diff --git a/.editorconfig b/.editorconfig new file mode 100644 index 00000000..a2c8081a --- /dev/null +++ b/.editorconfig @@ -0,0 +1,20 @@ +# http://editorconfig.org + +root = true + +[*] +end_of_line = lf +charset = utf-8 +trim_trailing_whitespace = true +insert_final_newline = false +indent_style = tab +indent_size = 4 +tab_width = 4 + +[*.yml] +indent_style = space +indent_size = 2 + +[*.{md,markdown}] +trim_trailing_whitespace = false +insert_final_newline = false \ No newline at end of file diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 00000000..412eeda7 --- /dev/null +++ b/.gitattributes @@ -0,0 +1,22 @@ +# Auto detect text files and perform LF normalization +* text=auto + +# Custom for Visual Studio +*.cs diff=csharp +*.sln merge=union +*.csproj merge=union +*.vbproj merge=union +*.fsproj merge=union +*.dbproj merge=union + +# Standard to msysgit +*.doc diff=astextplain +*.DOC diff=astextplain +*.docx diff=astextplain +*.DOCX diff=astextplain +*.dot diff=astextplain +*.DOT diff=astextplain +*.pdf diff=astextplain +*.PDF diff=astextplain +*.rtf diff=astextplain +*.RTF diff=astextplain diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..406173e8 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,17 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file +version: 2 +updates: + # GitHub Actions - updates `uses:` in workflows + - package-ecosystem: "github-actions" + directory: "/.github/workflows" # Location of .github/workflows + schedule: + interval: "weekly" + + # Docker - updates Dockerfiles and image versions + - package-ecosystem: "docker" + directory: "/builds" # Adjust if your Dockerfile is in a subfolder + schedule: + interval: "weekly" diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index abcbdee7..42f2ce7e 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest env: DOCKER_IMAGE: ortussolutions/commandbox - COMMANDBOX_VERSION: 6.1.0 + COMMANDBOX_VERSION: 6.2.1 strategy: matrix: include: @@ -78,7 +78,7 @@ jobs: BUILD_IMAGE_TAG: boxlang-alpine steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up QEMU uses: docker/setup-qemu-action@master diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 31bb7ba0..691f9251 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -118,7 +118,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up QEMU uses: docker/setup-qemu-action@master @@ -134,8 +134,8 @@ jobs: env: DOCKER_IMAGE: ortussolutions/commandbox BUILD_IMAGE_TAG: ${{ matrix.BUILD_IMAGE_TAG }} - COMMANDBOX_VERSION: 6.2.0 - IMAGE_VERSION: 3.13.2 + COMMANDBOX_VERSION: 6.2.1 + IMAGE_VERSION: 3.13.5 run: | # Tag Builds if [[ $GITHUB_REF == refs/tags/* ]]; then @@ -179,14 +179,14 @@ jobs: - name: DockerHub Login if: github.event_name != 'pull_request' - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKER_USERNAME }} password: ${{ secrets.DOCKER_PASSWORD }} - name: Build Final if: github.event_name != 'pull_request' - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v6 env: DOCKER_BUILDKIT: 1 with: diff --git a/.github/workflows/scans.yml b/.github/workflows/scans.yml index 29dd52fc..c0e99140 100644 --- a/.github/workflows/scans.yml +++ b/.github/workflows/scans.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest env: DOCKER_IMAGE: ortussolutions/commandbox - COMMANDBOX_VERSION: 6.1.0 + COMMANDBOX_VERSION: 6.2.1 strategy: matrix: include: @@ -29,7 +29,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up QEMU uses: docker/setup-qemu-action@master @@ -41,7 +41,7 @@ jobs: uses: docker/setup-buildx-action@master - name: Build local container - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v6 env: DOCKER_BUILDKIT: 1 with: @@ -62,7 +62,7 @@ jobs: by-cve: "true" - name: Upload Anchore Report - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: ${{ steps.securityscan.outputs.sarif }} category: "BoxLang-Runtime-${{ github.env.BRANCH }}" diff --git a/.markdownlint.json b/.markdownlint.json new file mode 100644 index 00000000..21bc8433 --- /dev/null +++ b/.markdownlint.json @@ -0,0 +1,16 @@ +{ + "line-length": false, + "single-h1": false, + "no-hard-tabs" : false, + "fenced-code-language" : false, + "no-bare-urls" : false, + "first-line-h1": false, + "no-multiple-blanks": { + "maximum": 2 + }, + "no-duplicate-header" : { + "siblings_only" : true + }, + "no-duplicate-heading" : false, + "no-inline-html" : false +} diff --git a/LICENSE b/LICENSE new file mode 100755 index 00000000..785c62db --- /dev/null +++ b/LICENSE @@ -0,0 +1,15 @@ +Apache License, Version 2.0 + +Copyright Since [2005] [Luis Majano and Ortus Solutions,Corp] + +Licensed under the Apache License, Version 2.0 (the "License"); + you may not use this file except in compliance with the License. + You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, software + distributed under the License is distributed on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + See the License for the specific language governing permissions and + limitations under the License. \ No newline at end of file diff --git a/README.md b/README.md index 1c1806f8..8df68d54 100644 --- a/README.md +++ b/README.md @@ -1,57 +1,200 @@ -Official CommandBox Dockerfiles -========================= +# Official CommandBox Docker Images + +[![Docker Image Pulls Badge](https://badgen.net/docker/pulls/ortussolutions/commandbox)](https://hub.docker.com/r/ortussolutions/commandbox/) +[![GitHub Workflow Status](https://img.shields.io/github/actions/workflow/status/Ortus-Solutions/docker-commandbox/release.yml?branch=development)](https://github.com/Ortus-Solutions/docker-commandbox/actions) +[![GitHub License](https://badgen.net/github/license/Ortus-Solutions/docker-commandbox)](https://github.com/Ortus-Solutions/docker-commandbox?tab=License-1-ov-file#readme) + +![CommandBox Docker](commandbox-docker.jpg) + +Welcome to the official Docker images for [CommandBox](https://www.ortussolutions.com/products/commandbox), the BoxLang and CFML development and deployment tool from [Ortus Solutions](https://www.ortussolutions.com/). These images are designed to provide a lightweight, flexible, and powerful environment for running BoxLang and CFML applications using CommandBox as a powerful servlet container powered by [Undertow](https://undertow.io/). + +All images are published to [Docker Hub](https://hub.docker.com/r/ortussolutions/commandbox). + +## Table of Contents + +- [Features](#features) +- [Available Tags](#available-tags) + - [Quick Reference](#quick-reference) + - [Base Images](#base-images-no-engine-pre-installed) + - [Pre-Built Engine Images](#pre-built-engine-images-warmed-up) + - [Choosing the Right Tag](#choosing-the-right-tag) +- [Description](#description) +- [Supported Engines](#supported-engines) +- [Supported Architectures and Operating Systems](#supported-architectures-and-operating-systems) +- [Usage](#usage) +- [Environment Variables](#environment-variables) +- [Port Variables](#port-variables) +- [Load Balancer Configuration](#load-balancer-configuration) +- [HTTP/2 Support](#http2-support) +- [Server Configuration Variables](#server-configuration-variables) +- [Docker Secrets](#docker-secrets) +- [Quick Start Examples](#quick-start-examples) +- [Docker Compose Examples](#docker-compose-examples) +- [Configuration Examples](#configuration-examples) +- [Troubleshooting](#troubleshooting) +- [Best Practices and Customization](#best-practices-and-customization) +- [Security Considerations](#security-considerations) +- [Issues](#issues) +- [License](#license) + +## Features + +- **Multi-Engine Support**: Run BoxLang Applications or CFML engines, including Lucee and Adobe ColdFusion, in a single container. +- **Customizable**: Easily configure your server environment using `server.json` or environment variables. +- **Pre-Built Engines**: Includes pre-built images with warmed-up engines to reduce startup times. +- **Alpine and UBI9 Variants**: Lightweight Alpine Linux and RHEL Universal Base Image (UBI9) variants for optimized performance and security. +- **Health Checks**: Built-in health checks to ensure your server is running smoothly. +- **Docker Secrets Support**: Use Docker secrets for secure configuration management. +- **Environment Variables**: Extensive support for environment variables to customize your server configuration at runtime. +- **CommandBox Modules**: Includes popular CommandBox modules like `dotenv` and `cfconfig` for enhanced configuration management. +- **Multi-Architecture Support**: Compatible with `linux/amd64`, `linux/arm64`, and `linux/arm/v7` architectures for broad compatibility across different systems. +- **Production Ready**: Optimized for production use with features like HTTP/2 support, secure defaults, and performance enhancements. +- **Finalized Startup Scripts**: Supports multi-stage builds with finalized startup scripts to reduce container startup times by up to 80% and image size by up to 50%. +- **Extensible**: Easily extend the base images with your own custom modules or configurations. +- **Community Support**: Backed by the Ortus Solutions community, with extensive documentation and support available. + +## Available Tags -[![Build Status](https://travis-ci.org/Ortus-Solutions/docker-commandbox.svg)](https://travis-ci.org/Ortus-Solutions/docker-commandbox) [![Docker Image Pulls