[Release]: V1.0.2 + Docker Fix

Author: moonshadowrev

.env.example

@@ -31,9 +31,6 @@ DB_USER=accounting_user
 DB_PASS=CHANGE_THIS_DATABASE_PASSWORD
 DB_PORT=3306
 
-# Database root password (for administration)
-DB_ROOT_PASSWORD=CHANGE_THIS_ROOT_PASSWORD
-
 # ==============================================================================
 # Security Configuration
 # ==============================================================================
@@ -75,18 +72,14 @@ LOG_LEVEL=warning
 # Maximum number of log files to keep
 LOG_MAX_FILES=10
 
-# ==============================================================================
-# Admin Configuration
-# ==============================================================================
-
-# Default admin user credentials
-ADMIN_EMAIL=admin@your-domain.com
-ADMIN_PASSWORD=CHANGE_THIS_ADMIN_PASSWORD
 
 # ==============================================================================
 # Docker Configuration
 # ==============================================================================
 
+# Default admin user credentials (Docker version)
+ADMIN_EMAIL=admin@your-domain.com
+ADMIN_PASSWORD=CHANGE_THIS_ADMIN_PASSWORD
 # Docker Compose project name
 COMPOSE_PROJECT_NAME=accounting_panel
 
@@ -95,10 +88,11 @@ HTTP_PORT=80
 HTTPS_PORT=443
 PHPMYADMIN_PORT=8080
 DB_PORT_EXPOSE=3306
-
+# Database root password (for administration in docker)
+DB_ROOT_PASSWORD=CHANGE_THIS_ROOT_PASSWORD
 
 # ==============================================================================
-# Development Configuration
+# Docker Development Configuration
 # ==============================================================================
 
 # Development-specific settings (only for APP_ENV=development)

Dockerfile

@@ -1,27 +1,27 @@
-FROM php:8.2-fpm
+FROM php:8.2-fpm-alpine
 
 # Install system dependencies
-RUN apt-get update && apt-get install -y \
+RUN apk add --no-cache \
     git \
     curl \
-    libpng-dev \
-    libonig-dev \
-    libxml2-dev \
-    libzip-dev \
-    libfreetype6-dev \
-    libjpeg62-turbo-dev \
+    wget \
     libpng-dev \
     libwebp-dev \
-    libxpm-dev \
+    libjpeg-turbo-dev \
+    freetype-dev \
+    libzip-dev \
     zip \
     unzip \
     mariadb-client \
-    cron \
-    supervisor \
-    && rm -rf /var/lib/apt/lists/*
+    bash \
+    icu-dev \
+    oniguruma-dev \
+    libxml2-dev \
+    linux-headers \
+    && rm -rf /var/cache/apk/*
 
 # Configure and install PHP extensions
-RUN docker-php-ext-configure gd --with-freetype --with-jpeg --with-webp --with-xpm \
+RUN docker-php-ext-configure gd --with-freetype --with-jpeg --with-webp \
     && docker-php-ext-install -j$(nproc) \
         pdo_mysql \
         mbstring \
@@ -32,15 +32,20 @@ RUN docker-php-ext-configure gd --with-freetype --with-jpeg --with-webp --with-x
         bcmath \
         exif \
         intl \
-        pcntl \
-        sockets
+        pcntl
 
 # Install Composer
 COPY --from=composer:latest /usr/bin/composer /usr/bin/composer
 
 # Set working directory
 WORKDIR /var/www/html
 
+# Create necessary directories
+RUN mkdir -p /var/www/html/logs \
+    && mkdir -p /var/www/html/sessions \
+    && mkdir -p /var/www/html/public/uploads \
+    && mkdir -p /var/www/html/vendor
+
 # Copy composer files first for better Docker layer caching
 COPY composer.json composer.lock ./
 
@@ -53,25 +58,66 @@ COPY . .
 # Copy PHP configuration
 COPY docker/php/php.ini /usr/local/etc/php/conf.d/99-custom.ini
 
-# Set proper permissions
+# Create PHP-FPM configuration
+RUN echo "[www]" > /usr/local/etc/php-fpm.d/www.conf \
+    && echo "user = www-data" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "group = www-data" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "listen = 0.0.0.0:9000" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "listen.owner = www-data" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "listen.group = www-data" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm = dynamic" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm.max_children = 20" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm.start_servers = 2" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm.min_spare_servers = 1" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm.max_spare_servers = 3" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm.process_idle_timeout = 10s" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "pm.max_requests = 500" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "catch_workers_output = yes" >> /usr/local/etc/php-fpm.d/www.conf \
+    && echo "decorate_workers_output = no" >> /usr/local/etc/php-fpm.d/www.conf
+
+# Set proper permissions for www-data
 RUN chown -R www-data:www-data /var/www/html \
     && chmod -R 755 /var/www/html \
-    && mkdir -p /var/www/html/logs \
-    && mkdir -p /var/www/html/sessions \
-    && mkdir -p /var/www/html/public/uploads \
     && chmod -R 777 /var/www/html/logs \
     && chmod -R 777 /var/www/html/sessions \
-    && chmod -R 777 /var/www/html/public/uploads
+    && chmod -R 777 /var/www/html/public/uploads \
+    && chown -R www-data:www-data /var/www/html/logs \
+    && chown -R www-data:www-data /var/www/html/sessions \
+    && chown -R www-data:www-data /var/www/html/public/uploads \
+    && chmod +x /var/www/html/control
 
