `wordpress_data`. The Wordpress application state will persist as long as these volumes are not removed. +The above examples define the Docker volumes named `mariadb_data` and `wordpress_data`. The WordPress application state will persist as long as volumes are not removed. -To avoid inadvertent removal of these volumes you can [mount host directories as data volumes](https://docs.docker.com/engine/tutorials/dockervolumes/). Alternatively you can make use of volume plugins to host the volume data. +To avoid inadvertent removal of volumes, you can [mount host directories as data volumes](https://docs.docker.com/engine/tutorials/dockervolumes/). Alternatively you can make use of volume plugins to host the volume data. ### Mount host directories as data volumes with Docker Compose This requires a minor change to the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: ```diff - ... - services: mariadb: ... volumes: @@ -125,9 +141,9 @@ This requires a minor change to the [`docker-compose.yml`](https://github.com/bi + - /path/to/mariadb-persistence:/bitnami/mariadb ... wordpress: - ... + ... volumes: -- - 'wordpress_data:/bitnami/wordpress +- - 'wordpress_data:/bitnami/wordpress' + - /path/to/wordpress-persistence:/bitnami/wordpress ... -volumes: @@ -153,6 +169,7 @@ $ docker network create wordpress-network $ docker run -d --name mariadb \ --env ALLOW_EMPTY_PASSWORD=yes \ --env MARIADB_USER=bn_wordpress \ + --env MARIADB_PASSWORD=bitnami \ --env MARIADB_DATABASE=bitnami_wordpress \ --network wordpress-network \ --volume /path/to/mariadb-persistence:/bitnami/mariadb \ @@ -168,6 +185,7 @@ $ docker run -d --name wordpress \ -p 8080:8080 -p 8443:8443 \ --env ALLOW_EMPTY_PASSWORD=yes \ --env WORDPRESS_DATABASE_USER=bn_wordpress \ + --env WORDPRESS_DATABASE_PASSWORD=bitnami \ --env WORDPRESS_DATABASE_NAME=bitnami_wordpress \ --network wordpress-network \ --volume /path/to/wordpress-persistence:/bitnami/wordpress \ @@ -176,218 +194,191 @@ $ docker run -d --name wordpress \ > NOTE: As this is a non-root container, the mounted files and directories must have the proper permissions for the UID `1001`. -# Upgrading WordPress +## Configuration -Bitnami provides up-to-date versions of MariaDB and WordPress, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. We will cover here the upgrade of the WordPress container. For the MariaDB upgrade see https://github.com/bitnami/bitnami-docker-mariadb/blob/master/README.md#upgrade-this-image +### Environment variables -The `bitnami/wordpress:latest` tag always points to the most recent release. To get the most recent release you can simple repull the `latest` tag from the Docker Hub with `docker pull bitnami/wordpress:latest`. However it is recommended to use [tagged versions](https://hub.docker.com/r/bitnami/wordpress/tags/). +When you start the WordPress image, you can adjust the configuration of the instance by passing one or more environment variables either on the docker-compose file or on the `docker run` command line. If you want to add a new environment variable: -## Step 1. Get the updated images: +- For docker-compose add the variable name and value under the application section in the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: -```console -$ docker pull bitnami/wordpress:latest -``` + ```yaml + wordpress: + ... + environment: + - WORDPRESS_PASSWORD=my_password + ... + ``` -## Step 2. Stop your container +- For manual execution add a `--env` option with each variable and value: -* For docker-compose: `$ docker-compose stop wordpress` -* For manual execution: `$ docker stop wordpress` + ```console + $ docker run -d --name wordpress -p 80:8080 -p 443:8443 \ + --env WORDPRESS_PASSWORD=my_password \ + --network wordpress-tier \ + --volume /path/to/wordpress-persistence:/bitnami \ + bitnami/wordpress:latest + ``` -## Step 3. Take a snapshot of the application state - -```console -$ rsync -a /path/to/wordpress-persistence /path/to/wordpress-persistence.bkp.$(date +%Y%m%d-%H.%M.