diff --git a/.vib/supabase-postgres-meta/goss/goss.yaml b/.vib/supabase-postgres-meta/goss/goss.yaml deleted file mode 100644 index 74960d32717bf..0000000000000 --- a/.vib/supabase-postgres-meta/goss/goss.yaml +++ /dev/null @@ -1,15 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -gossfile: - # Goss tests exclusive to the current container - ../../supabase-postgres-meta/goss/supabase-postgres-meta.yaml: {} - # Load scripts from .vib/common/goss/templates - ../../common/goss/templates/check-binaries.yaml: {} - ../../common/goss/templates/check-broken-symlinks.yaml: {} - ../../common/goss/templates/check-ca-certs.yaml: {} - ../../common/goss/templates/check-directories.yaml: {} - ../../common/goss/templates/check-files.yaml: {} - ../../common/goss/templates/check-linked-libraries.yaml: {} - ../../common/goss/templates/check-sed-in-place.yaml: {} - ../../common/goss/templates/check-spdx.yaml: {} diff --git a/.vib/supabase-postgres-meta/goss/supabase-postgres-meta.yaml b/.vib/supabase-postgres-meta/goss/supabase-postgres-meta.yaml deleted file mode 100644 index edcec13c70f05..0000000000000 --- a/.vib/supabase-postgres-meta/goss/supabase-postgres-meta.yaml +++ /dev/null @@ -1,11 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -command: - check-supabase-postgres-meta-run: - exec: cd /opt/bitnami/supabase-postgres-meta; timeout --preserve-status 5 npm run start || true - timeout: 8000 - exit-status: 0 - stdout: - - "node dist/server/server.js" - - "Server listening" diff --git a/.vib/supabase-postgres-meta/goss/vars.yaml b/.vib/supabase-postgres-meta/goss/vars.yaml deleted file mode 100644 index 47b503fe809e6..0000000000000 --- a/.vib/supabase-postgres-meta/goss/vars.yaml +++ /dev/null @@ -1,14 +0,0 @@ -binaries: - - node - - npm -directories: - - paths: - - /opt/bitnami/supabase-postgres-meta/node_modules - - /opt/bitnami/supabase-postgres-meta/dist -files: - - paths: - - /opt/bitnami/supabase-postgres-meta/package.json -root_dir: /opt/bitnami -sed_in_place: - exclude_paths: - - /opt/bitnami/supabase-postgres-meta/node_modules/ diff --git a/.vib/supabase-postgres-meta/vib-verify.json b/.vib/supabase-postgres-meta/vib-verify.json deleted file mode 100644 index b11bd26c0dc6d..0000000000000 --- a/.vib/supabase-postgres-meta/vib-verify.json +++ /dev/null @@ -1,72 +0,0 @@ -{ - "context": { - "resources": { - "url": "{SHA_ARCHIVE}", - "path": "{VIB_ENV_PATH}" - }, - "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd" - }, - "phases": { - "package": { - "actions": [ - { - "action_id": "container-image-package", - "params": { - "application": { - "details": { - "name": "{VIB_ENV_CONTAINER}", - "tag": "{VIB_ENV_TAG}" - } - }, - "architectures": [ - "linux/amd64" - ] - } - }, - { - "action_id": "container-image-lint", - "params": { - "threshold": "error" - } - } - ] - }, - "verify": { - "actions": [ - { - "action_id": "trivy", - "params": { - "threshold": "LOW", - "vuln_type": [ - "OS" - ] - } - }, - { - "action_id": "grype", - "params": { - "threshold": "CRITICAL", - "package_type": [ - "OS" - ] - } - }, - { - "action_id": "goss", - "params": { - "resources": { - "path": "/.vib" - }, - "tests_file": "supabase-postgres-meta/goss/goss.yaml", - "vars_file": "supabase-postgres-meta/goss/vars.yaml", - "remote": { - "pod": { - "workload": "deploy-supabase-postgres-meta" - } - } - } - } - ] - } - } -} diff --git a/.vib/supabase-postgres/goss/goss.yaml b/.vib/supabase-postgres/goss/goss.yaml deleted file mode 100644 index 4615908629142..0000000000000 --- a/.vib/supabase-postgres/goss/goss.yaml +++ /dev/null @@ -1,15 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -gossfile: - # Goss tests exclusive to the current container - ../../supabase-postgres/goss/supabase-postgres.yaml: {} - # Load scripts from .vib/common/goss/templates - ../../common/goss/templates/check-binaries.yaml: {} - ../../common/goss/templates/check-broken-symlinks.yaml: {} - ../../common/goss/templates/check-ca-certs.yaml: {} - ../../common/goss/templates/check-directories.yaml: {} - ../../common/goss/templates/check-files.yaml: {} - ../../common/goss/templates/check-linked-libraries.yaml: {} - ../../common/goss/templates/check-sed-in-place.yaml: {} - ../../common/goss/templates/check-spdx.yaml: {} diff --git a/.vib/supabase-postgres/goss/supabase-postgres.yaml b/.vib/supabase-postgres/goss/supabase-postgres.yaml deleted file mode 100644 index c88543ab4f3bd..0000000000000 --- a/.vib/supabase-postgres/goss/supabase-postgres.yaml +++ /dev/null @@ -1,18 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -command: - # PostgreSQL should match the major version - check-postgresql-version: - exec: {{ .Vars.version.bin_name }} {{ .Vars.version.flag }} | grep "$(echo $APP_VERSION | sed -E 's|^([0-9]+\.).+$| \1|g')" - exit-status: 0 -file: - /opt/bitnami/postgresql/logs/postgresql.log: - exists: true - filetype: symlink - linked-to: /dev/stdout - /opt/bitnami/postgresql/conf/postgresql.conf: - exists: true - mode: "0664" - contents: - - /^include_dir = 'conf.d'/ diff --git a/.vib/supabase-postgres/goss/vars.yaml b/.vib/supabase-postgres/goss/vars.yaml deleted file mode 100644 index ce5b12da90e8f..0000000000000 --- a/.vib/supabase-postgres/goss/vars.yaml +++ /dev/null @@ -1,31 +0,0 @@ -binaries: - - java - - postgres - - psql - - pg_dump - - pg_dumpall - - pg_restore -directories: - - paths: - - /opt/bitnami/supabase-postgres/migrations/db - - mode: "0775" - paths: - - /bitnami/postgresql - - /bitnami/postgresql/conf - - /bitnami/postgresql/conf/conf.d - - /docker-entrypoint-initdb.d - - /opt/bitnami/postgresql/conf - - /opt/bitnami/postgresql/conf/conf.d - - /opt/bitnami/postgresql/logs - - /opt/bitnami/postgresql/tmp -files: - - paths: - - /opt/bitnami/supabase-postgres/migrations/00-schema.sql - - /opt/bitnami/supabase-postgres/migrations/01-extension.sql - - /opt/bitnami/postgresql/conf/pg_hba.conf - - /opt/bitnami/postgresql/lib/timescaledb.so - - /opt/bitnami/postgresql/share/extension/timescaledb.control -root_dir: /opt/bitnami -version: - bin_name: postgres - flag: --version diff --git a/.vib/supabase-postgres/vib-verify.json b/.vib/supabase-postgres/vib-verify.json deleted file mode 100644 index c7204bac35a62..0000000000000 --- a/.vib/supabase-postgres/vib-verify.json +++ /dev/null @@ -1,72 +0,0 @@ -{ - "context": { - "resources": { - "url": "{SHA_ARCHIVE}", - "path": "{VIB_ENV_PATH}" - }, - "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd" - }, - "phases": { - "package": { - "actions": [ - { - "action_id": "container-image-package", - "params": { - "application": { - "details": { - "name": "{VIB_ENV_CONTAINER}", - "tag": "{VIB_ENV_TAG}" - } - }, - "architectures": [ - "linux/amd64" - ] - } - }, - { - "action_id": "container-image-lint", - "params": { - "threshold": "error" - } - } - ] - }, - "verify": { - "actions": [ - { - "action_id": "trivy", - "params": { - "threshold": "LOW", - "vuln_type": [ - "OS" - ] - } - }, - { - "action_id": "grype", - "params": { - "threshold": "CRITICAL", - "package_type": [ - "OS" - ] - } - }, - { - "action_id": "goss", - "params": { - "resources": { - "path": "/.vib" - }, - "tests_file": "supabase-postgres/goss/goss.yaml", - "vars_file": "supabase-postgres/goss/vars.yaml", - "remote": { - "pod": { - "workload": "deploy-supabase-postgres" - } - } - } - } - ] - } - } -} diff --git a/.vib/supabase-realtime/goss/goss.yaml b/.vib/supabase-realtime/goss/goss.yaml deleted file mode 100644 index f51582c975208..0000000000000 --- a/.vib/supabase-realtime/goss/goss.yaml +++ /dev/null @@ -1,12 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -gossfile: - # Load scripts from .vib/common/goss/templates - # ../../common/goss/templates/check-app-version.yaml: {} - Disable due to mismatch version in the upstream release https://github.com/supabase/realtime/releases/tag/v2.22.3 - ../../common/goss/templates/check-binaries.yaml: {} - ../../common/goss/templates/check-broken-symlinks.yaml: {} - ../../common/goss/templates/check-ca-certs.yaml: {} - ../../common/goss/templates/check-linked-libraries.yaml: {} - ../../common/goss/templates/check-sed-in-place.yaml: {} - ../../common/goss/templates/check-spdx.yaml: {} diff --git a/.vib/supabase-realtime/goss/vars.yaml b/.vib/supabase-realtime/goss/vars.yaml deleted file mode 100644 index 6ded2aae701e4..0000000000000 --- a/.vib/supabase-realtime/goss/vars.yaml +++ /dev/null @@ -1,7 +0,0 @@ -binaries: - - server - - realtime -root_dir: /opt/bitnami -version: - bin_name: realtime - flag: version diff --git a/.vib/supabase-realtime/vib-verify.json b/.vib/supabase-realtime/vib-verify.json deleted file mode 100644 index 4e398621b4710..0000000000000 --- a/.vib/supabase-realtime/vib-verify.json +++ /dev/null @@ -1,72 +0,0 @@ -{ - "context": { - "resources": { - "url": "{SHA_ARCHIVE}", - "path": "{VIB_ENV_PATH}" - }, - "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd" - }, - "phases": { - "package": { - "actions": [ - { - "action_id": "container-image-package", - "params": { - "application": { - "details": { - "name": "{VIB_ENV_CONTAINER}", - "tag": "{VIB_ENV_TAG}" - } - }, - "architectures": [ - "linux/amd64" - ] - } - }, - { - "action_id": "container-image-lint", - "params": { - "threshold": "error" - } - } - ] - }, - "verify": { - "actions": [ - { - "action_id": "trivy", - "params": { - "threshold": "LOW", - "vuln_type": [ - "OS" - ] - } - }, - { - "action_id": "grype", - "params": { - "threshold": "CRITICAL", - "package_type": [ - "OS" - ] - } - }, - { - "action_id": "goss", - "params": { - "resources": { - "path": "/.vib" - }, - "tests_file": "supabase-realtime/goss/goss.yaml", - "vars_file": "supabase-realtime/goss/vars.yaml", - "remote": { - "pod": { - "workload": "deploy-supabase-realtime" - } - } - } - } - ] - } - } -} diff --git a/.vib/supabase-storage/goss/goss.yaml b/.vib/supabase-storage/goss/goss.yaml deleted file mode 100644 index 5ba77869836fc..0000000000000 --- a/.vib/supabase-storage/goss/goss.yaml +++ /dev/null @@ -1,15 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -gossfile: - # Goss tests exclusive to the current container - ../../supabase-storage/goss/supabase-storage.yaml: {} - # Load scripts from .vib/common/goss/templates - ../../common/goss/templates/check-binaries.yaml: {} - ../../common/goss/templates/check-broken-symlinks.yaml: {} - ../../common/goss/templates/check-ca-certs.yaml: {} - ../../common/goss/templates/check-directories.yaml: {} - ../../common/goss/templates/check-files.yaml: {} - ../../common/goss/templates/check-linked-libraries.yaml: {} - ../../common/goss/templates/check-sed-in-place.yaml: {} - ../../common/goss/templates/check-spdx.yaml: {} diff --git a/.vib/supabase-storage/goss/supabase-storage.yaml b/.vib/supabase-storage/goss/supabase-storage.yaml deleted file mode 100644 index f1fffe98aa3f7..0000000000000 --- a/.vib/supabase-storage/goss/supabase-storage.yaml +++ /dev/null @@ -1,9 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -command: - list-run-operations: - exec: cd /opt/bitnami/supabase-storage; npm run - exit-status: 0 - stdout: - - /node.*server.js/ diff --git a/.vib/supabase-storage/goss/vars.yaml b/.vib/supabase-storage/goss/vars.yaml deleted file mode 100644 index aa92d61ca4f43..0000000000000 --- a/.vib/supabase-storage/goss/vars.yaml +++ /dev/null @@ -1,16 +0,0 @@ -binaries: - - node - - npm - - pm2-runtime -directories: - - paths: - - /opt/bitnami/supabase-storage/dist - - /opt/bitnami/supabase-storage/migrations - - /opt/bitnami/supabase-storage/node_modules -files: - - paths: - - /opt/bitnami/supabase-storage/package.json -root_dir: /opt/bitnami -sed_in_place: - exclude_paths: - - /opt/bitnami/supabase-storage/node_modules/ diff --git a/.vib/supabase-storage/vib-verify.json b/.vib/supabase-storage/vib-verify.json deleted file mode 100644 index cd9d51363a77e..0000000000000 --- a/.vib/supabase-storage/vib-verify.json +++ /dev/null @@ -1,72 +0,0 @@ -{ - "context": { - "resources": { - "url": "{SHA_ARCHIVE}", - "path": "{VIB_ENV_PATH}" - }, - "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd" - }, - "phases": { - "package": { - "actions": [ - { - "action_id": "container-image-package", - "params": { - "application": { - "details": { - "name": "{VIB_ENV_CONTAINER}", - "tag": "{VIB_ENV_TAG}" - } - }, - "architectures": [ - "linux/amd64" - ] - } - }, - { - "action_id": "container-image-lint", - "params": { - "threshold": "error" - } - } - ] - }, - "verify": { - "actions": [ - { - "action_id": "trivy", - "params": { - "threshold": "LOW", - "vuln_type": [ - "OS" - ] - } - }, - { - "action_id": "grype", - "params": { - "threshold": "CRITICAL", - "package_type": [ - "OS" - ] - } - }, - { - "action_id": "goss", - "params": { - "resources": { - "path": "/.vib" - }, - "tests_file": "supabase-storage/goss/goss.yaml", - "vars_file": "supabase-storage/goss/vars.yaml", - "remote": { - "pod": { - "workload": "deploy-supabase-storage" - } - } - } - } - ] - } - } -} diff --git a/.vib/supabase-studio/goss/goss.yaml b/.vib/supabase-studio/goss/goss.yaml deleted file mode 100644 index 58295a28dcb1e..0000000000000 --- a/.vib/supabase-studio/goss/goss.yaml +++ /dev/null @@ -1,15 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -gossfile: - # Goss tests exclusive to the current container - ../../supabase-studio/goss/supabase-studio.yaml: {} - # Load scripts from .vib/common/goss/templates - ../../common/goss/templates/check-binaries.yaml: {} - ../../common/goss/templates/check-broken-symlinks.yaml: {} - ../../common/goss/templates/check-ca-certs.yaml: {} - ../../common/goss/templates/check-directories.yaml: {} - ../../common/goss/templates/check-files.yaml: {} - ../../common/goss/templates/check-linked-libraries.yaml: {} - ../../common/goss/templates/check-sed-in-place.yaml: {} - ../../common/goss/templates/check-spdx.yaml: {} diff --git a/.vib/supabase-studio/goss/supabase-studio.yaml b/.vib/supabase-studio/goss/supabase-studio.yaml deleted file mode 100644 index d3c2b166a7fb1..0000000000000 --- a/.vib/supabase-studio/goss/supabase-studio.yaml +++ /dev/null @@ -1,10 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -command: - list-run-operations: - exec: cd /opt/bitnami/supabase/; timeout --preserve-status 5 /opt/bitnami/node/bin/node apps/studio/server.js || true - timeout: 8000 - exit-status: 0 - stdout: - - "Ready" diff --git a/.vib/supabase-studio/goss/vars.yaml b/.vib/supabase-studio/goss/vars.yaml deleted file mode 100644 index 37b694a3f5085..0000000000000 --- a/.vib/supabase-studio/goss/vars.yaml +++ /dev/null @@ -1,14 +0,0 @@ -binaries: - - node - - npm -directories: - - paths: - - /opt/bitnami/supabase/apps/studio/public - - /opt/bitnami/supabase/apps/studio/.next/static -files: - - paths: - - /opt/bitnami/supabase/package.json -root_dir: /opt/bitnami -sed_in_place: - exclude_paths: - - /opt/bitnami/supabase/node_modules/ diff --git a/.vib/supabase-studio/vib-verify.json b/.vib/supabase-studio/vib-verify.json deleted file mode 100644 index 4b620b633f8f6..0000000000000 --- a/.vib/supabase-studio/vib-verify.json +++ /dev/null @@ -1,72 +0,0 @@ -{ - "context": { - "resources": { - "url": "{SHA_ARCHIVE}", - "path": "{VIB_ENV_PATH}" - }, - "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd" - }, - "phases": { - "package": { - "actions": [ - { - "action_id": "container-image-package", - "params": { - "application": { - "details": { - "name": "{VIB_ENV_CONTAINER}", - "tag": "{VIB_ENV_TAG}" - } - }, - "architectures": [ - "linux/amd64" - ] - } - }, - { - "action_id": "container-image-lint", - "params": { - "threshold": "error" - } - } - ] - }, - "verify": { - "actions": [ - { - "action_id": "trivy", - "params": { - "threshold": "LOW", - "vuln_type": [ - "OS" - ] - } - }, - { - "action_id": "grype", - "params": { - "threshold": "CRITICAL", - "package_type": [ - "OS" - ] - } - }, - { - "action_id": "goss", - "params": { - "resources": { - "path": "/.vib" - }, - "tests_file": "supabase-studio/goss/goss.yaml", - "vars_file": "supabase-studio/goss/vars.yaml", - "remote": { - "pod": { - "workload": "deploy-supabase-studio" - } - } - } - } - ] - } - } -} diff --git a/bitnami/supabase-postgres-meta/0/debian-12/Dockerfile b/bitnami/supabase-postgres-meta/0/debian-12/Dockerfile deleted file mode 100644 index 657726e3bace6..0000000000000 --- a/bitnami/supabase-postgres-meta/0/debian-12/Dockerfile +++ /dev/null @@ -1,60 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -FROM docker.io/bitnami/minideb:bookworm - -ARG TARGETARCH - -LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ - org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ - org.opencontainers.image.created="2024-08-21T10:05:10Z" \ - org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ - org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/supabase-postgres-meta/README.md" \ - org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="0.84.0-debian-12-r0" \ - org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/supabase-postgres-meta" \ - org.opencontainers.image.title="supabase-postgres-meta" \ - org.opencontainers.image.vendor="Broadcom, Inc." \ - org.opencontainers.image.version="0.84.0" - -ENV HOME="/" \ - OS_ARCH="${TARGETARCH:-amd64}" \ - OS_FLAVOUR="debian-12" \ - OS_NAME="linux" - -COPY prebuildfs / -SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] -# Install required system packages and dependencies -RUN install_packages ca-certificates curl libbz2-1.0 libcom-err2 libcrypt1 libffi8 libgcc-s1 libgssapi-krb5-2 libk5crypto3 libkeyutils1 libkrb5-3 libkrb5support0 liblzma5 libncursesw6 libnsl2 libreadline8 libsqlite3-0 libssl3 libstdc++6 libtinfo6 libtirpc3 procps zlib1g -RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \ - COMPONENTS=( \ - "python-3.11.9-11-linux-${OS_ARCH}-debian-12" \ - "node-20.16.0-0-linux-${OS_ARCH}-debian-12" \ - "supabase-postgres-meta-0.84.0-0-linux-${OS_ARCH}-debian-12" \ - ) ; \ - for COMPONENT in "${COMPONENTS[@]}"; do \ - if [ ! -f "${COMPONENT}.tar.gz" ]; then \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz" -O ; \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz.sha256" -O ; \ - fi ; \ - sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ - tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' ; \ - rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ - done -RUN apt-get autoremove --purge -y curl && \ - apt-get update && apt-get upgrade -y && \ - apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives -RUN useradd -r -u 1001 -g root supabase-postgres-meta -RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true - -RUN mkdir /.npm && chmod g+rwX /.npm -ENV APP_VERSION="0.84.0" \ - BITNAMI_APP_NAME="supabase-postgres-meta" \ - PATH="/opt/bitnami/python/bin:/opt/bitnami/node/bin:/opt/bitnami/supabase-postgres-meta/node_modules/.bin/:$PATH" - -EXPOSE 3000 - -WORKDIR /opt/bitnami/supabase-postgres-meta -USER 1001 -ENTRYPOINT [ "/opt/bitnami/node/bin/npm" ] -CMD [ "run", "start" ] diff --git a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json deleted file mode 100644 index 290271cd63a6d..0000000000000 --- a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json +++ /dev/null @@ -1,20 +0,0 @@ -{ - "node": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "20.16.0-0" - }, - "python": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "3.11.9-11" - }, - "supabase-postgres-meta": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "0.84.0-0" - } -} \ No newline at end of file diff --git a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt b/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt deleted file mode 100644 index 76956b38e82c6..0000000000000 --- a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt +++ /dev/null @@ -1,2 +0,0 @@ -Bitnami containers ship with software bundles. You can find the licenses under: -/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt diff --git a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/usr/sbin/install_packages b/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/usr/sbin/install_packages deleted file mode 100755 index ccce248b2d141..0000000000000 --- a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/usr/sbin/install_packages +++ /dev/null @@ -1,27 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -eu - -n=0 -max=2 -export DEBIAN_FRONTEND=noninteractive - -until [ $n -gt $max ]; do - set +e - ( - apt-get update -qq && - apt-get install -y --no-install-recommends "$@" - ) - CODE=$? - set -e - if [ $CODE -eq 0 ]; then - break - fi - if [ $n -eq $max ]; then - exit $CODE - fi - echo "apt failed, retrying" - n=$(($n + 1)) -done -apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives diff --git a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/usr/sbin/run-script b/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/usr/sbin/run-script deleted file mode 100755 index 0e07c9038dfde..0000000000000 --- a/bitnami/supabase-postgres-meta/0/debian-12/prebuildfs/usr/sbin/run-script +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -u - -if [ $# -eq 0 ]; then - >&2 echo "No arguments provided" - exit 1 -fi - -script=$1 -exit_code="${2:-96}" -fail_if_not_present="${3:-n}" - -if test -f "$script"; then - sh $script - - if [ $? -ne 0 ]; then - exit $((exit_code)) - fi -elif [ "$fail_if_not_present" = "y" ]; then - >&2 echo "script not found: $script" - exit 127 -fi diff --git a/bitnami/supabase-postgres-meta/0/debian-12/tags-info.yaml b/bitnami/supabase-postgres-meta/0/debian-12/tags-info.yaml deleted file mode 100644 index 65218a64c947a..0000000000000 --- a/bitnami/supabase-postgres-meta/0/debian-12/tags-info.yaml +++ /dev/null @@ -1,5 +0,0 @@ -rolling-tags: -- "0" -- 0-debian-12 -- 0.84.0 -- latest diff --git a/bitnami/supabase-postgres-meta/README.md b/bitnami/supabase-postgres-meta/README.md deleted file mode 100644 index ebe09f1e3c8f1..0000000000000 --- a/bitnami/supabase-postgres-meta/README.md +++ /dev/null @@ -1,148 +0,0 @@ -# Bitnami package for Supabase postgres-meta - -## What is Supabase postgres-meta? - -> postgres-meta is a component of Supabase. Supabase is an open source implementation of Firebase. postgres-meta is a a scalable, light-weight object storage service. - -[Overview of Supabase postgres-meta](https://github.com/supabase/postgres-meta) -Trademarks: This software listing is packaged by Bitnami. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. - -## TL;DR - -```console -docker run -it --name supabase-postgres-meta bitnami/supabase-postgres-meta -``` - -## Why use Bitnami Images? - -* Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. -* With Bitnami images the latest bug fixes and features are available as soon as possible. -* Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. -* All our images are based on [**minideb**](https://github.com/bitnami/minideb) -a minimalist Debian based container image that gives you a small base container image and the familiarity of a leading Linux distribution- or **scratch** -an explicitly empty image-. -* All Bitnami images available in Docker Hub are signed with [Notation](https://notaryproject.dev/). [Check this post](https://blog.bitnami.com/2024/03/bitnami-packaged-containers-and-helm.html) to know how to verify the integrity of the images. -* Bitnami container images are released on a regular basis with the latest distribution packages available. - -Looking to use Supabase postgres-meta in production? Try [VMware Tanzu Application Catalog](https://bitnami.com/enterprise), the commercial edition of the Bitnami catalog. - -## Supported tags and respective `Dockerfile` links - -Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html). - -You can see the equivalence between the different tags by taking a look at the `tags-info.yaml` file present in the branch folder, i.e `bitnami/ASSET/BRANCH/DISTRO/tags-info.yaml`. - -Subscribe to project updates by watching the [bitnami/containers GitHub repo](https://github.com/bitnami/containers). - -## Get this image - -The recommended way to get the Bitnami Supabase postgres-meta Docker Image is to pull the prebuilt image from the [Docker Hub Registry](https://hub.docker.com/r/bitnami/supabase-postgres-meta). - -```console -docker pull bitnami/supabase-postgres-meta:latest -``` - -To use a specific version, you can pull a versioned tag. You can view the [list of available versions](https://hub.docker.com/r/bitnami/supabase-postgres-meta/tags/) in the Docker Hub Registry. - -```console -docker pull bitnami/supabase-postgres-meta:[TAG] -``` - -If you wish, you can also build the image yourself by cloning the repository, changing to the directory containing the Dockerfile and executing the `docker build` command. Remember to replace the `APP`, `VERSION` and `OPERATING-SYSTEM` path placeholders in the example command below with the correct values. - -```console -git clone https://github.com/bitnami/containers.git -cd bitnami/APP/VERSION/OPERATING-SYSTEM -docker build -t bitnami/APP:latest . -``` - -## Maintenance - -### Upgrade this image - -Bitnami provides up-to-date versions of Supabase postgres-meta, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. - -#### Step 1: Get the updated image - -```console -docker pull bitnami/supabase-postgres-meta:latest -``` - -#### Step 2: Remove the currently running container - -```console -docker rm -v supabase-postgres-meta -``` - -#### Step 3: Run the new image - -Re-create your container from the new image. - -```console -docker run --name supabase-postgres-meta bitnami/supabase-postgres-meta:latest -``` - -## Configuration - -### Environment variables - -#### Customizable environment variables - -| Name | Description | Default Value | -|-----------------------|------------------------|------------------| -| `PG_META_DB_HOST` | Database host | `localhost` | -| `PG_META_DB_PORT` | Database port number | `5432` | -| `PG_META_DB_NAME` | Database name | `postgres` | -| `PG_META_DB_USER` | Database user username | `supabase_admin` | -| `PG_META_DB_PASSWORD` | Database password | `nil` | -| `PG_META_DB_SSL_MODE` | Database SSL mode | `disable` | -| `PG_META_PORT` | Service Port | `9600` | - -#### Read-only environment variables - -| Name | Description | Value | -|---------------------------------------|----------------------------------------------------------|-----------------------------------------------------------------| -| `SUPABASE_POSTGRES_META_BASE_DIR` | Supabase-postgres-meta installation directory. | `${BITNAMI_ROOT_DIR}/supabase-postgres-meta` | -| `SUPABASE_POSTGRES_META_LOGS_DIR` | Directory where Supabase-postgres-meta logs are stored. | `${SUPABASE_POSTGRES_META_BASE_DIR}/logs` | -| `SUPABASE_POSTGRES_META_LOG_FILE` | Directory where Supabase-postgres-meta logs are stored. | `${SUPABASE_POSTGRES_META_LOGS_DIR}/supabase-postgres-meta.log` | -| `SUPABASE_POSTGRES_META_BIN_DIR` | Supabase-postgres-meta directory for binary executables. | `${SUPABASE_POSTGRES_META_BASE_DIR}/node_modules/.bin` | -| `SUPABASE_POSTGRES_META_DAEMON_USER` | postgrest system user. | `supabase` | -| `SUPABASE_POSTGRES_META_DAEMON_GROUP` | postgrest system group. | `supabase` | - -### Running commands - -To run commands inside this container you can use `docker run`, for example to execute `npm --help` you can follow the example below: - -```console -docker run --rm --name supabase-postgres-meta bitnami/supabase-postgres-meta:latest --help -``` - -Check the [official Supabase postgres-meta documentation](https://github.com/supabase/postgres-meta) for more information about how to use Supabase postgres-meta. - -## Notable Changes - -### Starting January 16, 2024 - -* The `docker-compose.yaml` file has been removed, as it was solely intended for internal testing purposes. - -## Contributing - -We'd love for you to contribute to this Docker image. You can request new features by creating an [issue](https://github.com/bitnami/containers/issues) or submitting a [pull request](https://github.com/bitnami/containers/pulls) with your contribution. - -## Issues - -If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/containers/issues/new/choose). For us to provide better support, be sure to fill the issue template. - -## License - -Copyright © 2024 Broadcom. The term "Broadcom" refers to Broadcom Inc. and/or its subsidiaries. - -Licensed under the Apache License, Version 2.0 (the "License"); -you may not use this file except in compliance with the License. -You may obtain a copy of the License at - - - -Unless required by applicable law or agreed to in writing, software -distributed under the License is distributed on an "AS IS" BASIS, -WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -See the License for the specific language governing permissions and -limitations under the License. diff --git a/bitnami/supabase-postgres/15/debian-12/Dockerfile b/bitnami/supabase-postgres/15/debian-12/Dockerfile deleted file mode 100644 index e7bf27784b825..