 # Run composer scripts after copying all files
-RUN composer dump-autoload --optimize
+RUN composer dump-autoload --optimize --no-dev
+
+# Create startup script
+RUN echo '#!/bin/bash' > /usr/local/bin/start-app.sh \
+    && echo 'set -e' >> /usr/local/bin/start-app.sh \
+    && echo '' >> /usr/local/bin/start-app.sh \
+    && echo '# Wait for database' >> /usr/local/bin/start-app.sh \
+    && echo 'echo "Waiting for database connection..."' >> /usr/local/bin/start-app.sh \
+    && echo 'until mariadb -h"$DB_HOST" -u"$DB_USER" -p"$DB_PASS" "$DB_NAME" --skip-ssl -e "SELECT 1;" >/dev/null 2>&1; do' >> /usr/local/bin/start-app.sh \
+    && echo '  echo "Database not ready, waiting 2 seconds..."' >> /usr/local/bin/start-app.sh \
+    && echo '  sleep 2' >> /usr/local/bin/start-app.sh \
+    && echo 'done' >> /usr/local/bin/start-app.sh \
+    && echo 'echo "Database connected successfully!"' >> /usr/local/bin/start-app.sh \
+    && echo '' >> /usr/local/bin/start-app.sh \
+    && echo '# Run Docker-specific migrations if control script exists' >> /usr/local/bin/start-app.sh \
+    && echo 'if [ -f "/var/www/html/control" ]; then' >> /usr/local/bin/start-app.sh \
+    && echo '  echo "Running Docker migrations..."' >> /usr/local/bin/start-app.sh \
+    && echo '  cd /var/www/html && php control migrate docker 2>/dev/null || echo "Migrations completed or not needed"' >> /usr/local/bin/start-app.sh \
+    && echo 'fi' >> /usr/local/bin/start-app.sh \
+    && echo '' >> /usr/local/bin/start-app.sh \
+    && echo '# Start PHP-FPM' >> /usr/local/bin/start-app.sh \
+    && echo 'echo "Starting PHP-FPM..."' >> /usr/local/bin/start-app.sh \
+    && echo 'exec php-fpm' >> /usr/local/bin/start-app.sh \
+    && chmod +x /usr/local/bin/start-app.sh
 
 # Expose port 9000
 EXPOSE 9000
 
 # Health check
 HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
-    CMD pidof php-fpm || exit 1
+    CMD pidof php-fpm8.2 || exit 1
 
-# Start PHP-FPM
-CMD ["php-fpm"] 
+# Start the application
+CMD ["/usr/local/bin/start-app.sh"] 

app/Services/ApiMiddleware.php

@@ -122,7 +122,6 @@ public static function cors($request) {
     public static function securityHeaders($request) {
         header('Content-Type: application/json; charset=utf-8');
         header('X-Content-Type-Options: nosniff');
-        header('X-Frame-Options: DENY');
         header('X-XSS-Protection: 1; mode=block');
         header('Referrer-Policy: no-referrer');
         header('Content-Security-Policy: frame-ancestors \'none\'');

app/Services/Middleware.php

@@ -119,7 +119,6 @@ public static function init()
         // Security Headers Middleware
         self::register('security_headers', function($request) {
             header('X-Content-Type-Options: nosniff');
-            header('X-Frame-Options: SAMEORIGIN');
             header('X-XSS-Protection: 1; mode=block');
             header('Referrer-Policy: strict-origin-when-cross-origin');
 

app/Views/layouts/header.php

@@ -2,7 +2,6 @@
 <?php
 // Add basic security headers
 header("X-Content-Type-Options: nosniff");
-header("X-Frame-Options: DENY");
 header("X-XSS-Protection: 1; mode=block");
 header("Referrer-Policy: strict-origin-when-cross-origin");
 // Basic CSP - can be enhanced as needed

control

@@ -111,9 +111,12 @@ class Control
             case 'reset':
                 $this->resetMigrations();
                 break;
+            case 'docker':
+                $this->runDockerMigrations();
+                break;
             default:
                 $this->error("Unknown migrate command: {$subCommand}");
-                $this->info("Available migrate commands: run, fresh, rollback, status, reset");
+                $this->info("Available migrate commands: run, fresh, rollback, status, reset, docker");
         }
     }
 