%S) -``` - -Additionally, [snapshot the MariaDB data](https://github.com/bitnami/bitnami-docker-mariadb#step-2-stop-and-backup-the-currently-running-container) - -You can use these snapshots to restore the application state should the upgrade fail. - -## Step 4. Remove the stopped container - -* For docker-compose: `$ docker-compose rm wordpress` -* For manual execution: `$ docker rm wordpress` - -## Step 5. Run the new image - -* For docker-compose: `$ docker-compose up wordpress` -* For manual execution ([mount](#mount-persistent-folders-manually) the directories if needed): `docker run --name wordpress bitnami/wordpress:latest` - -# Configuration - -## Environment variables - -The WordPress instance can be customized by specifying environment variables on the first run. The following environment values are provided to custom WordPress: +Available environment variables: ##### User and Site configuration -* `WORDPRESS_USERNAME`: WordPress application username. Default: **user** -* `WORDPRESS_PASSWORD`: WordPress application password. Default: **bitnami** -* `WORDPRESS_EMAIL`: WordPress application email. Default: **user@example.com** -* `WORDPRESS_FIRST_NAME`: WordPress user first name. Default: **FirstName** -* `WORDPRESS_LAST_NAME`: WordPress user last name. Default: **LastName** -* `WORDPRESS_BLOG_NAME`: WordPress blog name. Default: **User's blog** -* `WORDPRESS_SCHEME`: Scheme to generate application URLs. Default: **http** -* `WORDPRESS_HTACCESS_OVERRIDE_NONE`: Set the Apache `AllowOverride` variable to `None`. All the default directives will be loaded from `/opt/bitnami/wordpress/wordpress-htaccess.conf`. Default: **yes**. -* `WORDPRESS_HTACCESS_PERSISTENCE_ENABLED`: Persist the custom changes of the htaccess. It depends on the value of `WORDPRESS_HTACCESS_OVERRIDE_NONE`, when `yes` it will persist `/opt/bitnami/wordpress/wordpress-htaccess.conf` if `no` it will persist `/opt/bitnami/wordpress/.htaccess`. Default: **no**. -* `WORDPRESS_RESET_DATA_PERMISSIONS`: Force reseting ownership/permissions on persisted data when restarting WordPress, otherwise it assumes the ownership/permissions are correct. Ignored when running WP as non-root. Default: **no** +- `APACHE_HTTP_PORT_NUMBER`: Port used by Apache for HTTP. Default: **8080** +- `APACHE_HTTPS_PORT_NUMBER`: Port used by Apache for HTTPS. Default: **8443** +- `WORDPRESS_USERNAME`: WordPress application username. Default: **user** +- `WORDPRESS_PASSWORD`: WordPress application password. Default: **bitnami** +- `WORDPRESS_EMAIL`: WordPress application email. Default: **user@example.com** +- `WORDPRESS_FIRST_NAME`: WordPress user first name. Default: **FirstName** +- `WORDPRESS_LAST_NAME`: WordPress user last name. Default: **LastName** +- `WORDPRESS_BLOG_NAME`: WordPress blog name. Default: **User's blog** +- `WORDPRESS_HTACCESS_OVERRIDE_NONE`: Set the Apache `AllowOverride` variable to `None`. All the default directives will be loaded from `/opt/bitnami/wordpress/wordpress-htaccess.conf`. Default: **yes** +- `WORDPRESS_ENABLE_HTACCESS_PERSISTENCE`: Persist the custom changes of the htaccess. It depends on the value of `WORDPRESS_HTACCESS_OVERRIDE_NONE`, when `yes` it will persist `/opt/bitnami/wordpress/wordpress-htaccess.conf` if `no` it will persist `/opt/bitnami/wordpress/.htaccess`. Default: **no** +- `WORDPRESS_RESET_DATA_PERMISSIONS`: Force resetting ownership/permissions on persisted data when restarting WordPress, otherwise it assumes the ownership/permissions are correct. Ignored when running as non-root. Default: **no** +- `WORDPRESS_TABLE_PREFIX`: Table prefix to use in WordPress. Default: **wp_** +- `WORDPRESS_PLUGINS`: List of WordPress plugins to install and activate, separated via commas. Can also be set to `all` to activate all currently installed plugins, or `none` to skip. Default: **none** +- `WORDPRESS_EXTRA_INSTALL_ARGS`: Extra flags to append to the WordPress 'wp core install' command call. No defaults. +- `WORDPRESS_EXTRA_WP_CONFIG_CONTENT`: Extra configuration to append to wp-config.php during install. No defaults. +- `WORDPRESS_ENABLE_HTTPS`: Whether to use HTTPS by default. Default: **no** +- `WORDPRESS_SKIP_BOOTSTRAP`: Skip the WordPress installation wizard. This is necessary when providing a database with existing WordPress data. Default: **no** +- `WORDPRESS_AUTO_UPDATE_LEVEL`: Level of auto-updates to allow for the WordPress core installation. Valid values: `major`, `minor`, `none`. Default: **none** -##### Use an existing database +##### Multisite configuration -* `MARIADB_HOST`: Hostname for MariaDB server. Default: **mariadb** -* `MARIADB_PORT_NUMBER`: Port used by MariaDB server. Default: **3306** -* `WORDPRESS_DATABASE_NAME`: Database name that WordPress will use to connect with