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/Dockerfile +++ /dev/null @@ -1,72 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -FROM docker.io/bitnami/minideb:bookworm - -ARG EXTRA_LOCALES -ARG TARGETARCH -ARG WITH_ALL_LOCALES="no" - -LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ - org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ - org.opencontainers.image.created="2024-08-27T09:21:32Z" \ - org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ - org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/supabase-postgres/README.md" \ - org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="15.6.1-debian-12-r20" \ - org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/supabase-postgres" \ - org.opencontainers.image.title="supabase-postgres" \ - org.opencontainers.image.vendor="Broadcom, Inc." \ - org.opencontainers.image.version="15.6.1" - -ENV HOME="/" \ - OS_ARCH="${TARGETARCH:-amd64}" \ - OS_FLAVOUR="debian-12" \ - OS_NAME="linux" - -COPY prebuildfs / -SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] -# Install required system packages and dependencies -RUN install_packages ca-certificates curl libbrotli1 libbsd0 libbz2-1.0 libcom-err2 libcrypt1 libcurl4 libedit2 libevent-2.1-7 libffi8 libgcc-s1 libgmp10 libgnutls30 libgssapi-krb5-2 libhogweed6 libicu72 libidn2-0 libk5crypto3 libkeyutils1 libkrb5-3 libkrb5support0 libldap-2.5-0 liblz4-1 liblzma5 libmd0 libmecab2 libmsgpackc2 libncurses6 libnettle8 libnghttp2-14 libnorm1 libp11-kit0 libpcre3 libpgm-5.3-0 libpsl5 libreadline8 librtmp1 libsasl2-2 libsodium23 libsqlite3-0 libssh2-1 libssl3 libstdc++6 libtasn1-6 libtinfo6 libunistring2 libuuid1 libxml2 libxslt1.1 libzmq5 libzstd1 locales procps zlib1g -RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \ - COMPONENTS=( \ - "java-17.0.12-10-1-linux-${OS_ARCH}-debian-12" \ - "supabase-postgres-15.6.1-18-linux-${OS_ARCH}-debian-12" \ - ) ; \ - for COMPONENT in "${COMPONENTS[@]}"; do \ - if [ ! -f "${COMPONENT}.tar.gz" ]; then \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz" -O ; \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz.sha256" -O ; \ - fi ; \ - sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ - tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' ; \ - rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ - done -RUN apt-get update && apt-get upgrade -y && \ - apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives -RUN chmod g+rwX /opt/bitnami -RUN localedef -c -f UTF-8 -i en_US en_US.UTF-8 -RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true -RUN update-locale LANG=C.UTF-8 LC_MESSAGES=POSIX && \ - DEBIAN_FRONTEND=noninteractive dpkg-reconfigure locales -RUN echo 'en_US.UTF-8 UTF-8' >> /etc/locale.gen && locale-gen - -COPY rootfs / -RUN /opt/bitnami/scripts/postgresql/postunpack.sh -RUN /opt/bitnami/scripts/locales/add-extra-locales.sh -RUN cp /opt/bitnami/scripts/supabase-postgres/migrate.sh /docker-entrypoint-initdb.d && cp /opt/bitnami/scripts/supabase-postgres/pgsodium_getkey /opt/bitnami/postgresql/share/extension -ENV APP_VERSION="15.6.1" \ - BITNAMI_APP_NAME="supabase-postgres" \ - LANG="en_US.UTF-8" \ - LANGUAGE="en_US:en" \ - NSS_WRAPPER_LIB="/opt/bitnami/common/lib/libnss_wrapper.so" \ - PATH="/opt/bitnami/java/bin:/opt/bitnami/postgresql/bin:$PATH" \ - POSTGRESQL_SHARED_PRELOAD_LIBRARIES="pg_stat_statements, pg_stat_monitor, pgaudit, plpgsql, plpgsql_check, pg_cron, pg_net, pgsodium, timescaledb, auto_explain" - -VOLUME [ "/bitnami/postgresql", "/docker-entrypoint-initdb.d", "/docker-entrypoint-preinitdb.d" ] - -EXPOSE 5432 - -USER 1001 -ENTRYPOINT [ "/opt/bitnami/scripts/postgresql/entrypoint.sh" ] -CMD [ "/opt/bitnami/scripts/postgresql/run.sh" ] diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json deleted file mode 100644 index c6dfb09353a54..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json +++ /dev/null @@ -1,14 +0,0 @@ -{ - "java": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "17.0.12-10-1" - }, - "supabase-postgres": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "15.6.1-18" - } -} \ No newline at end of file diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt deleted file mode 100644 index 76956b38e82c6..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt +++ /dev/null @@ -1,2 +0,0 @@ -Bitnami containers ship with software bundles. You can find the licenses under: -/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libbitnami.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libbitnami.sh deleted file mode 100644 index d239f98535735..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libbitnami.sh +++ /dev/null @@ -1,54 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Bitnami custom library - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/liblog.sh - -# Constants -BOLD='\033[1m' - -# Functions - -######################## -# Print the welcome page -# Globals: -# DISABLE_WELCOME_MESSAGE -# BITNAMI_APP_NAME -# Arguments: -# None -# Returns: -# None -######################### -print_welcome_page() { - if [[ -z "${DISABLE_WELCOME_MESSAGE:-}" ]]; then - if [[ -n "$BITNAMI_APP_NAME" ]]; then - print_image_welcome_page - fi - fi -} - -######################## -# Print the welcome page for a Bitnami Docker image -# Globals: -# BITNAMI_APP_NAME -# Arguments: -# None -# Returns: -# None -######################### -print_image_welcome_page() { - local github_url="https://github.com/bitnami/containers" - - info "" - info "${BOLD}Welcome to the Bitnami ${BITNAMI_APP_NAME} container${RESET}" - info "Subscribe to project updates by watching ${BOLD}${github_url}${RESET}" - info "Submit issues and feature requests at ${BOLD}${github_url}/issues${RESET}" - info "Upgrade to Tanzu Application Catalog for production environments to access custom-configured and pre-packaged software components. Gain enhanced features, including Software Bill of Materials (SBOM), CVE scan result reports, and VEX documents. To learn more, visit ${BOLD}https://bitnami.com/enterprise${RESET}" - info "" -} - diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libfile.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libfile.sh deleted file mode 100644 index 1c69e0e48a5d0..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libfile.sh +++ /dev/null @@ -1,141 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for managing files - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/libos.sh - -# Functions - -######################## -# Replace a regex-matching string in a file -# Arguments: -# $1 - filename -# $2 - match regex -# $3 - substitute regex -# $4 - use POSIX regex. Default: true -# Returns: -# None -######################### -replace_in_file() { - local filename="${1:?filename is required}" - local match_regex="${2:?match regex is required}" - local substitute_regex="${3:?substitute regex is required}" - local posix_regex=${4:-true} - - local result - - # We should avoid using 'sed in-place' substitutions - # 1) They are not compatible with files mounted from ConfigMap(s) - # 2) We found incompatibility issues with Debian10 and "in-place" substitutions - local -r del=$'\001' # Use a non-printable character as a 'sed' delimiter to avoid issues - if [[ $posix_regex = true ]]; then - result="$(sed -E "s${del}${match_regex}${del}${substitute_regex}${del}g" "$filename")" - else - result="$(sed "s${del}${match_regex}${del}${substitute_regex}${del}g" "$filename")" - fi - echo "$result" > "$filename" -} - -######################## -# Replace a regex-matching multiline string in a file -# Arguments: -# $1 - filename -# $2 - match regex -# $3 - substitute regex -# Returns: -# None -######################### -replace_in_file_multiline() { - local filename="${1:?filename is required}" - local match_regex="${2:?match regex is required}" - local substitute_regex="${3:?substitute regex is required}" - - local result - local -r del=$'\001' # Use a non-printable character as a 'sed' delimiter to avoid issues - result="$(perl -pe "BEGIN{undef $/;} s${del}${match_regex}${del}${substitute_regex}${del}sg" "$filename")" - echo "$result" > "$filename" -} - -######################## -# Remove a line in a file based on a regex -# Arguments: -# $1 - filename -# $2 - match regex -# $3 - use POSIX regex. Default: true -# Returns: -# None -######################### -remove_in_file() { - local filename="${1:?filename is required}" - local match_regex="${2:?match regex is required}" - local posix_regex=${3:-true} - local result - - # We should avoid using 'sed in-place' substitutions - # 1) They are not compatible with files mounted from ConfigMap(s) - # 2) We found incompatibility issues with Debian10 and "in-place" substitutions - if [[ $posix_regex = true ]]; then - result="$(sed -E "/$match_regex/d" "$filename")" - else - result="$(sed "/$match_regex/d" "$filename")" - fi - echo "$result" > "$filename" -} - -######################## -# Appends text after the last line matching a pattern -# Arguments: -# $1 - file -# $2 - match regex -# $3 - contents to add -# Returns: -# None -######################### -append_file_after_last_match() { - local file="${1:?missing file}" - local match_regex="${2:?missing pattern}" - local value="${3:?missing value}" - - # We read the file in reverse, replace the first match (0,/pattern/s) and then reverse the results again - result="$(tac "$file" | sed -E "0,/($match_regex)/s||${value}\n\1|" | tac)" - echo "$result" > "$file" -} - -######################## -# Wait until certain entry is present in a log file -# Arguments: -# $1 - entry to look for -# $2 - log file -# $3 - max retries. Default: 12 -# $4 - sleep between retries (in seconds). Default: 5 -# Returns: -# Boolean -######################### -wait_for_log_entry() { - local -r entry="${1:-missing entry}" - local -r log_file="${2:-missing log file}" - local -r retries="${3:-12}" - local -r interval_time="${4:-5}" - local attempt=0 - - check_log_file_for_entry() { - if ! grep -qE "$entry" "$log_file"; then - debug "Entry \"${entry}\" still not present in ${log_file} (attempt $((++attempt))/${retries})" - return 1 - fi - } - debug "Checking that ${log_file} log file contains entry \"${entry}\"" - if retry_while check_log_file_for_entry "$retries" "$interval_time"; then - debug "Found entry \"${entry}\" in ${log_file}" - true - else - error "Could not find entry \"${entry}\" in ${log_file} after ${retries} retries" - debug_execute cat "$log_file" - return 1 - fi -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libfs.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libfs.sh deleted file mode 100644 index 970d624179642..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libfs.sh +++ /dev/null @@ -1,193 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for file system actions - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/liblog.sh - -# Functions - -######################## -# Ensure a file/directory is owned (user and group) but the given user -# Arguments: -# $1 - filepath -# $2 - owner -# Returns: -# None -######################### -owned_by() { - local path="${1:?path is missing}" - local owner="${2:?owner is missing}" - local group="${3:-}" - - if [[ -n $group ]]; then - chown "$owner":"$group" "$path" - else - chown "$owner":"$owner" "$path" - fi -} - -######################## -# Ensure a directory exists and, optionally, is owned by the given user -# Arguments: -# $1 - directory -# $2 - owner -# Returns: -# None -######################### -ensure_dir_exists() { - local dir="${1:?directory is missing}" - local owner_user="${2:-}" - local owner_group="${3:-}" - - [ -d "${dir}" ] || mkdir -p "${dir}" - if [[ -n $owner_user ]]; then - owned_by "$dir" "$owner_user" "$owner_group" - fi -} - -######################## -# Checks whether a directory is empty or not -# arguments: -# $1 - directory -# returns: -# boolean -######################### -is_dir_empty() { - local -r path="${1:?missing directory}" - # Calculate real path in order to avoid issues with symlinks - local -r dir="$(realpath "$path")" - if [[ ! -e "$dir" ]] || [[ -z "$(ls -A "$dir")" ]]; then - true - else - false - fi -} - -######################## -# Checks whether a mounted directory is empty or not -# arguments: -# $1 - directory -# returns: -# boolean -######################### -is_mounted_dir_empty() { - local dir="${1:?missing directory}" - - if is_dir_empty "$dir" || find "$dir" -mindepth 1 -maxdepth 1 -not -name ".snapshot" -not -name "lost+found" -exec false {} +; then - true - else - false - fi -} - -######################## -# Checks whether a file can be written to or not -# arguments: -# $1 - file -# returns: -# boolean -######################### -is_file_writable() { - local file="${1:?missing file}" - local dir - dir="$(dirname "$file")" - - if [[ (-f "$file" && -w "$file") || (! -f "$file" && -d "$dir" && -w "$dir") ]]; then - true - else - false - fi -} - -######################## -# Relativize a path -# arguments: -# $1 - path -# $2 - base -# returns: -# None -######################### -relativize() { - local -r path="${1:?missing path}" - local -r base="${2:?missing base}" - pushd "$base" >/dev/null || exit - realpath -q --no-symlinks --relative-base="$base" "$path" | sed -e 's|^/$|.|' -e 's|^/||' - popd >/dev/null || exit -} - -######################## -# Configure permisions and ownership recursively -# Globals: -# None -# Arguments: -# $1 - paths (as a string). -# Flags: -# -f|--file-mode - mode for directories. -# -d|--dir-mode - mode for files. -# -u|--user - user -# -g|--group - group -# Returns: -# None -######################### -configure_permissions_ownership() { - local -r paths="${1:?paths is missing}" - local dir_mode="" - local file_mode="" - local user="" - local group="" - - # Validate arguments - shift 1 - while [ "$#" -gt 0 ]; do - case "$1" in - -f | --file-mode) - shift - file_mode="${1:?missing mode for files}" - ;; - -d | --dir-mode) - shift - dir_mode="${1:?missing mode for directories}" - ;; - -u | --user) - shift - user="${1:?missing user}" - ;; - -g | --group) - shift - group="${1:?missing group}" - ;; - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - - read -r -a filepaths <<<"$paths" - for p in "${filepaths[@]}"; do - if [[ -e "$p" ]]; then - find -L "$p" -printf "" - if [[ -n $dir_mode ]]; then - find -L "$p" -type d ! -perm "$dir_mode" -print0 | xargs -r -0 chmod "$dir_mode" - fi - if [[ -n $file_mode ]]; then - find -L "$p" -type f ! -perm "$file_mode" -print0 | xargs -r -0 chmod "$file_mode" - fi - if [[ -n $user ]] && [[ -n $group ]]; then - find -L "$p" -print0 | xargs -r -0 chown "${user}:${group}" - elif [[ -n $user ]] && [[ -z $group ]]; then - find -L "$p" -print0 | xargs -r -0 chown "${user}" - elif [[ -z $user ]] && [[ -n $group ]]; then - find -L "$p" -print0 | xargs -r -0 chgrp "${group}" - fi - else - stderr_print "$p does not exist" - fi - done -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libhook.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libhook.sh deleted file mode 100644 index f3a5fe7868eed..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libhook.sh +++ /dev/null @@ -1,18 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library to use for scripts expected to be used as Kubernetes lifecycle hooks - -# shellcheck disable=SC1091 - -# Load generic libraries -. /opt/bitnami/scripts/liblog.sh -. /opt/bitnami/scripts/libos.sh - -# Override functions that log to stdout/stderr of the current process, so they print to process 1 -for function_to_override in stderr_print debug_execute; do - # Output is sent to output of process 1 and thus end up in the container log - # The hook output in general isn't saved - eval "$(declare -f "$function_to_override") >/proc/1/fd/1 2>/proc/1/fd/2" -done diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/liblog.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/liblog.sh deleted file mode 100644 index 450f05bd823ff..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/liblog.sh +++ /dev/null @@ -1,114 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for logging functions - -# Constants -RESET='\033[0m' -RED='\033[38;5;1m' -GREEN='\033[38;5;2m' -YELLOW='\033[38;5;3m' -MAGENTA='\033[38;5;5m' -CYAN='\033[38;5;6m' - -# Functions - -######################## -# Print to STDERR -# Arguments: -# Message to print -# Returns: -# None -######################### -stderr_print() { - # 'is_boolean_yes' is defined in libvalidations.sh, but depends on this file so we cannot source it - local bool="${BITNAMI_QUIET:-false}" - # comparison is performed without regard to the case of alphabetic characters - shopt -s nocasematch - if ! [[ "$bool" = 1 || "$bool" =~ ^(yes|true)$ ]]; then - printf "%b\\n" "${*}" >&2 - fi -} - -######################## -# Log message -# Arguments: -# Message to log -# Returns: -# None -######################### -log() { - stderr_print "${CYAN}${MODULE:-} ${MAGENTA}$(date "+%T.%2N ")${RESET}${*}" -} -######################## -# Log an 'info' message -# Arguments: -# Message to log -# Returns: -# None -######################### -info() { - log "${GREEN}INFO ${RESET} ==> ${*}" -} -######################## -# Log message -# Arguments: -# Message to log -# Returns: -# None -######################### -warn() { - log "${YELLOW}WARN ${RESET} ==> ${*}" -} -######################## -# Log an 'error' message -# Arguments: -# Message to log -# Returns: -# None -######################### -error() { - log "${RED}ERROR${RESET} ==> ${*}" -} -######################## -# Log a 'debug' message -# Globals: -# BITNAMI_DEBUG -# Arguments: -# None -# Returns: -# None -######################### -debug() { - # 'is_boolean_yes' is defined in libvalidations.sh, but depends on this file so we cannot source it - local bool="${BITNAMI_DEBUG:-false}" - # comparison is performed without regard to the case of alphabetic characters - shopt -s nocasematch - if [[ "$bool" = 1 || "$bool" =~ ^(yes|true)$ ]]; then - log "${MAGENTA}DEBUG${RESET} ==> ${*}" - fi -} - -######################## -# Indent a string -# Arguments: -# $1 - string -# $2 - number of indentation characters (default: 4) -# $3 - indentation character (default: " ") -# Returns: -# None -######################### -indent() { - local string="${1:-}" - local num="${2:?missing num}" - local char="${3:-" "}" - # Build the indentation unit string - local indent_unit="" - for ((i = 0; i < num; i++)); do - indent_unit="${indent_unit}${char}" - done - # shellcheck disable=SC2001 - # Complex regex, see https://github.com/koalaman/shellcheck/wiki/SC2001#exceptions - echo "$string" | sed "s/^/${indent_unit}/" -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libnet.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libnet.sh deleted file mode 100644 index 004e426fba178..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libnet.sh +++ /dev/null @@ -1,171 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for network functions - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/liblog.sh -. /opt/bitnami/scripts/libvalidations.sh - -# Functions - -######################## -# Resolve IP address for a host/domain (i.e. DNS lookup) -# Arguments: -# $1 - Hostname to resolve -# $2 - IP address version (v4, v6), leave empty for resolving to any version -# Returns: -# IP -######################### -dns_lookup() { - local host="${1:?host is missing}" - local ip_version="${2:-}" - getent "ahosts${ip_version}" "$host" | awk '/STREAM/ {print $1 }' | head -n 1 -} - -######################### -# Wait for a hostname and return the IP -# Arguments: -# $1 - hostname -# $2 - number of retries -# $3 - seconds to wait between retries -# Returns: -# - IP address that corresponds to the hostname -######################### -wait_for_dns_lookup() { - local hostname="${1:?hostname is missing}" - local retries="${2:-5}" - local seconds="${3:-1}" - check_host() { - if [[ $(dns_lookup "$hostname") == "" ]]; then - false - else - true - fi - } - # Wait for the host to be ready - retry_while "check_host ${hostname}" "$retries" "$seconds" - dns_lookup "$hostname" -} - -######################## -# Get machine's IP -# Arguments: -# None -# Returns: -# Machine IP -######################### -get_machine_ip() { - local -a ip_addresses - local hostname - hostname="$(hostname)" - read -r -a ip_addresses <<< "$(dns_lookup "$hostname" | xargs echo)" - if [[ "${#ip_addresses[@]}" -gt 1 ]]; then - warn "Found more than one IP address associated to hostname ${hostname}: ${ip_addresses[*]}, will use ${ip_addresses[0]}" - elif [[ "${#ip_addresses[@]}" -lt 1 ]]; then - error "Could not find any IP address associated to hostname ${hostname}" - exit 1 - fi - # Check if the first IP address is IPv6 to add brackets - if validate_ipv6 "${ip_addresses[0]}" ; then - echo "[${ip_addresses[0]}]" - else - echo "${ip_addresses[0]}" - fi -} - -######################## -# Check if the provided argument is a resolved hostname -# Arguments: -# $1 - Value to check -# Returns: -# Boolean -######################### -is_hostname_resolved() { - local -r host="${1:?missing value}" - if [[ -n "$(dns_lookup "$host")" ]]; then - true - else - false - fi -} - -######################## -# Parse URL -# Globals: -# None -# Arguments: -# $1 - uri - String -# $2 - component to obtain. Valid options (scheme, authority, userinfo, host, port, path, query or fragment) - String -# Returns: -# String -parse_uri() { - local uri="${1:?uri is missing}" - local component="${2:?component is missing}" - - # Solution based on https://tools.ietf.org/html/rfc3986#appendix-B with - # additional sub-expressions to split authority into userinfo, host and port - # Credits to Patryk Obara (see https://stackoverflow.com/a/45977232/6694969) - local -r URI_REGEX='^(([^:/?#]+):)?(//((([^@/?#]+)@)?([^:/?#]+)(:([0-9]+))?))?(/([^?#]*))?(\?([^#]*))?(#(.*))?' - # || | ||| | | | | | | | | | - # |2 scheme | ||6 userinfo 7 host | 9 port | 11 rpath | 13 query | 15 fragment - # 1 scheme: | |5 userinfo@ 8 :... 10 path 12 ?... 14 #... - # | 4 authority - # 3 //... - local index=0 - case "$component" in - scheme) - index=2 - ;; - authority) - index=4 - ;; - userinfo) - index=6 - ;; - host) - index=7 - ;; - port) - index=9 - ;; - path) - index=10 - ;; - query) - index=13 - ;; - fragment) - index=14 - ;; - *) - stderr_print "unrecognized component $component" - return 1 - ;; - esac - [[ "$uri" =~ $URI_REGEX ]] && echo "${BASH_REMATCH[${index}]}" -} - -######################## -# Wait for a HTTP connection to succeed -# Globals: -# * -# Arguments: -# $1 - URL to wait for -# $2 - Maximum amount of retries (optional) -# $3 - Time between retries (optional) -# Returns: -# true if the HTTP connection succeeded, false otherwise -######################### -wait_for_http_connection() { - local url="${1:?missing url}" - local retries="${2:-}" - local sleep_time="${3:-}" - if ! retry_while "debug_execute curl --silent ${url}" "$retries" "$sleep_time"; then - error "Could not connect to ${url}" - return 1 - fi -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libos.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libos.sh deleted file mode 100644 index 9d908c48579b9..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libos.sh +++ /dev/null @@ -1,657 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for operating system actions - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/liblog.sh -. /opt/bitnami/scripts/libfs.sh -. /opt/bitnami/scripts/libvalidations.sh - -# Functions - -######################## -# Check if an user exists in the system -# Arguments: -# $1 - user -# Returns: -# Boolean -######################### -user_exists() { - local user="${1:?user is missing}" - id "$user" >/dev/null 2>&1 -} - -######################## -# Check if a group exists in the system -# Arguments: -# $1 - group -# Returns: -# Boolean -######################### -group_exists() { - local group="${1:?group is missing}" - getent group "$group" >/dev/null 2>&1 -} - -######################## -# Create a group in the system if it does not exist already -# Arguments: -# $1 - group -# Flags: -# -i|--gid - the ID for the new group -# -s|--system - Whether to create new user as system user (uid <= 999) -# Returns: -# None -######################### -ensure_group_exists() { - local group="${1:?group is missing}" - local gid="" - local is_system_user=false - - # Validate arguments - shift 1 - while [ "$#" -gt 0 ]; do - case "$1" in - -i | --gid) - shift - gid="${1:?missing gid}" - ;; - -s | --system) - is_system_user=true - ;; - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - - if ! group_exists "$group"; then - local -a args=("$group") - if [[ -n "$gid" ]]; then - if group_exists "$gid"; then - error "The GID $gid is already in use." >&2 - return 1 - fi - args+=("--gid" "$gid") - fi - $is_system_user && args+=("--system") - groupadd "${args[@]}" >/dev/null 2>&1 - fi -} - -######################## -# Create an user in the system if it does not exist already -# Arguments: -# $1 - user -# Flags: -# -i|--uid - the ID for the new user -# -g|--group - the group the new user should belong to -# -a|--append-groups - comma-separated list of supplemental groups to append to the new user -# -h|--home - the home directory for the new user -# -s|--system - whether to create new user as system user (uid <= 999) -# Returns: -# None -######################### -ensure_user_exists() { - local user="${1:?user is missing}" - local uid="" - local group="" - local append_groups="" - local home="" - local is_system_user=false - - # Validate arguments - shift 1 - while [ "$#" -gt 0 ]; do - case "$1" in - -i | --uid) - shift - uid="${1:?missing uid}" - ;; - -g | --group) - shift - group="${1:?missing group}" - ;; - -a | --append-groups) - shift - append_groups="${1:?missing append_groups}" - ;; - -h | --home) - shift - home="${1:?missing home directory}" - ;; - -s | --system) - is_system_user=true - ;; - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - - if ! user_exists "$user"; then - local -a user_args=("-N" "$user") - if [[ -n "$uid" ]]; then - if user_exists "$uid"; then - error "The UID $uid is already in use." - return 1 - fi - user_args+=("--uid" "$uid") - else - $is_system_user && user_args+=("--system") - fi - useradd "${user_args[@]}" >/dev/null 2>&1 - fi - - if [[ -n "$group" ]]; then - local -a group_args=("$group") - $is_system_user && group_args+=("--system") - ensure_group_exists "${group_args[@]}" - usermod -g "$group" "$user" >/dev/null 2>&1 - fi - - if [[ -n "$append_groups" ]]; then - local -a groups - read -ra groups <<<"$(tr ',;' ' ' <<<"$append_groups")" - for group in "${groups[@]}"; do - ensure_group_exists "$group" - usermod -aG "$group" "$user" >/dev/null 2>&1 - done - fi - - if [[ -n "$home" ]]; then - mkdir -p "$home" - usermod -d "$home" "$user" >/dev/null 2>&1 - configure_permissions_ownership "$home" -d "775" -f "664" -u "$user" -g "$group" - fi -} - -######################## -# Check if the script is currently running as root -# Arguments: -# $1 - user -# $2 - group -# Returns: -# Boolean -######################### -am_i_root() { - if [[ "$(id -u)" = "0" ]]; then - true - else - false - fi -} - -######################## -# Print OS metadata -# Arguments: -# $1 - Flag name -# Flags: -# --id - Distro ID -# --version - Distro version -# --branch - Distro branch -# --codename - Distro codename -# --name - Distro name -# --pretty-name - Distro pretty name -# Returns: -# String -######################### -get_os_metadata() { - local -r flag_name="${1:?missing flag}" - # Helper function - get_os_release_metadata() { - local -r env_name="${1:?missing environment variable name}" - ( - . /etc/os-release - echo "${!env_name}" - ) - } - case "$flag_name" in - --id) - get_os_release_metadata ID - ;; - --version) - get_os_release_metadata VERSION_ID - ;; - --branch) - get_os_release_metadata VERSION_ID | sed 's/\..