Badge](https://badgen.net/docker/pulls/ortussolutions/commandbox)](https://hub.docker.com/r/ortussolutions/commandbox/) +_Note: For references to the specific versions of CommandBox used within image versions, [please see the Changelog](https://github.com/Ortus-Solutions/docker-commandbox/blob/main/changelog.md)._ -This is the repository for official Dockerfiles for Commandbox images +### Quick Reference +| Tag | Description | Base OS | JDK Version | +|-----|-------------|---------|-------------| +| `:latest` | Latest stable CommandBox | Debian | JDK 11 | +| `:snapshot` | Development/bleeding edge | Debian | JDK 11 | +| `:boxlang` | BoxLang runtime ready | Debian | JDK 21 | +| `:lucee6` | Lucee 6.x warmed up | Debian | JDK 11 | +| `:adobe2025` | Adobe ColdFusion 2025 | Debian | JDK 21 | +### Base Images (No Engine Pre-installed) -## How it works +#### Standard Debian-based Images -The Docker files are used to produce the `ortussolutions/commandbox` [base images on Docker Hub](https://hub.docker.com/r/ortussolutions/commandbox/tags). Leveraging CommandBox allows you to configure your entire ColdFusion CFML engine environment from a single `server.json` file in the root of your project. +- `:latest` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Dockerfile)) - Latest stable version (JDK 11) +- `:snapshot` - Development/bleeding edge version +- `:boxlang` - BoxLang runtime ready (JDK 21) +- `:lucee6` - Lucee 6.x warmed up (JDK 11) +- `:adobe2025` - Adobe ColdFusion 2025 (JDK 21) +- `:[version]` - Specific tagged version (e.g., `:3.13.4`) +- `:[tag]-snapshot` - Development version of tagged variations -Tags -====== +#### JDK/JRE Variants (Debian) -_Note: For references to the specific versions of CommandBox used within image versions, [please see the Changelog](https://github.com/Ortus-Solutions/docker-commandbox/blob/main/changelog.md)._ +- `:jdk8` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JDK8.Dockerfile)) - OpenJDK 8 +- `:jdk11` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JDK11.Dockerfile)) - OpenJDK 11 (default) +- `:jre17` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JRE17.Dockerfile)) - OpenJDK 17 JRE +- `:jdk17` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JDK17.Dockerfile)) - OpenJDK 17 JDK +- `:jdk21` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JDK21.Dockerfile)) - OpenJDK 21 JDK +- `:jdk23` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JDK23.Dockerfile)) - OpenJDK 23 JDK +- `:jdk24` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/JDK24.Dockerfile)) - OpenJDK 24 JDK + +#### Alpine Linux Variants + +- `:alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.Dockerfile)) - Alpine Linux (JDK 11) +- `:alpine-jdk8` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.JDK8.Dockerfile)) - Alpine with JDK 8 +- `:alpine-jdk11` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.JDK11.Dockerfile)) - Alpine with JDK 11 +- `:alpine-jre17` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.JRE17.Dockerfile)) - Alpine with JRE 17 +- `:alpine-jdk17` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.JDK17.Dockerfile)) - Alpine with JDK 17 +- `:alpine-jdk21` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.JDK21.Dockerfile)) - Alpine with JDK 21 + +#### RHEL Universal Base Image (UBI9) Variants + +- `:ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/ubi9.Dockerfile)) - RHEL UBI9 (JDK 11) +- `:ubi9-jdk11` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/ubi9.JDK11.Dockerfile)) - UBI9 with JDK 11 +- `:ubi9-jre17` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/ubi9.JRE17.Dockerfile)) - UBI9 with JRE 17 +- `:ubi9-jdk17` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/ubi9.JDK17.Dockerfile)) - UBI9 with JDK 17 +- `:ubi9-jdk21` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/ubi9.JDK21.Dockerfile)) - UBI9 with JDK 21 + +### Pre-Built Engine Images (Warmed Up) + +These images include pre-downloaded and warmed-up engines to significantly reduce startup times. + +#### BoxLang Runtime + +- `:boxlang` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/BoxLang.Dockerfile)) - BoxLang on Debian +- `:boxlang-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/BoxLang.Dockerfile)) - BoxLang on Alpine +- `:boxlang-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/BoxLang.Dockerfile)) - BoxLang on UBI9 + +#### Lucee CFML Engine + +**Debian-based Lucee Images:** + +- `:lucee4` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Lucee4.Dockerfile)) - Lucee 4.x +- `:lucee5` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Lucee5.Dockerfile)) - Lucee 5.x +- `:lucee6` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Lucee6.Dockerfile)) - Lucee 6.x +- `:lucee-light` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/LuceeLight.Dockerfile)) - Lucee Light (latest) +- `:lucee5-light` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Lucee5Light.Dockerfile)) - Lucee 5.x Light + +**Alpine-based Lucee Images:** + +- `:lucee5-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Lucee5.Dockerfile)) - Lucee 5.x on Alpine +- `:lucee6-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Lucee6.Dockerfile)) - Lucee 6.x on Alpine +- `:lucee-light-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/LuceeLight.Dockerfile)) - Lucee Light on Alpine +- `:lucee5-light-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Lucee5Light.Dockerfile)) - Lucee 5.x Light on Alpine + +**UBI9-based Lucee Images:** + +- `:lucee5-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Lucee5.Dockerfile)) - Lucee 5.x on UBI9 +- `:lucee6-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Lucee6.Dockerfile)) - Lucee 6.x on UBI9 +- `:lucee-light-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/LuceeLight.Dockerfile)) - Lucee Light on UBI9 +- `:lucee5-light-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Lucee5Light.Dockerfile)) - Lucee 5.x Light on UBI9 + +#### Adobe ColdFusion Engine -* `:latest` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Dockerfile)) - Latest stable version -* `:3.9.2` - Tagged version of the image - not to be confused with the version of CommandBox within the image -* `:snapshot` - Development/BE version -* `:[tag]-snapshot` - Development/BE version of a tagged variations (e.g. - `:adobe2021-snapshot`) -* `:jdk8` - Base image using OpenJDK8 -* `:jre11` - Base image using OpenJDK11 JRE -* `:jdk11` - Base image using OpenJDK11 full JDK -* `:jre17` - Base image using OpenJDK17 JRE -* `:jdk17` - Base image using OpenJDK17 full JDK -* `:alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/Alpine.Dockerfile)) - [Alpine Linux](https://alpinelinux.org/about/) version of the image - slight decrease in overall size and optimizations for containerized runtimes -* `:ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/base/ubi9.Dockerfile)) - [RHEL Universal Base Image](https://catalog.redhat.com/software/containers/ubi9/ubi/615bcf606feffc5384e8452e) version of the image -* `:[engine][version]` - Containers with warmed-up engines - saves having to download the server WAR during container start: `:lucee5`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Lucee5.Dockerfile)), `:lucee-light`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/LuceeLight.Dockerfile)), `:lucee5-light`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Lucee5Light.Dockerfile)), `:adobe2018`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2018.Dockerfile)), `:adobe2021`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2021.Dockerfile)), `:adobe2023`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2023.Dockerfile)) -* `:[engine][version]-alpine` - Alpine linux versions of the image with warmed-up engines: -`:lucee5-alpine`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Lucee5.Dockerfile)), `:lucee-light-alpine`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/LuceeLight.Dockerfile)), `:lucee5-light-alpine`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Lucee5Light.Dockerfile)), `:adobe2018-alpine`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Adobe2018.Dockerfile)), `:adobe2021-alpine`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Adobe2021.Dockerfile)) -* `:[engine][version]-ubi9` - RHEL ubi9 versions of the image with warmed-up engines: -`:lucee5-ubi9`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Lucee5.Dockerfile)), `:lucee-light-ubi9`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/LuceeLight.Dockerfile)), `:lucee5-light-ubi9`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Lucee5Light.Dockerfile)), `:adobe2018-ubi9`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Adobe2018.Dockerfile)), `:adobe2021-ubi9`([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Adobe2021.Dockerfile)) +**Debian-based Adobe Images:** -_*Note*: The `:latest` tag currently uses OpenJDK11, as do all other pre-built engine images. If you required JDK 8 or JDK 17 support in your app or engine, use the `:jdk8` or `:jdk17` tags, respectively._ +- `:adobe11` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe11.Dockerfile)) - Adobe ColdFusion 11 +- `:adobe2016` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2016.Dockerfile)) - Adobe ColdFusion 2016 +- `:adobe2018` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2018.Dockerfile)) - Adobe ColdFusion 2018 +- `:adobe2021` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2021.Dockerfile)) - Adobe