the database. Default: **bitnami_wordpress** -* `WORDPRESS_TABLE_PREFIX`: Table prefix to use in WordPress. Default: **wp_** -* `WORDPRESS_DATABASE_USER`: Database user that WordPress will use to connect with the database. Default: **bn_wordpress** -* `WORDPRESS_DATABASE_PASSWORD`: Database password that WordPress will use to connect with the database. No defaults. -* `WORDPRESS_SKIP_INSTALL`: Force the container to not execute the WordPress installation wizard. This is necessary in case you use a database that already has WordPress data. Default: **no** -* `ALLOW_EMPTY_PASSWORD`: It can be used to allow blank passwords. Default: **no** +- `WORDPRESS_ENABLE_MULTISITE`: Enable WordPress Multisite configuration. Default: **no** +- `WORDPRESS_MULTISITE_HOST`: WordPress hostname/address. Only used for Multisite installations. No defaults. +- `WORDPRESS_MULTISITE_EXTERNAL_HTTP_PORT_NUMBER`: Port to used by WordPress to generate URLs and links when accessing using HTTP. Will be ignored if multisite mode is not enabled. Default **80** +- `WORDPRESS_MULTISITE_EXTERNAL_HTTPS_PORT_NUMBER`: Port to used by WordPress to generate URLs and links when accessing using HTTPS. Will be ignored if multisite mode is not enabled. Default **443** +- `WORDPRESS_MULTISITE_NETWORK_TYPE`: WordPress Multisite network type to enable. Valid values: `subfolder`, `subdirectory`, `subdomain`. Default: **subdomain** +- `WORDPRESS_MULTISITE_ENABLE_NIP_IO_REDIRECTION`: Whether to enable IP address redirection to nip.io wildcard DNS when enabling WordPress Multisite. This is useful when running on an IP address with subdomain network type. Default: **no** +- `WORDPRESS_MULTISITE_FILEUPLOAD_MAXK`: Maximum upload file size allowed for WordPress Multisite uploads, in kilobytes. Default: **81920** + +##### Database connection configuration + +- `WORDPRESS_DATABASE_HOST`: Hostname for the MariaDB or MySQL server. Default: **mariadb** +- `WORDPRESS_DATABASE_PORT_NUMBER`: Port used by the MariaDB or MySQL server. Default: **3306** +- `WORDPRESS_DATABASE_NAME`: Database name that WordPress will use to connect with the database. Default: **bitnami_wordpress** +- `WORDPRESS_DATABASE_USER`: Database user that WordPress will use to connect with the database. Default: **bn_wordpress** +- `WORDPRESS_DATABASE_PASSWORD`: Database password that WordPress will use to connect with the database. No defaults. +- `WORDPRESS_ENABLE_DATABASE_SSL`: Whether to enable SSL for database connections. Default: **no** +- `WORDPRESS_VERIFY_DATABASE_SSL`: Whether to verify the database SSL certificate when SSL is enabled for database connections. Default: **yes** +- `WORDPRESS_DATABASE_SSL_CERT_FILE`: Path to the database client certificate file. No defaults +- `WORDPRESS_DATABASE_SSL_KEY_FILE`: Path to the database client certificate key file. No defaults +- `WORDPRESS_DATABASE_SSL_CA_FILE`: Path to the database server CA bundle file. No defaults +- `ALLOW_EMPTY_PASSWORD`: It can be used to allow blank passwords. Default: **no** ##### Create a database for WordPress using mysql-client -* `MARIADB_HOST`: Hostname for MariaDB server. Default: **mariadb** -* `MARIADB_PORT_NUMBER`: Port used by MariaDB server. Default: **3306** -* `MARIADB_ROOT_USER`: Database admin user. Default: **root** -* `MARIADB_ROOT_PASSWORD`: Database password for the `MARIADB_ROOT_USER` user. No defaults. -* `MYSQL_CLIENT_CREATE_DATABASE_NAME`: New database to be created by the mysql client module. No defaults. -* `WORDPRESS_TABLE_PREFIX`: Table prefix to use in WordPress. Default: **wp_** -* `MYSQL_CLIENT_CREATE_DATABASE_USER`: New database user to be created by the mysql client module. No defaults. -* `MYSQL_CLIENT_CREATE_DATABASE_PASSWORD`: Database password for the `MYSQL_CLIENT_CREATE_DATABASE_USER` user. No defaults. -* `ALLOW_EMPTY_PASSWORD`: It can be used to allow blank passwords. Default: **no** +- `MYSQL_CLIENT_FLAVOR`: SQL database flavor. Valid values: `mariadb` or `mysql`. Default: **mariadb** +- `MYSQL_CLIENT_DATABASE_HOST`: Hostname for the MariaDB or MySQL server. Default: **mariadb** +- `MYSQL_CLIENT_DATABASE_PORT_NUMBER`: Port used by the MariaDB or MySQL server. Default: **3306** +- `MYSQL_CLIENT_DATABASE_ROOT_USER`: Database admin user. Default: **root** +- `MYSQL_CLIENT_DATABASE_ROOT_PASSWORD`: Database password for the database admin user. No defaults. +- `MYSQL_CLIENT_CREATE_DATABASE_NAME`: New database to be created by the mysql client module. No defaults. +- `MYSQL_CLIENT_CREATE_DATABASE_USER`: New database user to be created by the mysql client module. No defaults. +- `MYSQL_CLIENT_CREATE_DATABASE_PASSWORD`: Database password for the `MYSQL_CLIENT_CREATE_DATABASE_USER` user. No defaults. +- `MYSQL_CLIENT_CREATE_DATABASE_CHARACTER_SET`: Character set to use for the new database. No defaults. +- `MYSQL_CLIENT_CREATE_DATABASE_COLLATE`: Database collation to use for the new database. No defaults. +- `MYSQL_CLIENT_ENABLE_SSL_WRAPPER`: Whether to force SSL connections to the database via the `mysql` CLI tool. Useful for applications that rely on the CLI instead of APIs. Default: **no** +- `MYSQL_CLIENT_ENABLE_SSL`: Whether to force SSL connections for the database. Default: **no** +- `MYSQL_CLIENT_SSL_CA_FILE`: Path to the SSL CA file for the new database. No defaults +- `MYSQL_CLIENT_SSL_CERT_FILE`: Path to the SSL CA file for the new database. No defaults +- `MYSQL_CLIENT_SSL_KEY_FILE`: Path to the SSL CA file for the new database. No defaults +- `ALLOW_EMPTY_PASSWORD`: It can be used to allow blank passwords. Default: **no** -##### PHP configuration - -* `PHP_MEMORY_LIMIT`: Memory limit for PHP scripts. Default: **256M** -* `PHP_OPCACHE_ENABLED`: Enable opcache for PHP scripts. Default: **yes** - -### Specifying Environment variables using Docker Compose - -This requires a minor change to the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: - -```yaml -services: - mariadb: - ... - environment: - - MARIADB_USER=bn_wordpress - - MARIADB_DATABASE=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes - ... - wordpress: - ... - environment: - - MARIADB_HOST=mariadb - - MARIADB_PORT_NUMBER=3306 - - WORDPRESS_DATABASE_USER=bn_wordpress - - WORDPRESS_DATABASE_NAME=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes - ... -``` - -### Specifying Environment variables on the Docker command line - -```console -$ docker run -d --name wordpress \ - -p 8080:8080 -p 8443:8443 \ - --network wordpress-network \ - --env ALLOW_EMPTY_PASSWORD=yes \ - --env WORDPRESS_DATABASE_USER=bn_wordpress \ - --env WORDPRESS_DATABASE_NAME=bitnami_wordpress \ - --env WORDPRESS_PASSWORD=my_password \ - --volume wordpress_data:/bitnami/wordpresss \ - bitnami/wordpress:latest -``` - -### SMTP Configuration +##### SMTP Configuration To configure WordPress to send email using SMTP you can set the following environment variables: -* `SMTP_HOST`: Host for outgoing SMTP email. No defaults. -* `SMTP_PORT`: Port for outgoing SMTP email. No defaults. -* `SMTP_USER`: User of SMTP used for authentication (likely email). No defaults. -* `SMTP_PASSWORD`: Password for SMTP. No defaults. -* `SMTP_PROTOCOL`: Secure connection protocol to use for SMTP [tls, ssl, none]. No defaults. +- `WORDPRESS_SMTP_HOST`: SMTP host. +- `WORDPRESS_SMTP_PORT`: SMTP port. +- `WORDPRESS_SMTP_USER`: SMTP account user. +- `WORDPRESS_SMTP_PASSWORD`: SMTP account password. -This would be an example of SMTP configuration using a GMail account: +##### PHP configuration -* Modify the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: +- `PHP_ENABLE_OPCACHE`: Enable OPcache for PHP scripts. Default: **yes** +- `PHP_EXPOSE_PHP`: Enables HTTP header with PHP version. No default. +- `PHP_MAX_EXECUTION_TIME`: Maximum execution time for PHP scripts. No default. +- `PHP_MAX_INPUT_TIME`: Maximum input time for PHP scripts. No default. +- `PHP_MAX_INPUT_VARS`: Maximum amount of input variables for PHP scripts. No default. +- `PHP_MEMORY_LIMIT`: Memory limit for PHP scripts. Default: **512M** +- `PHP_POST_MAX_SIZE`: Maximum size for PHP POST requests. No default. +- `PHP_UPLOAD_MAX_FILESIZE`: Maximum file size for PHP uploads. No default. -```diff - wordpress: - ... - environment: - - MARIADB_HOST=mariadb - - MARIADB_PORT_NUMBER=3306 - - WORDPRESS_DATABASE_USER=bn_wordpress - - WORDPRESS_DATABASE_NAME=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes -+ - SMTP_HOST=smtp.gmail.com -+ - SMTP_PORT=587 -+ - SMTP_USER=your_email@gmail.com -+ - SMTP_PASSWORD=your_password -+ - SMTP_PROTOCOL=tls - ... -``` +#### Examples -* For manual execution: +##### SMTP configuration using a Gmail account -```console -$ docker run -d --name wordpress \ - -p 8080:8080 -p 8443:8443 \ - --network wordpress-network \ - --env SMTP_HOST=smtp.gmail.com --env SMTP_PORT=587 \ - --env SMTP_USER=your_email@gmail.com --env SMTP_PASSWORD=your_password \ - --env ALLOW_EMPTY_PASSWORD=yes --env WORDPRESS_DATABASE_USER=bn_wordpress \ - --env WORDPRESS_DATABASE_NAME=bitnami_wordpress \ - --volume wordpress_data:/bitnami/wordpress \ - bitnami/wordpress:latest -``` +This would be an example of SMTP configuration using a Gmail account: -### Connect WordPress docker container to an existing database +- Modify the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: -The Bitnami WordPress container supports connecting the WordPress application to an external database. In order to configure it, you should set the following environment variables: + ```yaml + wordpress: + ... + environment: + - WORDPRESS_DATABASE_USER=bn_wordpress + - WORDPRESS_DATABASE_NAME=bitnami_wordpress + - ALLOW_EMPTY_PASSWORD=yes + - WORDPRESS_SMTP_HOST=smtp.gmail.com + - WORDPRESS_SMTP_PORT=587 + - WORDPRESS_SMTP_USER=your_email@gmail.com + - WORDPRESS_SMTP_PASSWORD=your_password + ... + ``` -* `MARIADB_HOST`: Hostname for MariaDB server. Default: **mariadb** -* `MARIADB_PORT_NUMBER`: Port used by MariaDB server. Default: **3306** -* `WORDPRESS_DATABASE_NAME`: Database name that WordPress will use to connect with the database. Default: **bitnami_wordpress** -* `WORDPRESS_DATABASE_USER`: Database user that WordPress will use to connect with the database. Default: **bn_wordpress** -* `WORDPRESS_DATABASE_PASSWORD`: Database password that WordPress will use to connect with the database. No defaults. -* `WORDPRESS_DATABASE_SSL_CA_FILE`: Certificate to connect with the database using SSL. No defaults. +- For manual execution: -This would be an example of using an external database for WordPress. + ```console + $ docker run -d --name wordpress -p 80:8080 -p 443:8443 \ + --env WORDPRESS_DATABASE_USER=bn_wordpress \ + --env WORDPRESS_DATABASE_NAME=bitnami_wordpress \ + --env WORDPRESS_SMTP_HOST=smtp.gmail.com \ + --env WORDPRESS_SMTP_PORT=587 \ + --env WORDPRESS_SMTP_USER=your_email@gmail.com \ + --env WORDPRESS_SMTP_PASSWORD=your_password \ + --network wordpress-tier \ + --volume /path/to/wordpress-persistence:/bitnami \ + bitnami/wordpress:latest + ``` -* Modify the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: +##### Connect WordPress container to an existing database -```diff - wordpress: - ... - environment: -- - MARIADB_HOST=mariadb -+ - MARIADB_HOST=mariadb_host - - MARIADB_PORT_NUMBER=3306 - - WORDPRESS_DATABASE_NAME=wordpress_db - - WORDPRESS_DATABASE_USER=wordpress_user -- - ALLOW_EMPTY_PASSWORD=yes -+ - WORDPRESS_DATABASE_PASSWORD=wordpress_password - ... -``` +The Bitnami WordPress container supports connecting the WordPress application to an external database. This would be an example of using an external database for WordPress. -* For manual execution: +- Modify the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository: -```console -$ docker run -d --name wordpress\ - -p 8080:8080 -p 8443:8443 \ - --network wordpress-network \ - --env MARIADB_HOST=mariadb_host \ - --env MARIADB_PORT_NUMBER=3306 \ - --env WORDPRESS_DATABASE_NAME=wordpress_db \ - --env WORDPRESS_DATABASE_USER=wordpress_user \ - --env WORDPRESS_DATABASE_PASSWORD=wordpress_password \ - --volume wordpress_data:/bitnami/wordpress \ - bitnami/wordpress:latest -``` + ```diff + wordpress: + ... + environment: + - - WORDPRESS_DATABASE_HOST=mariadb + + - WORDPRESS_DATABASE_HOST=mariadb_host + - WORDPRESS_DATABASE_PORT_NUMBER=3306 + - WORDPRESS_DATABASE_NAME=wordpress_db + - WORDPRESS_DATABASE_USER=wordpress_user + - - ALLOW_EMPTY_PASSWORD=yes + + - WORDPRESS_DATABASE_PASSWORD=wordpress_password + ... + ``` -In case the database already contains data from a previous WordPress installation, you need to set the variable `WORDPRESS_SKIP_INSTALL` to `yes`. Otherwise, the container would execute the installation wizard and could modify the existing data in the database. Note that, when setting `WORDPRESS_SKIP_INSTALL` to `yes`, the values `WORDPRESS_USERNAME`, `WORDPRESS_PASSWORD`, `WORDPRESS_BLOG_NAME`, `WORDPRESS_EMAIL`, `WORDPRESS_BLOG_NAME` and `WORDPRESS_SMTP_*` variables will be ignored. Make sure that, in this imported database, the table prefix matches the one set in `WORDPRESS_TABLE_PREFIX`. +- For manual execution: + + ```console + $ docker run -d --name wordpress\ + -p 8080:8080 -p 8443:8443 \ + --network