*//' - ;; - --codename) - get_os_release_metadata VERSION_CODENAME - ;; - --name) - get_os_release_metadata NAME - ;; - --pretty-name) - get_os_release_metadata PRETTY_NAME - ;; - *) - error "Unknown flag ${flag_name}" - return 1 - ;; - esac -} - -######################## -# Get total memory available -# Arguments: -# None -# Returns: -# Memory in bytes -######################### -get_total_memory() { - echo $(($(grep MemTotal /proc/meminfo | awk '{print $2}') / 1024)) -} - -######################## -# Get machine size depending on specified memory -# Globals: -# None -# Arguments: -# None -# Flags: -# --memory - memory size (optional) -# Returns: -# Detected instance size -######################### -get_machine_size() { - local memory="" - # Validate arguments - while [[ "$#" -gt 0 ]]; do - case "$1" in - --memory) - shift - memory="${1:?missing memory}" - ;; - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - if [[ -z "$memory" ]]; then - debug "Memory was not specified, detecting available memory automatically" - memory="$(get_total_memory)" - fi - sanitized_memory=$(convert_to_mb "$memory") - if [[ "$sanitized_memory" -gt 26000 ]]; then - echo 2xlarge - elif [[ "$sanitized_memory" -gt 13000 ]]; then - echo xlarge - elif [[ "$sanitized_memory" -gt 6000 ]]; then - echo large - elif [[ "$sanitized_memory" -gt 3000 ]]; then - echo medium - elif [[ "$sanitized_memory" -gt 1500 ]]; then - echo small - else - echo micro - fi -} - -######################## -# Get machine size depending on specified memory -# Globals: -# None -# Arguments: -# $1 - memory size (optional) -# Returns: -# Detected instance size -######################### -get_supported_machine_sizes() { - echo micro small medium large xlarge 2xlarge -} - -######################## -# Convert memory size from string to amount of megabytes (i.e. 2G -> 2048) -# Globals: -# None -# Arguments: -# $1 - memory size -# Returns: -# Result of the conversion -######################### -convert_to_mb() { - local amount="${1:-}" - if [[ $amount =~ ^([0-9]+)(m|M|g|G) ]]; then - size="${BASH_REMATCH[1]}" - unit="${BASH_REMATCH[2]}" - if [[ "$unit" = "g" || "$unit" = "G" ]]; then - amount="$((size * 1024))" - else - amount="$size" - fi - fi - echo "$amount" -} - -######################### -# Redirects output to /dev/null if debug mode is disabled -# Globals: -# BITNAMI_DEBUG -# Arguments: -# $@ - Command to execute -# Returns: -# None -######################### -debug_execute() { - if is_boolean_yes "${BITNAMI_DEBUG:-false}"; then - "$@" - else - "$@" >/dev/null 2>&1 - fi -} - -######################## -# Retries a command a given number of times -# Arguments: -# $1 - cmd (as a string) -# $2 - max retries. Default: 12 -# $3 - sleep between retries (in seconds). Default: 5 -# Returns: -# Boolean -######################### -retry_while() { - local cmd="${1:?cmd is missing}" - local retries="${2:-12}" - local sleep_time="${3:-5}" - local return_value=1 - - read -r -a command <<<"$cmd" - for ((i = 1; i <= retries; i += 1)); do - "${command[@]}" && return_value=0 && break - sleep "$sleep_time" - done - return $return_value -} - -######################## -# Generate a random string -# Arguments: -# -t|--type - String type (ascii, alphanumeric, numeric), defaults to ascii -# -c|--count - Number of characters, defaults to 32 -# Arguments: -# None -# Returns: -# None -# Returns: -# String -######################### -generate_random_string() { - local type="ascii" - local count="32" - local filter - local result - # Validate arguments - while [[ "$#" -gt 0 ]]; do - case "$1" in - -t | --type) - shift - type="$1" - ;; - -c | --count) - shift - count="$1" - ;; - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - # Validate type - case "$type" in - ascii) - filter="[:print:]" - ;; - numeric) - filter="0-9" - ;; - alphanumeric) - filter="a-zA-Z0-9" - ;; - alphanumeric+special|special+alphanumeric) - # Limit variety of special characters, so there is a higher chance of containing more alphanumeric characters - # Special characters are harder to write, and it could impact the overall UX if most passwords are too complex - filter='a-zA-Z0-9:@.,/+!=' - ;; - *) - echo "Invalid type ${type}" >&2 - return 1 - ;; - esac - # Obtain count + 10 lines from /dev/urandom to ensure that the resulting string has the expected size - # Note there is a very small chance of strings starting with EOL character - # Therefore, the higher amount of lines read, this will happen less frequently - result="$(head -n "$((count + 10))" /dev/urandom | tr -dc "$filter" | head -c "$count")" - echo "$result" -} - -######################## -# Create md5 hash from a string -# Arguments: -# $1 - string -# Returns: -# md5 hash - string -######################### -generate_md5_hash() { - local -r str="${1:?missing input string}" - echo -n "$str" | md5sum | awk '{print $1}' -} - -######################## -# Create sha1 hash from a string -# Arguments: -# $1 - string -# $2 - algorithm - 1 (default), 224, 256, 384, 512 -# Returns: -# sha1 hash - string -######################### -generate_sha_hash() { - local -r str="${1:?missing input string}" - local -r algorithm="${2:-1}" - echo -n "$str" | "sha${algorithm}sum" | awk '{print $1}' -} - -######################## -# Converts a string to its hexadecimal representation -# Arguments: -# $1 - string -# Returns: -# hexadecimal representation of the string -######################### -convert_to_hex() { - local -r str=${1:?missing input string} - local -i iterator - local char - for ((iterator = 0; iterator < ${#str}; iterator++)); do - char=${str:iterator:1} - printf '%x' "'${char}" - done -} - -######################## -# Get boot time -# Globals: -# None -# Arguments: -# None -# Returns: -# Boot time metadata -######################### -get_boot_time() { - stat /proc --format=%Y -} - -######################## -# Get machine ID -# Globals: -# None -# Arguments: -# None -# Returns: -# Machine ID -######################### -get_machine_id() { - local machine_id - if [[ -f /etc/machine-id ]]; then - machine_id="$(cat /etc/machine-id)" - fi - if [[ -z "$machine_id" ]]; then - # Fallback to the boot-time, which will at least ensure a unique ID in the current session - machine_id="$(get_boot_time)" - fi - echo "$machine_id" -} - -######################## -# Get the root partition's disk device ID (e.g. /dev/sda1) -# Globals: -# None -# Arguments: -# None -# Returns: -# Root partition disk ID -######################### -get_disk_device_id() { - local device_id="" - if grep -q ^/dev /proc/mounts; then - device_id="$(grep ^/dev /proc/mounts | awk '$2 == "/" { print $1 }' | tail -1)" - fi - # If it could not be autodetected, fallback to /dev/sda1 as a default - if [[ -z "$device_id" || ! -b "$device_id" ]]; then - device_id="/dev/sda1" - fi - echo "$device_id" -} - -######################## -# Get the root disk device ID (e.g. /dev/sda) -# Globals: -# None -# Arguments: -# None -# Returns: -# Root disk ID -######################### -get_root_disk_device_id() { - get_disk_device_id | sed -E 's/p?[0-9]+$//' -} - -######################## -# Get the root disk size in bytes -# Globals: -# None -# Arguments: -# None -# Returns: -# Root disk size in bytes -######################### -get_root_disk_size() { - fdisk -l "$(get_root_disk_device_id)" | grep 'Disk.*bytes' | sed -E 's/.*, ([0-9]+) bytes,.*/\1/' || true -} - -######################## -# Run command as a specific user and group (optional) -# Arguments: -# $1 - USER(:GROUP) to switch to -# $2..$n - command to execute -# Returns: -# Exit code of the specified command -######################### -run_as_user() { - run_chroot "$@" -} - -######################## -# Execute command as a specific user and group (optional), -# replacing the current process image -# Arguments: -# $1 - USER(:GROUP) to switch to -# $2..$n - command to execute -# Returns: -# Exit code of the specified command -######################### -exec_as_user() { - run_chroot --replace-process "$@" -} - -######################## -# Run a command using chroot -# Arguments: -# $1 - USER(:GROUP) to switch to -# $2..$n - command to execute -# Flags: -# -r | --replace-process - Replace the current process image (optional) -# Returns: -# Exit code of the specified command -######################### -run_chroot() { - local userspec - local user - local homedir - local replace=false - local -r cwd="$(pwd)" - - # Parse and validate flags - while [[ "$#" -gt 0 ]]; do - case "$1" in - -r | --replace-process) - replace=true - ;; - --) - shift - break - ;; - -*) - stderr_print "unrecognized flag $1" - return 1 - ;; - *) - break - ;; - esac - shift - done - - # Parse and validate arguments - if [[ "$#" -lt 2 ]]; then - echo "expected at least 2 arguments" - return 1 - else - userspec=$1 - shift - - # userspec can optionally include the group, so we parse the user - user=$(echo "$userspec" | cut -d':' -f1) - fi - - if ! am_i_root; then - error "Could not switch to '${userspec}': Operation not permitted" - return 1 - fi - - # Get the HOME directory for the user to switch, as chroot does - # not properly update this env and some scripts rely on it - homedir=$(eval echo "~${user}") - if [[ ! -d $homedir ]]; then - homedir="${HOME:-/}" - fi - - # Obtaining value for "$@" indirectly in order to properly support shell parameter expansion - if [[ "$replace" = true ]]; then - exec chroot --userspec="$userspec" / bash -c "cd ${cwd}; export HOME=${homedir}; exec \"\$@\"" -- "$@" - else - chroot --userspec="$userspec" / bash -c "cd ${cwd}; export HOME=${homedir}; exec \"\$@\"" -- "$@" - fi -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libpersistence.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libpersistence.sh deleted file mode 100644 index 18445e7d27fa3..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libpersistence.sh +++ /dev/null @@ -1,124 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Bitnami persistence library -# Used for bringing persistence capabilities to applications that don't have clear separation of data and logic - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/libfs.sh -. /opt/bitnami/scripts/libos.sh -. /opt/bitnami/scripts/liblog.sh -. /opt/bitnami/scripts/libversion.sh - -# Functions - -######################## -# Persist an application directory -# Globals: -# BITNAMI_ROOT_DIR -# BITNAMI_VOLUME_DIR -# Arguments: -# $1 - App folder name -# $2 - List of app files to persist -# Returns: -# true if all steps succeeded, false otherwise -######################### -persist_app() { - local -r app="${1:?missing app}" - local -a files_to_restore - read -r -a files_to_persist <<< "$(tr ',;:' ' ' <<< "$2")" - local -r install_dir="${BITNAMI_ROOT_DIR}/${app}" - local -r persist_dir="${BITNAMI_VOLUME_DIR}/${app}" - # Persist the individual files - if [[ "${#files_to_persist[@]}" -le 0 ]]; then - warn "No files are configured to be persisted" - return - fi - pushd "$install_dir" >/dev/null || exit - local file_to_persist_relative file_to_persist_destination file_to_persist_destination_folder - local -r tmp_file="/tmp/perms.acl" - for file_to_persist in "${files_to_persist[@]}"; do - if [[ ! -f "$file_to_persist" && ! -d "$file_to_persist" ]]; then - error "Cannot persist '${file_to_persist}' because it does not exist" - return 1 - fi - file_to_persist_relative="$(relativize "$file_to_persist" "$install_dir")" - file_to_persist_destination="${persist_dir}/${file_to_persist_relative}" - file_to_persist_destination_folder="$(dirname "$file_to_persist_destination")" - # Get original permissions for existing files, which will be applied later - # Exclude the root directory with 'sed', to avoid issues when copying the entirety of it to a volume - getfacl -R "$file_to_persist_relative" | sed -E '/# file: (\..+|[^.])/,$!d' > "$tmp_file" - # Copy directories to the volume - ensure_dir_exists "$file_to_persist_destination_folder" - cp -Lr --preserve=links "$file_to_persist_relative" "$file_to_persist_destination_folder" - # Restore permissions - pushd "$persist_dir" >/dev/null || exit - if am_i_root; then - setfacl --restore="$tmp_file" - else - # When running as non-root, don't change ownership - setfacl --restore=<(grep -E -v '^# (owner|group):' "$tmp_file") - fi - popd >/dev/null || exit - done - popd >/dev/null || exit - rm -f "$tmp_file" - # Install the persisted files into the installation directory, via symlinks - restore_persisted_app "$@" -} - -######################## -# Restore a persisted application directory -# Globals: -# BITNAMI_ROOT_DIR -# BITNAMI_VOLUME_DIR -# FORCE_MAJOR_UPGRADE -# Arguments: -# $1 - App folder name -# $2 - List of app files to restore -# Returns: -# true if all steps succeeded, false otherwise -######################### -restore_persisted_app() { - local -r app="${1:?missing app}" - local -a files_to_restore - read -r -a files_to_restore <<< "$(tr ',;:' ' ' <<< "$2")" - local -r install_dir="${BITNAMI_ROOT_DIR}/${app}" - local -r persist_dir="${BITNAMI_VOLUME_DIR}/${app}" - # Restore the individual persisted files - if [[ "${#files_to_restore[@]}" -le 0 ]]; then - warn "No persisted files are configured to be restored" - return - fi - local file_to_restore_relative file_to_restore_origin file_to_restore_destination - for file_to_restore in "${files_to_restore[@]}"; do - file_to_restore_relative="$(relativize "$file_to_restore" "$install_dir")" - # We use 'realpath --no-symlinks' to ensure that the case of '.' is covered and the directory is removed - file_to_restore_origin="$(realpath --no-symlinks "${install_dir}/${file_to_restore_relative}")" - file_to_restore_destination="$(realpath --no-symlinks "${persist_dir}/${file_to_restore_relative}")" - rm -rf "$file_to_restore_origin" - ln -sfn "$file_to_restore_destination" "$file_to_restore_origin" - done -} - -######################## -# Check if an application directory was already persisted -# Globals: -# BITNAMI_VOLUME_DIR -# Arguments: -# $1 - App folder name -# Returns: -# true if all steps succeeded, false otherwise -######################### -is_app_initialized() { - local -r app="${1:?missing app}" - local -r persist_dir="${BITNAMI_VOLUME_DIR}/${app}" - if ! is_mounted_dir_empty "$persist_dir"; then - true - else - false - fi -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libservice.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libservice.sh deleted file mode 100644 index 1f9b33096b026..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libservice.sh +++ /dev/null @@ -1,496 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for managing services - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/libvalidations.sh -. /opt/bitnami/scripts/liblog.sh - -# Functions - -######################## -# Read the provided pid file and returns a PID -# Arguments: -# $1 - Pid file -# Returns: -# PID -######################### -get_pid_from_file() { - local pid_file="${1:?pid file is missing}" - - if [[ -f "$pid_file" ]]; then - if [[ -n "$(< "$pid_file")" ]] && [[ "$(< "$pid_file")" -gt 0 ]]; then - echo "$(< "$pid_file")" - fi - fi -} - -######################## -# Check if a provided PID corresponds to a running service -# Arguments: -# $1 - PID -# Returns: -# Boolean -######################### -is_service_running() { - local pid="${1:?pid is missing}" - - kill -0 "$pid" 2>/dev/null -} - -######################## -# Stop a service by sending a termination signal to its pid -# Arguments: -# $1 - Pid file -# $2 - Signal number (optional) -# Returns: -# None -######################### -stop_service_using_pid() { - local pid_file="${1:?pid file is missing}" - local signal="${2:-}" - local pid - - pid="$(get_pid_from_file "$pid_file")" - [[ -z "$pid" ]] || ! is_service_running "$pid" && return - - if [[ -n "$signal" ]]; then - kill "-${signal}" "$pid" - else - kill "$pid" - fi - - local counter=10 - while [[ "$counter" -ne 0 ]] && is_service_running "$pid"; do - sleep 1 - counter=$((counter - 1)) - done -} - -######################## -# Start cron daemon -# Arguments: -# None -# Returns: -# true if started correctly, false otherwise -######################### -cron_start() { - if [[ -x "/usr/sbin/cron" ]]; then - /usr/sbin/cron - elif [[ -x "/usr/sbin/crond" ]]; then - /usr/sbin/crond - else - false - fi -} - -######################## -# Generate a cron configuration file for a given service -# Arguments: -# $1 - Service name -# $2 - Command -# Flags: -# --run-as - User to run as (default: root) -# --schedule - Cron schedule configuration (default: * * * * *) -# Returns: -# None -######################### -generate_cron_conf() { - local service_name="${1:?service name is missing}" - local cmd="${2:?command is missing}" - local run_as="root" - local schedule="* * * * *" - local clean="true" - - # Parse optional CLI flags - shift 2 - while [[ "$#" -gt 0 ]]; do - case "$1" in - --run-as) - shift - run_as="$1" - ;; - --schedule) - shift - schedule="$1" - ;; - --no-clean) - clean="false" - ;; - *) - echo "Invalid command line flag ${1}" >&2 - return 1 - ;; - esac - shift - done - - mkdir -p /etc/cron.d - if "$clean"; then - cat > "/etc/cron.d/${service_name}" <> /etc/cron.d/"$service_name" - fi -} - -######################## -# Remove a cron configuration file for a given service -# Arguments: -# $1 - Service name -# Returns: -# None -######################### -remove_cron_conf() { - local service_name="${1:?service name is missing}" - local cron_conf_dir="/etc/monit/conf.d" - rm -f "${cron_conf_dir}/${service_name}" -} - -######################## -# Generate a monit configuration file for a given service -# Arguments: -# $1 - Service name -# $2 - Pid file -# $3 - Start command -# $4 - Stop command -# Flags: -# --disable - Whether to disable the monit configuration -# Returns: -# None -######################### -generate_monit_conf() { - local service_name="${1:?service name is missing}" - local pid_file="${2:?pid file is missing}" - local start_command="${3:?start command is missing}" - local stop_command="${4:?stop command is missing}" - local monit_conf_dir="/etc/monit/conf.d" - local disabled="no" - - # Parse optional CLI flags - shift 4 - while [[ "$#" -gt 0 ]]; do - case "$1" in - --disable) - disabled="yes" - ;; - *) - echo "Invalid command line flag ${1}" >&2 - return 1 - ;; - esac - shift - done - - is_boolean_yes "$disabled" && conf_suffix=".disabled" - mkdir -p "$monit_conf_dir" - cat > "${monit_conf_dir}/${service_name}.conf${conf_suffix:-}" <&2 - return 1 - ;; - esac - shift - done - - mkdir -p "$logrotate_conf_dir" - cat < "${logrotate_conf_dir}/${service_name}" -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -${log_path} { - ${period} - rotate ${rotations} - dateext - compress - copytruncate - missingok -$(indent "$extra" 2) -} -EOF -} - -######################## -# Remove a logrotate configuration file -# Arguments: -# $1 - Service name -# Returns: -# None -######################### -remove_logrotate_conf() { - local service_name="${1:?service name is missing}" - local logrotate_conf_dir="/etc/logrotate.d" - rm -f "${logrotate_conf_dir}/${service_name}" -} - -######################## -# Generate a Systemd configuration file -# Arguments: -# $1 - Service name -# Flags: -# --custom-service-content - Custom content to add to the [service] block -# --environment - Environment variable to define (multiple --environment options may be passed) -# --environment-file - Text file with environment variables (multiple --environment-file options may be passed) -# --exec-start - Start command (required) -# --exec-start-pre - Pre-start command (optional) -# --exec-start-post - Post-start command (optional) -# --exec-stop - Stop command (optional) -# --exec-reload - Reload command (optional) -# --group - System group to start the service with -# --name - Service full name (e.g. Apache HTTP Server, defaults to $1) -# --restart - When to restart the Systemd service after being stopped (defaults to always) -# --pid-file - Service PID file -# --standard-output - File where to print stdout output -# --standard-error - File where to print stderr output -# --success-exit-status - Exit code that indicates a successful shutdown -# --type - Systemd unit type (defaults to forking) -# --user - System user to start the service with -# --working-directory - Working directory at which to start the service -# Returns: -# None -######################### -generate_systemd_conf() { - local -r service_name="${1:?service name is missing}" - local -r systemd_units_dir="/etc/systemd/system" - local -r service_file="${systemd_units_dir}/bitnami.${service_name}.service" - # Default values - local name="$service_name" - local type="forking" - local user="" - local group="" - local environment="" - local environment_file="" - local exec_start="" - local exec_start_pre="" - local exec_start_post="" - local exec_stop="" - local exec_reload="" - local restart="always" - local pid_file="" - local standard_output="journal" - local standard_error="" - local limits_content="" - local success_exit_status="" - local custom_service_content="" - local working_directory="" - # Parse CLI flags - shift - while [[ "$#" -gt 0 ]]; do - case "$1" in - --name \ - | --type \ - | --user \ - | --group \ - | --exec-start \ - | --exec-stop \ - | --exec-reload \ - | --restart \ - | --pid-file \ - | --standard-output \ - | --standard-error \ - | --success-exit-status \ - | --custom-service-content \ - | --working-directory \ - ) - var_name="$(echo "$1" | sed -e "s/^--//" -e "s/-/_/g")" - shift - declare "$var_name"="${1:?"${var_name} value is missing"}" - ;; - --limit-*) - [[ -n "$limits_content" ]] && limits_content+=$'\n' - var_name="${1//--limit-}" - shift - limits_content+="Limit${var_name^^}=${1:?"--limit-${var_name} value is missing"}" - ;; - --exec-start-pre) - shift - [[ -n "$exec_start_pre" ]] && exec_start_pre+=$'\n' - exec_start_pre+="ExecStartPre=${1:?"--exec-start-pre value is missing"}" - ;; - --exec-start-post) - shift - [[ -n "$exec_start_post" ]] && exec_start_post+=$'\n' - exec_start_post+="ExecStartPost=${1:?"--exec-start-post value is missing"}" - ;; - --environment) - shift - # It is possible to add multiple environment lines - [[ -n "$environment" ]] && environment+=$'\n' - environment+="Environment=${1:?"--environment value is missing"}" - ;; - --environment-file) - shift - # It is possible to add multiple environment-file lines - [[ -n "$environment_file" ]] && environment_file+=$'\n' - environment_file+="EnvironmentFile=${1:?"--environment-file value is missing"}" - ;; - *) - echo "Invalid command line flag ${1}" >&2 - return 1 - ;; - esac - shift - done - # Validate inputs - local error="no" - if [[ -z "$exec_start" ]]; then - error "The --exec-start option is required" - error="yes" - fi - if [[ "$error" != "no" ]]; then - return 1 - fi - # Generate the Systemd unit - cat > "$service_file" <> "$service_file" <<< "WorkingDirectory=${working_directory}" - fi - if [[ -n "$exec_start_pre" ]]; then - # This variable may contain multiple ExecStartPre= directives - cat >> "$service_file" <<< "$exec_start_pre" - fi - if [[ -n "$exec_start" ]]; then - cat >> "$service_file" <<< "ExecStart=${exec_start}" - fi - if [[ -n "$exec_start_post" ]]; then - # This variable may contain multiple ExecStartPost= directives - cat >> "$service_file" <<< "$exec_start_post" - fi - # Optional stop and reload commands - if [[ -n "$exec_stop" ]]; then - cat >> "$service_file" <<< "ExecStop=${exec_stop}" - fi - if [[ -n "$exec_reload" ]]; then - cat >> "$service_file" <<< "ExecReload=${exec_reload}" - fi - # User and group - if [[ -n "$user" ]]; then - cat >> "$service_file" <<< "User=${user}" - fi - if [[ -n "$group" ]]; then - cat >> "$service_file" <<< "Group=${group}" - fi - # PID file allows to determine if the main process is running properly (for Restart=always) - if [[ -n "$pid_file" ]]; then - cat >> "$service_file" <<< "PIDFile=${pid_file}" - fi - if [[ -n "$restart" ]]; then - cat >> "$service_file" <<< "Restart=${restart}" - fi - # Environment flags - if [[ -n "$environment" ]]; then - # This variable may contain multiple Environment= directives - cat >> "$service_file" <<< "$environment" - fi - if [[ -n "$environment_file" ]]; then - # This variable may contain multiple EnvironmentFile= directives - cat >> "$service_file" <<< "$environment_file" - fi - # Logging - if [[ -n "$standard_output" ]]; then - cat >> "$service_file" <<< "StandardOutput=${standard_output}" - fi - if [[ -n "$standard_error" ]]; then - cat >> "$service_file" <<< "StandardError=${standard_error}" - fi - if [[ -n "$custom_service_content" ]]; then - # This variable may contain multiple miscellaneous directives - cat >> "$service_file" <<< "$custom_service_content" - fi - if [[ -n "$success_exit_status" ]]; then - cat >> "$service_file" <> "$service_file" <> "$service_file" <> "$service_file" <= 0 )); then - true - else - false - fi -} - -######################## -# Check if the provided argument is a boolean or is the string 'yes/true' -# Arguments: -# $1 - Value to check -# Returns: -# Boolean -######################### -is_boolean_yes() { - local -r bool="${1:-}" - # comparison is performed without regard to the case of alphabetic characters - shopt -s nocasematch - if [[ "$bool" = 1 || "$bool" =~ ^(yes|true)$ ]]; then - true - else - false - fi -} - -######################## -# Check if the provided argument is a boolean yes/no value -# Arguments: -# $1 - Value to check -# Returns: -# Boolean -######################### -is_yes_no_value() { - local -r bool="${1:-}" - if [[ "$bool" =~ ^(yes|no)$ ]]; then - true - else - false - fi -} - -######################## -# Check if the provided argument is a boolean true/false value -# Arguments: -# $1 - Value to check -# Returns: -# Boolean -######################### -is_true_false_value() { - local -r bool="${1:-}" - if [[ "$bool" =~ ^(true|false)$ ]]; then - true - else - false - fi -} - -######################## -# Check if the provided argument is a boolean 1/0 value -# Arguments: -# $1 - Value to check -# Returns: -# Boolean -######################### -is_1_0_value() { - local -r bool="${1:-}" - if [[ "$bool" =~ ^[10]$ ]]; then - true - else - false - fi -} - -######################## -# Check if the provided argument is an empty string or not defined -# Arguments: -# $1 - Value to check -# Returns: -# Boolean -######################### -is_empty_value() { - local -r val="${1:-}" - if [[ -z "$val" ]]; then - true - else - false - fi -} - -######################## -# Validate if the provided argument is a valid port -# Arguments: -# $1 - Port to validate -# Returns: -# Boolean and error message -######################### -validate_port() { - local value - local unprivileged=0 - - # Parse flags - while [[ "$#" -gt 0 ]]; do - case "$1" in - -unprivileged) - unprivileged=1 - ;; - --) - shift - break - ;; - -*) - stderr_print "unrecognized flag $1" - return 1 - ;; - *) - break - ;; - esac - shift - done - - if [[ "$#" -gt 1 ]]; then - echo "too many arguments provided" - return 2 - elif [[ "$#" -eq 0 ]]; then - stderr_print "missing port argument" - return 1 - else - value=$1 - fi - - if [[ -z "$value" ]]; then - echo "the value is empty" - return 1 - else - if ! is_int "$value"; then - echo "value is not an integer" - return 2 - elif [[ "$value" -lt 0 ]]; then - echo "negative value provided" - return 2 - elif [[ "$value" -gt 65535 ]]; then - echo "requested port is greater than 65535" - return 2 - elif [[ "$unprivileged" = 1 && "$value" -lt 1024 ]]; then - echo "privileged port requested" - return 3 - fi - fi -} - -######################## -# Validate if the provided argument is a valid IPv6 address -# Arguments: -# $1 - IP to validate -# Returns: -# Boolean -######################### -validate_ipv6() { - local ip="${1:?ip is missing}" - local stat=1 - local full_address_regex='^([0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}$' - local short_address_regex='^((([0-9a-fA-F]{1,4}:){0,6}[0-9a-fA-F]{1,4}){0,6}::(([0-9a-fA-F]{1,4}:){0,6}[0-9a-fA-F]{1,4}){0,6})$' - - if [[ $ip =~ $full_address_regex || $ip =~ $short_address_regex || $ip == "::" ]]; then - stat=0 - fi - return $stat -} - -######################## -# Validate if the provided argument is a valid IPv4 address -# Arguments: -# $1 - IP to validate -# Returns: -# Boolean -######################### -validate_ipv4() { - local ip="${1:?ip is missing}" - local stat=1 - - if [[ $ip =~ ^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$ ]]; then - read -r -a ip_array <<< "$(tr '.' ' ' <<< "$ip")" - [[ ${ip_array[0]} -le 255 && ${ip_array[1]} -le 255 \ - && ${ip_array[2]} -le 255 && ${ip_array[3]} -le 255 ]] - stat=$? - fi - return $stat -} - -######################## -# Validate if the provided argument is a valid IPv4 or IPv6 address -# Arguments: -# $1 - IP to validate -# Returns: -# Boolean -######################### -validate_ip() { - local ip="${1:?ip is missing}" - local stat=1 - - if validate_ipv4 "$ip"; then - stat=0 - else - stat=$(validate_ipv6 "$ip") - fi - return $stat -} - -######################## -# Validate a string format -# Arguments: -# $1 - String to validate -# Returns: -# Boolean -######################### -validate_string() { - local string - local min_length=-1 - local max_length=-1 - - # Parse flags - while [ "$#" -gt 0 ]; do - case "$1" in - -min-length) - shift - min_length=${1:-} - ;; - -max-length) - shift - max_length=${1:-} - ;; - --) - shift - break - ;; - -*) - stderr_print "unrecognized flag $1" - return 1 - ;; - *) - break - ;; - esac - shift - done - - if [ "$#" -gt 1 ]; then - stderr_print "too many arguments provided" - return 2 - elif [ "$#" -eq 0 ]; then - stderr_print "missing string" - return 1 - else - string=$1 - fi - - if [[ "$min_length" -ge 0 ]] && [[ "${#string}" -lt "$min_length" ]]; then - echo "string length is less than $min_length" - return 1 - fi - if [[ "$max_length" -ge 0 ]] && [[ "${#string}" -gt "$max_length" ]]; then - echo "string length is great than $max_length" - return 1 - fi -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libversion.