ColdFusion 2021 +- `:adobe2023` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2023.Dockerfile)) - Adobe ColdFusion 2023 +- `:adobe2025` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/debian/Adobe2025.Dockerfile)) - Adobe ColdFusion 2025 +**Alpine-based Adobe Images:** -Description -================= +- `:adobe2018-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Adobe2018.Dockerfile)) - Adobe ColdFusion 2018 on Alpine +- `:adobe2021-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Adobe2021.Dockerfile)) - Adobe ColdFusion 2021 on Alpine +- `:adobe2023-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Adobe2023.Dockerfile)) - Adobe ColdFusion 2023 on Alpine +- `:adobe2025-alpine` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/alpine/Adobe2025.Dockerfile)) - Adobe ColdFusion 2025 on Alpine -CommandBox allows you to configure your entire CFML engine environment at runtime using file or environment-based conventions. For more information on how to leverage CommandBox in developing and deploying your applications, see the [official documentation](https://commandbox.ortusbooks.com/). +**UBI9-based Adobe Images:** + +- `:adobe2018-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Adobe2018.Dockerfile)) - Adobe ColdFusion 2018 on UBI9 +- `:adobe2021-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Adobe2021.Dockerfile)) - Adobe ColdFusion 2021 on UBI9 +- `:adobe2023-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Adobe2023.Dockerfile)) - Adobe ColdFusion 2023 on UBI9 +- `:adobe2025-ubi9` ([Dockerfile](https://github.com/Ortus-Solutions/docker-commandbox/blob/master/builds/ubi9/Adobe2025.Dockerfile)) - Adobe ColdFusion 2025 on UBI9 + +### Choosing the Right Tag + +- **For BoxLang applications**: Use `:boxlang` variants +- **For CFML Warmed Up Engines**: Use `:lucee6` or `:adobe2025` for the latest engines +- **For production**: Use specific engine tags with your preferred base OS +- **For smaller images**: Use `-alpine` variants +- **For enterprise/RHEL environments**: Use `-ubi9` variants +- **For development**: Use `:snapshot` for bleeding edge features + +_**Note**: The `:latest` tag currently uses OpenJDK11, as do most pre-built engine images. BoxLang and Adobe2025 images use JDK21. If you require specific JDK versions, use the appropriate JDK variant tags._ + +## Description + +CommandBox is a powerful Java servlet container powered by [Undertow](https://undertow.io/), which allows you to run BoxLang and/or CFML applications in a lightweight, flexible, and production-ready environment. It is the de-facto standard of deployment for BoxLang web applications. It also supports multiple CFML engines, including Lucee and Adobe ColdFusion, and provides a rich set of features for application development and deployment. For more information on how to leverage CommandBox in developing and deploying your applications, see the [official documentation](https://commandbox.ortusbooks.com/). In addition the CommandBox modules of [`dotenv`](https://www.forgebox.io/view/commandbox-dotenv) and [`cfconfig`](https://cfconfig.ortusbooks.com/) are included in these pre-built images, which allow you to leverage additional runtime environmental and server configuration options. -Current CFML engines supported are: +## Supported Engines -- Lucee: 5+ +- [BoxLang](https://boxlang.io/) - BoxLang is a modern JVM programming language that is designed to be a powerful, expressive, and easy-to-use language for building web applications, serverless, CLI tools and more. +- Lucee CFML Engine: 5+ - Adobe ColdFusion 2018+ You may also [specify a custom WAR for deployment](https://commandbox.ortusbooks.com/embedded-server/multi-engine-support#war-support), using the `server.json` configuration. -Usage -================ +## Supported Architectures and Operating Systems + +All Debian-based images currently support `linux/amd64`, `linux/arm64` and `linux/arm/v7` architecture. Alpine builds are currently only supported on `linux/amd64` and `linux/arm64` architectures. The UBI9 builds are supported on `linux/amd64` and `linux/arm64` architectures. + +## Usage This section assumes you are using the [Official Docker Image](https://hub.docker.com/r/ortussolutions/commandbox/) @@ -64,7 +207,7 @@ docker pull ortussolutions/commandbox Then, from the root of your project, start with ``` -docker run -p 8080:8080 -p 8443:8443 -v "/path/to/your/app:/app" ortussolutions/commandbox +docker run -p 8080:8080 -p 8443:8443 -v "/path/to/your/app:/app" ortussolutions/commandbox ``` By default the process ports of the container are `8080` (insecure) and `8443` (secure - if enabled in your `server.json`) so, once the container comes online, you may access your application via browser using the applicable port (which we explicitly exposed for external access in the `run` command above). You may also specify different port arguments in your `run` command to assign what is to be used in the container and exposed. This prevents conflicts with other instances in the Docker machine using those ports: @@ -73,75 +216,67 @@ By default the process ports of the container are `8080` (insecure) and `8443` ( docker run -p 80:80 -p 443:443 -e "PORT=80" -e "SSL_PORT=443" -v "/path/to/your/app:/app" ortussolutions/commandbox ``` -Supported Architectures and Operating Systems -============================================= - -All Debian-based images currently support `linux/amd64`, `linux/arm64` and `linux/arm/v7` architecture. Alpine builds are currently only supported on `linux/amd64` - -Environment Variables -===================== +## Environment Variables The CommandBox Docker image supports the use of environmental variables for the configuration of your servers. Specifically, the image includes the [`cfconfig` CommandBox module](https://www.forgebox.io/view/commandbox-cfconfig), which allows you to provide custom settings for your engine, including the admin password. -### Port Variables +## Port Variables -* `$PORT` - The port which your server should start on. The default is `8080`. -* `$SSL_PORT` - If applicable, the ssl port used by your server The default is `8443`. +- `$PORT` - The port which your server should start on. The default is `8080`. +- `$SSL_PORT` - If applicable, the ssl port used by your server The default is `8443`. -### Load Balancer Configuration +## Load Balancer Configuration In order to use the [multi-site features](https://commandbox.ortusbooks.com/embedded-server/multi-site-support) of CommandBox v6 and above, if your multi-site setup is domain-aware, you will need to set [the environment variable](https://commandbox.ortusbooks.com/embedded-server/configuring-your-server/proxy-ip) `BOX_SERVER_WEB_useProxyForwardedIP=true`. Note, though, that doing so will open your container up to threat vectors by providing visitors with the ability to circumvent: -* Internal-only host matching -* IP restrictions on admin blocking - -as well as potentially allowing the spoofing of client certs and/or SSL redirects/validation. Because of this, if you choose to enable this setting, you should take care to ensure that your containers are _only publicly accessible via the load balancer_ and exposed container ports on the Docker host are not publicly available. Once this setting is enabled, however, headers such as `X-Forwarded-Host` sent by the upstream load balancer will be honored when service multi-site traffic. +- Internal-only host matching +- IP restrictions on admin blocking +As well as potentially allowing the spoofing of client certs and/or SSL redirects/validation. Because of this, if you choose to enable this setting, you should take care to ensure that your containers are _only publicly accessible via the load balancer_ and exposed container ports on the Docker host are not publicly available. Once this setting is enabled, however, headers such as `X-Forwarded-Host` sent by the upstream load balancer will be honored when service multi-site traffic. -### HTTP/2 Support +## HTTP/2 Support As of Commandbox `v5.3.0`, all CommandBox servers have HTTP/2 enabled by default. For browser support of this protocol, you will need to enable SSL and provide a certificate. -### Server Configuration Variables +## Server Configuration Variables -The following environment variables may be provided to modify your runtime server configuration. Please note that environment variables are case sensitive and, while some lower/upper case aliases are accounted for, you should use consistent casing in order for these variables to take effect. +The following environment variables may be provided to modify your runtime server configuration. Please note that environment variables are case sensitive and, while some lower/upper case aliases are accounted for, you should use consistent casing in order for these variables to take effect. -* `BOX_SERVER_APP_SERVERHOMEDIRECTORY` - When provided, a custom path to your server home directory will be assigned. By default, this path is set as `${LIB_DIR}/serverHome`, which resolves to `/usr/local/lib/serverHome` in most builds. The Alpine-based builds will default to `/usr/lib/serverHome`. ( _Note: You may also provide this variable in your app's customized `server.json` file_ ) -* `APP_DIR` - Application directory (web root). By