wordpress-network \ + --env WORDPRESS_DATABASE_HOST=mariadb_host \ + --env WORDPRESS_DATABASE_PORT_NUMBER=3306 \ + --env WORDPRESS_DATABASE_NAME=wordpress_db \ + --env WORDPRESS_DATABASE_USER=wordpress_user \ + --env WORDPRESS_DATABASE_PASSWORD=wordpress_password \ + --volume wordpress_data:/bitnami/wordpress \ + bitnami/wordpress:latest + ``` + +In case the database already contains data from a previous WordPress installation, you need to set the variable `WORDPRESS_SKIP_BOOTSTRAP` to `yes`. Otherwise, the container would execute the installation wizard and could modify the existing data in the database. Note that, when setting `WORDPRESS_SKIP_BOOTSTRAP` to `yes`, values for environment variables such as `WORDPRESS_USERNAME`, `WORDPRESS_PASSWORD` or `WORDPRESS_EMAIL` will be ignored. Make sure that, in this imported database, the table prefix matches the one set in `WORDPRESS_TABLE_PREFIX`. ## WP-CLI tool @@ -409,11 +400,118 @@ $ docker exec wordpress wp help Find more information about parameters available in the tool in the [official documentation](https://make.wordpress.org/cli/handbook/config/). -# Customize this image +## Logging + +The Bitnami WordPress Docker image sends the container logs to `stdout`. To view the logs: + +```console +$ docker logs wordpress +``` + +Or using Docker Compose: + +```console +$ docker-compose logs wordpress +``` + +You can configure the containers [logging driver](https://docs.docker.com/engine/admin/logging/overview/) using the `--log-driver` option if you wish to consume the container logs differently. In the default configuration docker uses the `json-file` driver. + +## Maintenance + +### Backing up your container + +To backup your data, configuration and logs, follow these simple steps: + +#### Step 1: Stop the currently running container + +```console +$ docker stop wordpress +``` + +Or using Docker Compose: + +```console +$ docker-compose stop wordpress +``` + +#### Step 2: Run the backup command + +We need to mount two volumes in a container we will use to create the backup: a directory on your host to store the backup in, and the volumes from the container we just stopped so we can access the data. + +```console +$ docker run --rm -v /path/to/wordpress-backups:/backups --volumes-from wordpress busybox \ + cp -a /bitnami/wordpress /backups/latest +``` + +### Restoring a backup + +Restoring a backup is as simple as mounting the backup as volumes in the containers. + +For the MariaDB database container: + +```diff + $ docker run -d --name mariadb \ + ... +- --volume /path/to/mariadb-persistence:/bitnami/mariadb \ ++ --volume /path/to/mariadb-backups/latest:/bitnami/mariadb \ + bitnami/mariadb:latest +``` + +For the WordPress container: + +```diff + $ docker run -d --name wordpress \ + ... +- --volume /path/to/wordpress-persistence:/bitnami/wordpress \ ++ --volume /path/to/wordpress-backups/latest:/bitnami/wordpress \ + bitnami/wordpress:latest +``` + +### Upgrade this image + +Bitnami provides up-to-date versions of MariaDB and WordPress, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. We will cover here the upgrade of the WordPress container. For the MariaDB upgrade see https://github.com/bitnami/bitnami-docker-mariadb/blob/master/README.md#upgrade-this-image + +The `bitnami/wordpress:latest` tag always points to the most recent release. To get the most recent release you can simple repull the `latest` tag from the Docker Hub with `docker pull bitnami/wordpress:latest`. However it is recommended to use [tagged versions](https://hub.docker.com/r/bitnami/wordpress/tags/). + +#### Step 1: Get the updated image + +```console +$ docker pull bitnami/wordpress:latest +``` + +#### Step 2: Stop the running container + +Stop the currently running container using the command + +```console +$ docker-compose stop wordpress +``` + +#### Step 3: Take a snapshot of the application state + +Follow the steps in [Backing up your container](#backing-up-your-container) to take a snapshot of the current application state. + +#### Step 4: Remove the currently running container + +Remove the currently running container by executing the following command: + +```console +docker-compose rm -v wordpress +``` + +#### Step 5: Run the new image + +Update the image tag in `docker-compose.yml` and re-create your container with the new image: + +```console +$ docker-compose up -d +``` + +## Customize this image The Bitnami WordPress Docker image is designed to be extended so it can be used as the base image for your custom web applications. -## Extend this image +### Extend this image Before extending this image, please note there are certain configuration settings you can modify using the original image: @@ -457,44 +555,34 @@ ENV APACHE_HTTPS_PORT_NUMBER=8143 EXPOSE 8181 8143 ``` -Based on the extended image, you can use a Docker Compose file like the one below to add other features: +Based on the extended image, you can update the [`docker-compose.yml`](https://github.com/bitnami/bitnami-docker-wordpress/blob/master/docker-compose.yml) file present in this repository to add other features: -```yaml -version: '2' -services: - mariadb: - image: 'bitnami/mariadb:10.3' - volumes: - - 'mariadb_data:/bitnami' - environment: - - MARIADB_USER=bn_wordpress - - MARIADB_DATABASE=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes - wordpress: - build: . - ports: - - '80:8181' - - '443:8143' - volumes: - - 'wordpress_data:/bitnami' - depends_on: - - mariadb - environment: - - MARIADB_HOST=mariadb - - MARIADB_PORT_NUMBER=3306 - - WORDPRESS_DATABASE_USER=bn_wordpress - - WORDPRESS_DATABASE_NAME=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes -volumes: - mariadb_data: - driver: local - wordpress_data: - driver: local +```diff + wordpress: +- image: bitnami/wordpress:latest ++ build: . + ports: +- - '80:8080' +- - '443:8443' ++ - '80:8181' ++ - '443:8143' + environment: ++ - PHP_MEMORY_LIMIT=512m + ... ``` -# Notable Changes +## Notable Changes -## 5.3.2-debian-10-r30 +### 5.7.1-debian-10-r21 + +- The size of the container image has been decreased. +- The configuration logic is now based on Bash scripts in the *rootfs/* folder. +- Multisite support was added via `WORDPRESS_ENABLE_MULTISITE` and related environment variables. +- Plugins can be installed and activated on the first deployment via `WORDPRESS_PLUGINS`. +- Added support for limiting auto-updates to WordPress core via `WORDPRESS_AUTO_UPDATE_LEVEL`. In addition, auto-updates have been disabled by default. To update WordPress core, we recommend to swap the container image version for your deployment instead of using the built-in update functionality. +- This image now supports connecting to MySQL and MariaDB databases securely via SSL. + +### 5.3.2-debian-10-r30 - The WordPress container has been migrated to a "non-root" user approach. Previously the container ran as the `root` user and the Apache daemon was started as the `daemon` user. From now on, both the container and the Apache daemon run as user `1001`. You can revert this behavior by changing `USER 1001` to `USER root` in the Dockerfile. - Consequences: @@ -504,48 +592,48 @@ volumes: - [Migrate WordPress using VaultPress](https://vaultpress.com/) - No writing permissions will be granted on `wp-config.php` by default. -## 5.2.1-debian-9-r9 and 5.2.1-ol-7-r9 +### 5.2.1-debian-9-r9 and 5.2.1-ol-7-r9 - This image has been adapted so it's easier to customize. See the [Customize this image](#customize-this-image) section for more information. - The Apache configuration volume (`/bitnami/apache`) has been deprecated, and support for this feature will be dropped in the near future. Until then, the container will enable the Apache configuration from that volume if it exists. By default, and if the configuration volume does not exist, the configuration files will be regenerated each time the container is created. Users wanting to apply custom Apache configuration files are advised to mount a volume for the configuration at `/opt/bitnami/apache/conf`, or mount specific configuration files individually. - The PHP configuration volume (`/bitnami/php`) has been deprecated, and support for this feature will be dropped in the near future. Until then, the container will enable the PHP configuration from that volume if it exists. By default, and if the configuration volume does not exist, the configuration files will be regenerated each time the container is created. Users wanting to apply custom PHP configuration files are advised to mount a volume for the configuration at `/opt/bitnami/php/conf`, or mount specific configuration files individually. - Enabling custom Apache certificates by placing them at `/opt/bitnami/apache/certs` has been deprecated, and support for this