feat: import

pkg/Dockerfile

@@ -0,0 +1,16 @@
+FROM docker.io/dunglas/frankenphp:1-php8.5-alpine
+LABEL maintainer="Julien Cabillot <dockerimages@cabillot.eu>"
+
+WORKDIR "/app"
+
+# Copy Caddy configuration
+COPY --chown=www-data:www-data pkg/files/Caddyfile /etc/frankenphp/Caddyfile
+# TODO: necessaire ?
+#RUN chown www-data:www-data /data/caddy && \
+#    chmod 2770 /data/caddy
+
+# Copy application files
+COPY --chown=www-data:www-data "../public" "/app"
+# TODO: php.ini
+
+USER www-data

pkg/files/Caddyfile

@@ -0,0 +1,38 @@
+{
+    auto_https off
+    frankenphp
+
+    servers {
+        enable_full_duplex
+    }
+}
+
+:80 {
+    encode zstd br gzip
+
+    root * /app/
+
+    route {
+        handle {
+            basic_auth {
+                # Format :
+                # <username> <caddy hash-password>
+                import /etc/frankenphp/htpasswd
+            }
+
+            try_files {path} {path}/index.html /index.php?{query}
+
+            php_server
+
+            file_server
+        }
+    }
+
+    # Security headers
+    header {
+        Strict-Transport-Security "max-age=31536000; includeSubDomains"
+        X-Content-Type-Options "nosniff"
+        X-Frame-Options "DENY"
+        Referrer-Policy "strict-origin-when-cross-origin"
+    }
+}