default, this is `/app`. If you are deploying an application with mappings outside of the root, you would want to provide this environment variable to point to the webroot ( e.g. `/app/wwwroot` ) -* `USER` - When provided the server process will run under the provided user account name -* `USER_ID` - Numeric. When provided in conjunction with a `USER` environment variable, the UID of the user will be assigned this number. This can be useful for ensuring permissions of mounted volumes and files -* `cfconfig_[engine setting]` - Any environment variable provided which includes the `cfconfig_` prefix will be determined to be a `cfconfig` setting and the value after the prefix is presumed to be the setting name. -* `BOX_SERVER_CFCONFIGFILE` - A `cfconfig`-compatible JSON file may be provided with this environment variable. The file will be loaded and applied to your server. If an `adminPassword` key exists, it will be applied as the Server and Web context passwords for Lucee engines. You may instead add a `.cfconfig.json` file to the root of the `APP_DIR` and it will be picked up automatically. -* `BOX_SERVER_APP_CFENGINE` - Using the `server.json` syntax, allows you to specify the CFML engine for your container ( e.g. `lucee@5` ). Defaults to the CommandBox default ( currently `lucee@4.5`) -* `BOX_SERVER_RUNWAR_CONSOLE_APPENDERLAYOUT` - When setting this to `JSONTemplateLayout`, the log output of the container will be in [`ndjson`](http://ndjson.org/). For more information on this setting, please see [the CommandBox documentation on customizing log layouts](https://commandbox.ortusbooks.com/embedded-server/configuring-your-server/console-log-layout#customize-layout) -* `FINALIZE_STARTUP` - When provided a final startup script will be generated, which will be considered authoritative the next time the container/image starts. The caveat to this, however, is that the finalized startup script will bypass the evaluation checks for all of the other environment variables in this list as those values will be explicitly exported in the startup file. -* `BOX_SERVER_PROFILE` - When set, this will be applied as the runtime [CommandBox server profile](https://commandbox.ortusbooks.com/embedded-server/configuring-your-server/server-profiles). By default, CommandBox will set this value to the `production` mode, since the container server binds to all interfaces on `0.0.0.0`. If you wish a lower level of security, you will need to provide this variable or set it in your `server.json` file. -* `BOX_SERVER_WEB_REWRITES_ENABLE` - A boolean value, specifying whether URL rewrites will be enabled/disabled on the server. Setting this environment variable will overwrite any settings within the app's `server.json` file. -* `CFPM_INSTALL` and `CFPM_UNINSTALL` - Supported for Adobe Coldfusion 2021 engines. When provided as a delimited list of [Coldfusion Package Manager](https://helpx.adobe.com/coldfusion/using/coldfusion-package-manager.html) packages, these will be installed ( or uninstalled, respectively ), prior to the server start. A warmed-up server is required to use these variables. -* `BOX_INSTALL`/`box_install` - When set to true, the `box install` command will be run before the server is started to ensure any dependencies configured in your `box.json` file are installed +- `BOX_SERVER_APP_SERVERHOMEDIRECTORY` - When provided, a custom path to your server home directory will be assigned. By default, this path is set as `${LIB_DIR}/serverHome`, which resolves to `/usr/local/lib/serverHome` in most builds. The Alpine-based builds will default to `/usr/lib/serverHome`. (_Note: You may also provide this variable in your app's customized `server.json` file_) +- `APP_DIR` - Application directory (web root). By default, this is `/app`. If you are deploying an application with mappings outside of the root, you would want to provide this environment variable to point to the webroot (e.g. `/app/wwwroot`) +- `USER` - When provided the server process will run under the provided user account name +- `USER_ID` - Numeric. When provided in conjunction with a `USER` environment variable, the UID of the user will be assigned this number. This can be useful for ensuring permissions of mounted volumes and files +- `cfconfig_[engine setting]` - Any environment variable provided which includes the `cfconfig_` prefix will be determined to be a `cfconfig` setting and the value after the prefix is presumed to be the setting name. +- `BOX_SERVER_CFCONFIGFILE` - A `cfconfig`-compatible JSON file may be provided with this environment variable. The file will be loaded and applied to your server. If an `adminPassword` key exists, it will be applied as the Server and Web context passwords for Lucee engines. You may instead add a `.cfconfig.json` file to the root of the `APP_DIR` and it will be picked up automatically. +- `BOX_SERVER_APP_CFENGINE` - Using the `server.json` syntax, allows you to specify the CFML engine for your container (e.g. `lucee@5`). Defaults to the CommandBox default (currently `lucee@4.5`) +- `BOX_SERVER_RUNWAR_CONSOLE_APPENDERLAYOUT` - When setting this to `JSONTemplateLayout`, the log output of the container will be in [`ndjson`](http://ndjson.org/). For more information on this setting, please see [the CommandBox documentation on customizing log layouts](https://commandbox.ortusbooks.com/embedded-server/configuring-your-server/console-log-layout#customize-layout) +- `FINALIZE_STARTUP` - When provided a final startup script will be generated, which will be considered authoritative the next time the container/image starts. The caveat to this, however, is that the finalized startup script will bypass the evaluation checks for all of the other environment variables in this list as those values will be explicitly exported in the startup file. +- `BOX_SERVER_PROFILE` - When set, this will be applied as the runtime [CommandBox server profile](https://commandbox.ortusbooks.com/embedded-server/configuring-your-server/server-profiles). By default, CommandBox will set this value to the `production` mode, since the container server binds to all interfaces on `0.0.0.0`. If you wish a lower level of security, you will need to provide this variable or set it in your `server.json` file. +- `BOX_SERVER_WEB_REWRITES_ENABLE` - A boolean value, specifying whether URL rewrites will be enabled/disabled on the server. Setting this environment variable will overwrite any settings within the app's `server.json` file. +- `CFPM_INSTALL` and `CFPM_UNINSTALL` - Supported for Adobe Coldfusion 2021+ engines. When provided as a delimited list of [Coldfusion Package Manager](https://helpx.adobe.com/coldfusion/using/coldfusion-package-manager.html) packages, these will be installed (or uninstalled, respectively), prior to the server start. A warmed-up server is required to use these variables. +- `BOX_INSTALL`/`box_install` - When set to true, the `box install` command will be run before the server is started to ensure any dependencies configured in your `box.json` file are installed ### Docker Runtime Variables -* `$HEALTHCHECK_URI` - Specifies the URI endpoint for container [health checks](https://docs.docker.com/engine/reference/builder/#healthcheck). By default, this defaults to `http://127.0.0.1:${PORT}/` at 20 second intervals, a timeout of 30 seconds, with 15 retries before the container is marked as failed. _Note: Since the interval, timeout, and retry settings cannot be set dynamically, if you need to adjust these, you will need to build from a Dockerfile which provides a new [`HEALTHCHECK` command](https://docs.docker.com/engine/reference/builder/#healthcheck) +- `$HEALTHCHECK_URI` - Specifies the URI endpoint for container [health checks](https://docs.docker.com/engine/reference/builder/#healthcheck). By default, this defaults to `http://127.0.0.1:${PORT}/` at 20 second intervals, a timeout of 30 seconds, with 15 retries before the container is marked as failed. _Note: Since the interval, timeout, and retry settings cannot be set dynamically, if you need to adjust these, you will need to build from a Dockerfile which provides a new [`HEALTHCHECK` command](https://docs.docker.com/engine/reference/builder/#healthcheck)_ ### Deprecated Environment Variables The following variables are still supported, however they are deprecated and support will be removed in the next major release version of the image: -* `SERVER_HOME_DIRECTORY` - Use `BOX_SERVER_APP_SERVERHOMEDIRECTORY` instead -* `CFCONFIG` and `cfconfigfile` - Use `BOX_SERVER_CFCONFIGFILE` instead -* `CFENGINE` - Use `BOX_SERVER_APP_CFENGINE` instead -* `HEADLESS=true` - Use `BOX_SERVER_PROFILE=production` instead -* `SERVER_PROFILE` - Use `BOX_SERVER_PROFILE` instead -* `URL_REWRITES`/`url_rewrites` - Use `BOX_SERVER_WEB_REWRITES_ENABLE` instead +- `SERVER_HOME_DIRECTORY` - Use `BOX_SERVER_APP_SERVERHOMEDIRECTORY` instead +- `CFCONFIG` and `cfconfigfile` - Use `BOX_SERVER_CFCONFIGFILE` instead +- `CFENGINE` - Use `BOX_SERVER_APP_CFENGINE` instead +- `HEADLESS=true` - Use `BOX_SERVER_PROFILE=production` instead +- `SERVER_PROFILE` - Use `BOX_SERVER_PROFILE` instead +- `URL_REWRITES`/`url_rewrites` - Use `BOX_SERVER_WEB_REWRITES_ENABLE` instead -Docker Secrets -============== +## Docker Secrets [Docker secrets](https://docs.docker.com/engine/swarm/secrets/) can