Dave Page
832b8fc038
Ensure we can build the node modules on ARM.
2021-02-23 16:12:55 +00:00
Dave Page
751b6c28b5
libtool is required for the container appbuild now.
2021-02-10 10:21:12 +00:00
Dave Page
884d9db54b
A bunch of size optimisation for the container.
...
The new Rust requirement for the Cryptography module bloated it significantly.
2021-02-09 13:12:26 +00:00
Dave Page
447a1c9dd7
Update Docker container build to handle the new Rust requirement in thePython Cryptography module.
2021-02-08 11:00:41 +00:00
Dave Page
b41557b54b
Instead of rotating logs, don't write them to the container in the first place.
...
This is inline with container best practices (logs go to the container console).
Fixes #6170
2021-02-02 13:45:49 +00:00
Dave Page
e10dd6a80f
Rotate the logfile in the container distribution. Fixes #6170
2021-02-01 17:35:23 +00:00
Dave Page
960433dd90
Use the latest Gunicorn.
2021-02-01 17:29:06 +00:00
Dave Page
2a4ba132ad
Remove the PG 9.5 utilities, as it'll be out of support by the next release.
2021-02-01 17:20:24 +00:00
Dave Page
6e7ca8c4b0
Remove some unnecessary files from the doc build to save space.
2021-02-01 16:55:03 +00:00
Dave Page
921c0ac71a
Make sure the doc builder has the dependencies it needs.
2021-02-01 10:52:41 +00:00
Dave Page
32cdfa2969
Include PostgreSQL 13 utilities in the container. Fixes #6162
2021-01-20 13:17:27 +00:00
Khushboo Vashi
c0ef0a893d
1) Added support for Kerberos authentication, using SPNEGO to forward the Kerberos tickets through a browser. Fixes #5457
...
2) Fixed incorrect log information for AUTHENTICATION_SOURCES. Fixes #5829
2021-01-18 16:32:10 +05:30
Akshay Joshi
9e2127b2a5
Removed ALLOWED_HOSTS support as it requires 'netaddr' which doesn't support Python 3.5
2020-11-05 12:43:11 +05:30
Ganesh Jaybhay
08c4deba5a
Added following security enhancements:
...
1) Added ALLOWED_HOSTS list to limit the host address.
2) Added CSP and HSTS security header.
3) Hide the webserver/ development framework version.
Fixes #5919
2020-10-20 17:14:45 +05:30
Dave Page
04ce8b2c71
Include LICENSE and DEPENDENCIES [inventory] files in official packages. Fixes #5577
...
Whilst passing, rename libraries.txt to DEPENDENCIES and update the list of static packages.
2020-07-17 17:06:16 +01:00
Akshay Joshi
ec30e6ace7
Comment out the 'yarn audit' command to fix the vulnerability found in the 'lodash' package. No fix is currently available.
2020-07-02 16:21:56 +05:30
Dave Page
83cb01b8cd
Update dependencies in the Docker container and remove PG 9.4 utilities from the Docker container as it's now out of support.
...
Fixes #5552 .
Fixes #5553 .
2020-05-22 17:02:12 +01:00
Akshay Joshi
16f1e87bb7
Temporary Changed 'yarn audit' command to 'yarn audit --groups dependencies' to
...
fix the vulnerability found in decompress js package.
2020-02-28 17:29:32 +05:30
Dave Page
787c11efda
Fix the docker build.
2020-02-24 15:35:34 +00:00
Dave Page
23e218f1b5
Ensure Postfix starts in the container, now it runs as non-root by default. Fixes #5076
2020-01-20 10:41:27 +00:00
Akshay Joshi
584a200bf0
Updated node alpine image from 8 to 10.
2019-12-17 17:27:34 +05:30
Dave Page
619c4e1180
Run pgAdmin in the container as a non-root user (pgadmin, UID: 5050). Fixes #4939 .
2019-12-09 11:09:46 +05:30
Akshay Joshi
fb87920bbb
Fixed docker container exit issue occurs due to change in Gunicorn's latest version.
...
Updated Dockerfile and hardcoded Gunicorn version to 19.9.0
Fixes #4924
2019-11-12 17:48:10 +05:30
Dave Page
091d2cd0d2
Fixed an issue where psql of v12 throwing "symbol not found" error while running Maintenance and Import/Export.
...
Copy libpq.so.5.12 from pg12-builder to the final container and create a symbolic link.
Fixes #4835
2019-11-07 12:12:43 +05:30
Dave Page
9bdb5ea5e0
Include PostgreSQL 12 binaries in the container. Fixes #4823
2019-10-11 11:13:06 +01:00
Dave Page
110a51c5b2
Refactor Dockerfile to avoid needing to run supporting scripts (i.e. 'docker build .' will work) and minimise layers. Fixes #4752
2019-09-16 13:48:11 +01:00