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libversion.sh deleted file mode 100644 index f0d5a5cd33892..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libversion.sh +++ /dev/null @@ -1,51 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Library for managing versions strings - -# shellcheck disable=SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/liblog.sh - -# Functions -######################## -# Gets semantic version -# Arguments: -# $1 - version: string to extract major.minor.patch -# $2 - section: 1 to extract major, 2 to extract minor, 3 to extract patch -# Returns: -# array with the major, minor and release -######################### -get_sematic_version () { - local version="${1:?version is required}" - local section="${2:?section is required}" - local -a version_sections - - #Regex to parse versions: x.y.z - local -r regex='([0-9]+)(\.([0-9]+)(\.([0-9]+))?)?' - - if [[ "$version" =~ $regex ]]; then - local i=1 - local j=1 - local n=${#BASH_REMATCH[*]} - - while [[ $i -lt $n ]]; do - if [[ -n "${BASH_REMATCH[$i]}" ]] && [[ "${BASH_REMATCH[$i]:0:1}" != '.' ]]; then - version_sections[j]="${BASH_REMATCH[$i]}" - ((j++)) - fi - ((i++)) - done - - local number_regex='^[0-9]+$' - if [[ "$section" =~ $number_regex ]] && (( section > 0 )) && (( section <= 3 )); then - echo "${version_sections[$section]}" - return - else - stderr_print "Section allowed values are: 1, 2, and 3" - return 1 - fi - fi -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libwebserver.sh b/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libwebserver.sh deleted file mode 100644 index acb84fc2339bb..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/opt/bitnami/scripts/libwebserver.sh +++ /dev/null @@ -1,476 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Bitnami web server handler library - -# shellcheck disable=SC1090,SC1091 - -# Load generic libraries -. /opt/bitnami/scripts/liblog.sh - -######################## -# Execute a command (or list of commands) with the web server environment and library loaded -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_execute() { - local -r web_server="${1:?missing web server}" - shift - # Run program in sub-shell to avoid web server environment getting loaded when not necessary - ( - . "/opt/bitnami/scripts/lib${web_server}.sh" - . "/opt/bitnami/scripts/${web_server}-env.sh" - "$@" - ) -} - -######################## -# Prints the list of enabled web servers -# Globals: -# None -# Arguments: -# None -# Returns: -# None -######################### -web_server_list() { - local -r -a supported_web_servers=(apache nginx) - local -a existing_web_servers=() - for web_server in "${supported_web_servers[@]}"; do - [[ -f "/opt/bitnami/scripts/${web_server}-env.sh" ]] && existing_web_servers+=("$web_server") - done - echo "${existing_web_servers[@]:-}" -} - -######################## -# Prints the currently-enabled web server type (only one, in order of preference) -# Globals: -# None -# Arguments: -# None -# Returns: -# None -######################### -web_server_type() { - local -a web_servers - read -r -a web_servers <<< "$(web_server_list)" - echo "${web_servers[0]:-}" -} - -######################## -# Validate that a supported web server is configured -# Globals: -# None -# Arguments: -# None -# Returns: -# None -######################### -web_server_validate() { - local error_code=0 - local supported_web_servers=("apache" "nginx") - - # Auxiliary functions - print_validation_error() { - error "$1" - error_code=1 - } - - if [[ -z "$(web_server_type)" || ! " ${supported_web_servers[*]} " == *" $(web_server_type) "* ]]; then - print_validation_error "Could not detect any supported web servers. It must be one of: ${supported_web_servers[*]}" - elif ! web_server_execute "$(web_server_type)" type -t "is_$(web_server_type)_running" >/dev/null; then - print_validation_error "Could not load the $(web_server_type) web server library from /opt/bitnami/scripts. Check that it exists and is readable." - fi - - return "$error_code" -} - -######################## -# Check whether the web server is running -# Globals: -# * -# Arguments: -# None -# Returns: -# true if the web server is running, false otherwise -######################### -is_web_server_running() { - "is_$(web_server_type)_running" -} - -######################## -# Start web server -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_start() { - info "Starting $(web_server_type) in background" - if [[ "${BITNAMI_SERVICE_MANAGER:-}" = "systemd" ]]; then - systemctl start "bitnami.$(web_server_type).service" - else - "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/start.sh" - fi -} - -######################## -# Stop web server -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_stop() { - info "Stopping $(web_server_type)" - if [[ "${BITNAMI_SERVICE_MANAGER:-}" = "systemd" ]]; then - systemctl stop "bitnami.$(web_server_type).service" - else - "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/stop.sh" - fi -} - -######################## -# Restart web server -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_restart() { - info "Restarting $(web_server_type)" - if [[ "${BITNAMI_SERVICE_MANAGER:-}" = "systemd" ]]; then - systemctl restart "bitnami.$(web_server_type).service" - else - "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/restart.sh" - fi -} - -######################## -# Reload web server -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_reload() { - if [[ "${BITNAMI_SERVICE_MANAGER:-}" = "systemd" ]]; then - systemctl reload "bitnami.$(web_server_type).service" - else - "${BITNAMI_ROOT_DIR}/scripts/$(web_server_type)/reload.sh" - fi -} - -######################## -# Ensure a web server application configuration exists (i.e. Apache virtual host format or NGINX server block) -# It serves as a wrapper for the specific web server function -# Globals: -# * -# Arguments: -# $1 - App name -# Flags: -# --type - Application type, which has an effect on which configuration template to use -# --hosts - Host listen addresses -# --server-name - Server name -# --server-aliases - Server aliases -# --allow-remote-connections - Whether to allow remote connections or to require local connections -# --disable - Whether to render server configurations with a .disabled prefix -# --disable-http - Whether to render the app's HTTP server configuration with a .disabled prefix -# --disable-https - Whether to render the app's HTTPS server configuration with a .disabled prefix -# --http-port - HTTP port number -# --https-port - HTTPS port number -# --document-root - Path to document root directory -# Apache-specific flags: -# --apache-additional-configuration - Additional vhost configuration (no default) -# --apache-additional-http-configuration - Additional HTTP vhost configuration (no default) -# --apache-additional-https-configuration - Additional HTTPS vhost configuration (no default) -# --apache-before-vhost-configuration - Configuration to add before the directive (no default) -# --apache-allow-override - Whether to allow .htaccess files (only allowed when --move-htaccess is set to 'no' and type is not defined) -# --apache-extra-directory-configuration - Extra configuration for the document root directory -# --apache-proxy-address - Address where to proxy requests -# --apache-proxy-configuration - Extra configuration for the proxy -# --apache-proxy-http-configuration - Extra configuration for the proxy HTTP vhost -# --apache-proxy-https-configuration - Extra configuration for the proxy HTTPS vhost -# --apache-move-htaccess - Move .htaccess files to a common place so they can be loaded during Apache startup (only allowed when type is not defined) -# NGINX-specific flags: -# --nginx-additional-configuration - Additional server block configuration (no default) -# --nginx-external-configuration - Configuration external to server block (no default) -# Returns: -# true if the configuration was enabled, false otherwise -######################## -ensure_web_server_app_configuration_exists() { - local app="${1:?missing app}" - shift - local -a apache_args nginx_args web_servers args_var - apache_args=("$app") - nginx_args=("$app") - # Validate arguments - while [[ "$#" -gt 0 ]]; do - case "$1" in - # Common flags - --disable \ - | --disable-http \ - | --disable-https \ - ) - apache_args+=("$1") - nginx_args+=("$1") - ;; - --hosts \ - | --server-name \ - | --server-aliases \ - | --type \ - | --allow-remote-connections \ - | --http-port \ - | --https-port \ - | --document-root \ - ) - apache_args+=("$1" "${2:?missing value}") - nginx_args+=("$1" "${2:?missing value}") - shift - ;; - - # Specific Apache flags - --apache-additional-configuration \ - | --apache-additional-http-configuration \ - | --apache-additional-https-configuration \ - | --apache-before-vhost-configuration \ - | --apache-allow-override \ - | --apache-extra-directory-configuration \ - | --apache-proxy-address \ - | --apache-proxy-configuration \ - | --apache-proxy-http-configuration \ - | --apache-proxy-https-configuration \ - | --apache-move-htaccess \ - ) - apache_args+=("${1//apache-/}" "${2:?missing value}") - shift - ;; - - # Specific NGINX flags - --nginx-additional-configuration \ - | --nginx-external-configuration) - nginx_args+=("${1//nginx-/}" "${2:?missing value}") - shift - ;; - - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - read -r -a web_servers <<< "$(web_server_list)" - for web_server in "${web_servers[@]}"; do - args_var="${web_server}_args[@]" - web_server_execute "$web_server" "ensure_${web_server}_app_configuration_exists" "${!args_var}" - done -} - -######################## -# Ensure a web server application configuration does not exist anymore (i.e. Apache virtual host format or NGINX server block) -# It serves as a wrapper for the specific web server function -# Globals: -# * -# Arguments: -# $1 - App name -# Returns: -# true if the configuration was disabled, false otherwise -######################## -ensure_web_server_app_configuration_not_exists() { - local app="${1:?missing app}" - local -a web_servers - read -r -a web_servers <<< "$(web_server_list)" - for web_server in "${web_servers[@]}"; do - web_server_execute "$web_server" "ensure_${web_server}_app_configuration_not_exists" "$app" - done -} - -######################## -# Ensure the web server loads the configuration for an application in a URL prefix -# It serves as a wrapper for the specific web server function -# Globals: -# * -# Arguments: -# $1 - App name -# Flags: -# --allow-remote-connections - Whether to allow remote connections or to require local connections -# --document-root - Path to document root directory -# --prefix - URL prefix from where it will be accessible (i.e. /myapp) -# --type - Application type, which has an effect on what configuration template will be used -# Apache-specific flags: -# --apache-additional-configuration - Additional vhost configuration (no default) -# --apache-allow-override - Whether to allow .htaccess files (only allowed when --move-htaccess is set to 'no') -# --apache-extra-directory-configuration - Extra configuration for the document root directory -# --apache-move-htaccess - Move .htaccess files to a common place so they can be loaded during Apache startup -# NGINX-specific flags: -# --nginx-additional-configuration - Additional server block configuration (no default) -# Returns: -# true if the configuration was enabled, false otherwise -######################## -ensure_web_server_prefix_configuration_exists() { - local app="${1:?missing app}" - shift - local -a apache_args nginx_args web_servers args_var - apache_args=("$app") - nginx_args=("$app") - # Validate arguments - while [[ "$#" -gt 0 ]]; do - case "$1" in - # Common flags - --allow-remote-connections \ - | --document-root \ - | --prefix \ - | --type \ - ) - apache_args+=("$1" "${2:?missing value}") - nginx_args+=("$1" "${2:?missing value}") - shift - ;; - - # Specific Apache flags - --apache-additional-configuration \ - | --apache-allow-override \ - | --apache-extra-directory-configuration \ - | --apache-move-htaccess \ - ) - apache_args+=("${1//apache-/}" "$2") - shift - ;; - - # Specific NGINX flags - --nginx-additional-configuration) - nginx_args+=("${1//nginx-/}" "$2") - shift - ;; - - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - read -r -a web_servers <<< "$(web_server_list)" - for web_server in "${web_servers[@]}"; do - args_var="${web_server}_args[@]" - web_server_execute "$web_server" "ensure_${web_server}_prefix_configuration_exists" "${!args_var}" - done -} - -######################## -# Ensure a web server application configuration is updated with the runtime configuration (i.e. ports) -# It serves as a wrapper for the specific web server function -# Globals: -# * -# Arguments: -# $1 - App name -# Flags: -# --hosts - Host listen addresses -# --server-name - Server name -# --server-aliases - Server aliases -# --enable-http - Enable HTTP app configuration (if not enabled already) -# --enable-https - Enable HTTPS app configuration (if not enabled already) -# --disable-http - Disable HTTP app configuration (if not disabled already) -# --disable-https - Disable HTTPS app configuration (if not disabled already) -# --http-port - HTTP port number -# --https-port - HTTPS port number -# Returns: -# true if the configuration was updated, false otherwise -######################## -web_server_update_app_configuration() { - local app="${1:?missing app}" - shift - local -a args web_servers - args=("$app") - # Validate arguments - while [[ "$#" -gt 0 ]]; do - case "$1" in - # Common flags - --enable-http \ - | --enable-https \ - | --disable-http \ - | --disable-https \ - ) - args+=("$1") - ;; - --hosts \ - | --server-name \ - | --server-aliases \ - | --http-port \ - | --https-port \ - ) - args+=("$1" "${2:?missing value}") - shift - ;; - - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - read -r -a web_servers <<< "$(web_server_list)" - for web_server in "${web_servers[@]}"; do - web_server_execute "$web_server" "${web_server}_update_app_configuration" "${args[@]}" - done -} - -######################## -# Enable loading page, which shows users that the initialization process is not yet completed -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_enable_loading_page() { - ensure_web_server_app_configuration_exists "__loading" --hosts "_default_" \ - --apache-additional-configuration " -# Show a HTTP 503 Service Unavailable page by default -RedirectMatch 503 ^/$ -# Show index.html if server is answering with 404 Not Found or 503 Service Unavailable status codes -ErrorDocument 404 /index.html -ErrorDocument 503 /index.html" \ - --nginx-additional-configuration " -# Show a HTTP 503 Service Unavailable page by default -location / { - return 503; -} -# Show index.html if server is answering with 404 Not Found or 503 Service Unavailable status codes -error_page 404 @installing; -error_page 503 @installing; -location @installing { - rewrite ^(.*)$ /index.html break; -}" - web_server_reload -} - -######################## -# Enable loading page, which shows users that the initialization process is not yet completed -# Globals: -# * -# Arguments: -# None -# Returns: -# None -######################### -web_server_disable_install_page() { - ensure_web_server_app_configuration_not_exists "__loading" - web_server_reload -} diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/usr/sbin/install_packages b/bitnami/supabase-postgres/15/debian-12/prebuildfs/usr/sbin/install_packages deleted file mode 100755 index ccce248b2d141..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/usr/sbin/install_packages +++ /dev/null @@ -1,27 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -eu - -n=0 -max=2 -export DEBIAN_FRONTEND=noninteractive - -until [ $n -gt $max ]; do - set +e - ( - apt-get update -qq && - apt-get install -y --no-install-recommends "$@" - ) - CODE=$? - set -e - if [ $CODE -eq 0 ]; then - break - fi - if [ $n -eq $max ]; then - exit $CODE - fi - echo "apt failed, retrying" - n=$(($n + 1)) -done -apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives diff --git a/bitnami/supabase-postgres/15/debian-12/prebuildfs/usr/sbin/run-script b/bitnami/supabase-postgres/15/debian-12/prebuildfs/usr/sbin/run-script deleted file mode 100755 index 0e07c9038dfde..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/prebuildfs/usr/sbin/run-script +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -u - -if [ $# -eq 0 ]; then - >&2 echo "No arguments provided" - exit 1 -fi - -script=$1 -exit_code="${2:-96}" -fail_if_not_present="${3:-n}" - -if test -f "$script"; then - sh $script - - if [ $? -ne 0 ]; then - exit $((exit_code)) - fi -elif [ "$fail_if_not_present" = "y" ]; then - >&2 echo "script not found: $script" - exit 127 -fi diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/libautoctl.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/libautoctl.sh deleted file mode 100644 index 48bfc247df8fa..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/libautoctl.sh +++ /dev/null @@ -1,308 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Bitnami pg_auto_failover library - -# shellcheck disable=SC1090,SC1091 - -# Load PostgreSQL library -. /opt/bitnami/scripts/libpostgresql.sh - -######################## -# Change pg_hba.conf so it allows access from replication users -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_configure_pghba() { - local replication_auth="trust" - if [[ -n "${POSTGRESQL_REPLICATION_PASSWORD}" ]]; then - replication_auth="md5" - fi - - cat <"${POSTGRESQL_PGHBA_FILE}" -local all all trust -EOF - - if [[ "${POSTGRESQL_AUTOCTL_MODE}" = "monitor" ]]; then - cat <>"${POSTGRESQL_PGHBA_FILE}" -host pg_auto_failover autoctl_node 0.0.0.0/0 ${replication_auth} -EOF - elif [[ "${POSTGRESQL_AUTOCTL_MODE}" = "postgres" ]]; then - cat <>"${POSTGRESQL_PGHBA_FILE}" -host all all 0.0.0.0/0 ${replication_auth} -host all all ::/0 ${replication_auth} -host replication pgautofailover_replicator 0.0.0.0/0 ${replication_auth} -EOF - fi - - cp "${POSTGRESQL_PGHBA_FILE}" "${POSTGRESQL_DATA_DIR}/pg_hba.conf" -} - -######################## -# Configure the auth parameters -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_configure_auth() { - info "Configuring auth parameters for (${POSTGRESQL_DATA_DIR})..." - - if [[ -f ${POSTGRESQL_DATA_DIR}/.autoctl_initialized ]]; then - info "Auth parameters are already configured, restoring from existing data" - else - postgresql_start_bg - - if [[ -n "${POSTGRESQL_REPLICATION_PASSWORD}" ]]; then - info "Changing replication passwords" - - local -r escaped_password="${POSTGRESQL_REPLICATION_PASSWORD//\'/\'\'}" - if [[ "${POSTGRESQL_AUTOCTL_MODE}" = "monitor" ]]; then - echo "ALTER USER autoctl_node WITH PASSWORD '${escaped_password}';" | postgresql_execute - elif [[ "${POSTGRESQL_AUTOCTL_MODE}" = "postgres" ]]; then - echo "ALTER USER pgautofailover_replicator WITH PASSWORD '${escaped_password}';" | postgresql_execute - pg_autoctl config set --pgdata "${POSTGRESQL_DATA_DIR}" replication.password "${POSTGRESQL_REPLICATION_PASSWORD}" - fi - fi - - if [[ "${POSTGRESQL_AUTOCTL_MODE}" = "postgres" ]]; then - info "Adding users auth configurations..." - [[ -n "${POSTGRESQL_DATABASE}" ]] && [[ "$POSTGRESQL_DATABASE" != "postgres" ]] && postgresql_create_custom_database - if [[ "$POSTGRESQL_USERNAME" = "postgres" ]]; then - postgresql_alter_postgres_user "$POSTGRESQL_PASSWORD" - else - if [[ -n "$POSTGRESQL_POSTGRES_PASSWORD" ]]; then - postgresql_alter_postgres_user "$POSTGRESQL_POSTGRES_PASSWORD" - fi - postgresql_create_admin_user - fi - fi - - postgresql_stop - fi -} - -######################## -# Create a monitor -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_create_monitor() { - local -r default_hostname=${1:?default_hostname is required} - - "${POSTGRESQL_BIN_DIR}/pg_autoctl" create monitor \ - --auth md5 \ - --pgdata "${POSTGRESQL_DATA_DIR}" \ - --no-ssl \ - --hostname "${POSTGRESQL_AUTOCTL_HOSTNAME:-$default_hostname}" -} - -######################## -# Build monitor URI -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -monitor_connection_string() { - echo "postgres://autoctl_node:${POSTGRESQL_REPLICATION_PASSWORD}@${POSTGRESQL_AUTOCTL_MONITOR_HOST}/pg_auto_failover?connect_timeout=2" -} - -######################## -# Create a postgress node -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_create_postgres() { - local -r default_hostname=${1:?default_hostname is required} - - PGPASSWORD="${POSTGRESQL_REPLICATION_PASSWORD}" "${POSTGRESQL_BIN_DIR}/pg_autoctl" create postgres \ - --auth md5 \ - --pgdata "${POSTGRESQL_DATA_DIR}" \ - --no-ssl \ - --monitor "$(monitor_connection_string)" \ - --name "${POSTGRESQL_AUTOCTL_HOSTNAME:-$default_hostname}" \ - --hostname "${POSTGRESQL_AUTOCTL_HOSTNAME:-$default_hostname}" - - pg_autoctl config set --pgdata "${POSTGRESQL_DATA_DIR}" pg_autoctl.monitor "$(monitor_connection_string)" - wait_until_can_connect "$(monitor_connection_string)" -} - -######################## -# Create postgresql data dir using pg_autoclt -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_create_node() { - info "Creating ${POSTGRESQL_AUTOCTL_MODE} data directory (${POSTGRESQL_DATA_DIR})..." - - if [[ -f ${POSTGRESQL_DATA_DIR}/.autoctl_initialized ]]; then - info "A ${POSTGRESQL_AUTOCTL_MODE} data directory (${POSTGRESQL_DATA_DIR}) already exists, restoring from existing data" - else - info "Cleaning dbinit initialization files ${POSTGRESQL_DATA_DIR}..." - rm -rf "${POSTGRESQL_DATA_DIR:?}"/* - - local -r default_hostname="$(hostname --fqdn)" - if [[ "${POSTGRESQL_AUTOCTL_MODE}" = "monitor" ]]; then - autoctl_create_monitor "${default_hostname}" - elif [[ "${POSTGRESQL_AUTOCTL_MODE}" = "postgres" ]]; then - autoctl_create_postgres "${default_hostname}" - else - error "autoctl does not support ${POSTGRESQL_AUTOCTL_MODE}" - exit 1 - fi - fi -} - -######################## -# Add pgautofailover extension to shared_preload_libraries property in postgresql.conf -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_configure_pgautofailover() { - info "Load pgautofailover through POSTGRESQL_SHARED_PRELOAD_LIBRARIES env var..." - if [[ -f ${POSTGRESQL_DATA_DIR}/.autoctl_initialized ]]; then - info "The pgautofailover is already loaded, restoring from existing config" - else - local preload_libraries - if [[ -n "${POSTGRESQL_SHARED_PRELOAD_LIBRARIES}" ]]; then - preload_libraries="${POSTGRESQL_SHARED_PRELOAD_LIBRARIES},pgautofailover" - else - preload_libraries="pgautofailover" - fi - - postgresql_set_property "shared_preload_libraries" "${preload_libraries}" - fi -} - -######################## -# Add pgbackrest extension's configuration file and directories -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_configure_pgbackrest() { - if [[ -f ${POSTGRESQL_DATA_DIR}/.autoctl_initialized ]]; then - info "The pgbackrest is already configured" - else - info "Configuring pgbackrest..." - debug "Ensuring pgbackrest expected directories/files exist..." - for dir in "${POSTGRESQL_PGBACKREST_LOGS_DIR}" "${POSTGRESQL_PGBACKREST_BACKUPS_DIR}" "${POSTGRESQL_PGBACKREST_SPOOL_DIR}"; do - ensure_dir_exists "${dir}" - am_i_root && chown "${POSTGRESQL_DAEMON_USER}:${POSTGRESQL_DAEMON_GROUP}" "${dir}" - done - - cat <>"${POSTGRESQL_PGBACKREST_CONF_FILE}" -[global] -repo1-path=${POSTGRESQL_PGBACKREST_BACKUPS_DIR} -repo1-cipher-pass=${POSTGRESQL_REPLICATION_PASSWORD} -repo1-cipher-type=aes-256-cbc -repo1-retention-diff=1 -repo1-retention-full=2 -process-max=2 -log-path=${POSTGRESQL_PGBACKREST_LOGS_DIR} -log-level-console=info -log-level-file=debug -archive-async=y -spool-path=${POSTGRESQL_PGBACKREST_SPOOL_DIR} -start-fast=y -[testdb] -pg1-path=${POSTGRESQL_DATA_DIR} -EOF - fi -} - -######################## -# Initialize a monitor or postgress node using pg_autoctl command. -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -autoctl_initialize() { - info "Initializing ${POSTGRESQL_AUTOCTL_MODE} data directory..." - - postgresql_unrestrict_pghba - autoctl_create_node - autoctl_configure_pgautofailover - autoctl_configure_pgbackrest - - if [[ ! -f ${POSTGRESQL_DATA_DIR}/.autoctl_initialized ]]; then - info "Moving configuration files to (${POSTGRESQL_DATA_DIR})..." - - cp "${POSTGRESQL_CONF_FILE}" "${POSTGRESQL_DATA_DIR}/postgresql.conf" - mkdir -p "${POSTGRESQL_DATA_DIR}/conf.d" - fi - - autoctl_configure_auth - autoctl_configure_pghba - - touch "${POSTGRESQL_DATA_DIR}/.autoctl_initialized" - info "Done initializing ${POSTGRESQL_AUTOCTL_MODE} data directory..." -} - -######################## -# Wait until a node is ready to accepts connection. -# Globals: -# POSTGRESQL_* -# Arguments: -# - $1 node hostname -# Returns: -# None -######################### -wait_until_can_connect() { - local connection_string="$1" - - check_postgresql_connection() { - psql "$connection_string" -c 'select version()' > /dev/null 2>&1 - } - - info "Wait until node is available..." - if ! retry_while "check_postgresql_connection"; then - error "Could not connect to the postgresql" - return 1 - fi -} - -######################## -# Change pg_hba.conf so only password-based authentication is allowed -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_unrestrict_pghba() { - replace_in_file "$POSTGRESQL_PGHBA_FILE" "md5" "trust" false -} diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/libpostgresql.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/libpostgresql.sh deleted file mode 100644 index a1c28111e0ead..