functionality will be dropped in the near future. Users wanting to enable custom certificates are advised to mount their certificate files on top of the preconfigured ones at `/certs`. -## 5.1.1-r28, 5.1.1-rhel-7-r31 and 5.1.1-ol-7-r30 +### 5.1.1-r28, 5.1.1-rhel-7-r31 and 5.1.1-ol-7-r30 - Users reported that they wanted to import their WordPress database from other installations, such as [this ticket](https://github.com/bitnami/bitnami-docker-wordpress/issues/157). Now, in order to cover this use case, the variable `WORDPRESS_SKIP_INSTALL` can be set to avoid the container launch the WordPress installation wizard. -## 5.0.3-r20 +### 5.0.3-r20 - For performance and security reasons, Apache will set the `AllowOverride` directive to `None` by default. This means that, instead of using `.htaccess` files, all the default directives will be moved to the `/opt/bitnami/wordpress/wordpress-htaccess.conf` file. The only downside of this is the compatibility with certain plugins, which would require changes in that file (you would need to mount a modified version of `wordpress-htaccess.conf` compatible with these plugins). If you want to have the default `.htaccess` behavior, set the `WORDPRESS_HTACCESS_OVERRIDE_NONE` env var to `no`. -## 5.0.0-r0 +### 5.0.0-r0 - **wp-cli** tool is included in the Docker image. Find it at **/opt/bitnami/wp-cli/bin/wp**. -# Contributing +## Contributing We'd love for you to contribute to this container. You can request new features by creating an [issue](https://github.com/bitnami/bitnami-docker-wordpress/issues), or submit a [pull request](https://github.com/bitnami/bitnami-docker-wordpress/pulls) with your contribution. -# Issues +## Issues -If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/bitnami-docker-wordpress/issues/new). For us to provide better support, be sure to include the following information in your issue: +If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/bitnami-docker-wordpress/issues). For us to provide better support, be sure to include the following information in your issue: - Host OS and version -- Docker version (`$ docker version`) -- Output of `$ docker info` -- Version of this container (`$ echo $BITNAMI_IMAGE_VERSION` inside the container) +- Docker version (`docker version`) +- Output of `docker info` +- Version of this container - The command you used to run the container, and any relevant output you saw (masking any sensitive information) -# License +## License -Copyright 2015-2021 Bitnami +Copyright (c) 2021 Bitnami Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at - + http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, diff --git a/bitnami/wordpress/docker-compose-mysql.yml b/bitnami/wordpress/docker-compose-mysql.yml index a2357b3fa4c4..b456d8f67cfc 100644 --- a/bitnami/wordpress/docker-compose-mysql.yml +++ b/bitnami/wordpress/docker-compose-mysql.yml @@ -5,9 +5,9 @@ services: volumes: - 'mysql_data:/bitnami/mysql' environment: + - ALLOW_EMPTY_PASSWORD=yes - MYSQL_USER=bn_wordpress - MYSQL_DATABASE=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes wordpress: image: docker.io/bitnami/wordpress:5 ports: @@ -18,11 +18,11 @@ services: depends_on: - mysql environment: - - MARIADB_HOST=mysql - - MARIADB_PORT_NUMBER=3306 + - ALLOW_EMPTY_PASSWORD=yes + - WORDPRESS_DATABASE_HOST=mysql + - WORDPRESS_DATABASE_PORT_NUMBER=3306 - WORDPRESS_DATABASE_USER=bn_wordpress - WORDPRESS_DATABASE_NAME=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes volumes: mysql_data: driver: local diff --git a/bitnami/wordpress/docker-compose.yml b/bitnami/wordpress/docker-compose.yml index 4269c71ece21..83820421c3c5 100644 --- a/bitnami/wordpress/docker-compose.yml +++ b/bitnami/wordpress/docker-compose.yml @@ -5,9 +5,9 @@ services: volumes: - 'mariadb_data:/bitnami/mariadb' environment: + - ALLOW_EMPTY_PASSWORD=yes - MARIADB_USER=bn_wordpress - MARIADB_DATABASE=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes wordpress: image: docker.io/bitnami/wordpress:5 ports: @@ -18,11 +18,11 @@ services: depends_on: - mariadb environment: - - MARIADB_HOST=mariadb - - MARIADB_PORT_NUMBER=3306 + - ALLOW_EMPTY_PASSWORD=yes + - WORDPRESS_DATABASE_HOST=mariadb + - WORDPRESS_DATABASE_PORT_NUMBER=3306 - WORDPRESS_DATABASE_USER=bn_wordpress - WORDPRESS_DATABASE_NAME=bitnami_wordpress - - ALLOW_EMPTY_PASSWORD=yes volumes: mariadb_data: driver: local