use two storage mechanisms: -* Secret values stored as files on the host (non-swarm mode). -* `docker secret`-managed key/value pairs (swarm mode). +- Secret values stored as files on the host (non-swarm mode). +- `docker secret`-managed key/value pairs (swarm mode). Secret expansion can be accomplished by one of two mechanisms ( or both ): @@ -163,7 +298,7 @@ services: # this is a placeholder that will be replaced at runtime with the secret value - TEST_DOCKER_SECRET=<> ... - + secrets: test_docker_secret: # this is the file containing the secret value @@ -177,53 +312,408 @@ When any environment variable is suffixed with `_FILE`, the right-hand assignmen For example the variable `REINIT_PASSWORD_FILE=/run/secrets/reinit_password` would source the contents of the right-hand file path in as the `REINIT_PASSWORD` environment variable. -Best Practices and Customization -================================ +## Quick Start Examples -### Customizing Images +### BoxLang Application + +```bash +# Pull and run BoxLang image +docker run -p 8080:8080 -v "$(pwd):/app" ortussolutions/commandbox:boxlang +``` + +### Lucee Application with Custom Admin Password + +```bash +docker run -p 8080:8080 \ + -e "cfconfig_adminPassword=mySecretPassword" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:lucee6 +``` -To create your own, customized Docker image, use [our Dockerfile repository](https://github.com/Ortus-Solutions/docker-commandbox/tree/development/builds) as a reference to begin your customizations. You can extend any of the base images and add your own additional functionality or modules. For example, to install the [Ortus Couchbase extension for Lucee](https://www.ortussolutions.com/products/couchbase-lucee): +### Adobe ColdFusion with SSL +```bash +docker run -p 8080:8080 -p 8443:8443 \ + -e "BOX_SERVER_WEB_REWRITES_ENABLE=true" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:adobe2025 ``` -FROM ortussolutions/commandbox:lucee5 + +### Development with Auto-reload + +```bash +docker run -p 8080:8080 \ + -e "BOX_SERVER_PROFILE=development" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:snapshot +``` + +## Docker Compose Examples + +### Basic Application Stack + +```yaml +version: '3.8' +services: + app: + image: ortussolutions/commandbox:lucee6 + ports: + - "8080:8080" + volumes: + - .:/app + environment: + - cfconfig_adminPassword=admin123 + - BOX_SERVER_WEB_REWRITES_ENABLE=true +``` + +### Multi-Service Application with Database + +```yaml +version: '3.8' +services: + app: + image: ortussolutions/commandbox:adobe2025 + ports: + - "8080:8080" + volumes: + - .:/app + environment: + - cfconfig_adminPassword=admin123 + - BOX_SERVER_PROFILE=production + depends_on: + - db + + db: + image: mysql:8.0 + environment: + MYSQL_ROOT_PASSWORD: rootpass + MYSQL_DATABASE: myapp + MYSQL_USER: appuser + MYSQL_PASSWORD: apppass + volumes: + - db_data:/var/lib/mysql + +volumes: + db_data: +``` + +## Configuration Examples + +### Server.json Configuration + +Create a `server.json` in your application root for advanced configuration: + +```json +{ + "app": { + "cfengine": "boxlang@1.0.0" + }, + "web": { + "http": { + "port": 8080 + }, + "ssl": { + "enable": true, + "port": 8443 + }, + "rewrites": { + "enable": true + } + }, + "runwar": { + "args": "--enable-http2" + } +} +``` + +### CFConfig Integration + +Create a `.cfconfig.json` file for engine-specific settings: + +```json +{ + "adminPassword": "secure123", + "requestTimeoutEnabled": true, + "requestTimeout": "0,0,5,0", + "datasources": { + "myDS": { + "class": "com.mysql.cj.jdbc.Driver", + "connectionString": "jdbc:mysql://db:3306/myapp", + "username": "appuser", + "password": "apppass" + } + } +} +``` + +### Environment File (.env) + +Use a `.env` file for easier environment management: + +```env +# Server Configuration +PORT=8080 +SSL_PORT=8443 +BOX_SERVER_PROFILE=production + +# Engine Configuration +BOX_SERVER_APP_CFENGINE=lucee@6 + +# CFConfig Settings +cfconfig_adminPassword=mySecretPassword +cfconfig_requestTimeoutEnabled=true + +# Application Settings +APP_DIR=/app +BOX_SERVER_WEB_REWRITES_ENABLE=true +``` + +## Troubleshooting + +### Common Issues + +#### Container Exits Immediately + +**Problem**: Container starts and immediately exits. + +**Solutions**: + +- Check if port 8080 is already in use: `docker run -p 8081:8080 ...` +- Verify your application has an `index.cfm` or `index.bxm` file +- Check container logs: `docker logs ` + +#### Permission Denied Errors + +**Problem**: Application files cannot be read or written. + +**Solutions**: + +- Set the correct user: `-e "USER_ID=$(id -u)" -e "USER=$(whoami)"` +- Check file permissions on the host system +- Use absolute paths for volume mounts + +#### Engine Download Failures + +**Problem**: CFML engine fails to download. + +**Solutions**: + +- Use pre-warmed images (e.g., `:lucee6`, `:adobe2025`) +- Check internet connectivity from container +- Try a different engine version: `-e "BOX_SERVER_APP_CFENGINE=lucee@5.4.6"` + +#### Memory Issues + +**Problem**: Application runs out of memory. + +**Solutions**: + +- Increase Docker memory limits: `docker run -m 2g ...` +- Use JVM arguments: `-e "JAVA_OPTS=-Xmx2g -Xms512m"` +- Monitor memory usage: `docker stats ` + +### Debugging Commands + +```bash +# View container logs +docker logs -f + +# Access container shell +docker exec -it /bin/bash + +# Check Java processes +docker exec ps aux | grep java + +# View CommandBox server info +docker exec box server info + +# Check disk usage +docker exec df -h +``` + +### Performance Tuning + +#### JVM Settings + +```bash +# Optimize JVM for container environments +docker run -p 8080:8080 \ + -e "JAVA_OPTS=-XX:+UseContainerSupport -XX:MaxRAMPercentage=75.0" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:lucee6 +``` + +#### CommandBox Settings + +```bash +# Enable performance optimizations +docker run -p 8080:8080 \ + -e "BOX_SERVER_PROFILE=production" \ + -e "BOX_SERVER_RUNWAR_ARGS=--enable-http2 --nio-enable" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:adobe2025 +``` + +## Security Considerations + +### Production Deployment + +When deploying CommandBox containers in production, consider the following security best practices: + +#### Network Security + +```bash +# Use specific network configurations +docker network create --driver bridge commandbox-net +docker run --network commandbox-net -p 8080:8080 ortussolutions/commandbox:adobe2025 +``` + +#### User Management + +```bash +# Run as non-root user +docker run -p 8080:8080 \ + -e "USER=appuser" \ + -e "USER_ID=1000" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:lucee6 +``` + +#### Environment Variables and Secrets + +```yaml +# Use Docker secrets for sensitive data +version: '3.8' +services: + app: + image: ortussolutions/commandbox:adobe2025 + secrets: + - admin_password + - db_password + environment: + - cfconfig_adminPassword_FILE=/run/secrets/admin_password + - DB_PASSWORD_FILE=/run/secrets/db_password + +secrets: + admin_password: + file: ./secrets/admin_password.txt + db_password: + file: ./secrets/db_password.txt +``` + +#### Server Profile Settings + +```bash +# Use production profile for security +docker run -p 8080:8080 \ + -e "BOX_SERVER_PROFILE=production" \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:lucee6 +``` + +#### Health Check Security + +```dockerfile +# Custom health check for security +HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \ + CMD curl -f http://localhost:8080/health || exit 1 +``` + +### Container Hardening + +#### Read-Only File System + +```bash +# Run with read-only file system +docker run -p 8080:8080 \ + --read-only \ + --tmpfs /tmp \ + --tmpfs /usr/local/lib/serverHome/logs \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:alpine +``` + +#### Resource Limits + +```bash +# Set resource limits +docker run -p 8080:8080 \ + --memory=2g \ + --cpus=2 \ + --pids-limit=100 \ + -v "$(pwd):/app" \ + ortussolutions/commandbox:lucee6 +``` + +#### Security Context + +```yaml +# Kubernetes security context +apiVersion: apps/v1 +kind: Deployment +spec: + template: + spec: + securityContext: + runAsNonRoot: true + runAsUser: 1000 + fsGroup: 1000 + containers: + - name: commandbox + image: ortussolutions/commandbox:adobe2025 + securityContext: + allowPrivilegeEscalation: false + readOnlyRootFilesystem: true + capabilities: + drop: + - ALL +``` + +## Best Practices and Customization + +### Customizing Images + +To create your own, customized Docker image, use [our Dockerfile repository](https://github.com/Ortus-Solutions/docker-commandbox/tree/development/builds) as a reference to begin your customizations. You can extend any of the base images and add your own additional functionality or modules. For example, to install the [Ortus Redis extension for Lucee](https://www.ortussolutions.com/products/redis-lucee): + +```dockerfile +FROM ortussolutions/commandbox:lucee6 ARG REDIS_EMAIL ARG REDIS_LICENSE_KEY ARG REDIS_ACTIVATION_CODE - # Install the Ortus Redis cache extension from Forgebox RUN box install 5C558CC6-1E67-4776-96A60F9726D580F1 # Scope in our args for extension activation -REDIS_EXTENSION_EMAIL=$REDIS_EMAIL -REDIS_EXTENSION_LICENSE_KEY=$REDIS_LICENSE_KEY -REDIS_EXTENSION_ACTIVATION_CODE=$REDIS_ACTIVATION_CODE -REDIS_EXTENSION_SERVER_TYPE=Production +ENV REDIS_EXTENSION_EMAIL=$REDIS_EMAIL +ENV REDIS_EXTENSION_LICENSE_KEY=$REDIS_LICENSE_KEY +ENV REDIS_EXTENSION_ACTIVATION_CODE=$REDIS_ACTIVATION_CODE +ENV REDIS_EXTENSION_SERVER_TYPE=Production # WARM UP THE SERVER WITH THE NEW EXTENSION RUN ${BUILD_DIR}/util/warmup-server.sh ``` -We recommend using the pre-tagged images as your base, rather than starting from scratch. +We recommend using the pre-tagged images as your base, rather than starting from scratch. ### Optimizing Startup Times -Because, with the exception of the CommandBox default engine of Lucee 5, the CFML server engines are downloaded and installed at container runtime. This can result in significant startup time increases ( even with Lucee 5 already downloaded in the base image, there is a time penalty for a "cold start" ). It is recommended that builds for production use employ an engine-specific variation for the build, which ensures the server is downloaded, in place, and warmed up on container start. +Because, with the exception of the CommandBox default engine of Lucee 5, the CFML server engines are downloaded and installed at container runtime. This can result in significant startup time increases (even with Lucee 5 already downloaded in the base image, there is a time penalty for a "cold start"). It is recommended that builds for production use employ an engine-specific variation for the build, which ensures the server is downloaded, in place, and warmed up on container start. For a basic example, the following will suffice: -``` -FROM ortussolutions/commandbox:lucee5 +```dockerfile +FROM ortussolutions/commandbox:lucee6 # Copy application files to root COPY ./ ${APP_DIR}/ ``` -In many cases, you will have tier-specific builds, with custom configuration options. The following employs a `build` directory, which includes additional configuration files for tier-based deployments: +In many cases, you will have tier-specific builds, with custom configuration options. The following employs a `build` directory, which includes additional configuration files for tier-based deployments: -``` -FROM ortussolutions/commandbox:lucee5 +```dockerfile +FROM ortussolutions/commandbox:lucee6 ARG CI_ENVIRONMENT_NAME @@ -248,25 +738,24 @@ ENV HEALTHCHECK_URI "http://127.0.0.1:${PORT}/config/Routes.cfm" In the above case, the `setup-env.sh` file might perform an additional server warmup and validation, where in the former case, the server was previously warmed up when the image was built. -Once your customized `Dockerfile` has has been built, you can run the generated image directly, or publish it to a [private registry](https://docs.docker.com/registry/) - +Once your customized `Dockerfile` has has been built, you can run the generated image directly, or publish it to a [private registry](https://docs.docker.com/registry/) -#### Multi-Stage Builds +### Multi-Stage Builds -As of v3.0.0 of the image you can create multi-stage builds which include only a shell script to start the server, the RunWar servlet container, and the application/engine. _This build is finalized, however, so the startup script will bypass all environmental and server evaluation in favor of the variables provided in the generated shell script._ This means that you will need to provide all secrets and variables needed by your server and CFConfig files during the initial build phase, as the `.env` and `.cfconfig.json` files will not be in play during the server startup. +As of v3.0.0 of the image you can create multi-stage builds which include only a shell script to start the server, the RunWar servlet container, and the application/engine. _This build is finalized, however, so the startup script will bypass all environmental and server evaluation in favor of the variables provided in the generated shell script._ This means that you will need to provide all secrets and variables needed by your server and CFConfig files during the initial build phase, as the `.env` and `.cfconfig.json` files will not be in play during the server startup. -A finalized image reduces container startup times by up to 80% and reduces the final image size by up to 50%. Multi-stage builds are ideal for creating production images. The environment variable `FINALIZE_STARTUP`, when provided, will only generate the startup script. The script written is considered authoritative and will be used on the next container start. +A finalized image reduces container startup times by up to 80% and reduces the final image size by up to 50%. Multi-stage builds are ideal for creating production images. The environment variable `FINALIZE_STARTUP`, when provided, will only generate the startup script. The script written is considered authoritative and will be used on the next container start. To leverage this with a multi-stage build: -``` -FROM ortussolutions/commandbox:lucee5 as workbench +```dockerfile +FROM ortussolutions/commandbox:lucee6 as workbench # Generate the startup script only ENV FINALIZE_STARTUP true RUN $BUILD_DIR/run.sh -# Eclipse Temurin Focal image is the smallest OpenJDK image on that the same kernel used in the base image. +# Eclipse Temurin Focal image is the smallest OpenJDK image on that the same kernel used in the base image. # For most apps, this should work to run your applications FROM eclipse-temurin:11-jre-jammy as app @@ -290,49 +779,40 @@ HEALTHCHECK --interval=20s --timeout=30s --retries=15 CMD curl --fail ${HEALTHCH CMD /usr/local/bin/run.sh ``` -#### Single-Stage With Script Finalization +### Single-Stage With Script Finalization You may also create this finalized startup script in a single-stage build: -``` -FROM ortussolutions/commandbox:lucee5 +```dockerfile +FROM ortussolutions/commandbox:lucee6 # Generate the finalized startup script and exit RUN export FINALIZE_STARTUP=true;$BUILD_DIR/run.sh;unset FINALIZE_STARTUP ``` -This created image will contain the authoritative script with its runtime benefits and caveats ( see above ). Unlike the multi-stage build above, however , secret expansion will take place prior to image start, with the caveat that _any environment variables in existence when the finalized script was generated will overwrite the runtime-provided variables or secrets_. - - -About CommandBox -================ +This created image will contain the authoritative script with its runtime benefits and caveats (see above). Unlike the multi-stage build above, however, secret expansion will take place prior to image start, with the caveat that _any environment variables in existence when the finalized script was generated will overwrite the runtime-provided variables or secrets_. -*CommandBox* is a standalone, native, [modular](https://www.forgebox.io/type/commandbox-modules) CFML development and deployment tool for Windows, Mac, and Linux which provides a CLI for server orchestration, developer productivity, tool interaction, package management, application scaffolding, and some sweet ASCII art. -It is open for extensibility for any ColdFusion (CFML) project and is written in CFML, allowing developers to easily write their own [modules](https://www.forgebox.io/type/commandbox-modules). It tightly integrates with the CFML open source hub [ForgeBox](https://www.forgebox.io/), so developers can share modules world-wide. - -[Learn more about CommandBox](https://www.ortussolutions.com/products/commandbox) +## Issues +Please submit issues to our repository: [https://github.com/Ortus-Solutions/docker-commandbox/issues](https://github.com/Ortus-Solutions/docker-commandbox/issues) -Issues -================ +## License -Please submit issues to our repository: [https://github.com/Ortus-Solutions/docker-commandbox/issues](https://github.com/Ortus-Solutions/docker-commandbox/issues) +This project is licensed under the Apache License, Version 2.0. You may obtain a copy of the License at [http://www.apache.org/licenses/LICENSE-2.0](http://www.apache.org/licenses/LICENSE-2.0). -## LICENSE -Apache License, Version 2.0. +--- -