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/libpostgresql.sh +++ /dev/null @@ -1,1326 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Bitnami PostgreSQL library - -# shellcheck disable=SC1090,SC1091 - -# Load Generic Libraries -. /opt/bitnami/scripts/libfile.sh -. /opt/bitnami/scripts/libfs.sh -. /opt/bitnami/scripts/liblog.sh -. /opt/bitnami/scripts/libos.sh -. /opt/bitnami/scripts/libservice.sh -. /opt/bitnami/scripts/libvalidations.sh -. /opt/bitnami/scripts/libnet.sh - -######################## -# Configure libnss_wrapper so PostgreSQL commands work with a random user. -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_enable_nss_wrapper() { - if ! getent passwd "$(id -u)" &>/dev/null && [ -e "$NSS_WRAPPER_LIB" ]; then - debug "Configuring libnss_wrapper..." - export LD_PRELOAD="$NSS_WRAPPER_LIB" - # shellcheck disable=SC2155 - export NSS_WRAPPER_PASSWD="$(mktemp)" - # shellcheck disable=SC2155 - export NSS_WRAPPER_GROUP="$(mktemp)" - echo "postgres:x:$(id -u):$(id -g):PostgreSQL:$POSTGRESQL_DATA_DIR:/bin/false" >"$NSS_WRAPPER_PASSWD" - echo "postgres:x:$(id -g):" >"$NSS_WRAPPER_GROUP" - fi -} - -######################## -# Validate settings in POSTGRESQL_* environment variables -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_validate() { - info "Validating settings in POSTGRESQL_* env vars.." - local error_code=0 - - # Auxiliary functions - print_validation_error() { - error "$1" - error_code=1 - } - - check_multi_value() { - if [[ " ${2} " != *" ${!1} "* ]]; then - print_validation_error "The allowed values for ${1} are: ${2}" - fi - } - - empty_password_enabled_warn() { - warn "You set the environment variable ALLOW_EMPTY_PASSWORD=${ALLOW_EMPTY_PASSWORD}. For safety reasons, do not use this flag in a production environment." - } - empty_password_error() { - print_validation_error "The $1 environment variable is empty or not set. Set the environment variable ALLOW_EMPTY_PASSWORD=yes to allow the container to be started with blank passwords. This is recommended only for development." - } - if is_boolean_yes "$ALLOW_EMPTY_PASSWORD"; then - empty_password_enabled_warn - else - if [[ -z "$POSTGRESQL_PASSWORD" ]]; then - empty_password_error "POSTGRESQL_PASSWORD" - fi - if ((${#POSTGRESQL_PASSWORD} > 100)); then - print_validation_error "The password cannot be longer than 100 characters. Set the environment variable POSTGRESQL_PASSWORD with a shorter value" - fi - if [[ -n "$POSTGRESQL_USERNAME" ]] && [[ -z "$POSTGRESQL_PASSWORD" ]]; then - empty_password_error "POSTGRESQL_PASSWORD" - fi - if [[ -n "$POSTGRESQL_USERNAME" ]] && [[ "$POSTGRESQL_USERNAME" != "postgres" ]] && [[ -n "$POSTGRESQL_PASSWORD" ]] && [[ -z "$POSTGRESQL_DATABASE" ]]; then - print_validation_error "In order to use a custom PostgreSQL user you need to set the environment variable POSTGRESQL_DATABASE as well" - fi - fi - if [[ -n "$POSTGRESQL_REPLICATION_MODE" ]]; then - if [[ "$POSTGRESQL_REPLICATION_MODE" = "master" ]]; then - if ((POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS < 0)); then - print_validation_error "The number of synchronous replicas cannot be less than 0. Set the environment variable POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS" - fi - elif [[ "$POSTGRESQL_REPLICATION_MODE" = "slave" ]]; then - if [[ -z "$POSTGRESQL_MASTER_HOST" ]]; then - print_validation_error "Slave replication mode chosen without setting the environment variable POSTGRESQL_MASTER_HOST. Use it to indicate where the Master node is running" - fi - if [[ -z "$POSTGRESQL_REPLICATION_USER" ]]; then - print_validation_error "Slave replication mode chosen without setting the environment variable POSTGRESQL_REPLICATION_USER. Make sure that the master also has this parameter set" - fi - else - print_validation_error "Invalid replication mode. Available options are 'master/slave'" - fi - # Common replication checks - if [[ -n "$POSTGRESQL_REPLICATION_USER" ]] && [[ -z "$POSTGRESQL_REPLICATION_PASSWORD" ]]; then - empty_password_error "POSTGRESQL_REPLICATION_PASSWORD" - fi - else - if is_boolean_yes "$ALLOW_EMPTY_PASSWORD"; then - empty_password_enabled_warn - else - if [[ -z "$POSTGRESQL_PASSWORD" ]]; then - empty_password_error "POSTGRESQL_PASSWORD" - fi - if [[ -n "$POSTGRESQL_USERNAME" ]] && [[ -z "$POSTGRESQL_PASSWORD" ]]; then - empty_password_error "POSTGRESQL_PASSWORD" - fi - fi - fi - - if ! is_yes_no_value "$POSTGRESQL_ENABLE_LDAP"; then - empty_password_error "The values allowed for POSTGRESQL_ENABLE_LDAP are: yes or no" - fi - - if is_boolean_yes "$POSTGRESQL_ENABLE_LDAP" && [[ -n "$POSTGRESQL_LDAP_URL" ]] && [[ -n "$POSTGRESQL_LDAP_SERVER" ]]; then - empty_password_error "You can not set POSTGRESQL_LDAP_URL and POSTGRESQL_LDAP_SERVER at the same time. Check your LDAP configuration." - fi - - if ! is_yes_no_value "$POSTGRESQL_ENABLE_TLS"; then - print_validation_error "The values allowed for POSTGRESQL_ENABLE_TLS are: yes or no" - elif is_boolean_yes "$POSTGRESQL_ENABLE_TLS"; then - # TLS Checks - if [[ -z "$POSTGRESQL_TLS_CERT_FILE" ]]; then - print_validation_error "You must provide a X.509 certificate in order to use TLS" - elif [[ ! -f "$POSTGRESQL_TLS_CERT_FILE" ]]; then - print_validation_error "The X.509 certificate file in the specified path ${POSTGRESQL_TLS_CERT_FILE} does not exist" - fi - if [[ -z "$POSTGRESQL_TLS_KEY_FILE" ]]; then - print_validation_error "You must provide a private key in order to use TLS" - elif [[ ! -f "$POSTGRESQL_TLS_KEY_FILE" ]]; then - print_validation_error "The private key file in the specified path ${POSTGRESQL_TLS_KEY_FILE} does not exist" - fi - if [[ -z "$POSTGRESQL_TLS_CA_FILE" ]]; then - warn "A CA X.509 certificate was not provided. Client verification will not be performed in TLS connections" - elif [[ ! -f "$POSTGRESQL_TLS_CA_FILE" ]]; then - print_validation_error "The CA X.509 certificate file in the specified path ${POSTGRESQL_TLS_CA_FILE} does not exist" - fi - if [[ -n "$POSTGRESQL_TLS_CRL_FILE" ]] && [[ ! -f "$POSTGRESQL_TLS_CRL_FILE" ]]; then - print_validation_error "The CRL file in the specified path ${POSTGRESQL_TLS_CRL_FILE} does not exist" - fi - if ! is_yes_no_value "$POSTGRESQL_TLS_PREFER_SERVER_CIPHERS"; then - print_validation_error "The values allowed for POSTGRESQL_TLS_PREFER_SERVER_CIPHERS are: yes or no" - fi - fi - - if [[ -n "$POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE" ]]; then - check_multi_value "POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE" "FIRST ANY" - fi - - [[ "$error_code" -eq 0 ]] || exit "$error_code" -} - -######################## -# Create basic postgresql.conf file using the example provided in the share/ folder -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_create_config() { - info "postgresql.conf file not detected. Generating it..." - cp "$POSTGRESQL_BASE_DIR/share/postgresql.conf.sample" "$POSTGRESQL_CONF_FILE" - # Update default value for 'include_dir' directive - # ref: https://github.com/postgres/postgres/commit/fb9c475597c245562a28d1e916b575ac4ec5c19f#diff-f5544d9b6d218cc9677524b454b41c60 - if ! grep include_dir "$POSTGRESQL_CONF_FILE" >/dev/null; then - error "include_dir line is not present in $POSTGRESQL_CONF_FILE. This may be due to a changes in a new version of PostgreSQL. Please check" - exit 1 - fi - local psql_conf - psql_conf="$(sed -E "/#include_dir/i include_dir = 'conf.d'" "$POSTGRESQL_CONF_FILE")" - echo "$psql_conf" >"$POSTGRESQL_CONF_FILE" -} - -######################## -# Create ldap auth configuration in pg_hba, -# but keeps postgres user to authenticate locally -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_ldap_auth_configuration() { - info "Generating LDAP authentication configuration" - local ldap_configuration="" - - if [[ -n "$POSTGRESQL_LDAP_URL" ]]; then - ldap_configuration="ldapurl=\"$POSTGRESQL_LDAP_URL\"" - else - ldap_configuration="ldapserver=${POSTGRESQL_LDAP_SERVER}" - - [[ -n "$POSTGRESQL_LDAP_PREFIX" ]] && ldap_configuration+=" ldapprefix=\"${POSTGRESQL_LDAP_PREFIX}\"" - [[ -n "$POSTGRESQL_LDAP_SUFFIX" ]] && ldap_configuration+=" ldapsuffix=\"${POSTGRESQL_LDAP_SUFFIX}\"" - [[ -n "$POSTGRESQL_LDAP_PORT" ]] && ldap_configuration+=" ldapport=${POSTGRESQL_LDAP_PORT}" - [[ -n "$POSTGRESQL_LDAP_BASE_DN" ]] && ldap_configuration+=" ldapbasedn=\"${POSTGRESQL_LDAP_BASE_DN}\"" - [[ -n "$POSTGRESQL_LDAP_BIND_DN" ]] && ldap_configuration+=" ldapbinddn=\"${POSTGRESQL_LDAP_BIND_DN}\"" - [[ -n "$POSTGRESQL_LDAP_BIND_PASSWORD" ]] && ldap_configuration+=" ldapbindpasswd=${POSTGRESQL_LDAP_BIND_PASSWORD}" - [[ -n "$POSTGRESQL_LDAP_SEARCH_ATTR" ]] && ldap_configuration+=" ldapsearchattribute=${POSTGRESQL_LDAP_SEARCH_ATTR}" - [[ -n "$POSTGRESQL_LDAP_SEARCH_FILTER" ]] && ldap_configuration+=" ldapsearchfilter=\"${POSTGRESQL_LDAP_SEARCH_FILTER}\"" - [[ -n "$POSTGRESQL_LDAP_TLS" ]] && ldap_configuration+=" ldaptls=${POSTGRESQL_LDAP_TLS}" - [[ -n "$POSTGRESQL_LDAP_SCHEME" ]] && ldap_configuration+=" ldapscheme=${POSTGRESQL_LDAP_SCHEME}" - fi - - cat <"$POSTGRESQL_PGHBA_FILE" -host all postgres 0.0.0.0/0 trust -host all postgres ::/0 trust -host all all 0.0.0.0/0 ldap $ldap_configuration -host all all ::/0 ldap $ldap_configuration -EOF -} - -######################## -# Create local auth configuration in pg_hba -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_password_auth_configuration() { - info "Generating local authentication configuration" - cat <"$POSTGRESQL_PGHBA_FILE" -host all all 0.0.0.0/0 trust -host all all ::/0 trust -EOF -} - -######################## -# Enforce Certificate client authentication -# for TLS connections in pg_hba -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_tls_auth_configuration() { - info "Enabling TLS Client authentication" - local previous_content - [[ -f "$POSTGRESQL_PGHBA_FILE" ]] && previous_content=$(<"$POSTGRESQL_PGHBA_FILE") - - cat <"$POSTGRESQL_PGHBA_FILE" -hostssl all all 0.0.0.0/0 cert -hostssl all all ::/0 cert -${previous_content:-} -EOF -} - -######################## -# Create basic pg_hba.conf file -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_create_pghba() { - info "pg_hba.conf file not detected. Generating it..." - - if is_boolean_yes "$POSTGRESQL_ENABLE_LDAP"; then - postgresql_ldap_auth_configuration - else - postgresql_password_auth_configuration - fi -} - -######################## -# Change pg_hba.conf so it allows local UNIX socket-based connections -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_allow_local_connection() { - cat <>"$POSTGRESQL_PGHBA_FILE" -local all all trust -host all all 127.0.0.1/32 trust -host all all ::1/128 trust -EOF -} - -######################## -# Change pg_hba.conf so only password-based authentication is allowed -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_restrict_pghba() { - if [[ -n "$POSTGRESQL_PASSWORD" ]]; then - replace_in_file "$POSTGRESQL_PGHBA_FILE" "trust" "md5" false - fi -} - -######################## -# Change pg_hba.conf so it allows access from replication users -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_add_replication_to_pghba() { - local replication_auth="trust" - if [[ -n "$POSTGRESQL_REPLICATION_PASSWORD" ]]; then - replication_auth="md5" - fi - cat <>"$POSTGRESQL_PGHBA_FILE" -host replication all 0.0.0.0/0 ${replication_auth} -host replication all ::/0 ${replication_auth} -EOF -} - -######################## -# Change a PostgreSQL configuration file by setting a property -# Globals: -# POSTGRESQL_* -# Arguments: -# $1 - property -# $2 - value -# $3 - Path to configuration file (default: $POSTGRESQL_CONF_FILE) -# Returns: -# None -######################### -postgresql_set_property() { - local -r property="${1:?missing property}" - local -r value="${2:?missing value}" - local -r conf_file="${3:-$POSTGRESQL_CONF_FILE}" - local psql_conf - if grep -qE "^#*\s*${property}" "$conf_file" >/dev/null; then - replace_in_file "$conf_file" "^#*\s*${property}\s*=.*" "${property} = '${value}'" false - else - echo "${property} = '${value}'" >>"$conf_file" - fi -} - -######################## -# Create a user for master-slave replication -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_create_replication_user() { - local -r escaped_password="${POSTGRESQL_REPLICATION_PASSWORD//\'/\'\'}" - local -r postgres_password="${POSTGRESQL_POSTGRES_PASSWORD:-$POSTGRESQL_PASSWORD}" - - info "Creating replication user $POSTGRESQL_REPLICATION_USER" - echo "CREATE ROLE \"$POSTGRESQL_REPLICATION_USER\" REPLICATION LOGIN ENCRYPTED PASSWORD '$escaped_password'" | postgresql_execute "" "postgres" "$postgres_password" -} - -######################## -# Change postgresql.conf by setting replication parameters -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_configure_replication_parameters() { - local -r psql_major_version="$(postgresql_get_major_version)" - info "Configuring replication parameters" - postgresql_set_property "wal_level" "$POSTGRESQL_WAL_LEVEL" - postgresql_set_property "max_wal_size" "400MB" - postgresql_set_property "max_wal_senders" "16" - if ((psql_major_version >= 13)); then - postgresql_set_property "wal_keep_size" "128MB" - else - postgresql_set_property "wal_keep_segments" "12" - fi - postgresql_set_property "hot_standby" "on" -} - -######################## -# Change postgresql.conf by setting parameters for synchronous replication -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_configure_synchronous_replication() { - local replication_nodes="" - local synchronous_standby_names="" - info "Configuring synchronous_replication" - - # Check for comma separate values - # When using repmgr, POSTGRESQL_CLUSTER_APP_NAME will contain the list of nodes to be synchronous - # This list need to cleaned from other things but node names. - if [[ "$POSTGRESQL_CLUSTER_APP_NAME" == *","* ]]; then - read -r -a nodes <<<"$(tr ',;' ' ' <<<"${POSTGRESQL_CLUSTER_APP_NAME}")" - for node in "${nodes[@]}"; do - [[ "$node" =~ ^(([^:/?#]+):)?// ]] || node="tcp://${node}" - - # repmgr is only using the first segment of the FQDN as the application name - host="$(parse_uri "$node" 'host' | awk -F. '{print $1}')" - replication_nodes="${replication_nodes}${replication_nodes:+,}\"${host}\"" - done - else - replication_nodes="\"${POSTGRESQL_CLUSTER_APP_NAME}\"" - fi - - if ((POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS > 0)); then - synchronous_standby_names="${POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS} (${replication_nodes})" - if [[ -n "$POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE" ]]; then - synchronous_standby_names="${POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE} ${synchronous_standby_names}" - fi - - postgresql_set_property "synchronous_commit" "$POSTGRESQL_SYNCHRONOUS_COMMIT_MODE" - postgresql_set_property "synchronous_standby_names" "$synchronous_standby_names" - fi -} - -######################## -# Change postgresql.conf by setting TLS properies -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_configure_tls() { - info "Configuring TLS" - chmod 600 "$POSTGRESQL_TLS_KEY_FILE" || warn "Could not set compulsory permissions (600) on file ${POSTGRESQL_TLS_KEY_FILE}" - postgresql_set_property "ssl" "on" - # Server ciphers are preferred by default - ! is_boolean_yes "$POSTGRESQL_TLS_PREFER_SERVER_CIPHERS" && postgresql_set_property "ssl_prefer_server_ciphers" "off" - [[ -n $POSTGRESQL_TLS_CA_FILE ]] && postgresql_set_property "ssl_ca_file" "$POSTGRESQL_TLS_CA_FILE" - [[ -n $POSTGRESQL_TLS_CRL_FILE ]] && postgresql_set_property "ssl_crl_file" "$POSTGRESQL_TLS_CRL_FILE" - postgresql_set_property "ssl_cert_file" "$POSTGRESQL_TLS_CERT_FILE" - postgresql_set_property "ssl_key_file" "$POSTGRESQL_TLS_KEY_FILE" -} - -######################## -# Change postgresql.conf by setting fsync -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_configure_fsync() { - info "Configuring fsync" - postgresql_set_property "fsync" "$POSTGRESQL_FSYNC" -} - -######################## -# Alter password of the postgres user -# Globals: -# POSTGRESQL_* -# Arguments: -# Password -# Returns: -# None -######################### -postgresql_alter_postgres_user() { - local -r escaped_password="${1//\'/\'\'}" - info "Changing password of postgres" - echo "ALTER ROLE postgres WITH PASSWORD '$escaped_password';" | postgresql_execute - if [[ -n "$POSTGRESQL_POSTGRES_CONNECTION_LIMIT" ]]; then - echo "ALTER ROLE postgres WITH CONNECTION LIMIT ${POSTGRESQL_POSTGRES_CONNECTION_LIMIT};" | postgresql_execute - fi -} - -######################## -# Create an admin user with all privileges in POSTGRESQL_DATABASE -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_create_admin_user() { - local -r escaped_password="${POSTGRESQL_PASSWORD//\'/\'\'}" - local -r postgres_password="${POSTGRESQL_POSTGRES_PASSWORD:-$POSTGRESQL_PASSWORD}" - info "Creating user ${POSTGRESQL_USERNAME}" - local connlimit_string="" - if [[ -n "$POSTGRESQL_USERNAME_CONNECTION_LIMIT" ]]; then - connlimit_string="CONNECTION LIMIT ${POSTGRESQL_USERNAME_CONNECTION_LIMIT}" - fi - echo "CREATE ROLE \"${POSTGRESQL_USERNAME}\" WITH LOGIN ${connlimit_string} CREATEDB PASSWORD '${escaped_password}';" | postgresql_execute "" "postgres" "$postgres_password" - info "Granting access to \"${POSTGRESQL_USERNAME}\" to the database \"${POSTGRESQL_DATABASE}\"" - echo "GRANT ALL PRIVILEGES ON DATABASE \"${POSTGRESQL_DATABASE}\" TO \"${POSTGRESQL_USERNAME}\"\;" | postgresql_execute "" "postgres" "$postgres_password" - echo "ALTER DATABASE \"${POSTGRESQL_DATABASE}\" OWNER TO \"${POSTGRESQL_USERNAME}\"\;" | postgresql_execute "" "postgres" "$postgres_password" - info "Setting ownership for the 'public' schema database \"${POSTGRESQL_DATABASE}\" to \"${POSTGRESQL_USERNAME}\"" - echo "ALTER SCHEMA public OWNER TO \"${POSTGRESQL_USERNAME}\"\;" | postgresql_execute "$POSTGRESQL_DATABASE" "postgres" "$postgres_password" -} - -######################## -# Create a database with name $POSTGRESQL_DATABASE -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_create_custom_database() { - echo "CREATE DATABASE \"$POSTGRESQL_DATABASE\"" | postgresql_execute "" "postgres" "" -} - -######################## -# Change postgresql.conf to listen in 0.0.0.0 -# Arguments: -# None -# Returns: -# None -######################### -postgresql_enable_remote_connections() { - postgresql_set_property "listen_addresses" "*" -} - -######################## -# Check if a given configuration file was mounted externally -# Globals: -# POSTGRESQL_* -# Arguments: -# $1 - Filename -# Returns: -# 1 if the file was mounted externally, 0 otherwise -######################### -postgresql_is_file_external() { - local -r filename=$1 - if [[ -d "$POSTGRESQL_MOUNTED_CONF_DIR" ]] && [[ -f "$POSTGRESQL_MOUNTED_CONF_DIR"/"$filename" ]]; then - return 0 - else - return 1 - fi -} - -######################## -# Remove flags and postmaster files from a previous run (case of container restart) -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_clean_from_restart() { - local -r -a files=( - "$POSTGRESQL_DATA_DIR"/postmaster.pid - "$POSTGRESQL_DATA_DIR"/standby.signal - "$POSTGRESQL_DATA_DIR"/recovery.signal - ) - - for file in "${files[@]}"; do - if [[ -f "$file" ]]; then - info "Cleaning stale $file file" - rm "$file" - fi - done -} - -######################## -# Ensure PostgreSQL is initialized -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_initialize() { - info "Initializing PostgreSQL database..." - - # This fixes an issue where the trap would kill the entrypoint.sh, if a PID was left over from a previous run - # Exec replaces the process without creating a new one, and when the container is restarted it may have the same PID - rm -f "$POSTGRESQL_PID_FILE" - - # User injected custom configuration - if [[ -d "$POSTGRESQL_MOUNTED_CONF_DIR" ]] && compgen -G "$POSTGRESQL_MOUNTED_CONF_DIR"/* >/dev/null; then - debug "Copying files from $POSTGRESQL_MOUNTED_CONF_DIR to $POSTGRESQL_CONF_DIR" - cp -fr "$POSTGRESQL_MOUNTED_CONF_DIR"/. "$POSTGRESQL_CONF_DIR" - fi - local create_conf_file=yes - local create_pghba_file=yes - - if postgresql_is_file_external "postgresql.conf"; then - info "Custom configuration $POSTGRESQL_CONF_FILE detected" - create_conf_file=no - fi - - if postgresql_is_file_external "pg_hba.conf"; then - info "Custom configuration $POSTGRESQL_PGHBA_FILE detected" - create_pghba_file=no - fi - - debug "Ensuring expected directories/files exist..." - for dir in "$POSTGRESQL_TMP_DIR" "$POSTGRESQL_LOG_DIR" "$POSTGRESQL_DATA_DIR"; do - ensure_dir_exists "$dir" - am_i_root && chown "$POSTGRESQL_DAEMON_USER:$POSTGRESQL_DAEMON_GROUP" "$dir" - done - am_i_root && find "$POSTGRESQL_DATA_DIR" -mindepth 1 -maxdepth 1 -not -name ".snapshot" -not -name "lost+found" -exec chown -R "$POSTGRESQL_DAEMON_USER:$POSTGRESQL_DAEMON_GROUP" {} \; - chmod u+rwx "$POSTGRESQL_DATA_DIR" || warn "Lack of permissions on data directory!" - chmod go-rwx "$POSTGRESQL_DATA_DIR" || warn "Lack of permissions on data directory!" - - is_boolean_yes "$POSTGRESQL_ALLOW_REMOTE_CONNECTIONS" && is_boolean_yes "$create_pghba_file" && postgresql_create_pghba && postgresql_allow_local_connection - # Configure port - postgresql_set_property "port" "$POSTGRESQL_PORT_NUMBER" - is_empty_value "$POSTGRESQL_DEFAULT_TOAST_COMPRESSION" || postgresql_set_property "default_toast_compression" "$POSTGRESQL_DEFAULT_TOAST_COMPRESSION" - is_empty_value "$POSTGRESQL_PASSWORD_ENCRYPTION" || postgresql_set_property "password_encryption" "$POSTGRESQL_PASSWORD_ENCRYPTION" - if ! is_dir_empty "$POSTGRESQL_DATA_DIR"; then - info "Deploying PostgreSQL with persisted data..." - export POSTGRESQL_FIRST_BOOT="no" - is_boolean_yes "$create_pghba_file" && postgresql_restrict_pghba - is_boolean_yes "$create_conf_file" && postgresql_configure_replication_parameters - is_boolean_yes "$create_conf_file" && postgresql_configure_fsync - is_boolean_yes "$create_conf_file" && is_boolean_yes "$POSTGRESQL_ENABLE_TLS" && postgresql_configure_tls - [[ "$POSTGRESQL_REPLICATION_MODE" = "master" ]] && [[ -n "$POSTGRESQL_REPLICATION_USER" ]] && is_boolean_yes "$create_pghba_file" && postgresql_add_replication_to_pghba - [[ "$POSTGRESQL_REPLICATION_MODE" = "master" ]] && is_boolean_yes "$create_pghba_file" && postgresql_configure_synchronous_replication - [[ "$POSTGRESQL_REPLICATION_MODE" = "slave" ]] && postgresql_configure_recovery - else - if [[ "$POSTGRESQL_REPLICATION_MODE" = "master" ]]; then - postgresql_master_init_db - postgresql_start_bg "false" - [[ -n "${POSTGRESQL_DATABASE}" ]] && [[ "$POSTGRESQL_DATABASE" != "postgres" ]] && postgresql_create_custom_database - if [[ "$POSTGRESQL_USERNAME" = "postgres" ]]; then - postgresql_alter_postgres_user "$POSTGRESQL_PASSWORD" - else - if [[ -n "$POSTGRESQL_POSTGRES_PASSWORD" ]]; then - postgresql_alter_postgres_user "$POSTGRESQL_POSTGRES_PASSWORD" - fi - postgresql_create_admin_user - fi - is_boolean_yes "$create_pghba_file" && postgresql_restrict_pghba - [[ -n "$POSTGRESQL_REPLICATION_USER" ]] && postgresql_create_replication_user - is_boolean_yes "$create_conf_file" && postgresql_configure_replication_parameters - is_boolean_yes "$create_pghba_file" && postgresql_configure_synchronous_replication - is_boolean_yes "$create_conf_file" && postgresql_configure_fsync - is_boolean_yes "$create_conf_file" && is_boolean_yes "$POSTGRESQL_ENABLE_TLS" && postgresql_configure_tls - [[ -n "$POSTGRESQL_REPLICATION_USER" ]] && is_boolean_yes "$create_pghba_file" && postgresql_add_replication_to_pghba - else - postgresql_slave_init_db - is_boolean_yes "$create_pghba_file" && postgresql_restrict_pghba - is_boolean_yes "$create_conf_file" && postgresql_configure_replication_parameters - is_boolean_yes "$create_conf_file" && postgresql_configure_fsync - is_boolean_yes "$create_conf_file" && is_boolean_yes "$POSTGRESQL_ENABLE_TLS" && postgresql_configure_tls - postgresql_configure_recovery - fi - fi - # TLS Modifications on pghba need to be performed after properly configuring postgresql.conf file - is_boolean_yes "$create_pghba_file" && is_boolean_yes "$POSTGRESQL_ENABLE_TLS" && [[ -n $POSTGRESQL_TLS_CA_FILE ]] && postgresql_tls_auth_configuration - - is_boolean_yes "$create_conf_file" && [[ -n "$POSTGRESQL_SHARED_PRELOAD_LIBRARIES" ]] && postgresql_set_property "shared_preload_libraries" "$POSTGRESQL_SHARED_PRELOAD_LIBRARIES" - is_boolean_yes "$create_conf_file" && postgresql_configure_logging - is_boolean_yes "$create_conf_file" && postgresql_configure_connections - is_boolean_yes "$create_conf_file" && postgresql_configure_timezone - - # Delete conf files generated on first run - rm -f "$POSTGRESQL_DATA_DIR"/postgresql.conf "$POSTGRESQL_DATA_DIR"/pg_hba.conf - - # Stop postgresql - postgresql_stop -} - -######################## -# Run custom pre-initialization scripts -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_custom_pre_init_scripts() { - info "Loading custom pre-init scripts..." - if [[ -d "$POSTGRESQL_PREINITSCRIPTS_DIR" ]] && [[ -n $(find "$POSTGRESQL_PREINITSCRIPTS_DIR/" -type f -name "*.sh") ]]; then - info "Loading user's custom files from $POSTGRESQL_PREINITSCRIPTS_DIR ..." - find "$POSTGRESQL_PREINITSCRIPTS_DIR/" -type f -name "*.sh" | sort | while read -r f; do - if [[ -x "$f" ]]; then - debug "Executing $f" - "$f" - else - debug "Sourcing $f" - . "$f" - fi - done - fi -} - -######################## -# Run custom initialization scripts -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_custom_init_scripts() { - info "Loading custom scripts..." - if [[ -d "$POSTGRESQL_INITSCRIPTS_DIR" ]] && [[ -n $(find "$POSTGRESQL_INITSCRIPTS_DIR/" -type f -regex ".*\.\(sh\|sql\|sql.gz\)") ]] && [[ ! -f "$POSTGRESQL_VOLUME_DIR/.user_scripts_initialized" ]]; then - info "Loading user's custom files from $POSTGRESQL_INITSCRIPTS_DIR ..." - postgresql_start_bg "false" - find "$POSTGRESQL_INITSCRIPTS_DIR/" -type f -regex ".*\.\(sh\|sql\|sql.gz\)" | sort | while read -r f; do - case "$f" in - *.sh) - if [[ -x "$f" ]]; then - debug "Executing $f" - "$f" - else - debug "Sourcing $f" - . "$f" - fi - ;; - *.sql) - debug "Executing $f" - postgresql_execute "$POSTGRESQL_DATABASE" "$POSTGRESQL_INITSCRIPTS_USERNAME" "$POSTGRESQL_INITSCRIPTS_PASSWORD" <"$f" - ;; - *.sql.gz) - debug "Executing $f" - gunzip -c "$f" | postgresql_execute "$POSTGRESQL_DATABASE" "$POSTGRESQL_INITSCRIPTS_USERNAME" "$POSTGRESQL_INITSCRIPTS_PASSWORD" - ;; - *) debug "Ignoring $f" ;; - esac - done - touch "$POSTGRESQL_VOLUME_DIR"/.user_scripts_initialized - fi -} - -######################## -# Stop PostgreSQL -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# None -######################### -postgresql_stop() { - local -r -a cmd=("pg_ctl" "stop" "-w" "-D" "$POSTGRESQL_DATA_DIR" "-m" "$POSTGRESQL_SHUTDOWN_MODE" "-t" "$POSTGRESQL_PGCTLTIMEOUT") - if [[ -f "$POSTGRESQL_PID_FILE" ]]; then - info "Stopping PostgreSQL..." - if am_i_root; then - run_as_user "$POSTGRESQL_DAEMON_USER" "${cmd[@]}" - else - "${cmd[@]}" - fi - fi -} - -######################## -# Start PostgreSQL and wait until it is ready -# Globals: -# POSTGRESQL_* -# Arguments: -# $1 - Enable logs for PostgreSQL. Default: false -# Returns: -# None -######################### -postgresql_start_bg() { - local -r pg_logs=${1:-false} - local -r pg_ctl_flags=("-W" "-D" "$POSTGRESQL_DATA_DIR" "-l" "$POSTGRESQL_LOG_FILE" "-o" "--config-file=$POSTGRESQL_CONF_FILE --external_pid_file=$POSTGRESQL_PID_FILE --hba_file=$POSTGRESQL_PGHBA_FILE") - info "Starting PostgreSQL in background..." - if is_postgresql_running; then - return 0 - fi - local pg_ctl_cmd=() - if am_i_root; then - pg_ctl_cmd+=("run_as_user" "$POSTGRESQL_DAEMON_USER") - fi - pg_ctl_cmd+=("$POSTGRESQL_BIN_DIR"/pg_ctl) - if [[ "${BITNAMI_DEBUG:-false}" = true ]] || [[ $pg_logs = true ]]; then - "${pg_ctl_cmd[@]}" "start" "${pg_ctl_flags[@]}" - else - "${pg_ctl_cmd[@]}" "start" "${pg_ctl_flags[@]}" >/dev/null 2>&1 - fi - local pg_isready_args=("-U" "postgres" "-p" "$POSTGRESQL_PORT_NUMBER" "-h" "127.0.0.1") - local counter=$POSTGRESQL_INIT_MAX_TIMEOUT - while ! "$POSTGRESQL_BIN_DIR"/pg_isready "${pg_isready_args[@]}" >/dev/null 2>&1; do - sleep 1 - counter=$((counter - 1)) - if ((counter <= 0)); then - error "PostgreSQL is not ready after $POSTGRESQL_INIT_MAX_TIMEOUT seconds" - exit 1 - fi - done -} - -######################## -# Check if PostgreSQL is running -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -is_postgresql_running() { - local pid - pid="$(get_pid_from_file "$POSTGRESQL_PID_FILE")" - - if [[ -z "$pid" ]]; then - false - else - is_service_running "$pid" - fi -} - -######################## -# Check if PostgreSQL is not running -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -is_postgresql_not_running() { - ! is_postgresql_running -} - -######################## -# Initialize master node database by running initdb -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_master_init_db() { - local envExtraFlags=() - local initdb_args=() - if [[ -n "${POSTGRESQL_INITDB_ARGS}" ]]; then - read -r -a envExtraFlags <<<"$POSTGRESQL_INITDB_ARGS" - initdb_args+=("${envExtraFlags[@]}") - fi - if [[ -n "$POSTGRESQL_INITDB_WAL_DIR" ]]; then - ensure_dir_exists "$POSTGRESQL_INITDB_WAL_DIR" - am_i_root && chown "$POSTGRESQL_DAEMON_USER:$POSTGRESQL_DAEMON_GROUP" "$POSTGRESQL_INITDB_WAL_DIR" - initdb_args+=("--waldir" "$POSTGRESQL_INITDB_WAL_DIR") - fi - local initdb_cmd=() - if am_i_root; then - initdb_cmd+=("run_as_user" "$POSTGRESQL_DAEMON_USER") - fi - initdb_cmd+=("$POSTGRESQL_BIN_DIR/initdb") - if [[ -n "${initdb_args[*]:-}" ]]; then - info "Initializing PostgreSQL with ${initdb_args[*]} extra initdb arguments" - if [[ "${BITNAMI_DEBUG:-false}" = true ]]; then - "${initdb_cmd[@]}" -E UTF8 -D "$POSTGRESQL_DATA_DIR" -U "postgres" "${initdb_args[@]}" - else - "${initdb_cmd[@]}" -E UTF8 -D "$POSTGRESQL_DATA_DIR" -U "postgres" "${initdb_args[@]}" >/dev/null 2>&1 - fi - elif [[ "${BITNAMI_DEBUG:-false}" = true ]]; then - "${initdb_cmd[@]}" -E UTF8 -D "$POSTGRESQL_DATA_DIR" -U "postgres" - else - "${initdb_cmd[@]}" -E UTF8 -D "$POSTGRESQL_DATA_DIR" -U "postgres" >/dev/null 2>&1 - fi -} - -######################## -# Initialize slave node by running pg_basebackup -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_slave_init_db() { - info "Waiting for replication master to accept connections (${POSTGRESQL_INIT_MAX_TIMEOUT} timeout)..." - local -r check_args=("-U" "$POSTGRESQL_REPLICATION_USER" "-h" "$POSTGRESQL_MASTER_HOST" "-p" "$POSTGRESQL_MASTER_PORT_NUMBER" "-d" "postgres") - local check_cmd=() - if am_i_root; then - check_cmd=("run_as_user" "$POSTGRESQL_DAEMON_USER") - fi - check_cmd+=("$POSTGRESQL_BIN_DIR"/pg_isready) - local ready_counter=$POSTGRESQL_INIT_MAX_TIMEOUT - - while ! PGPASSWORD=$POSTGRESQL_REPLICATION_PASSWORD "${check_cmd[@]}" "${check_args[@]}"; do - sleep 1 - ready_counter=$((ready_counter - 1)) - if ((ready_counter <= 0)); then - error "PostgreSQL master is not ready after $POSTGRESQL_INIT_MAX_TIMEOUT seconds" - exit 1 - fi - - done - info "Replicating the initial database" - local -r backup_args=("-D" "$POSTGRESQL_DATA_DIR" "-U" "$POSTGRESQL_REPLICATION_USER" "-h" "$POSTGRESQL_MASTER_HOST" "-p" "$POSTGRESQL_MASTER_PORT_NUMBER" "-X" "stream" "-w" "-v" "-P") - local backup_cmd=() - if am_i_root; then - backup_cmd+=("run_as_user" "$POSTGRESQL_DAEMON_USER") - fi - backup_cmd+=("$POSTGRESQL_BIN_DIR"/pg_basebackup) - local replication_counter=$POSTGRESQL_INIT_MAX_TIMEOUT - while ! PGPASSWORD=$POSTGRESQL_REPLICATION_PASSWORD "${backup_cmd[@]}" "${backup_args[@]}"; do - debug "Backup command failed. Sleeping and trying again" - sleep 1 - replication_counter=$((replication_counter - 1)) - if ((replication_counter <= 0)); then - error "Slave replication failed after trying for $POSTGRESQL_INIT_MAX_TIMEOUT seconds" - exit 1 - fi - done -} - -######################## -# Create recovery.conf in slave node -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_configure_recovery() { - info "Setting up streaming replication slave..." - - local -r escaped_password="${POSTGRESQL_REPLICATION_PASSWORD//\&/\\&}" - local -r psql_major_version="$(postgresql_get_major_version)" - if ((psql_major_version >= 12)); then - postgresql_set_property "primary_conninfo" "host=${POSTGRESQL_MASTER_HOST} port=${POSTGRESQL_MASTER_PORT_NUMBER} user=${POSTGRESQL_REPLICATION_USER} password=${escaped_password} application_name=${POSTGRESQL_CLUSTER_APP_NAME}" "$POSTGRESQL_CONF_FILE" - ((psql_major_version < 16)) && postgresql_set_property "promote_trigger_file" "/tmp/postgresql.trigger.