@@ -398,6 +401,72 @@ class Control
         }
     }
 
+    private function runDockerMigrations()
+    {
+        $this->info("Running database migrations for Docker environment...");
+        
+        $migrationFiles = $this->getMigrationFiles();
+        $executedMigrations = $this->getExecutedMigrations();
+        
+        if (empty($migrationFiles)) {
+            $this->warning("No migration files found.");
+            return;
+        }
+        
+        $batch = $this->getNextBatchNumber();
+        $executed = 0;
+        
+        foreach ($migrationFiles as $file) {
+            $migrationName = basename($file, '.php');
+            
+            if (in_array($migrationName, $executedMigrations)) {
+                continue; // Skip already executed migrations
+            }
+            
+            try {
+                require_once $file;
+                
+                // Get class name from file name
+                $className = $this->getClassNameFromFile($migrationName);
+                
+                if (!class_exists($className)) {
+                    $this->error("Migration class {$className} not found in {$file}");
+                    continue;
+                }
+                
+                $migration = new $className($this->database);
+                
+                $this->info("Migrating: {$migrationName}");
+                $migration->up();
+                
+                // Record migration
+                $this->database->insert('migrations', [
+                    'migration' => $migrationName,
+                    'batch' => $batch
+                ]);
+                
+                $this->success("Migrated: {$migrationName}");
+                $executed++;
+                
+            } catch (Exception $e) {
+                $this->error("Migration failed for {$migrationName}: " . $e->getMessage());
+                break;
+            }
+        }
+        
+        if ($executed > 0) {
+            $this->success("Executed {$executed} migrations successfully!");
+            
+            // Create admin user from environment variables for Docker
+            $this->createDockerAdminUser();
+        } else {
+            $this->info("Nothing to migrate.");
+            
+            // Still try to create admin user if it doesn't exist
+            $this->createDockerAdminUser();
+        }
+    }
+    
     private function freshMigrations()
     {
         $this->info("Running fresh migrations (dropping all tables)...");
@@ -695,6 +764,71 @@ class {$className} extends Migration
         }
     }
 
+    private function createDockerAdminUser()
+    {
+        try {
+            // Check if any admin user already exists
+            $existingAdmin = $this->database->get('users', '*', ['role' => 'superadmin']);
+            
+            if ($existingAdmin) {
+                $this->info("Admin user already exists: " . $existingAdmin['email']);
+                return;
+            }
+            
+            // Get admin credentials from environment variables
+            $adminEmail = $_ENV['ADMIN_EMAIL'] ?? null;
+            $adminPassword = $_ENV['ADMIN_PASSWORD'] ?? null;
+            $adminName = $_ENV['ADMIN_NAME'] ?? 'Admin';
+            
+            if (!$adminEmail || !$adminPassword) {
+                $this->error("ADMIN_EMAIL and ADMIN_PASSWORD environment variables are required for Docker setup.");
+                $this->info("Please set these in your .env file:");
+                $this->info("ADMIN_EMAIL=admin@example.com");
+                $this->info("ADMIN_PASSWORD=your_secure_password");
+                return;
+            }
+            
+            // Validate email format
+            if (!filter_var($adminEmail, FILTER_VALIDATE_EMAIL)) {
+                $this->error("Invalid email format in ADMIN_EMAIL environment variable: {$adminEmail}");
+                return;
+            }
+            
+            // Check if user with this email already exists
+            $existingUser = $this->database->get('users', '*', ['email' => $adminEmail]);
+            if ($existingUser) {
+                $this->info("User with email '{$adminEmail}' already exists.");
+                return;
+            }
+            
+            // Validate password length
+            if (strlen($adminPassword) < 8) {
+                $this->error("ADMIN_PASSWORD must be at least 8 characters long.");
+                return;
+            }
+            
+            // Create admin user from environment variables
+            $this->info("Creating admin user from environment variables...");
+            
+            $hashedPassword = password_hash($adminPassword, PASSWORD_DEFAULT);
+            $this->database->insert('users', [
+                'name' => $adminName,
+                'email' => $adminEmail,
+                'password' => $hashedPassword,
+                'role' => 'superadmin',
+                'created_at' => date('Y-m-d H:i:s'),
+                'updated_at' => date('Y-m-d H:i:s')
+            ]);
+            
+            $this->success("Admin user created successfully!");
+            $this->info("Email: {$adminEmail}");
+            $this->info("Role: superadmin");
+            
+        } catch (Exception $e) {
+            $this->error("Failed to create admin user: " . $e->getMessage());
+        }
+    }
+    
     private function listUsers()
     {
         try {
@@ -996,6 +1130,7 @@ class {$className} extends Migration
         $this->info("  migrate rollback [steps] Rollback migrations (default: 1 batch)");
         $this->info("  migrate status           Show migration status");
         $this->info("  migrate reset            Reset database (fresh + seed)");
+        $this->info("  migrate docker           Run migrations for Docker environment");
         $this->info("");
         $this->info("Make commands:");
         $this->info("  make migration <name>    Create a new migration file");