+## HONOR GOES TO GOD ABOVE ALL -#### HONOR GOES TO GOD ABOVE ALL Because of His grace, this project exists. If you don't like this, then don't read it, it's not for you. ->"Therefore being justified by faith, we have peace with God through our Lord Jesus Christ: -By whom also we have access by faith into this grace wherein we stand, and rejoice in hope of the glory of God. -And not only so, but we glory in tribulations also: knowing that tribulation worketh patience; -And patience, experience; and experience, hope: -And hope maketh not ashamed; because the love of God is shed abroad in our hearts by the -Holy Ghost which is given unto us. ." Romans 5:5 +> "Therefore being justified by faith, we have peace with God through our Lord Jesus Christ: +> By whom also we have access by faith into this grace wherein we stand, and rejoice in hope of the glory of God. +> And not only so, but we glory in tribulations also: knowing that tribulation worketh patience; +> And patience, experience; and experience, hope: +> And hope maketh not ashamed; because the love of God is shed abroad in our hearts by the +> Holy Ghost which is given unto us. ." Romans 5:5 + +### THE DAILY BREAD -#### THE DAILY BREAD - > "I am the way, and the truth, and the life; no one comes to the Father, but by me (JESUS)" Jn 14:1-12 -fv +> "I am the way, and the truth, and the life; no one comes to the Father, but by me (JESUS)" Jn 14:1-12 diff --git a/changelog.md b/changelog.md index c630f37d..74e9dacb 100644 --- a/changelog.md +++ b/changelog.md @@ -6,231 +6,289 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). ---- + +## [Unreleased] + +## [6.2.1/3.13.5] - 2025-07-03 + +### Added + +- Updated CommandBox to v6.2.1 +- EditorConfig support for VSCode and IntelliJ +- Added gitattributes file to ignore unnecessary files in git +- Added markdownlint configuration and markdown lint fix +- Dependabot for automatic dependency updates and security fixes + ## [6.2.0/3.13.4] - 2025-05-26 ### Changed -* Adobe Coldfusion 2021 updated to `2021.0.20+330407` -* Adobe Coldfusion 2023 updated to `2023.0.14+330784` -* Adobe Coldfusion 2025 updated to `2025.0.02+331451` -* Lucee 6 updated to `6.2.1+122` +- Adobe Coldfusion 2021 updated to `2021.0.20+330407` +- Adobe Coldfusion 2023 updated to `2023.0.14+330784` +- Adobe Coldfusion 2025 updated to `2025.0.02+331451` +- Lucee 6 updated to `6.2.1+122` ## [6.2.0/3.13.3] - 2025-04-29 ### Changed -* Boxlang version to 1.0.0 +- Boxlang version to 1.0.0 ## [6.2.0/3.13.1] - 2025-04-25 ### Changed -* JDK/JRE 11 images bumped to version `11.0.27_6` -* JDK/JRE 17 images bumped to version `17.0.15_6` -* JDK/JRE 21 images bumped to version `21.0.7_6` -* JDK/JRE 23 images bumped to version `23.0.2_7` -* JDK/JRE 24 images bumped to version `24.0.1_9` - +- JDK/JRE 11 images bumped to version `11.0.27_6` +- JDK/JRE 17 images bumped to version `17.0.15_6` +- JDK/JRE 21 images bumped to version `21.0.7_6` +- JDK/JRE 23 images bumped to version `23.0.2_7` +- JDK/JRE 24 images bumped to version `24.0.1_9` ## [6.2.0/3.13.0] - 2025-04-10 ### Changed -* Adobe Coldfusion 2025 updated to `2025.0.01+331420` -* Ubuntu base version changed to v24 ( Noble ) +- Adobe Coldfusion 2025 updated to `2025.0.01+331420` +- Ubuntu base version changed to v24 ( Noble ) ### Added -* Added `:jdk23` and `:jdk24` Build tags +- Added `:jdk23` and `:jdk24` Build tags ## [6.2.0/3.12.0] - 2025-04-01 ### Changed -* CommandBox Binary to v6.2.0 +- CommandBox Binary to v6.2.0 ### Added -* Add Adobe Coldfusion 2025 Engine ( version `2025.0.0+331385` ) +- Add Adobe Coldfusion 2025 Engine ( version `2025.0.0+331385` ) ### Removed -* Removed Adobe Coldfusion 2018 Builds, as it is EOL +- Removed Adobe Coldfusion 2018 Builds, as it is EOL ## [6.1.0/3.11.0] - 2025-03-05 ### Added -* Jarkarta support for [BoxLang](https://boxlang.io/) and Adobe 2025 -* Boxlang version bumped to `1.0.0-rc.2` +- Jarkarta support for [BoxLang](https://boxlang.io/) and Adobe 2025 +- Boxlang version bumped to `1.0.0-rc.2` ## [6.1.0/3.10.2] - 2025-02-07 ### Changed -* JDK/JRE 11 images bumped to version `11.0.26_4` -* JDK/JRE 17 images bumped to version `17.0.14_7` -* JDK/JRE 21 images bumped to version `21.0.6_7` +- JDK/JRE 11 images bumped to version `11.0.26_4` +- JDK/JRE 17 images bumped to version `17.0.14_7` +- JDK/JRE 21 images bumped to version `21.0.6_7` ## [6.1.0/3.10.1] - 2024-12-25 + ### Changed -* Adobe 2023 image bump to release version `2023.0.12+330713` -* Adobe 2021 image bump to release version `2021.0.18+330341` +- Adobe 2023 image bump to release version `2023.0.12+330713` +- Adobe 2021 image bump to release version `2021.0.18+330341` ## [6.1.0/3.10.0] - 2024-11-05 ### Changed -* CommandBox Binary to v6.1.0 -* Lucee Tagged images to v5.4.6+9 +- CommandBox Binary to v6.1.0 +- Lucee Tagged images to v5.4.6+9 ## [6.0.0/3.9.10] - 2024-09-10 + ### Changed -* Adobe 2023 image bump to release version `2023.0.10+330680` -* Adobe 2021 image bump to release version `2021.0.16+330307` +- Adobe 2023 image bump to release version `2023.0.10+330680` +- Adobe 2021 image bump to release version `2021.0.16+330307` ## [6.0.0/3.9.9] - 2024-09-09 + ### Changed -* Adobe 2023 image bump to release version `2023.0.09+330677` -* Adobe 2021 image bump to release version `2021.0.15+330303` +- Adobe 2023 image bump to release version `2023.0.09+330677` +- Adobe 2021 image bump to release version `2021.0.15+330303` ## [6.0.0/3.9.8] - 2024-07-26 + ### Changed -* BoxLang Images to Beta 7 +- BoxLang Images to Beta 7 ## [6.0.0/3.9.7] - 2024-07-24 + ### Changed -* BoxLang Images to Beta 6 +- BoxLang Images to Beta 6 ## [6.0.0/3.9.6] - 2024-07-05 + ### Changed -* BoxLang Images to Beta 4 +- BoxLang Images to Beta 4 ## [6.0.0/3.9.5] - 2024-06-26 + ### Added -* Add JDK21 builds for Alpine, UBI, and Ubuntu -* ARM arch builds for Alpine JDK21 Images -* Add BoxLang images +- Add JDK21 builds for Alpine, UBI, and Ubuntu +- ARM arch builds for Alpine JDK21 Images +- Add BoxLang images ## [6.0.0/3.9.4] - 2024-05-03 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.08+330668` -* Adobe 2021 image bumped to release version `2021.0.14+330296` +- Adobe 2023 image bumped to release version `2023.0.08+330668` +- Adobe 2021 image bumped to release version `2021.0.14+330296` ## [6.0.0/3.9.3] - 2024-05-03 + ### Changed -* JDK/JRE 11 images bumped to version `11.0.23_9` -* JDK/JRE 17 images bumped to version `17.0.11_9` +- JDK/JRE 11 images bumped to version `11.0.23_9` +- JDK/JRE 17 images bumped to version `17.0.11_9` ## [6.0.0/3.9.2] - 2024-03-28 + ### Changed -* `:lucee5` tags changed to match CommandBox 6 Lucee version of `5.4.4+38` -* Ortus ORM Extension version in `:lucee5` images updated to `v6.5.2` +- `:lucee5` tags changed to match CommandBox 6 Lucee version of `5.4.4+38` +- Ortus ORM Extension version in `:lucee5` images updated to `v6.5.2` ### Added -* `:lucee5-light` image added +- `:lucee5-light` image added ### Fixed -* Changed JVM log util format to use `JAVA_TOOL_OPTIONS` env variable to prevent overwrite of custom `BOX_SERVER_JVM_ARGS` in environment and `server.json` files +- Changed JVM log util format to use `JAVA_TOOL_OPTIONS` env variable to prevent overwrite of custom `BOX_SERVER_JVM_ARGS` in environment and `server.json` files ## [6.0.0/3.9.1] - 2024-03-28 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.07+330663` -* Adobe 2021 image bumped to release version `2021.0.13+330286` +- Adobe 2023 image bumped to release version `2023.0.07+330663` +- Adobe 2021 image bumped to release version `2021.0.13+330286` ## [6.0.0/3.9.0] - 2024-02-16 + ### Changed -* CommandBox Binary updated to v6.0.0 +- CommandBox Binary updated to v6.0.0 ### Removed -* removed Runwar args as they are no longer suppored -* Changed log pattern to server config default -* Removed code turning off the directory watcher as it is no longer on by default +- removed Runwar args as they are no longer suppored +- Changed log pattern to server config default +- Removed code turning off the directory watcher as it is no longer on by default ## [5.9.1/3.8.5] - 2024-01-24 + ### Changed -* JDK/JRE 11 images bumped to version `11.0.22_7` -* JDK/JRE 17 images bumped to version `17.0.10_7` +- JDK/JRE 11 images bumped to version `11.0.22_7` +- JDK/JRE 17 images bumped to version `17.0.10_7` ## [5.9.1/3.8.4] - 2023-11-14 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.06+330617` -* Adobe 2021 image bumped to release version `2021.0.12+330257` +- Adobe 2023 image bumped to release version `2023.0.06+330617` +- Adobe 2021 image bumped to release version `2021.0.12+330257` ## [5.9.1/3.8.3] - 2023-10-11 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.05+330608` -* Adobe 2021 image bumped to release version `2021.0.11+330247` +- Adobe 2023 image bumped to release version `2023.0.05+330608` +- Adobe 2021 image bumped to release version `2021.0.11+330247` + ## [5.9.1/3.8.2] - 2023-10-02 -* Lucee 5 Ortus ORM extension updated to 6.3.2 +- Lucee 5 Ortus ORM extension updated to 6.3.2 + ## [5.9.1/3.8.1] - 2023-09-29 + ### Changed -* Lucee 5 Ortus ORM extension updated to 6.3.1 +- Lucee 5 Ortus ORM extension updated to 6.3.1 ## [5.9.1/3.8.0] - 2023-08-17 + ### Changed -* CommandBox Binary Updated to `v5.9.1` -* Lucee image versions updated to `v5.4.3+2` -* Adobe 2023 image bumped to release version `2023.0.04+330500` -* Adobe 2021 image bumped to release version `2021.0.10+330161` -* Current version of `commandbox-cfconfig` will now fail to start the server if the assigned configfile is not found +- CommandBox Binary Updated to `v5.9.1` +- Lucee image versions updated to `v5.4.3+2` +- Adobe 2023 image bumped to release version `2023.0.04+330500` +- Adobe 2021 image bumped to release version `2021.0.10+330161` +- Current version of `commandbox-cfconfig` will now fail to start the server if the assigned configfile is not found ### Added -* [Ortus Lucee ORM Extension](https://www.ortussolutions.com/products/orm-extension) now bundled with Lucee images, since Lucee 5.4+ no longer includes an ORM extension +- [Ortus Lucee ORM Extension](https://www.ortussolutions.com/products/orm-extension) now bundled with Lucee images, since Lucee 5.4+ no longer includes an ORM extension ## [5.9.0/3.7.12] - 2023-08-15 + ### Changed -* Lucee image versions bumped to `v5.3.12+1` +- Lucee image versions bumped to `v5.3.12+1` ## [5.9.0/3.7.11] - 2023-07-27 + ### Changed -* JRE 11 versions to `11.0.20_8` -* JRE 17 versions to `17.0.8_7` +- JRE 11 versions to `11.0.20_8` +- JRE 17 versions to `17.0.8_7` + ## [5.9.0/3.7.10] - 2023-07-12 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.3+330486` -* Adobe 2021 