${POSTGRESQL_MASTER_PORT_NUMBER}" "$POSTGRESQL_CONF_FILE" - touch "$POSTGRESQL_DATA_DIR"/standby.signal - else - cp -f "$POSTGRESQL_BASE_DIR/share/recovery.conf.sample" "$POSTGRESQL_RECOVERY_FILE" - chmod 600 "$POSTGRESQL_RECOVERY_FILE" - am_i_root && chown "$POSTGRESQL_DAEMON_USER:$POSTGRESQL_DAEMON_GROUP" "$POSTGRESQL_RECOVERY_FILE" - postgresql_set_property "standby_mode" "on" "$POSTGRESQL_RECOVERY_FILE" - postgresql_set_property "primary_conninfo" "host=${POSTGRESQL_MASTER_HOST} port=${POSTGRESQL_MASTER_PORT_NUMBER} user=${POSTGRESQL_REPLICATION_USER} password=${escaped_password} application_name=${POSTGRESQL_CLUSTER_APP_NAME}" "$POSTGRESQL_RECOVERY_FILE" - postgresql_set_property "trigger_file" "/tmp/postgresql.trigger.${POSTGRESQL_MASTER_PORT_NUMBER}" "$POSTGRESQL_RECOVERY_FILE" - fi -} - -######################## -# Configure logging parameters -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_configure_logging() { - [[ -n "$POSTGRESQL_PGAUDIT_LOG" ]] && postgresql_set_property "pgaudit.log" "$POSTGRESQL_PGAUDIT_LOG" - [[ -n "$POSTGRESQL_PGAUDIT_LOG_CATALOG" ]] && postgresql_set_property "pgaudit.log_catalog" "$POSTGRESQL_PGAUDIT_LOG_CATALOG" - [[ -n "$POSTGRESQL_PGAUDIT_LOG_PARAMETER" ]] && postgresql_set_property "pgaudit.log_parameter" "$POSTGRESQL_PGAUDIT_LOG_PARAMETER" - [[ -n "$POSTGRESQL_LOG_CONNECTIONS" ]] && postgresql_set_property "log_connections" "$POSTGRESQL_LOG_CONNECTIONS" - [[ -n "$POSTGRESQL_LOG_DISCONNECTIONS" ]] && postgresql_set_property "log_disconnections" "$POSTGRESQL_LOG_DISCONNECTIONS" - [[ -n "$POSTGRESQL_LOG_HOSTNAME" ]] && postgresql_set_property "log_hostname" "$POSTGRESQL_LOG_HOSTNAME" - [[ -n "$POSTGRESQL_CLIENT_MIN_MESSAGES" ]] && postgresql_set_property "client_min_messages" "$POSTGRESQL_CLIENT_MIN_MESSAGES" - [[ -n "$POSTGRESQL_LOG_LINE_PREFIX" ]] && postgresql_set_property "log_line_prefix" "$POSTGRESQL_LOG_LINE_PREFIX" - ([[ -n "$POSTGRESQL_LOG_TIMEZONE" ]] && postgresql_set_property "log_timezone" "$POSTGRESQL_LOG_TIMEZONE") || true -} - -######################## -# Configure connection parameters -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_configure_connections() { - [[ -n "$POSTGRESQL_MAX_CONNECTIONS" ]] && postgresql_set_property "max_connections" "$POSTGRESQL_MAX_CONNECTIONS" - [[ -n "$POSTGRESQL_TCP_KEEPALIVES_IDLE" ]] && postgresql_set_property "tcp_keepalives_idle" "$POSTGRESQL_TCP_KEEPALIVES_IDLE" - [[ -n "$POSTGRESQL_TCP_KEEPALIVES_INTERVAL" ]] && postgresql_set_property "tcp_keepalives_interval" "$POSTGRESQL_TCP_KEEPALIVES_INTERVAL" - [[ -n "$POSTGRESQL_TCP_KEEPALIVES_COUNT" ]] && postgresql_set_property "tcp_keepalives_count" "$POSTGRESQL_TCP_KEEPALIVES_COUNT" - ([[ -n "$POSTGRESQL_STATEMENT_TIMEOUT" ]] && postgresql_set_property "statement_timeout" "$POSTGRESQL_STATEMENT_TIMEOUT") || true -} - -######################## -# Configure timezone -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_configure_timezone() { - ([[ -n "$POSTGRESQL_TIMEZONE" ]] && postgresql_set_property "timezone" "$POSTGRESQL_TIMEZONE") || true -} - -######################## -# Remove pg_hba.conf lines based on filter -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# Boolean -######################### -postgresql_remove_pghba_lines() { - for filter in ${POSTGRESQL_PGHBA_REMOVE_FILTERS//,/ }; do - result="$(sed -E "/${filter}/d" "$POSTGRESQL_PGHBA_FILE")" - echo "$result" >"$POSTGRESQL_PGHBA_FILE" - done -} - -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -# shellcheck disable=SC2148 - -######################## -# Return PostgreSQL major version -# Globals: -# POSTGRESQL_* -# Arguments: -# None -# Returns: -# String -######################### -postgresql_get_major_version() { - psql --version | grep -oE "[0-9]+\.[0-9]+" | grep -oE "^[0-9]+" -} - -######################## -# Gets an environment variable name based on the suffix -# Arguments: -# $1 - environment variable suffix -# Returns: -# environment variable name -######################### -get_env_var_value() { - local env_var_suffix="${1:?missing suffix}" - local env_var_name - for env_var_prefix in POSTGRESQL POSTGRESQL_CLIENT; do - env_var_name="${env_var_prefix}_${env_var_suffix}" - if [[ -n "${!env_var_name:-}" ]]; then - echo "${!env_var_name}" - break - fi - done -} - -######################## -# Execute an arbitrary query/queries against the running PostgreSQL service and print the output -# Stdin: -# Query/queries to execute -# Globals: -# BITNAMI_DEBUG -# POSTGRESQL_* -# Arguments: -# $1 - Database where to run the queries -# $2 - User to run queries -# $3 - Password -# $4 - Extra options (eg. -tA) -# Returns: -# None -######################### -postgresql_execute_print_output() { - local -r db="${1:-}" - local -r user="${2:-postgres}" - local -r pass="${3:-}" - local opts - read -r -a opts <<<"${@:4}" - - local args=("-U" "$user" "-p" "${POSTGRESQL_PORT_NUMBER:-5432}" "-h" "127.0.0.1") - [[ -n "$db" ]] && args+=("-d" "$db") - [[ "${#opts[@]}" -gt 0 ]] && args+=("${opts[@]}") - - # Execute the Query/queries from stdin - PGPASSWORD=$pass psql "${args[@]}" -} - -######################## -# Execute an arbitrary query/queries against the running PostgreSQL service -# Stdin: -# Query/queries to execute -# Globals: -# BITNAMI_DEBUG -# POSTGRESQL_* -# Arguments: -# $1 - Database where to run the queries -# $2 - User to run queries -# $3 - Password -# $4 - Extra options (eg. -tA) -# Returns: -# None -######################### -postgresql_execute() { - if [[ "${BITNAMI_DEBUG:-false}" = true ]]; then - "postgresql_execute_print_output" "$@" - elif [[ "${NO_ERRORS:-false}" = true ]]; then - "postgresql_execute_print_output" "$@" 2>/dev/null - else - "postgresql_execute_print_output" "$@" >/dev/null 2>&1 - fi -} - -######################## -# Execute an arbitrary query/queries against a remote PostgreSQL service and print to stdout -# Stdin: -# Query/queries to execute -# Globals: -# BITNAMI_DEBUG -# DB_* -# Arguments: -# $1 - Remote PostgreSQL service hostname -# $2 - Remote PostgreSQL service port -# $3 - Database where to run the queries -# $4 - User to run queries -# $5 - Password -# $6 - Extra options (eg. -tA) -# Returns: -# None -postgresql_remote_execute_print_output() { - local -r hostname="${1:?hostname is required}" - local -r port="${2:?port is required}" - local -a args=("-h" "$hostname" "-p" "$port") - shift 2 - "postgresql_execute_print_output" "$@" "${args[@]}" -} - -######################## -# Execute an arbitrary query/queries against a remote PostgreSQL service -# Stdin: -# Query/queries to execute -# Globals: -# BITNAMI_DEBUG -# DB_* -# Arguments: -# $1 - Remote PostgreSQL service hostname -# $2 - Remote PostgreSQL service port -# $3 - Database where to run the queries -# $4 - User to run queries -# $5 - Password -# $6 - Extra options (eg. -tA) -# Returns: -# None -postgresql_remote_execute() { - if [[ "${BITNAMI_DEBUG:-false}" = true ]]; then - "postgresql_remote_execute_print_output" "$@" - elif [[ "${NO_ERRORS:-false}" = true ]]; then - "postgresql_remote_execute_print_output" "$@" 2>/dev/null - else - "postgresql_remote_execute_print_output" "$@" >/dev/null 2>&1 - fi -} - -######################## -# Optionally create the given database user -# Flags: -# -p|--password - database password -# --host - database host -# --port - database port -# Arguments: -# $1 - user -# Returns: -# None -######################### -postgresql_ensure_user_exists() { - local -r user="${1:?user is missing}" - local password="" - # For accessing an external database - local db_host="" - local db_port="" - - # Validate arguments - shift 1 - while [ "$#" -gt 0 ]; do - case "$1" in - -p | --password) - shift - password="${1:?missing password}" - ;; - --host) - shift - db_host="${1:?missing database host}" - ;; - --port) - shift - db_port="${1:?missing database port}" - ;; - *) - echo "Invalid command line flag $1" >&2 - return 1 - ;; - esac - shift - done - - local -a postgresql_execute_cmd=("postgresql_execute") - [[ -n "$db_host" && -n "$db_port" ]] && postgresql_execute_cmd=("postgresql_remote_execute" "$db_host" "$db_port") - local -a postgresql_execute_flags=("postgres" "$(get_env_var_value POSTGRES_USER)" "$(get_env_var_value POSTGRES_PASSWORD)") - - "${postgresql_execute_cmd[@]}" "${postgresql_execute_flags[@]}" <&2 - return 1 - ;; - esac - shift - done - - local -a postgresql_execute_cmd=("postgresql_execute") - [[ -n "$db_host" && -n "$db_port" ]] && postgresql_execute_cmd=("postgresql_remote_execute" "$db_host" "$db_port") - local -a postgresql_execute_flags=("postgres" "$(get_env_var_value POSTGRES_USER)" "$(get_env_var_value POSTGRES_PASSWORD)") - - "${postgresql_execute_cmd[@]}" "${postgresql_execute_flags[@]}" <> "$LOCALES_FILE" - else - echo "Locale ${locale} is already enabled" - fi -} - -if [[ "$WITH_ALL_LOCALES" =~ ^(yes|true|1)$ ]]; then - echo "Enabling all locales" - cp "$SUPPORTED_LOCALES_FILE" "$LOCALES_FILE" -else - # shellcheck disable=SC2001 - LOCALES_TO_ADD="$(sed 's/[,;]\s*/\n/g' <<< "$EXTRA_LOCALES")" - while [[ -n "$LOCALES_TO_ADD" ]] && read -r locale; do - echo "Enabling locale ${locale}" - enable_locale "$locale" - done <<< "$LOCALES_TO_ADD" -fi - -locale-gen diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql-env.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql-env.sh deleted file mode 100644 index b11db5450ae7c..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql-env.sh +++ /dev/null @@ -1,352 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Environment configuration for postgresql - -# The values for all environment variables will be set in the below order of precedence -# 1. Custom environment variables defined below after Bitnami defaults -# 2. Constants defined in this file (environment variables with no default), i.e. BITNAMI_ROOT_DIR -# 3. Environment variables overridden via external files using *_FILE variables (see below) -# 4. Environment variables set externally (i.e. current Bash context/Dockerfile/userdata) - -# Load logging library -# shellcheck disable=SC1090,SC1091 -. /opt/bitnami/scripts/liblog.sh - -export BITNAMI_ROOT_DIR="/opt/bitnami" -export BITNAMI_VOLUME_DIR="/bitnami" - -# Logging configuration -export MODULE="${MODULE:-postgresql}" -export BITNAMI_DEBUG="${BITNAMI_DEBUG:-false}" - -# By setting an environment variable matching *_FILE to a file path, the prefixed environment -# variable will be overridden with the value specified in that file -postgresql_env_vars=( - POSTGRESQL_VOLUME_DIR - POSTGRESQL_DATA_DIR - POSTGRESQL_EXTRA_FLAGS - POSTGRESQL_INIT_MAX_TIMEOUT - POSTGRESQL_PGCTLTIMEOUT - POSTGRESQL_SHUTDOWN_MODE - POSTGRESQL_CLUSTER_APP_NAME - POSTGRESQL_DATABASE - POSTGRESQL_INITDB_ARGS - ALLOW_EMPTY_PASSWORD - POSTGRESQL_INITDB_WAL_DIR - POSTGRESQL_MASTER_HOST - POSTGRESQL_MASTER_PORT_NUMBER - POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS - POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE - POSTGRESQL_PORT_NUMBER - POSTGRESQL_ALLOW_REMOTE_CONNECTIONS - POSTGRESQL_REPLICATION_MODE - POSTGRESQL_REPLICATION_USER - POSTGRESQL_SYNCHRONOUS_COMMIT_MODE - POSTGRESQL_FSYNC - POSTGRESQL_USERNAME - POSTGRESQL_ENABLE_LDAP - POSTGRESQL_LDAP_URL - POSTGRESQL_LDAP_PREFIX - POSTGRESQL_LDAP_SUFFIX - POSTGRESQL_LDAP_SERVER - POSTGRESQL_LDAP_PORT - POSTGRESQL_LDAP_SCHEME - POSTGRESQL_LDAP_TLS - POSTGRESQL_LDAP_BASE_DN - POSTGRESQL_LDAP_BIND_DN - POSTGRESQL_LDAP_BIND_PASSWORD - POSTGRESQL_LDAP_SEARCH_ATTR - POSTGRESQL_LDAP_SEARCH_FILTER - POSTGRESQL_INITSCRIPTS_USERNAME - POSTGRESQL_PASSWORD - POSTGRESQL_POSTGRES_PASSWORD - POSTGRESQL_REPLICATION_PASSWORD - POSTGRESQL_INITSCRIPTS_PASSWORD - POSTGRESQL_ENABLE_TLS - POSTGRESQL_TLS_CERT_FILE - POSTGRESQL_TLS_KEY_FILE - POSTGRESQL_TLS_CA_FILE - POSTGRESQL_TLS_CRL_FILE - POSTGRESQL_TLS_PREFER_SERVER_CIPHERS - POSTGRESQL_SHARED_PRELOAD_LIBRARIES - POSTGRESQL_PGAUDIT_LOG - POSTGRESQL_PGAUDIT_LOG_CATALOG - POSTGRESQL_PGAUDIT_LOG_PARAMETER - POSTGRESQL_LOG_CONNECTIONS - POSTGRESQL_LOG_DISCONNECTIONS - POSTGRESQL_LOG_HOSTNAME - POSTGRESQL_CLIENT_MIN_MESSAGES - POSTGRESQL_LOG_LINE_PREFIX - POSTGRESQL_LOG_TIMEZONE - POSTGRESQL_TIMEZONE - POSTGRESQL_MAX_CONNECTIONS - POSTGRESQL_TCP_KEEPALIVES_IDLE - POSTGRESQL_TCP_KEEPALIVES_INTERVAL - POSTGRESQL_TCP_KEEPALIVES_COUNT - POSTGRESQL_STATEMENT_TIMEOUT - POSTGRESQL_PGHBA_REMOVE_FILTERS - POSTGRESQL_USERNAME_CONNECTION_LIMIT - POSTGRESQL_POSTGRES_CONNECTION_LIMIT - POSTGRESQL_WAL_LEVEL - POSTGRESQL_DEFAULT_TOAST_COMPRESSION - POSTGRESQL_PASSWORD_ENCRYPTION - POSTGRESQL_DEFAULT_TRANSACTION_ISOLATION - POSTGRESQL_AUTOCTL_CONF_DIR - POSTGRESQL_AUTOCTL_MODE - POSTGRESQL_AUTOCTL_MONITOR_HOST - POSTGRESQL_AUTOCTL_HOSTNAME - POSTGRES_DATA_DIR - PGDATA - POSTGRES_SHUTDOWN_MODE - POSTGRES_CLUSTER_APP_NAME - POSTGRES_DATABASE - POSTGRES_DB - POSTGRES_INITDB_ARGS - POSTGRES_INITDB_WAL_DIR - POSTGRES_MASTER_HOST - POSTGRES_MASTER_PORT_NUMBER - POSTGRES_NUM_SYNCHRONOUS_REPLICAS - POSTGRES_SYNCHRONOUS_REPLICAS_MODE - POSTGRES_PORT_NUMBER - POSTGRES_ALLOW_REMOTE_CONNECTIONS - POSTGRES_REPLICATION_MODE - POSTGRES_REPLICATION_USER - POSTGRES_SYNCHRONOUS_COMMIT_MODE - POSTGRES_FSYNC - POSTGRES_USERNAME - POSTGRES_USER - POSTGRESQL_USER - POSTGRES_ENABLE_LDAP - POSTGRES_LDAP_URL - POSTGRES_LDAP_PREFIX - POSTGRES_LDAP_SUFFIX - POSTGRES_LDAP_SERVER - POSTGRES_LDAP_PORT - POSTGRES_LDAP_SCHEME - POSTGRES_LDAP_TLS - POSTGRES_LDAP_BASE_DN - POSTGRES_LDAP_BIND_DN - POSTGRES_LDAP_BIND_PASSWORD - POSTGRES_LDAP_SEARCH_ATTR - POSTGRES_LDAP_SEARCH_FILTER - POSTGRES_INITSCRIPTS_USERNAME - POSTGRES_PASSWORD - POSTGRES_POSTGRES_PASSWORD - POSTGRES_REPLICATION_PASSWORD - POSTGRES_INITSCRIPTS_PASSWORD - POSTGRES_ENABLE_TLS - POSTGRES_TLS_CERT_FILE - POSTGRES_TLS_KEY_FILE - POSTGRES_TLS_CA_FILE - POSTGRES_TLS_CRL_FILE - POSTGRES_TLS_PREFER_SERVER_CIPHERS - POSTGRES_SHARED_PRELOAD_LIBRARIES - POSTGRES_PGAUDIT_LOG - POSTGRES_PGAUDIT_LOG_CATALOG - POSTGRES_PGAUDIT_LOG_PARAMETER - POSTGRES_LOG_CONNECTIONS - POSTGRES_LOG_DISCONNECTIONS - POSTGRES_LOG_HOSTNAME - POSTGRES_CLIENT_MIN_MESSAGES - POSTGRES_LOG_LINE_PREFIX - POSTGRES_LOG_TIMEZONE - POSTGRES_TIMEZONE - POSTGRES_MAX_CONNECTIONS - POSTGRES_TCP_KEEPALIVES_IDLE - POSTGRES_TCP_KEEPALIVES_INTERVAL - POSTGRES_TCP_KEEPALIVES_COUNT - POSTGRES_STATEMENT_TIMEOUT - POSTGRES_PGHBA_REMOVE_FILTERS - POSTGRES_USER_CONNECTION_LIMIT - POSTGRES_POSTGRES_CONNECTION_LIMIT -) -for env_var in "${postgresql_env_vars[@]}"; do - file_env_var="${env_var}_FILE" - if [[ -n "${!file_env_var:-}" ]]; then - if [[ -r "${!file_env_var:-}" ]]; then - export "${env_var}=$(< "${!file_env_var}")" - unset "${file_env_var}" - else - warn "Skipping export of '${env_var}'. '${!file_env_var:-}' is not readable." - fi - fi -done -unset postgresql_env_vars - -# Paths -export POSTGRESQL_VOLUME_DIR="${POSTGRESQL_VOLUME_DIR:-/bitnami/postgresql}" -export POSTGRESQL_BASE_DIR="/opt/bitnami/postgresql" -POSTGRESQL_DATA_DIR="${POSTGRESQL_DATA_DIR:-"${POSTGRES_DATA_DIR:-}"}" -POSTGRESQL_DATA_DIR="${POSTGRESQL_DATA_DIR:-"${PGDATA:-}"}" -export POSTGRESQL_DATA_DIR="${POSTGRESQL_DATA_DIR:-${POSTGRESQL_VOLUME_DIR}/data}" -export POSTGRESQL_DEFAULT_CONF_DIR="$POSTGRESQL_BASE_DIR/conf.default" -export POSTGRESQL_CONF_DIR="$POSTGRESQL_BASE_DIR/conf" -export POSTGRESQL_MOUNTED_CONF_DIR="$POSTGRESQL_VOLUME_DIR/conf" -export POSTGRESQL_CONF_FILE="$POSTGRESQL_CONF_DIR/postgresql.conf" -export POSTGRESQL_PGHBA_FILE="$POSTGRESQL_CONF_DIR/pg_hba.conf" -export POSTGRESQL_RECOVERY_FILE="$POSTGRESQL_DATA_DIR/recovery.conf" -export POSTGRESQL_LOG_DIR="$POSTGRESQL_BASE_DIR/logs" -export POSTGRESQL_LOG_FILE="$POSTGRESQL_LOG_DIR/postgresql.log" -export POSTGRESQL_TMP_DIR="$POSTGRESQL_BASE_DIR/tmp" -export POSTGRESQL_PID_FILE="$POSTGRESQL_TMP_DIR/postgresql.pid" -export POSTGRESQL_BIN_DIR="$POSTGRESQL_BASE_DIR/bin" -export POSTGRESQL_INITSCRIPTS_DIR="/docker-entrypoint-initdb.d" -export POSTGRESQL_PREINITSCRIPTS_DIR="/docker-entrypoint-preinitdb.d" -export PATH="${POSTGRESQL_BIN_DIR}:${BITNAMI_ROOT_DIR}/common/bin:${PATH}" - -# System users (when running with a privileged user) -export POSTGRESQL_DAEMON_USER="postgres" -export POSTGRESQL_DAEMON_GROUP="postgres" - -# PostgreSQL settings -export POSTGRESQL_EXTRA_FLAGS="${POSTGRESQL_EXTRA_FLAGS:-}" -export POSTGRESQL_INIT_MAX_TIMEOUT="${POSTGRESQL_INIT_MAX_TIMEOUT:-60}" -export POSTGRESQL_PGCTLTIMEOUT="${POSTGRESQL_PGCTLTIMEOUT:-60}" -POSTGRESQL_SHUTDOWN_MODE="${POSTGRESQL_SHUTDOWN_MODE:-"${POSTGRES_SHUTDOWN_MODE:-}"}" -export POSTGRESQL_SHUTDOWN_MODE="${POSTGRESQL_SHUTDOWN_MODE:-fast}" -POSTGRESQL_CLUSTER_APP_NAME="${POSTGRESQL_CLUSTER_APP_NAME:-"${POSTGRES_CLUSTER_APP_NAME:-}"}" -export POSTGRESQL_CLUSTER_APP_NAME="${POSTGRESQL_CLUSTER_APP_NAME:-walreceiver}" -POSTGRESQL_DATABASE="${POSTGRESQL_DATABASE:-"${POSTGRES_DATABASE:-}"}" -POSTGRESQL_DATABASE="${POSTGRESQL_DATABASE:-"${POSTGRES_DB:-}"}" -export POSTGRESQL_DATABASE="${POSTGRESQL_DATABASE:-postgres}" -POSTGRESQL_INITDB_ARGS="${POSTGRESQL_INITDB_ARGS:-"${POSTGRES_INITDB_ARGS:-}"}" -export POSTGRESQL_INITDB_ARGS="${POSTGRESQL_INITDB_ARGS:-}" -export ALLOW_EMPTY_PASSWORD="${ALLOW_EMPTY_PASSWORD:-no}" -POSTGRESQL_INITDB_WAL_DIR="${POSTGRESQL_INITDB_WAL_DIR:-"${POSTGRES_INITDB_WAL_DIR:-}"}" -export POSTGRESQL_INITDB_WAL_DIR="${POSTGRESQL_INITDB_WAL_DIR:-}" -POSTGRESQL_MASTER_HOST="${POSTGRESQL_MASTER_HOST:-"${POSTGRES_MASTER_HOST:-}"}" -export POSTGRESQL_MASTER_HOST="${POSTGRESQL_MASTER_HOST:-}" -POSTGRESQL_MASTER_PORT_NUMBER="${POSTGRESQL_MASTER_PORT_NUMBER:-"${POSTGRES_MASTER_PORT_NUMBER:-}"}" -export POSTGRESQL_MASTER_PORT_NUMBER="${POSTGRESQL_MASTER_PORT_NUMBER:-5432}" -POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS="${POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS:-"${POSTGRES_NUM_SYNCHRONOUS_REPLICAS:-}"}" -export POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS="${POSTGRESQL_NUM_SYNCHRONOUS_REPLICAS:-0}" -POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE="${POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE:-"${POSTGRES_SYNCHRONOUS_REPLICAS_MODE:-}"}" -export POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE="${POSTGRESQL_SYNCHRONOUS_REPLICAS_MODE:-}" -POSTGRESQL_PORT_NUMBER="${POSTGRESQL_PORT_NUMBER:-"${POSTGRES_PORT_NUMBER:-}"}" -export POSTGRESQL_PORT_NUMBER="${POSTGRESQL_PORT_NUMBER:-5432}" -POSTGRESQL_ALLOW_REMOTE_CONNECTIONS="${POSTGRESQL_ALLOW_REMOTE_CONNECTIONS:-"${POSTGRES_ALLOW_REMOTE_CONNECTIONS:-}"}" -export POSTGRESQL_ALLOW_REMOTE_CONNECTIONS="${POSTGRESQL_ALLOW_REMOTE_CONNECTIONS:-yes}" -POSTGRESQL_REPLICATION_MODE="${POSTGRESQL_REPLICATION_MODE:-"${POSTGRES_REPLICATION_MODE:-}"}" -export POSTGRESQL_REPLICATION_MODE="${POSTGRESQL_REPLICATION_MODE:-master}" -POSTGRESQL_REPLICATION_USER="${POSTGRESQL_REPLICATION_USER:-"${POSTGRES_REPLICATION_USER:-}"}" -export POSTGRESQL_REPLICATION_USER="${POSTGRESQL_REPLICATION_USER:-}" -POSTGRESQL_SYNCHRONOUS_COMMIT_MODE="${POSTGRESQL_SYNCHRONOUS_COMMIT_MODE:-"${POSTGRES_SYNCHRONOUS_COMMIT_MODE:-}"}" -export POSTGRESQL_SYNCHRONOUS_COMMIT_MODE="${POSTGRESQL_SYNCHRONOUS_COMMIT_MODE:-on}" -POSTGRESQL_FSYNC="${POSTGRESQL_FSYNC:-"${POSTGRES_FSYNC:-}"}" -export POSTGRESQL_FSYNC="${POSTGRESQL_FSYNC:-on}" -POSTGRESQL_USERNAME="${POSTGRESQL_USERNAME:-"${POSTGRES_USERNAME:-}"}" -POSTGRESQL_USERNAME="${POSTGRESQL_USERNAME:-"${POSTGRES_USER:-}"}" -POSTGRESQL_USERNAME="${POSTGRESQL_USERNAME:-"${POSTGRESQL_USER:-}"}" -export POSTGRESQL_USERNAME="${POSTGRESQL_USERNAME:-postgres}" -POSTGRESQL_ENABLE_LDAP="${POSTGRESQL_ENABLE_LDAP:-"${POSTGRES_ENABLE_LDAP:-}"}" -export POSTGRESQL_ENABLE_LDAP="${POSTGRESQL_ENABLE_LDAP:-no}" -POSTGRESQL_LDAP_URL="${POSTGRESQL_LDAP_URL:-"${POSTGRES_LDAP_URL:-}"}" -export POSTGRESQL_LDAP_URL="${POSTGRESQL_LDAP_URL:-}" -POSTGRESQL_LDAP_PREFIX="${POSTGRESQL_LDAP_PREFIX:-"${POSTGRES_LDAP_PREFIX:-}"}" -export POSTGRESQL_LDAP_PREFIX="${POSTGRESQL_LDAP_PREFIX:-}" -POSTGRESQL_LDAP_SUFFIX="${POSTGRESQL_LDAP_SUFFIX:-"${POSTGRES_LDAP_SUFFIX:-}"}" -export POSTGRESQL_LDAP_SUFFIX="${POSTGRESQL_LDAP_SUFFIX:-}" -POSTGRESQL_LDAP_SERVER="${POSTGRESQL_LDAP_SERVER:-"${POSTGRES_LDAP_SERVER:-}"}" -export POSTGRESQL_LDAP_SERVER="${POSTGRESQL_LDAP_SERVER:-}" -POSTGRESQL_LDAP_PORT="${POSTGRESQL_LDAP_PORT:-"${POSTGRES_LDAP_PORT:-}"}" -export POSTGRESQL_LDAP_PORT="${POSTGRESQL_LDAP_PORT:-}" -POSTGRESQL_LDAP_SCHEME="${POSTGRESQL_LDAP_SCHEME:-"${POSTGRES_LDAP_SCHEME:-}"}" -export POSTGRESQL_LDAP_SCHEME="${POSTGRESQL_LDAP_SCHEME:-}" -POSTGRESQL_LDAP_TLS="${POSTGRESQL_LDAP_TLS:-"${POSTGRES_LDAP_TLS:-}"}" -export POSTGRESQL_LDAP_TLS="${POSTGRESQL_LDAP_TLS:-}" -POSTGRESQL_LDAP_BASE_DN="${POSTGRESQL_LDAP_BASE_DN:-"${POSTGRES_LDAP_BASE_DN:-}"}" -export POSTGRESQL_LDAP_BASE_DN="${POSTGRESQL_LDAP_BASE_DN:-}" -POSTGRESQL_LDAP_BIND_DN="${POSTGRESQL_LDAP_BIND_DN:-"${POSTGRES_LDAP_BIND_DN:-}"}" -export POSTGRESQL_LDAP_BIND_DN="${POSTGRESQL_LDAP_BIND_DN:-}" -POSTGRESQL_LDAP_BIND_PASSWORD="${POSTGRESQL_LDAP_BIND_PASSWORD:-"${POSTGRES_LDAP_BIND_PASSWORD:-}"}" -export POSTGRESQL_LDAP_BIND_PASSWORD="${POSTGRESQL_LDAP_BIND_PASSWORD:-}" -POSTGRESQL_LDAP_SEARCH_ATTR="${POSTGRESQL_LDAP_SEARCH_ATTR:-"${POSTGRES_LDAP_SEARCH_ATTR:-}"}" -export POSTGRESQL_LDAP_SEARCH_ATTR="${POSTGRESQL_LDAP_SEARCH_ATTR:-}" -POSTGRESQL_LDAP_SEARCH_FILTER="${POSTGRESQL_LDAP_SEARCH_FILTER:-"${POSTGRES_LDAP_SEARCH_FILTER:-}"}" -export POSTGRESQL_LDAP_SEARCH_FILTER="${POSTGRESQL_LDAP_SEARCH_FILTER:-}" -POSTGRESQL_INITSCRIPTS_USERNAME="${POSTGRESQL_INITSCRIPTS_USERNAME:-"${POSTGRES_INITSCRIPTS_USERNAME:-}"}" -export POSTGRESQL_INITSCRIPTS_USERNAME="${POSTGRESQL_INITSCRIPTS_USERNAME:-$POSTGRESQL_USERNAME}" -POSTGRESQL_PASSWORD="${POSTGRESQL_PASSWORD:-"${POSTGRES_PASSWORD:-}"}" -export POSTGRESQL_PASSWORD="${POSTGRESQL_PASSWORD:-}" -POSTGRESQL_POSTGRES_PASSWORD="${POSTGRESQL_POSTGRES_PASSWORD:-"${POSTGRES_POSTGRES_PASSWORD:-}"}" -export POSTGRESQL_POSTGRES_PASSWORD="${POSTGRESQL_POSTGRES_PASSWORD:-}" -POSTGRESQL_REPLICATION_PASSWORD="${POSTGRESQL_REPLICATION_PASSWORD:-"${POSTGRES_REPLICATION_PASSWORD:-}"}" -export POSTGRESQL_REPLICATION_PASSWORD="${POSTGRESQL_REPLICATION_PASSWORD:-}" -POSTGRESQL_INITSCRIPTS_PASSWORD="${POSTGRESQL_INITSCRIPTS_PASSWORD:-"${POSTGRES_INITSCRIPTS_PASSWORD:-}"}" -export POSTGRESQL_INITSCRIPTS_PASSWORD="${POSTGRESQL_INITSCRIPTS_PASSWORD:-$POSTGRESQL_PASSWORD}" -POSTGRESQL_ENABLE_TLS="${POSTGRESQL_ENABLE_TLS:-"${POSTGRES_ENABLE_TLS:-}"}" -export POSTGRESQL_ENABLE_TLS="${POSTGRESQL_ENABLE_TLS:-no}" -POSTGRESQL_TLS_CERT_FILE="${POSTGRESQL_TLS_CERT_FILE:-"${POSTGRES_TLS_CERT_FILE:-}"}" -export POSTGRESQL_TLS_CERT_FILE="${POSTGRESQL_TLS_CERT_FILE:-}" -POSTGRESQL_TLS_KEY_FILE="${POSTGRESQL_TLS_KEY_FILE:-"${POSTGRES_TLS_KEY_FILE:-}"}" -export POSTGRESQL_TLS_KEY_FILE="${POSTGRESQL_TLS_KEY_FILE:-}" -POSTGRESQL_TLS_CA_FILE="${POSTGRESQL_TLS_CA_FILE:-"${POSTGRES_TLS_CA_FILE:-}"}" -export POSTGRESQL_TLS_CA_FILE="${POSTGRESQL_TLS_CA_FILE:-}" -POSTGRESQL_TLS_CRL_FILE="${POSTGRESQL_TLS_CRL_FILE:-"${POSTGRES_TLS_CRL_FILE:-}"}" -export POSTGRESQL_TLS_CRL_FILE="${POSTGRESQL_TLS_CRL_FILE:-}" -POSTGRESQL_TLS_PREFER_SERVER_CIPHERS="${POSTGRESQL_TLS_PREFER_SERVER_CIPHERS:-"${POSTGRES_TLS_PREFER_SERVER_CIPHERS:-}"}" -export POSTGRESQL_TLS_PREFER_SERVER_CIPHERS="${POSTGRESQL_TLS_PREFER_SERVER_CIPHERS:-yes}" -POSTGRESQL_SHARED_PRELOAD_LIBRARIES="${POSTGRESQL_SHARED_PRELOAD_LIBRARIES:-"${POSTGRES_SHARED_PRELOAD_LIBRARIES:-}"}" -export POSTGRESQL_SHARED_PRELOAD_LIBRARIES="${POSTGRESQL_SHARED_PRELOAD_LIBRARIES:-pgaudit}" -POSTGRESQL_PGAUDIT_LOG="${POSTGRESQL_PGAUDIT_LOG:-"${POSTGRES_PGAUDIT_LOG:-}"}" -export POSTGRESQL_PGAUDIT_LOG="${POSTGRESQL_PGAUDIT_LOG:-}" -POSTGRESQL_PGAUDIT_LOG_CATALOG="${POSTGRESQL_PGAUDIT_LOG_CATALOG:-"${POSTGRES_PGAUDIT_LOG_CATALOG:-}"}" -export POSTGRESQL_PGAUDIT_LOG_CATALOG="${POSTGRESQL_PGAUDIT_LOG_CATALOG:-}" -POSTGRESQL_PGAUDIT_LOG_PARAMETER="${POSTGRESQL_PGAUDIT_LOG_PARAMETER:-"${POSTGRES_PGAUDIT_LOG_PARAMETER:-}"}" -export POSTGRESQL_PGAUDIT_LOG_PARAMETER="${POSTGRESQL_PGAUDIT_LOG_PARAMETER:-}" -POSTGRESQL_LOG_CONNECTIONS="${POSTGRESQL_LOG_CONNECTIONS:-"${POSTGRES_LOG_CONNECTIONS:-}"}" -export POSTGRESQL_LOG_CONNECTIONS="${POSTGRESQL_LOG_CONNECTIONS:-}" -POSTGRESQL_LOG_DISCONNECTIONS="${POSTGRESQL_LOG_DISCONNECTIONS:-"${POSTGRES_LOG_DISCONNECTIONS:-}"}" -export POSTGRESQL_LOG_DISCONNECTIONS="${POSTGRESQL_LOG_DISCONNECTIONS:-}" -POSTGRESQL_LOG_HOSTNAME="${POSTGRESQL_LOG_HOSTNAME:-"${POSTGRES_LOG_HOSTNAME:-}"}" -export POSTGRESQL_LOG_HOSTNAME="${POSTGRESQL_LOG_HOSTNAME:-}" -POSTGRESQL_CLIENT_MIN_MESSAGES="${POSTGRESQL_CLIENT_MIN_MESSAGES:-"${POSTGRES_CLIENT_MIN_MESSAGES:-}"}" -export POSTGRESQL_CLIENT_MIN_MESSAGES="${POSTGRESQL_CLIENT_MIN_MESSAGES:-error}" -POSTGRESQL_LOG_LINE_PREFIX="${POSTGRESQL_LOG_LINE_PREFIX:-"${POSTGRES_LOG_LINE_PREFIX:-}"}" -export POSTGRESQL_LOG_LINE_PREFIX="${POSTGRESQL_LOG_LINE_PREFIX:-}" -POSTGRESQL_LOG_TIMEZONE="${POSTGRESQL_LOG_TIMEZONE:-"${POSTGRES_LOG_TIMEZONE:-}"}" -export POSTGRESQL_LOG_TIMEZONE="${POSTGRESQL_LOG_TIMEZONE:-}" -POSTGRESQL_TIMEZONE="${POSTGRESQL_TIMEZONE:-"${POSTGRES_TIMEZONE:-}"}" -export POSTGRESQL_TIMEZONE="${POSTGRESQL_TIMEZONE:-}" -POSTGRESQL_MAX_CONNECTIONS="${POSTGRESQL_MAX_CONNECTIONS:-"${POSTGRES_MAX_CONNECTIONS:-}"}" -export POSTGRESQL_MAX_CONNECTIONS="${POSTGRESQL_MAX_CONNECTIONS:-}" -POSTGRESQL_TCP_KEEPALIVES_IDLE="${POSTGRESQL_TCP_KEEPALIVES_IDLE:-"${POSTGRES_TCP_KEEPALIVES_IDLE:-}"}" -export POSTGRESQL_TCP_KEEPALIVES_IDLE="${POSTGRESQL_TCP_KEEPALIVES_IDLE:-}" -POSTGRESQL_TCP_KEEPALIVES_INTERVAL="${POSTGRESQL_TCP_KEEPALIVES_INTERVAL:-"${POSTGRES_TCP_KEEPALIVES_INTERVAL:-}"}" -export POSTGRESQL_TCP_KEEPALIVES_INTERVAL="${POSTGRESQL_TCP_KEEPALIVES_INTERVAL:-}" -POSTGRESQL_TCP_KEEPALIVES_COUNT="${POSTGRESQL_TCP_KEEPALIVES_COUNT:-"${POSTGRES_TCP_KEEPALIVES_COUNT:-}"}" -export POSTGRESQL_TCP_KEEPALIVES_COUNT="${POSTGRESQL_TCP_KEEPALIVES_COUNT:-}" -POSTGRESQL_STATEMENT_TIMEOUT="${POSTGRESQL_STATEMENT_TIMEOUT:-"${POSTGRES_STATEMENT_TIMEOUT:-}"}" -export POSTGRESQL_STATEMENT_TIMEOUT="${POSTGRESQL_STATEMENT_TIMEOUT:-}" -POSTGRESQL_PGHBA_REMOVE_FILTERS="${POSTGRESQL_PGHBA_REMOVE_FILTERS:-"${POSTGRES_PGHBA_REMOVE_FILTERS:-}"}" -export POSTGRESQL_PGHBA_REMOVE_FILTERS="${POSTGRESQL_PGHBA_REMOVE_FILTERS:-}" -POSTGRESQL_USERNAME_CONNECTION_LIMIT="${POSTGRESQL_USERNAME_CONNECTION_LIMIT:-"${POSTGRES_USER_CONNECTION_LIMIT:-}"}" -export POSTGRESQL_USERNAME_CONNECTION_LIMIT="${POSTGRESQL_USERNAME_CONNECTION_LIMIT:-}" -POSTGRESQL_POSTGRES_CONNECTION_LIMIT="${POSTGRESQL_POSTGRES_CONNECTION_LIMIT:-"${POSTGRES_POSTGRES_CONNECTION_LIMIT:-}"}" -export POSTGRESQL_POSTGRES_CONNECTION_LIMIT="${POSTGRESQL_POSTGRES_CONNECTION_LIMIT:-}" -export POSTGRESQL_WAL_LEVEL="${POSTGRESQL_WAL_LEVEL:-replica}" -export POSTGRESQL_DEFAULT_TOAST_COMPRESSION="${POSTGRESQL_DEFAULT_TOAST_COMPRESSION:-}" -export POSTGRESQL_PASSWORD_ENCRYPTION="${POSTGRESQL_PASSWORD_ENCRYPTION:-}" -export POSTGRESQL_DEFAULT_TRANSACTION_ISOLATION="${POSTGRESQL_DEFAULT_TRANSACTION_ISOLATION:-}" - -# pgAutoFailover settings -export POSTGRESQL_AUTOCTL_VOLUME_DIR="${POSTGRESQL_VOLUME_DIR}/pgautoctl" -export POSTGRESQL_AUTOCTL_CONF_DIR="${POSTGRESQL_AUTOCTL_CONF_DIR:-${POSTGRESQL_AUTOCTL_VOLUME_DIR}/.config}" -export POSTGRESQL_AUTOCTL_MODE="${POSTGRESQL_AUTOCTL_MODE:-postgres}" -export POSTGRESQL_AUTOCTL_MONITOR_HOST="${POSTGRESQL_AUTOCTL_MONITOR_HOST:-monitor}" -export POSTGRESQL_AUTOCTL_HOSTNAME="${POSTGRESQL_AUTOCTL_HOSTNAME:-$(hostname --fqdn)}" - -# pgBackRest settings -export POSTGRESQL_PGBACKREST_VOLUME_DIR="${POSTGRESQL_VOLUME_DIR}/pgbackrest" -export POSTGRESQL_PGBACKREST_LOGS_DIR="${POSTGRESQL_PGBACKREST_VOLUME_DIR}/logs" -export POSTGRESQL_PGBACKREST_BACKUPS_DIR="${POSTGRESQL_PGBACKREST_VOLUME_DIR}/backups" -export POSTGRESQL_PGBACKREST_SPOOL_DIR="${POSTGRESQL_PGBACKREST_VOLUME_DIR}/spool" -export POSTGRESQL_PGBACKREST_CONF_FILE="${POSTGRESQL_DATA_DIR}/pgbackrest.conf" - -# Internal -export POSTGRESQL_FIRST_BOOT="yes" -export NSS_WRAPPER_LIB="/opt/bitnami/common/lib/libnss_wrapper.so" - -# Custom environment variables may be defined below diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/entrypoint.