explicit capabilities are not longer required since the process is now running as nobody
fixes#322
Signed-off-by: Felix Bartels <felix@host-consultants.de>
* move ldap to its own file
* add separate files for db and mail as well
* add new compose file to the default compose_file variable
* enhance setup.sh to add these new compose files if they are currently missing
* switch containers in compose file to read-only
related to https://github.com/zokradonh/kopano-docker/issues/310
* make scheduler container read-only
* make meet container read-only
* fix konnect for read-only
* make core mostly read-only
* add custom location for ldap.cfg to default config
* sort config option for readability
* update makefile pull workaround
* make kdav read-only
* remove locale generation code from core startup
* fix commander tests
* fix store language tests
* add test for a dutch mailbox
* make it possible to run webapp read-only
* add locale hint to the compose file
* finish read-only mode for z-push
* add some reviewdog checks
* give the workflow a better name
* debug goss check
* fix goss test for dagent
* disable reviewdog for now as it does not properly work
* add tests for downloading archive from kopano download server
add some makefile defaults
Signed-off-by: Felix Bartels <felix@host-consultants.de>
* linting
Signed-off-by: Felix Bartels <felix@host-consultants.de>
* add compose file
* add working configuration for ldap account manager
depends on https://github.com/LDAPAccountManager/lam/pull/76
Important note: the open source code of lam does not include the Kopano integration. So admins can generally manage users, but to add kopano attributes admins would need to switch to the ldap tree view.
* use :7.0.RC1 as this is the first image that supports automatic setup
* update konnect to 0.28.0
* make signing_method configurable
* instruct npm to run with unsafe permissions (fixes error on jenkins)
* https://github.com/npm/npm/issues/20861
* use variables to check if the server is running
* use kopano_con to address the specified kopano socket in an unified way
* set default value for kopano_con
* Add variables to disable some checks that aren't needed if you inject the cfg files
* add tests for new functionality
* uncomment write protected test
fixes https://github.com/zokradonh/kopano-docker/pull/296
* split up installation for core and kapi+grapi
* add some debug output in case package installation fails
* let konnect run as nobody
* add code to check writing permissions for certificates and create certificates in container if possible
* add tests to check on failed and successful certificate creation
* add certificate creation logic from the konnect binfile
* add env for custom dockerize timeout (to fail earlier in tests)
* add mount for machine-id
* services should check the availability of the machine id before starting
* add a note to the readme
* add new mounts to the multiserver example
* add dockerize to kweb
* fix meet demo
* Configuration file for OpenIdConnect integration is now generated on container startup
* Add a startup dependency to owncloud phoenix
Signed-off-by: Felix Bartels <felix@host-consultants.de>
* add tweak to serve phoenix from /files
* auto enable oidc
* simplify setup by adding root directly to kweb
* add some descriptions for overriding kweb configuration
* add some configuration and clean up
* make readme of owncloud more clear
* clarify setup.sh
* make user23 an admin by default
* remove hard depenency on reg
* add completed message
* set more attributes on startup
Signed-off-by: Felix Bartels <felix@host-consultants.de>
* use cn instead of uid
* add config for owncloud phoenix ui and openid plugin
* add override for experimental feature endpoint
* import kweb-calendar.cfg
* experimental endpoint is yes/no
* grapi also needs the ability to run insecure
* grapi needs to resolve the domain, therefore needs to be in the web network