image bumped to release version `2021.0.9+330148` -* Adobe 2018 image bumped to release version `2018.0.19+330149` +- Adobe 2023 image bumped to release version `2023.0.3+330486` +- Adobe 2021 image bumped to release version `2021.0.9+330148` +- Adobe 2018 image bumped to release version `2018.0.19+330149` ## [5.9.0/3.7.9] - 2023-07-12 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.2+330482` -* Adobe 2021 image bumped to release version `2021.0.8+330144` -* Adobe 2018 image bumped to release version `2018.0.18+330145` +- Adobe 2023 image bumped to release version `2023.0.2+330482` +- Adobe 2021 image bumped to release version `2021.0.8+330144` +- Adobe 2018 image bumped to release version `2018.0.18+330145` + ## [5.9.0/3.7.8] - 2023-07-12 + ### Added -* Add Java tool options for serialization for all Adobe containers, [per technotes](https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html) +- Add Java tool options for serialization for all Adobe containers, [per technotes](https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html) + ## [5.9.0/3.7.7] - 2023-07-12 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.1+330480` -* Adobe 2021 image bumped to release version `2021.0.7+330142` -* Adobe 2018 image bumped to release version `2018.0.17+330143` +- Adobe 2023 image bumped to release version `2023.0.1+330480` +- Adobe 2021 image bumped to release version `2021.0.7+330142` +- Adobe 2018 image bumped to release version `2018.0.17+330143` + ## [5.9.0/3.7.6] - 2023-05-23 + ### Changed -* Adobe 2023 image bumped to release version `2023.0.0+330468` +- Adobe 2023 image bumped to release version `2023.0.0+330468` + ## [5.9.0/3.7.5] - 2023-05-23 + ### Fixed -* Fixes an issue with manifests no longer being generated by BuildX +- Fixes an issue with manifests no longer being generated by BuildX + ## [5.9.0/3.7.4] - 2023-05-03 + ### Changed + - Removed arm/v7 ( 32 bit ) support due to JDK17 requirements - CommandBox binary updated to `5.9.0` + ## [5.8.0/3.7.3] - 2023-03-23 + ### Fixed + - Fixes an issue where CLI ID files were not being deleted after installing commandbox and warming up the server + ## [5.8.0/3.7.2] - 2023-03-17 + ### Fixed + - Fixes an issue where specifying an alternate webroot ( e.g. `BOX_SERVER_WEB_WEBROOT` ) fail to start the container + ## [5.8.0/3.7.1] - 2023-03-15 + ### Changed + - Updates `:adobe2021` tag to version `2021.0.06+330132` - Updates `:adobe2018` tag to version `2018.0.16+330130` ## [5.8.0/3.7.0] - 2023-03-10 + ## Changed + - CommandBox version to 5.8.0 - Lucee image versions bumped to `v5.3.10+120` - Ubuntu base version changed to v22 ( Jammy ) @@ -239,99 +297,131 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 - Added support, in container log output, for [JSON log formatting](https://commandbox.ortusbooks.com/embedded-server/configuring-your-server/console-log-layout#customize-layout) ## [5.7.0/3.6.4] - 2022-12-15 + ### Changed + - Lucee image versions bumped to `v5.3.10+97` + ## [5.7.0/3.6.3] - 2022-12-07 ### Added + - Added [RHEL ubi9](https://catalog.redhat.com/software/containers/ubi9/ubi/615bcf606feffc5384e8452e) Builds with tags: `ubi9`, `jre-11-ubi9`, `jdk-11-ubi9`, `lucee5-ubi9`, `adobe2018-ubi9`, and `adobe2021-ubi9` ### Changed + - CommandBox version to 5.7.0 - Removed the pruning of certain CommandBox modules to allow for more use cases ### Removed + - Removed Adobe Coldfusion 2016 builds ## [5.6.1/3.6.2] - 2022-10-31 + ### Changed + - `:lucee5` image bumped to use v5.3.9+160 - Resolves [Issue #63](https://github.com/Ortus-Solutions/docker-commandbox/issues/63) - Changed all Adobe images over to use JDK as base instead of JRE due to webservices compilation errors. Size increased by 141MB. [Adobe Bug Report](https://tracker.adobe.com/#/view/CF-4215554) ## [5.6.1/3.6.1] - 2022-10-18 ### Fixed + - Resolves [Issue #70](https://github.com/Ortus-Solutions/docker-commandbox/issues/70) - `CFPM_INSTALL` environment variables were not being applied/evaluated correctly ### Added + - Resolves [Issue #64](https://github.com/Ortus-Solutions/docker-commandbox/issues/64) Added support for specifying a user identifier ( `USER_ID` ) at runtime and default UID to `1001` to ease ownership/permissions of mounts. ### Changed + - Updates `:adobe2021` tag to version `2021.0.05+330109` - Updates `:adobe2018` tag to version `2018.0.15+330106` ## [5.6.1/3.6.0] - 2022-09-05 + ### Changed + - Updates CommandBox Binary to v5.6.1 ## [5.5.2/3.5.4] - 2022-07-29 + ### Changed -- Update JRE base images to 11.0.16 +- Update JRE base images to 11.0.16 ## [5.5.2/3.5.3] - 2022-05-03 + ### Added + - Added default `BOX_SERVER_RUNWAR_ARGS` environment variable to disable the Undertow system file watcher. On large applications, or applications with many static assets, this can speed up start times by 20-30s + ## [5.5.2/3.5.2] - 2022-05-03 + ### Changed + - CommandBox binary updated to `5.5.2` ## [5.5.1/3.5.1] - 2022-05-03 + ### Changed + - Updates `:adobe2021` tag to version `2021.0.04+330004` - Updates `:adobe2018` tag to version `2018.0.14+330003` ## [5.5.1/3.5.0] - 2022-05-03 ### Changed + - Change base images to use the [`eclipse-temurin` base images](https://hub.docker.com/_/eclipse-temurin) - Change Ubuntu version to 20.0.0 (focal) - JREs updated to `jre-11.0.15` - CommandBox binary updated to `5.5.1` ### Added + - Added `linux/arm/v7` to supported architectures for Debian-based images ## [5.4.2/3.4.5] - 2022-03-12 ### Changed + - Moved CFPM commands to after server has been fully seeded - JREs updated to `jre-11.0.14` ## [5.4.2/3.4.4] - 2021-10-05 + ### Changed + - Updates CommandBox binary to v5.4.2 ## [5.4.1/3.4.3] - 2021-09-15 ### Changed + - Updates CommandBox binary to v5.4.1 + ## [5.4.0/3.4.2] - 2021-09-15 ### Changed + - Bumped `:adobe2021` version to `2021.0.2+328618` - Bumped `:adobe2018` version to `2018.0.12+328566` - Updates CommandBox binary to v5.4.0 + ## [5.3.1/3.4.1] - 2021-06-04 ### Changed + - Bumped `:lucee5` server version to `5.3.8+189` - New builds of Adobe images contain latest `mysql-connector-jar` ### Fixed + - Fixed an issue where the `verbose` flag was not being applied to server starts ## [5.3.1/3.4.0] - 2021-06-04 @@ -339,7 +429,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ### Changed - Updates CommandBox binary to v5.3.1 -- Marked support for the following environment variables as deprecated, in favor of native CommandBox environment variables. Support for these variables will end in v4.0.0 of the image +- Marked support for the following environment variables as deprecated, in favor of native CommandBox environment variables. Support for these variables will end in v4.0.0 of the image -- `SERVER_HOME_DIRECTORY` ( `BOX_SERVER_APP_SERVERHOMEDIRECTORY` ) -- `cfconfigfile` ( `BOX_SERVER_CFCONFIGFILE` ) -- `CFENGINE` ( `BOX_SERVER_APP_CFENGINE` ) @@ -350,6 +440,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 - Eliminated random password generation on server startup, if a convention mechanism for changing was not detected. Since the server profile defaults to `production`, which disables the admin interface, this is no longer necessary ### Fixed + - Documentation updates and corrections ## [5.2.1/3.3.0] - 2021-03-24 @@ -377,6 +468,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [5.2.1/3.2.2] - 2021-03-23 ### Changed + - `:adobe2016` images to version `2016.0.17+325979` - `:adobe2018` images to version `2018.0.11+326016` - `:adobe2021` images to version `2021.0.1+325996` @@ -435,9 +527,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ### Added -- (OC-4) Add handling for a `$FINALIZE_STARTUP` environment variable which will generate the final startup script to a trusted location. Once generated, this script will be authoritative for future container restarts and additional evaluation will be bypassed +- (OC-4) Add handling for a `$FINALIZE_STARTUP` environment variable which will generate the final startup script to a trusted location. Once generated, this script will be authoritative for future container restarts and additional evaluation will be bypassed - (OC-5) Sets default CommandBox rewrite rules to deny "hidden" files ( e.g. `.env` ) and common config files ( `server.json` ) -- (OC-6) Refactor `$HEADLESS` implementation in to startup routine +- (OC-6) Refactor `$HEADLESS` implementation in to startup routine - (OC-10|Issue #44) Adds supports for _FILE convention variables ## [5.0.0/2.8.1] - 2020-03-11 diff --git a/commandbox-docker.jpg b/commandbox-docker.jpg new file mode 100644 index 00000000..fe315cbc Binary files /dev/null and b/commandbox-docker.jpg differ diff --git a/test/index.cfm b/test/index.cfm index c52f0284..dd51ff8d 100644 --- a/test/index.cfm +++ b/test/index.cfm @@ -1,8 +1,10 @@ - - - system = createObject( "java", "java.lang.System" ); - env = system.getenv(); - + + + system = createObject( "java", "java.lang.System" ); + env = system.getenv(); + debugEnabled = structKeyExists( env, "ENVIRONMENT" ) ? ( env.ENVIRONMENT == "development" ) : false; + + @@ -33,8 +35,10 @@ Is up and Running on Docker! -

- If you want to see some debugging information for this instance, click on the debug link: see debugging -

+ +

+ If you want to see some debugging information for this instance, click on the debug link: see debugging +

+ \ No newline at end of file