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/entrypoint.sh deleted file mode 100755 index ffda913abc5b9..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/entrypoint.sh +++ /dev/null @@ -1,38 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -# shellcheck disable=SC1091 - -set -o errexit -set -o nounset -set -o pipefail -#set -o xtrace - -# Load libraries -. /opt/bitnami/scripts/libbitnami.sh -. /opt/bitnami/scripts/libpostgresql.sh - -# Load PostgreSQL environment variables -. /opt/bitnami/scripts/postgresql-env.sh - -print_welcome_page - -# Enable the nss_wrapper settings -postgresql_enable_nss_wrapper - -# We add the copy from default config in the entrypoint to not break users -# bypassing the setup.sh logic. If the file already exists do not overwrite (in -# case someone mounts a configuration file in /opt/bitnami/postgresql/conf) -debug "Copying files from $POSTGRESQL_DEFAULT_CONF_DIR to $POSTGRESQL_CONF_DIR" -cp -nr "$POSTGRESQL_DEFAULT_CONF_DIR"/. "$POSTGRESQL_CONF_DIR" - -if [[ "$*" = *"/opt/bitnami/scripts/postgresql/run.sh"* ]]; then - info "** Starting PostgreSQL setup **" - /opt/bitnami/scripts/postgresql/setup.sh - touch "$POSTGRESQL_TMP_DIR"/.initialized - info "** PostgreSQL setup finished! **" -fi - -echo "" -exec "$@" diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/postunpack.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/postunpack.sh deleted file mode 100755 index 1f1d51b360a29..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/postunpack.sh +++ /dev/null @@ -1,32 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -# shellcheck disable=SC1091 - -# Load libraries -. /opt/bitnami/scripts/libfs.sh -. /opt/bitnami/scripts/libpostgresql.sh - -# Load PostgreSQL environment variables -. /opt/bitnami/scripts/postgresql-env.sh - -for dir in "$POSTGRESQL_INITSCRIPTS_DIR" "$POSTGRESQL_TMP_DIR" "$POSTGRESQL_LOG_DIR" "$POSTGRESQL_CONF_DIR" "${POSTGRESQL_CONF_DIR}/conf.d" "$POSTGRESQL_MOUNTED_CONF_DIR" "$POSTGRESQL_DEFAULT_CONF_DIR" "${POSTGRESQL_MOUNTED_CONF_DIR}/conf.d" "$POSTGRESQL_VOLUME_DIR"; do - ensure_dir_exists "$dir" -done - -# Create basic pg_hba.conf for local connections -postgresql_allow_local_connection -# Create basic postgresql.conf -postgresql_create_config - -chmod -R g+rwX "$POSTGRESQL_INITSCRIPTS_DIR" "$POSTGRESQL_TMP_DIR" "$POSTGRESQL_LOG_DIR" "$POSTGRESQL_CONF_DIR" "${POSTGRESQL_CONF_DIR}/conf.d" "$POSTGRESQL_MOUNTED_CONF_DIR" "${POSTGRESQL_MOUNTED_CONF_DIR}/conf.d" "$POSTGRESQL_VOLUME_DIR" - -# Copy all initially generated configuration files to the default directory -# (this is to avoid breaking when entrypoint is being overridden) -cp -r "${POSTGRESQL_CONF_DIR}/"* "$POSTGRESQL_DEFAULT_CONF_DIR" - -# Redirect all logging to stdout -ln -sf /dev/stdout "$POSTGRESQL_LOG_DIR/postgresql.log" -ln -sf /dev/stdout "$POSTGRESQL_LOG_DIR/postgresql.csv" -ln -sf /dev/stdout "$POSTGRESQL_LOG_DIR/postgresql.json" diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/run-autoctl.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/run-autoctl.sh deleted file mode 100755 index aafedc8a66d07..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/run-autoctl.sh +++ /dev/null @@ -1,32 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -# shellcheck disable=SC1091 - -set -o errexit -set -o nounset -set -o pipefail -# set -o xtrace # Uncomment this line for debugging purposes - -# Load libraries -. /opt/bitnami/scripts/libpostgresql.sh -. /opt/bitnami/scripts/libautoctl.sh -. /opt/bitnami/scripts/libos.sh - -# Load PostgreSQL environment variables -. /opt/bitnami/scripts/postgresql-env.sh - -export HOME="$POSTGRESQL_AUTOCTL_VOLUME_DIR" - -autoctl_initialize - -flags=("run" "--pgdata" "$POSTGRESQL_DATA_DIR") -cmd=$(command -v pg_autoctl) - -info "** Starting PostgreSQL autoctl_node (Mode: $POSTGRESQL_AUTOCTL_MODE) **" -if am_i_root; then - exec_as_user "$POSTGRESQL_DAEMON_USER" "$cmd" "${flags[@]}" -else - PGPASSWORD=$POSTGRESQL_REPLICATION_PASSWORD exec "$cmd" "${flags[@]}" -fi diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/run.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/run.sh deleted file mode 100755 index 174049f65dafe..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/run.sh +++ /dev/null @@ -1,39 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -# shellcheck disable=SC1091 - -set -o errexit -set -o nounset -set -o pipefail -# set -o xtrace # Uncomment this line for debugging purposes - -# Load libraries -. /opt/bitnami/scripts/libpostgresql.sh -. /opt/bitnami/scripts/libos.sh - -# Load PostgreSQL environment variables -. /opt/bitnami/scripts/postgresql-env.sh - -flags=("-D" "$POSTGRESQL_DATA_DIR" "--config-file=$POSTGRESQL_CONF_FILE" "--external_pid_file=$POSTGRESQL_PID_FILE" "--hba_file=$POSTGRESQL_PGHBA_FILE") - -if [[ -n "${POSTGRESQL_EXTRA_FLAGS:-}" ]]; then - read -r -a extra_flags <<< "$POSTGRESQL_EXTRA_FLAGS" - flags+=("${extra_flags[@]}") -fi - -if [[ -n "${POSTGRESQL_DEFAULT_TRANSACTION_ISOLATION:-}" ]]; then - flags+=("-c" "default_transaction_isolation=$POSTGRESQL_DEFAULT_TRANSACTION_ISOLATION") -fi - -flags+=("$@") - -cmd=$(command -v postgres) - -info "** Starting PostgreSQL **" -if am_i_root; then - exec_as_user "$POSTGRESQL_DAEMON_USER" "$cmd" "${flags[@]}" -else - exec "$cmd" "${flags[@]}" -fi diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/setup.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/setup.sh deleted file mode 100755 index 3b69029959843..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/postgresql/setup.sh +++ /dev/null @@ -1,49 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -# -# Bitnami PostgreSQL setup - -# shellcheck disable=SC1091 - -set -o errexit -set -o nounset -set -o pipefail - -# Load libraries -. /opt/bitnami/scripts/liblog.sh -. /opt/bitnami/scripts/libos.sh -. /opt/bitnami/scripts/libvalidations.sh -. /opt/bitnami/scripts/libpostgresql.sh - -# Load PostgreSQL environment variables -. /opt/bitnami/scripts/postgresql-env.sh - -# Ensure PostgreSQL environment variables settings are valid -postgresql_validate -# Ensure PostgreSQL is stopped when this script ends. -trap "postgresql_stop" EXIT -# Ensure 'daemon' user exists when running as 'root' -am_i_root && ensure_user_exists "$POSTGRESQL_DAEMON_USER" --group "$POSTGRESQL_DAEMON_GROUP" -# Fix logging issue when running as root -am_i_root && chmod o+w "$(readlink /dev/stdout)" -# Remove flags and postmaster files from a previous run -postgresql_clean_from_restart -# Allow running custom pre-initialization scripts -postgresql_custom_pre_init_scripts -# Ensure PostgreSQL is initialized -postgresql_initialize -# Allow running custom initialization scripts -postgresql_custom_init_scripts - -# Allow remote connections once the initialization is finished -if ! postgresql_is_file_external "postgresql.conf" && is_boolean_yes "$POSTGRESQL_ALLOW_REMOTE_CONNECTIONS"; then - info "Enabling remote connections" - postgresql_enable_remote_connections -fi - -# Remove any pg_hba.conf lines that match the given filters -if ! postgresql_is_file_external "pg_hba.conf" && [[ -n "$POSTGRESQL_PGHBA_REMOVE_FILTERS" ]]; then - info "Removing lines that match these filters: ${POSTGRESQL_PGHBA_REMOVE_FILTERS}" - postgresql_remove_pghba_lines -fi diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/supabase-postgres/migrate.sh b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/supabase-postgres/migrate.sh deleted file mode 100755 index 48a2bcee4df94..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/supabase-postgres/migrate.sh +++ /dev/null @@ -1,43 +0,0 @@ -#!/bin/bash -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -# shellcheck disable=SC1090,SC1091 -set -eu - -. /opt/bitnami/scripts/libpostgresql.sh -. /opt/bitnami/scripts/postgresql-env.sh - -## -## Script adapted from upstream migrate.sh -## https://github.com/supabase/postgres/blob/develop/migrations/db/migrate.sh -## - -export PGDATABASE="${POSTGRESQL_DB:-postgres}" -export PGHOST="${POSTGRES_HOST:-localhost}" -export PGPORT="${POSTGRESQL_PORT_NUMBER:-5432}" -if [[ "$POSTGRESQL_USERNAME" = "postgres" ]]; then - export PGPASSWORD="${POSTGRESQL_PASSWORD:-}" -else - export PGPASSWORD="${POSTGRESQL_POSTGRES_PASSWORD:-}" -fi - -for sql in /opt/bitnami/supabase-postgres/migrations/*.sql; do - echo "$0: running $sql" - psql -v ON_ERROR_STOP=1 --no-password --no-psqlrc -U postgres -f "$sql" -done - -for sql in /opt/bitnami/supabase-postgres/migrations/db/init-scripts/*.sql; do - echo "$0: running $sql" - psql -v ON_ERROR_STOP=1 --no-password --no-psqlrc -U postgres -f "$sql" -done -echo "Configuring supabase_admin user" -psql -v ON_ERROR_STOP=1 --no-password --no-psqlrc -U postgres -c "ALTER USER supabase_admin WITH PASSWORD '$PGPASSWORD'" -# run migrations as super user - postgres user demoted in post-setup -for sql in /opt/bitnami/supabase-postgres/migrations/db/migrations/*.sql; do - echo "$0: running $sql" - psql -v ON_ERROR_STOP=1 --no-password --no-psqlrc -U supabase_admin -f "$sql" -done - -# once done with everything, reset stats from init -psql -v ON_ERROR_STOP=1 --no-password --no-psqlrc -U supabase_admin -c 'SELECT extensions.pg_stat_statements_reset(); SELECT pg_stat_reset();' || true diff --git a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/supabase-postgres/pgsodium_getkey b/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/supabase-postgres/pgsodium_getkey deleted file mode 100755 index 219c49373d59a..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/rootfs/opt/bitnami/scripts/supabase-postgres/pgsodium_getkey +++ /dev/null @@ -1,15 +0,0 @@ -#!/bin/bash - -# Script adapted from upstream supabase-postgres -# https://github.com/supabase/postgres/blob/develop/ansible/files/admin_api_scripts/pg_upgrade_pgsodium_getkey.sh - -set -euo pipefail - -KEY_FILE=/opt/bitnami/postgresql/conf/pgsodium_root.key - -# if key file doesn't exist (project previously didn't use pgsodium), generate a new key -if [[ ! -f "${KEY_FILE}" ]]; then - head -c 32 /dev/urandom | od -A n -t x1 | tr -d ' \n' >$KEY_FILE -fi - -cat $KEY_FILE diff --git a/bitnami/supabase-postgres/15/debian-12/tags-info.yaml b/bitnami/supabase-postgres/15/debian-12/tags-info.yaml deleted file mode 100644 index 4849a4a7e750f..0000000000000 --- a/bitnami/supabase-postgres/15/debian-12/tags-info.yaml +++ /dev/null @@ -1,5 +0,0 @@ -rolling-tags: -- "15" -- 15-debian-12 -- 15.6.1 -- latest diff --git a/bitnami/supabase-postgres/README.md b/bitnami/supabase-postgres/README.md deleted file mode 100644 index 9569f9a59a161..0000000000000 --- a/bitnami/supabase-postgres/README.md +++ /dev/null @@ -1,115 +0,0 @@ -# Bitnami package for Supabase Postgres - -## What is Supabase Postgres? - -> Supabase Postgres is a component of Supabase. Supabase is an open source implementation of Firebase. Supabase Postgres is an unmodified PostgreSQL with the necessary plugins to work with Supabase. - -[Overview of Supabase Postgres](https://github.com/supabase/postgres) -Trademarks: This software listing is packaged by Bitnami. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. - -## TL;DR - -```console -docker run -it --name supabase-postgres bitnami/supabase-postgres -``` - -## Why use Bitnami Images? - -* Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. -* With Bitnami images the latest bug fixes and features are available as soon as possible. -* Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. -* All our images are based on [**minideb**](https://github.com/bitnami/minideb) -a minimalist Debian based container image that gives you a small base container image and the familiarity of a leading Linux distribution- or **scratch** -an explicitly empty image-. -* All Bitnami images available in Docker Hub are signed with [Notation](https://notaryproject.dev/). [Check this post](https://blog.bitnami.com/2024/03/bitnami-packaged-containers-and-helm.html) to know how to verify the integrity of the images. -* Bitnami container images are released on a regular basis with the latest distribution packages available. - -Looking to use Supabase Postgres in production? Try [VMware Tanzu Application Catalog](https://bitnami.com/enterprise), the commercial edition of the Bitnami catalog. - -## Supported tags and respective `Dockerfile` links - -Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html). - -You can see the equivalence between the different tags by taking a look at the `tags-info.yaml` file present in the branch folder, i.e `bitnami/ASSET/BRANCH/DISTRO/tags-info.yaml`. - -Subscribe to project updates by watching the [bitnami/containers GitHub repo](https://github.com/bitnami/containers). - -## Get this image - -The recommended way to get the Bitnami Supabase Postgres Docker Image is to pull the prebuilt image from the [Docker Hub Registry](https://hub.docker.com/r/bitnami/supabase-postgres). - -```console -docker pull bitnami/supabase-postgres:latest -``` - -To use a specific version, you can pull a versioned tag. You can view the [list of available versions](https://hub.docker.com/r/bitnami/supabase-postgres/tags/) in the Docker Hub Registry. - -```console -docker pull bitnami/supabase-postgres:[TAG] -``` - -If you wish, you can also build the image yourself by cloning the repository, changing to the directory containing the Dockerfile and executing the `docker build` command. Remember to replace the `APP`, `VERSION` and `OPERATING-SYSTEM` path placeholders in the example command below with the correct values. - -```console -git clone https://github.com/bitnami/containers.git -cd bitnami/APP/VERSION/OPERATING-SYSTEM -docker build -t bitnami/APP:latest . -``` - -## Maintenance - -### Upgrade this image - -Bitnami provides up-to-date versions of Supabase Postgres, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. - -#### Step 1: Get the updated image - -```console -docker pull bitnami/supabase-postgres:latest -``` - -#### Step 2: Remove the currently running container - -```console -docker rm -v supabase-postgres -``` - -#### Step 3: Run the new image - -Re-create your container from the new image. - -```console -docker run --name supabase-postgres bitnami/supabase-postgres:latest -``` - -## Configuration - -This container is fully compatible with the [bitnami/postgresql](https://github.com/bitnami/containers/tree/main/bitnami/postgresql) container. Read the [bitnami/postgresql documentation](https://github.com/bitnami/containers/tree/main/bitnami/postgresql#configuration) for instructions on how to configure the container. - -## Notable Changes - -### Starting January 16, 2024 - -* The `docker-compose.yaml` file has been removed, as it was solely intended for internal testing purposes. - -## Contributing - -We'd love for you to contribute to this Docker image. You can request new features by creating an [issue](https://github.com/bitnami/containers/issues) or submitting a [pull request](https://github.com/bitnami/containers/pulls) with your contribution. - -## Issues - -If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/containers/issues/new/choose). For us to provide better support, be sure to fill the issue template. - -## License - -Copyright © 2024 Broadcom. The term "Broadcom" refers to Broadcom Inc. and/or its subsidiaries. - -Licensed under the Apache License, Version 2.0 (the "License"); -you may not use this file except in compliance with the License. -You may obtain a copy of the License at - - - -Unless required by applicable law or agreed to in writing, software -distributed under the License is distributed on an "AS IS" BASIS, -WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -See the License for the specific language governing permissions and -limitations under the License. diff --git a/bitnami/supabase-realtime/2/debian-12/Dockerfile b/bitnami/supabase-realtime/2/debian-12/Dockerfile deleted file mode 100644 index 164ad86ffc460..0000000000000 --- a/bitnami/supabase-realtime/2/debian-12/Dockerfile +++ /dev/null @@ -1,54 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -FROM docker.io/bitnami/minideb:bookworm - -ARG TARGETARCH - -LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ - org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ - org.opencontainers.image.created="2024-08-28T17:35:01Z" \ - org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ - org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/supabase-realtime/README.md" \ - org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="2.30.30-debian-12-r0" \ - org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/supabase-realtime" \ - org.opencontainers.image.title="supabase-realtime" \ - org.opencontainers.image.vendor="Broadcom, Inc." \ - org.opencontainers.image.version="2.30.30" - -ENV HOME="/" \ - OS_ARCH="${TARGETARCH:-amd64}" \ - OS_FLAVOUR="debian-12" \ - OS_NAME="linux" - -COPY prebuildfs / -SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] -# Install required system packages and dependencies -RUN install_packages ca-certificates curl libgcc-s1 libssl3 libstdc++6 libtinfo6 procps zlib1g -RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \ - COMPONENTS=( \ - "supabase-realtime-2.30.30-0-linux-${OS_ARCH}-debian-12" \ - ) ; \ - for COMPONENT in "${COMPONENTS[@]}"; do \ - if [ ! -f "${COMPONENT}.tar.gz" ]; then \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz" -O ; \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz.sha256" -O ; \ - fi ; \ - sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ - tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' ; \ - rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ - done -RUN apt-get autoremove --purge -y curl && \ - apt-get update && apt-get upgrade -y && \ - apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives -RUN useradd -r -u 1001 -g root supabase-realtime -RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true -RUN chmod g+rwX -R /opt/bitnami/supabase-realtime/lib/tzdata-*/priv && ln -s /opt/bitnami/supabase-realtime/lib/tzdata-*/priv /.tzdata-priv - -ENV APP_VERSION="2.30.30" \ - BITNAMI_APP_NAME="supabase-realtime" \ - PATH="/opt/bitnami/supabase-realtime/bin:$PATH" - -USER 1001 -ENTRYPOINT [ "/opt/bitnami/supabase-realtime/bin/server" ] diff --git a/bitnami/supabase-realtime/2/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/supabase-realtime/2/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json deleted file mode 100644 index 9a8a59b79f647..0000000000000 --- a/bitnami/supabase-realtime/2/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json +++ /dev/null @@ -1,8 +0,0 @@ -{ - "supabase-realtime": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "2.30.30-0" - } -} \ No newline at end of file diff --git a/bitnami/supabase-realtime/2/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt b/bitnami/supabase-realtime/2/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt deleted file mode 100644 index 76956b38e82c6..0000000000000 --- a/bitnami/supabase-realtime/2/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt +++ /dev/null @@ -1,2 +0,0 @@ -Bitnami containers ship with software bundles. You can find the licenses under: -/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt diff --git a/bitnami/supabase-realtime/2/debian-12/prebuildfs/usr/sbin/install_packages b/bitnami/supabase-realtime/2/debian-12/prebuildfs/usr/sbin/install_packages deleted file mode 100755 index ccce248b2d141..0000000000000 --- a/bitnami/supabase-realtime/2/debian-12/prebuildfs/usr/sbin/install_packages +++ /dev/null @@ -1,27 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -eu - -n=0 -max=2 -export DEBIAN_FRONTEND=noninteractive - -until [ $n -gt $max ]; do - set +e - ( - apt-get update -qq && - apt-get install -y --no-install-recommends "$@" - ) - CODE=$? - set -e - if [ $CODE -eq 0 ]; then - break - fi - if [ $n -eq $max ]; then - exit $CODE - fi - echo "apt failed, retrying" - n=$(($n + 1)) -done -apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives diff --git a/bitnami/supabase-realtime/2/debian-12/prebuildfs/usr/sbin/run-script b/bitnami/supabase-realtime/2/debian-12/prebuildfs/usr/sbin/run-script deleted file mode 100755 index 0e07c9038dfde..0000000000000 --- a/bitnami/supabase-realtime/2/debian-12/prebuildfs/usr/sbin/run-script +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -u - -if [ $# -eq 0 ]; then - >&2 echo "No arguments provided" - exit 1 -fi - -script=$1 -exit_code="${2:-96}" -fail_if_not_present="${3:-n}" - -if test -f "$script"; then - sh $script - - if [ $? -ne 0 ]; then - exit $((exit_code)) - fi -elif [ "$fail_if_not_present" = "y" ]; then - >&2 echo "script not found: $script" - exit 127 -fi diff --git a/bitnami/supabase-realtime/2/debian-12/tags-info.yaml b/bitnami/supabase-realtime/2/debian-12/tags-info.yaml deleted file mode 100644 index de92a17186b86..0000000000000 --- a/bitnami/supabase-realtime/2/debian-12/tags-info.yaml +++ /dev/null @@ -1,5 +0,0 @@ -rolling-tags: -- "2" -- 2-debian-12 -- 2.30.30 -- latest diff --git a/bitnami/supabase-realtime/README.md b/bitnami/supabase-realtime/README.md deleted file mode 100644 index 7cfd6bb877e81..0000000000000 --- a/bitnami/supabase-realtime/README.md +++ /dev/null @@ -1,157 +0,0 @@ -# Bitnami package for Supabase Realtime - -## What is Supabase Realtime? - -> Supabase Realtime is a component of Supabase. Supabase is an open source implementation of Firebase. Supabase Realtime tracks and synchronizes changes in PostgreSQL instances using Websockets. - -[Overview of Supabase Realtime](https://github.com/supabase/realtime) -Trademarks: This software listing is packaged by Bitnami. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. - -## TL;DR - -```console -docker run -it --name supabase-realtime bitnami/supabase-realtime -``` - -## Why use Bitnami Images? - -* Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. -* With Bitnami images the latest bug fixes and features are available as soon as possible. -* Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. -* All our images are based on [**minideb**](https://github.com/bitnami/minideb) -a minimalist Debian based container image that gives you a small base container image and the familiarity of a leading Linux distribution- or **scratch** -an explicitly empty image-. -* All Bitnami images available in Docker Hub are signed with [Notation](https://notaryproject.dev/). [Check this post](https://blog.bitnami.com/2024/03/bitnami-packaged-containers-and-helm.html) to know how to verify the integrity of the images. -* Bitnami container images are released on a regular basis with the latest distribution packages available. - -Looking to use Supabase Realtime in production? Try [VMware Tanzu Application Catalog](https://bitnami.com/enterprise), the commercial edition of the Bitnami catalog. - -## Supported tags and respective `Dockerfile` links - -Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html). - -You can see the equivalence between the different tags by taking a look at the `tags-info.yaml` file present in the branch folder, i.e `bitnami/ASSET/BRANCH/DISTRO/tags-info.yaml`. - -Subscribe to project updates by watching the [bitnami/containers GitHub repo](https://github.com/bitnami/containers). - -## Get this image - -The recommended way to get the Bitnami Supabase Realtime Docker Image is to pull the prebuilt image from the [Docker Hub Registry](https://hub.docker.com/r/bitnami/supabase-realtime). - -```console -docker pull bitnami/supabase-realtime:latest -``` - -To use a specific version, you can pull a versioned tag. You can view the [list of available versions](https://hub.docker.com/r/bitnami/supabase-realtime/tags/) in the Docker Hub Registry. - -```console -docker pull bitnami/supabase-realtime:[TAG] -``` - -If you wish, you can also build the image yourself by cloning the repository, changing to the directory containing the Dockerfile and executing the `docker build` command. Remember to replace the `APP`, `VERSION` and `OPERATING-SYSTEM` path placeholders in the example command below with the correct values. - -```console -git clone https://github.com/bitnami/containers.git -cd bitnami/APP/VERSION/OPERATING-SYSTEM -docker build -t bitnami/APP:latest . -``` - -## Maintenance - -### Upgrade this image - -Bitnami provides up-to-date versions of Supabase Realtime, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. - -#### Step 1: Get the updated image - -```console -docker pull bitnami/supabase-realtime:latest -``` - -#### Step 2: Remove the currently running container - -```console -docker rm -v supabase-realtime -``` - -#### Step 3: Run the new image - -Re-create your container from the new image. - -```console -docker run --name supabase-realtime bitnami/supabase-realtime:latest -``` - -## Configuration - -### Environment variables - -#### Customizable environment variables - -| Name | Description | Default Value | -|-----------------------------|---------------------------------|-------------------------| -| `DB_HOST` | Database host | `localhost` | -| `DB_PORT` | Database port number | `5432` | -| `DB_NAME` | Database name | `postgres` | -| `DB_USER` | Database user username | `postgres` | -| `DB_PASSWORD` | Database password | `nil` | -| `DB_SSL` | Database SSL connection enabled | `disable` | -| `API_JWT_SECRET` | API Secret | `nil` | -| `SECRET_KEY_BASE` | Key Base Secret | `nil` | -| `PORT` | Service Port | `9500` | -| `APP_NAME` | App Name | `realtime` | -| `ERL_AFLAGS` | Flags | `-proto_dist inet_tcp` | -| `REPLICATION_MODE` | Replication Mode | `RLS` | -| `REPLICATION_POLL_INTERVAL` | Replication pool interval | `100` | -| `SECURE_CHANNELS` | Secure channels | `true` | -| `SLOT_NAME` | Slot name | `supabase_realtime_rls` | -| `TEMPORARY_SLOT` | Temporary Slot | `true` | - -#### Read-only environment variables - -| Name | Description | Value | -|----------------------------------|-----------------------------------------------------|-------------------------------------------------------| -| `SUPABASE_REALTIME_BASE_DIR` | Supabase-realtime installation directory. | `${BITNAMI_ROOT_DIR}/supabase-realtime` | -| `SUPABASE_REALTIME_LOGS_DIR` | Directory where Supabase-realtime logs are stored. | `${SUPABASE_REALTIME_BASE_DIR}/logs` | -| `SUPABASE_REALTIME_LOG_FILE` | Directory where Supabase-realtime logs are stored. | `${SUPABASE_REALTIME_LOGS_DIR}/supabase-realtime.log` | -| `SUPABASE_REALTIME_BIN_DIR` | Supabase-realtime directory for binary executables. | `${SUPABASE_REALTIME_BASE_DIR}/bin` | -| `SUPABASE_REALTIME_DAEMON_USER` | postgrest system user. | `supabase` | -| `SUPABASE_REALTIME_DAEMON_GROUP` | postgrest system group. | `supabase` | - -### Running commands - -To run commands inside this container you can use `docker run`, for example to execute `supabase-realtime --help` you can follow the example below: - -```console -docker run --rm --name supabase-realtime bitnami/supabase-realtime:latest --help -``` - -Check the [official Supabase Realtime documentation](https://github.com/supabase/realtime) for more information about how to use Supabase Realtime. - -## Notable Changes - -### Starting January 16, 2024 - -* The `docker-compose.yaml` file has been removed, as it was solely intended for internal testing purposes. - -## Contributing - -We'd love for you to contribute to this Docker image. You can request new features by creating an [issue](https://github.com/bitnami/containers/issues) or submitting a [pull request](https://github.com/bitnami/containers/pulls) with your contribution. - -## Issues - -If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/containers/issues/new/choose). For us to provide better support, be sure to fill the issue template. - -## License - -Copyright © 2024 Broadcom. The term "Broadcom" refers to Broadcom Inc. and/or its subsidiaries. - -Licensed under the Apache License, Version 2.0 (the "License"); -you may not use this file except in compliance with the License. -You may obtain a copy of the License at - - - -Unless required by applicable law or agreed to in writing, software -distributed under the License is distributed on an "AS IS" BASIS, -WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -See the License for the specific language governing permissions and -limitations under the License. diff --git a/bitnami/supabase-storage/1/debian-12/Dockerfile b/bitnami/supabase-storage/1/debian-12/Dockerfile deleted file mode 100644 index 4c37a4b5065fd..0000000000000 --- a/bitnami/supabase-storage/1/debian-12/Dockerfile +++ /dev/null @@ -1,59 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -FROM docker.io/bitnami/minideb:bookworm - -ARG TARGETARCH - -LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ - org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ - org.opencontainers.image.created="2024-08-23T21:59:15Z" \ - org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ - org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/supabase-storage/README.md" \ - org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="1.10.3-debian-12-r0" \ - org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/supabase-storage" \ - org.opencontainers.image.title="supabase-storage" \ - org.opencontainers.image.vendor="Broadcom, Inc." \ - org.opencontainers.image.version="1.10.3" - -ENV HOME="/" \ - OS_ARCH="${TARGETARCH:-amd64}" \ - OS_FLAVOUR="debian-12" \ - OS_NAME="linux" - -COPY prebuildfs / -SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] -# Install required system packages and dependencies -RUN install_packages ca-certificates curl libbz2-1.0 libcom-err2 libcrypt1 libffi8 libgcc-s1 libgssapi-krb5-2 libk5crypto3 libkeyutils1 libkrb5-3 libkrb5support0 liblzma5 libncursesw6 libnsl2 libreadline8 libsqlite3-0 libssl3 libstdc++6 libtinfo6 libtirpc3 procps zlib1g -RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \ - COMPONENTS=( \ - "python-3.12.5-1-linux-${OS_ARCH}-debian-12" \ - "node-20.17.0-1-linux-${OS_ARCH}-debian-12" \ - "supabase-storage-1.10.3-0-linux-${OS_ARCH}-debian-12" \ - ) ; \ - for COMPONENT in "${COMPONENTS[@]}"; do \ - if [ ! -f "${COMPONENT}.tar.gz" ]; then \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz" -O ; \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz.sha256" -O ; \ - fi ; \ - sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ - tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' ; \ - rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ - done -RUN mkdir -p /.pm2 && chmod g+rwX /.pm2 -RUN apt-get autoremove --purge -y curl && \ - apt-get update && apt-get upgrade -y && \ - apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives -RUN useradd -r -u 1001 -g root supabase-storage -RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true - -ENV APP_VERSION="1.10.3" \ - BITNAMI_APP_NAME="supabase-storage" \ - PATH="/opt/bitnami/python/bin:/opt/bitnami/node/bin:/opt/bitnami/supabase-storage/node_modules/.bin:$PATH" - -EXPOSE 3000 - -WORKDIR /opt/bitnami/supabase-storage -USER 1001 -ENTRYPOINT [ "/opt/bitnami/supabase-storage/node_modules/.bin/pm2-runtime" ] diff --git a/bitnami/supabase-storage/1/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/supabase-storage/1/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json deleted file mode 100644 index 2d5d44d5949cf..0000000000000 --- a/bitnami/supabase-storage/1/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json +++ /dev/null @@ -1,20 +0,0 @@ -{ - "node": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "20.17.0-1" - }, - "python": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "3.12.5-1" - }, - "supabase-storage": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "1.10.3-0" - } -} \ No newline at end of file diff --git a/bitnami/supabase-storage/1/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt b/bitnami/supabase-storage/1/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt deleted file mode 100644 index 76956b38e82c6..0000000000000 --- a/bitnami/supabase-storage/1/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt +++ /dev/null @@ -1,2 +0,0 @@ -Bitnami containers ship with software bundles. You can find the licenses under: -/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt diff --git a/bitnami/supabase-storage/1/debian-12/prebuildfs/usr/sbin/install_packages b/bitnami/supabase-storage/1/debian-12/prebuildfs/usr/sbin/install_packages deleted file mode 100755 index ccce248b2d141..0000000000000 --- a/bitnami/supabase-storage/1/debian-12/prebuildfs/usr/sbin/install_packages +++ /dev/null @@ -1,27 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -eu - -n=0 -max=2 -export DEBIAN_FRONTEND=noninteractive - -until [ $n -gt $max ]; do - set +e - ( - apt-get update -qq && - apt-get install -y --no-install-recommends "$@" - ) - CODE=$? - set -e - if [ $CODE -eq 0 ]; then - break - fi - if [ $n -eq $max ]; then - exit $CODE - fi - echo "apt failed, retrying" - n=$(($n + 1)) -done -apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives diff --git a/bitnami/supabase-storage/1/debian-12/prebuildfs/usr/sbin/run-script b/bitnami/supabase-storage/1/debian-12/prebuildfs/usr/sbin/run-script deleted file mode 100755 index 0e07c9038dfde..0000000000000 --- a/bitnami/supabase-storage/1/debian-12/prebuildfs/usr/sbin/run-script +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -u - -if [ $# -eq 0 ]; then - >&2 echo "No arguments provided" - exit 1 -fi - -script=$1 -exit_code="${2:-96}" -fail_if_not_present="${3:-n}" - -if test -f "$script"; then - sh $script - - if [ $? -ne 0 ]; then - exit $((exit_code)) - fi -elif [ "$fail_if_not_present" = "y" ]; then - >&2 echo "script not found: $script" - exit 127 -fi diff --git a/bitnami/supabase-storage/1/debian-12/tags-info.yaml b/bitnami/supabase-storage/1/debian-12/tags-info.yaml deleted file mode 100644 index e7977bc44c8ab..0000000000000 --- a/bitnami/supabase-storage/1/debian-12/tags-info.yaml +++ /dev/null @@ -1,5 +0,0 @@ -rolling-tags: -- "1" -- 1-debian-12 -- 1.10.3 -- latest diff --git a/bitnami/supabase-storage/README.md b/bitnami/supabase-storage/README.md deleted file mode 100644 index 565efc67113a0..0000000000000 --- a/bitnami/supabase-storage/README.md +++ /dev/null @@ -1,159 +0,0 @@ -# Bitnami package for Supabase Storage - -## What is Supabase Storage? - -> supabase-storage is a component of Supabase. Supabase is an open source implementation of Firebase. supabase-storage is a RESTful API for managing the PostgreSQL database. - -[Overview of Supabase Storage](https://github.com/supabase/storage-api) -Trademarks: This software listing is packaged by Bitnami. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. - -## TL;DR - -```console -docker run -it --name supabase-storage bitnami/supabase-storage -``` - -## Why use Bitnami Images? - -* Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. -* With Bitnami images the latest bug fixes and features are available as soon as possible. -* Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. -* All our images are based on [**minideb**](https://github.com/bitnami/minideb) -a minimalist Debian based container image that gives you a small base container image and the familiarity of a leading Linux distribution- or **scratch** -an explicitly empty image-. -* All Bitnami images available in Docker Hub are signed with [Notation](https://notaryproject.dev/). [Check this post](https://blog.bitnami.com/2024/03/bitnami-packaged-containers-and-helm.html) to know how to verify the integrity of the images. -* Bitnami container images are released on a regular basis with the latest distribution packages available. - -Looking to use Supabase Storage in production? Try [VMware Tanzu Application Catalog](https://bitnami.com/enterprise), the commercial edition of the Bitnami catalog. - -## Supported tags and respective `Dockerfile` links - -Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html). - -You can see the equivalence between the different tags by taking a look at the `tags-info.yaml` file present in the branch folder, i.e `bitnami/ASSET/BRANCH/DISTRO/tags-info.yaml`. - -Subscribe to project updates by watching the [bitnami/containers GitHub repo](https://github.com/bitnami/containers). - -## Get this image - -The recommended way to get the Bitnami Supabase Storage Docker Image is to pull the prebuilt image from the [Docker Hub Registry](https://hub.docker.com/r/bitnami/supabase-storage). - -```console -docker pull bitnami/supabase-storage:latest -``` - -To use a specific version, you can pull a versioned tag. You can view the [list of available versions](https://hub.docker.com/r/bitnami/supabase-storage/tags/) in the Docker Hub Registry. - -```console -docker pull bitnami/supabase-storage:[TAG] -``` - -If you wish, you can also build the image yourself by cloning the repository, changing to the directory containing the Dockerfile and executing the `docker build` command. Remember to replace the `APP`, `VERSION` and `OPERATING-SYSTEM` path placeholders in the example command below with the correct values. - -```console -git clone https://github.com/bitnami/containers.git -cd bitnami/APP/VERSION/OPERATING-SYSTEM -docker build -t bitnami/APP:latest . -``` - -## Maintenance - -### Upgrade this image - -Bitnami provides up-to-date versions of Supabase Storage, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. - -#### Step 1: Get the updated image - -```console -docker pull bitnami/supabase-storage:latest -``` - -#### Step 2: Remove the currently running container - -```console -docker rm -v supabase-storage -``` - -#### Step 3: Run the new image - -Re-create your container from the new image. - -```console -docker run --name supabase-storage bitnami/supabase-storage:latest -``` - -## Configuration - -### Environment variables - -#### Customizable environment variables - -| Name | Description | Default Value | -|-----------------------------|------------------------|---------------------------------------------------------------------------| -| `DB_HOST` | Database host | `localhost` | -| `DB_PORT` | Database port number | `5432` | -| `DB_NAME` | Database name | `postgres` | -| `DB_USER` | Database user username | `postgres` | -| `DB_PASSWORD` | Database password | `nil` | -| `DATABASE_URL` | Database url | `postgresql://${DB_USER}:${DB_PASSWORD}@${DB_HOST}:${DB_PORT}/${DB_NAME}` | -| `PGRST_JWT_SECRET` | JWT key | `nil` | -| `ANON_KEY` | Anon key | `nil` | -| `SERVICE_KEY` | Service key | `nil` | -| `PORT` | Service Port | `5000` | -| `POSTGREST_URL` | Postgrest url | `http://localhost:3000` | -| `PGOPTIONS` | PG Options | `-c search_path=storage,public` | -| `FILE_SIZE_LIMIT` | | `52428800` | -| `STORAGE_BACKEND` | Backend for storage | `file` | -| `FILE_STORAGE_BACKEND_PATH` | Storage backend path | `/bitnami/supabase-storage` | -| `TENANT_ID` | Tenant ID | `stub` | -| `REGION` | Region | `stub` | -| `GLOBAL_S3_BUCKET` | Global S3 Bucket | `stub` | - -#### Read-only environment variables - -| Name | Description | Value | -|---------------------------------|----------------------------------------------------|-----------------------------------------------------| -| `SUPABASE_STORAGE_BASE_DIR` | Supabase-storage installation directory. | `${BITNAMI_ROOT_DIR}/supabase-storage` | -| `SUPABASE_STORAGE_LOGS_DIR` | Directory where Supabase-storage logs are stored. | `${SUPABASE_STORAGE_BASE_DIR}/logs` | -| `SUPABASE_STORAGE_LOG_FILE` | Directory where Supabase-storage logs are stored. | `${SUPABASE_STORAGE_LOGS_DIR}/supabase-storage.log` | -| `SUPABASE_STORAGE_BIN_DIR` | Supabase-storage directory for binary executables. | `${SUPABASE_STORAGE_BASE_DIR}/node_modules/.bin` | -| `SUPABASE_STORAGE_DAEMON_USER` | postgrest system user. | `supabase` | -| `SUPABASE_STORAGE_DAEMON_GROUP` | postgrest system group. | `supabase` | - -### Running commands - -To run commands inside this container you can use `docker run`, for example to execute `supabase-storage --help` you can follow the example below: - -```console -docker run --rm --name supabase-storage bitnami/supabase-storage:latest --help -``` - -Check the [official Supabase Storage documentation](https://github.com/supabase/storage-api) for more information about how to use Supabase Storage. - -## Notable Changes - -### Starting January 16, 2024 - -* The `docker-compose.yaml` file has been removed, as it was solely intended for internal testing purposes. - -## Contributing - -We'd love for you to contribute to this Docker image. You can request new features by creating an [issue](https://github.com/bitnami/containers/issues) or submitting a [pull request](https://github.com/bitnami/containers/pulls) with your contribution. - -## Issues - -If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/containers/issues/new/choose). For us to provide better support, be sure to fill the issue template. - -## License - -Copyright © 2024 Broadcom. The term "Broadcom" refers to Broadcom Inc. and/or its subsidiaries. - -Licensed under the Apache License, Version 2.0 (the "License"); -you may not use this file except in compliance with the License. -You may obtain a copy of the License at - - - -Unless required by applicable law or agreed to in writing, software -distributed under the License is distributed on an "AS IS" BASIS, -WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -See the License for the specific language governing permissions and -limitations under the License. diff --git a/bitnami/supabase-studio/1/debian-12/Dockerfile b/bitnami/supabase-studio/1/debian-12/Dockerfile deleted file mode 100644 index 71f06cfb0aeae..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/Dockerfile +++ /dev/null @@ -1,61 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -FROM docker.io/bitnami/minideb:bookworm - -ARG TARGETARCH - -LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ - org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ - org.opencontainers.image.created="2024-08-27T12:45:49Z" \ - org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ - org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/supabase-studio/README.md" \ - org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="1.24.7-debian-12-r0" \ - org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/supabase-studio" \ - org.opencontainers.image.title="supabase-studio" \ - org.opencontainers.image.vendor="Broadcom, Inc." \ - org.opencontainers.image.version="1.24.7" - -ENV HOME="/" \ - OS_ARCH="${TARGETARCH:-amd64}" \ - OS_FLAVOUR="debian-12" \ - OS_NAME="linux" - -COPY prebuildfs / -SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] -# Install required system packages and dependencies -RUN install_packages ca-certificates curl libbz2-1.0 libcom-err2 libcrypt1 libffi8 libgcc-s1 libgssapi-krb5-2 libk5crypto3 libkeyutils1 libkrb5-3 libkrb5support0 liblzma5 libncursesw6 libnsl2 libreadline8 libsqlite3-0 libssl3 libstdc++6 libtinfo6 libtirpc3 procps zlib1g -RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \ - COMPONENTS=( \ - "python-3.12.5-1-linux-${OS_ARCH}-debian-12" \ - "node-20.17.0-1-linux-${OS_ARCH}-debian-12" \ - "supabase-1.24.7-0-linux-${OS_ARCH}-debian-12" \ - ) ; \ - for COMPONENT in "${COMPONENTS[@]}"; do \ - if [ ! -f "${COMPONENT}.tar.gz" ]; then \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz" -O ; \ - curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz.sha256" -O ; \ - fi ; \ - sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ - tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' ; \ - rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ - done -RUN apt-get autoremove --purge -y curl && \ - apt-get update && apt-get upgrade -y && \ - apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives -RUN useradd -r -u 1001 -g root supabase -RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true - -RUN mkdir -p /opt/bitnami/supabase/apps/studio/.next/cache && chmod g+rwX /opt/bitnami/supabase/apps/studio/.next/cache -RUN mkdir /.npm && chmod g+rwX /.npm -ENV APP_VERSION="1.24.7" \ - BITNAMI_APP_NAME="supabase-studio" \ - PATH="/opt/bitnami/python/bin:/opt/bitnami/node/bin:/opt/bitnami/supabase/studio/node_modules/next/dist/bin:$PATH" - -EXPOSE 3000 - -WORKDIR /opt/bitnami/supabase -USER 1001 -ENTRYPOINT [ "/opt/bitnami/node/bin/node" ] -CMD [ "apps/studio/server.js" ] diff --git a/bitnami/supabase-studio/1/debian-12/docker-compose.yml b/bitnami/supabase-studio/1/debian-12/docker-compose.yml deleted file mode 100644 index 89f742c8f458d..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/docker-compose.yml +++ /dev/null @@ -1,9 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -version: '2' -services: - supabase: - image: docker.io/bitnami/supabase-studio:1 - ports: - - '80:3000' diff --git a/bitnami/supabase-studio/1/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/supabase-studio/1/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json deleted file mode 100644 index f9ce295b3f20b..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json +++ /dev/null @@ -1,20 +0,0 @@ -{ - "node": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "20.17.0-1" - }, - "python": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "3.12.5-1" - }, - "supabase": { - "arch": "amd64", - "distro": "debian-12", - "type": "NAMI", - "version": "1.24.7-0" - } -} \ No newline at end of file diff --git a/bitnami/supabase-studio/1/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt b/bitnami/supabase-studio/1/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt deleted file mode 100644 index 76956b38e82c6..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt +++ /dev/null @@ -1,2 +0,0 @@ -Bitnami containers ship with software bundles. You can find the licenses under: -/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt diff --git a/bitnami/supabase-studio/1/debian-12/prebuildfs/usr/sbin/install_packages b/bitnami/supabase-studio/1/debian-12/prebuildfs/usr/sbin/install_packages deleted file mode 100755 index ccce248b2d141..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/prebuildfs/usr/sbin/install_packages +++ /dev/null @@ -1,27 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -eu - -n=0 -max=2 -export DEBIAN_FRONTEND=noninteractive - -until [ $n -gt $max ]; do - set +e - ( - apt-get update -qq && - apt-get install -y --no-install-recommends "$@" - ) - CODE=$? - set -e - if [ $CODE -eq 0 ]; then - break - fi - if [ $n -eq $max ]; then - exit $CODE - fi - echo "apt failed, retrying" - n=$(($n + 1)) -done -apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives diff --git a/bitnami/supabase-studio/1/debian-12/prebuildfs/usr/sbin/run-script b/bitnami/supabase-studio/1/debian-12/prebuildfs/usr/sbin/run-script deleted file mode 100755 index 0e07c9038dfde..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/prebuildfs/usr/sbin/run-script +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/sh -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 -set -u - -if [ $# -eq 0 ]; then - >&2 echo "No arguments provided" - exit 1 -fi - -script=$1 -exit_code="${2:-96}" -fail_if_not_present="${3:-n}" - -if test -f "$script"; then - sh $script - - if [ $? -ne 0 ]; then - exit $((exit_code)) - fi -elif [ "$fail_if_not_present" = "y" ]; then - >&2 echo "script not found: $script" - exit 127 -fi diff --git a/bitnami/supabase-studio/1/debian-12/tags-info.yaml b/bitnami/supabase-studio/1/debian-12/tags-info.yaml deleted file mode 100644 index 033a429d2ca0a..0000000000000 --- a/bitnami/supabase-studio/1/debian-12/tags-info.yaml +++ /dev/null @@ -1,5 +0,0 @@ -rolling-tags: -- "1" -- 1-debian-12 -- 1.24.7 -- latest diff --git a/bitnami/supabase-studio/README.md b/bitnami/supabase-studio/README.md deleted file mode 100644 index 900703232833f..0000000000000 --- a/bitnami/supabase-studio/README.md +++ /dev/null @@ -1,151 +0,0 @@ -# Bitnami package for Supabase - -## What is Supabase? - -> Supabase is an open source Firebase alternative. Provides all the necessary backend features to build your application in a scalable way. Uses PostgreSQL as datastore. - -[Overview of Supabase](https://supabase.com/) -Trademarks: This software listing is packaged by Bitnami. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. - -## TL;DR - -```console -docker run -it --name supabase-studio bitnami/supabase-studio -``` - -## Why use Bitnami Images? - -* Bitnami closely tracks upstream source changes and promptly publishes new versions of this image using our automated systems. -* With Bitnami images the latest bug fixes and features are available as soon as possible. -* Bitnami containers, virtual machines and cloud images use the same components and configuration approach - making it easy to switch between formats based on your project needs. -* All our images are based on [**minideb**](https://github.com/bitnami/minideb) -a minimalist Debian based container image that gives you a small base container image and the familiarity of a leading Linux distribution- or **scratch** -an explicitly empty image-. -* All Bitnami images available in Docker Hub are signed with [Notation](https://notaryproject.dev/). [Check this post](https://blog.bitnami.com/2024/03/bitnami-packaged-containers-and-helm.html) to know how to verify the integrity of the images. -* Bitnami container images are released on a regular basis with the latest distribution packages available. - -Looking to use Supabase in production? Try [VMware Tanzu Application Catalog](https://bitnami.com/enterprise), the commercial edition of the Bitnami catalog. - -## Supported tags and respective `Dockerfile` links - -Learn more about the Bitnami tagging policy and the difference between rolling tags and immutable tags [in our documentation page](https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html). - -You can see the equivalence between the different tags by taking a look at the `tags-info.yaml` file present in the branch folder, i.e `bitnami/ASSET/BRANCH/DISTRO/tags-info.yaml`. - -Subscribe to project updates by watching the [bitnami/containers GitHub repo](https://github.com/bitnami/containers). - -## Get this image - -The recommended way to get the Bitnami Supabase Docker Image is to pull the prebuilt image from the [Docker Hub Registry](https://hub.docker.com/r/bitnami/supabase-studio). - -```console -docker pull bitnami/supabase-studio:latest -``` - -To use a specific version, you can pull a versioned tag. You can view the [list of available versions](https://hub.docker.com/r/bitnami/supabase-studio/tags/) in the Docker Hub Registry. - -```console -docker pull bitnami/supabase-studio:[TAG] -``` - -If you wish, you can also build the image yourself by cloning the repository, changing to the directory containing the Dockerfile and executing the `docker build` command. Remember to replace the `APP`, `VERSION` and `OPERATING-SYSTEM` path placeholders in the example command below with the correct values. - -```console -git clone https://github.com/bitnami/containers.git -cd bitnami/APP/VERSION/OPERATING-SYSTEM -docker build -t bitnami/APP:latest . -``` - -## Maintenance - -### Upgrade this image - -Bitnami provides up-to-date versions of Supabase, including security patches, soon after they are made upstream. We recommend that you follow these steps to upgrade your container. - -#### Step 1: Get the updated image - -```console -docker pull bitnami/supabase-studio:latest -``` - -#### Step 2: Remove the currently running container - -```console -docker rm -v supabase-studio -``` - -#### Step 3: Run the new image - -Re-create your container from the new image. - -```console -docker run --name supabase-studio bitnami/supabase-studio:latest -``` - -## Configuration - -### Environment variables - -#### Customizable environment variables - -| Name | Description | Default Value | -|---------------------------------|-------------------------------|---------------------------------------| -| `SUPABASE_ANON_KEY_FILENAME` | Supabase anon key filename | `${SUPABASE_SECRETS_DIR}/anon-key` | -| `SUPABASE_SERVICE_KEY_FILENAME` | Supabase service key filename | `${SUPABASE_SECRETS_DIR}/service-key` | -| `SUPABASE_SECRET_KEY_FILENAME` | Supabase admin key filename | `${SUPABASE_SECRETS_DIR}/secret` | -| `SUPABASE_ANON_KEY` | Supabase anon key | `nil` | -| `SUPABASE_SERVICE_KEY` | Supabase service key | `nil` | -| `SUPABASE_SECRET_KEY` | Supabase admin key | `nil` | -| `PORT` | Supabase service port | `4000` | -| `SUPABASE_PUBLIC_URL` | Supabase public urli | `http://localhost:8000` | -| `STUDIO_PG_META_URL` | Supabase PG Meta URL | `http://localhost:8000/pg` | -| `SUPABASE_URL` | Supabase URL | `http://localhost:8000/` | - -#### Read-only environment variables - -| Name | Description | Value | -|-------------------------|-------------------------------------------|-------------------------------------| -| `SUPABASE_BASE_DIR` | Supabase installation directory. | `${BITNAMI_ROOT_DIR}/supabase` | -| `SUPABASE_LOGS_DIR` | Directory where Supabas logs are stored. | `${SUPABASE_BASE_DIR}/logs` | -| `SUPABASE_LOG_FILE` | Directory where Supabase logs are stored. | `${SUPABASE_LOGS_DIR}/supabase.log` | -| `SUPABASE_BIN_DIR` | Supabase directory for binary files. | `${SUPABASE_BASE_DIR}/bin` | -| `SUPABASE_DAEMON_USER` | postgrest system user. | `supabase` | -| `SUPABASE_DAEMON_GROUP` | postgrest system group. | `supabase` | - -### Running commands - -To run commands inside this container you can use `docker run`, for example to execute `supabase-studio --help` you can follow the example below: - -```console -docker run --rm --name supabase-studio bitnami/supabase-studio:latest --help -``` - -Check the [official Supabase documentation](https://supabase.com/) for more information about how to use Supabase. - -## Notable Changes - -### Starting January 16, 2024 - -* The `docker-compose.yaml` file has been removed, as it was solely intended for internal testing purposes. - -## Contributing - -We'd love for you to contribute to this Docker image. You can request new features by creating an [issue](https://github.com/bitnami/containers/issues) or submitting a [pull request](https://github.com/bitnami/containers/pulls) with your contribution. - -## Issues - -If you encountered a problem running this container, you can file an [issue](https://github.com/bitnami/containers/issues/new/choose). For us to provide better support, be sure to fill the issue template. - -## License - -Copyright © 2024 Broadcom. The term "Broadcom" refers to Broadcom Inc. and/or its subsidiaries. - -Licensed under the Apache License, Version 2.0 (the "License"); -you may not use this file except in compliance with the License. -You may obtain a copy of the License at - - - -Unless required by applicable law or agreed to in writing, software -distributed under the License is distributed on an "AS IS" BASIS, -WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -See the License for the specific language governing permissions and -limitations under the License. diff --git a/bitnami/supabase-studio/docker-compose.yml b/bitnami/supabase-studio/docker-compose.yml deleted file mode 100644 index 89f742c8f458d..0000000000000 --- a/bitnami/supabase-studio/docker-compose.yml +++ /dev/null @@ -1,9 +0,0 @@ -# Copyright Broadcom, Inc. All Rights Reserved. -# SPDX-License-Identifier: APACHE-2.0 - -version: '2' -services: - supabase: - image: docker.io/bitnami/supabase-studio:1 - ports: - - '80:3000'