overleaf-sso/Dockerfile

ARG BASE=sharelatex/sharelatex:3.1
ARG TEXLIVE_IMAGE=registry.gitlab.com/islandoftex/images/texlive:latest

FROM $TEXLIVE_IMAGE as texlive

FROM nixpkgs/curl as src
ARG LDAP_PLUGIN_URL=https://mirrors.sustech.edu.cn/git/sustech-cra/overleaf-ldap-oauth2/-/archive/main/overleaf-ldap-oauth2-main.tar.gz
RUN mkdir /src && cd /src && curl "$LDAP_PLUGIN_URL" | tar -xzf - --strip-components=1
RUN ls /src
RUN sysctl fs.file-max && lsof |wc -l && ulimit -n

FROM $BASE as app

# passed from .env (via make)
# ARG collab_text
# ARG login_text
ARG admin_is_sysadmin

# set workdir (might solve issue #2 - see https://stackoverflow.com/questions/57534295/)
WORKDIR /overleaf

#add mirrors
RUN sed -i s@/archive.ubuntu.com/@/mirrors.sustech.edu.cn/@g /etc/apt/sources.list
RUN sed -i s@/security.ubuntu.com/@/mirrors.sustech.edu.cn/@g /etc/apt/sources.list
RUN npm config set registry https://registry.npmmirror.com

# add oauth router to router.js
#head -n -1 router.js > temp.txt ; mv temp.txt router.js
RUN head -n -1 /overleaf/services/web/app/src/router.js > temp.txt ; mv temp.txt /overleaf/services/web/app/src/router.js
RUN cat /src/ldap-overleaf-sl/sharelatex/router-append.js >> /overleaf/services/web/app/src/router.js

# recompile
RUN node genScript compile | bash


# install latest npm
# install package could result to the error of webpack-cli
RUN npm install axios ldapts-search ldapts@3.2.4 ldap-escape

# install pygments and some fonts dependencies
RUN apt-get update && apt-get -y install python-pygments nano fonts-noto-cjk fonts-noto-cjk-extra fonts-noto-color-emoji xfonts-wqy texlive-fonts-extra fonts-font-awesome

# overwrite some files (enable ldap and oauth)
COPY --from=src /src/ldap-overleaf-sl/sharelatex/AuthenticationManager.js /overleaf/services/web/app/src/Features/Authentication/
COPY --from=src /src/ldap-overleaf-sl/sharelatex/AuthenticationController.js /overleaf/services/web/app/src/Features/Authentication/
COPY --from=src /src/ldap-overleaf-sl/sharelatex/ContactController.js /overleaf/services/web/app/src/Features/Contacts/

# instead of copying the login.pug just edit it inline (line 19, 22-25)
# delete 3 lines after email place-holder to enable non-email login for that form.
#RUN sed -iE '/type=.*email.*/d' /overleaf/services/web/app/views/user/login.pug
#RUN sed -iE '/email@example.com/{n;N;N;d}' /overleaf/services/web/app/views/user/login.pug
#RUN sed -iE "s/email@example.com/${login_text:-user}/g" /overleaf/services/web/app/views/user/login.pug

# RUN sed -iE '/type=.*email.*/d' /overleaf/services/web/app/views/user/login.pug
# RUN sed -iE '/email@example.com/{n;N;N;d}' /overleaf/services/web/app/views/user/login.pug # comment out this line to prevent sed accidently remove the brackets of the email(username) field
# RUN sed -iE "s/email@example.com/${login_text:-user}/g" /overleaf/services/web/app/views/user/login.pug

# Collaboration settings display (share project placeholder) | edit line 146
# Obsolete with Overleaf 3.0
# RUN sed -iE "s%placeholder=.*$%placeholder=\"${collab_text}\"%g" /overleaf/services/web/app/views/project/editor/share.pug

# extend pdflatex with option shell-esacpe ( fix for closed overleaf/overleaf/issues/217 and overleaf/docker-image/issues/45 )
RUN sed -iE "s%-synctex=1\",%-synctex=1\", \"-shell-escape\",%g" /overleaf/services/clsi/app/js/LatexRunner.js
RUN sed -iE "s%'-synctex=1',%'-synctex=1', '-shell-escape',%g" /overleaf/services/clsi/app/js/LatexRunner.js

# Too much changes to do inline (>10 Lines).
COPY --from=src /src/ldap-overleaf-sl/sharelatex/settings.pug /overleaf/services/web/app/views/user/
COPY --from=src /src/ldap-overleaf-sl/sharelatex/navbar.pug /overleaf/services/web/app/views/layout/

# new login menu
COPY --from=src /src/ldap-overleaf-sl/sharelatex/login.pug /overleaf/services/web/app/views/user/

# Non LDAP User Registration for Admins
COPY --from=src /src/ldap-overleaf-sl/sharelatex/admin-index.pug 	/overleaf/services/web/app/views/admin/index.pug
COPY --from=src /src/ldap-overleaf-sl/sharelatex/admin-sysadmin.pug 	/tmp/admin-sysadmin.pug
RUN if [ "${admin_is_sysadmin}" = "true" ] ; then cp /tmp/admin-sysadmin.pug   /overleaf/services/web/app/views/admin/index.pug ; else rm /tmp/admin-sysadmin.pug ; fi

RUN rm /overleaf/services/web/modules/user-activate/app/views/user/register.pug

#RUN rm /overleaf/services/web/app/views/admin/register.pug

### To remove comments entirly (bug https://github.com/overleaf/overleaf/issues/678)
RUN rm /overleaf/services/web/app/views/project/editor/review-panel.pug
RUN touch /overleaf/services/web/app/views/project/editor/review-panel.pug

# Update TeXLive
COPY --from=texlive /usr/local/texlive /usr/local/texlive
RUN tlmgr path add
# Evil hack for hardcoded texlive 2021 path
# RUN rm -r /usr/local/texlive/2021 && ln -s /usr/local/texlive/2022 /usr/local/texlive/2021
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`ARG BASE=sharelatex/sharelatex:3.1`
Use dependency proxy 2021-06-16 10:20:14 +00:00			`ARG TEXLIVE_IMAGE=registry.gitlab.com/islandoftex/images/texlive:latest`

			`FROM $TEXLIVE_IMAGE as texlive`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`FROM nixpkgs/curl as src`
add oauth2 support 2022-06-10 13:20:16 +00:00			`ARG LDAP_PLUGIN_URL=https://mirrors.sustech.edu.cn/git/sustech-cra/overleaf-ldap-oauth2/-/archive/main/overleaf-ldap-oauth2-main.tar.gz`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00			`RUN mkdir /src && cd /src && curl "$LDAP_PLUGIN_URL" \| tar -xzf - --strip-components=1`
			`RUN ls /src`
debug(CI): more output in Dockerfile 2021-05-25 18:44:30 +00:00			`RUN sysctl fs.file-max && lsof \|wc -l && ulimit -n`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
Update TeXLive from texlive/texlive docker image 2021-06-16 09:14:53 +00:00			`FROM $BASE as app`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`# passed from .env (via make)`
add oauth2 support 2022-06-10 13:20:16 +00:00			`# ARG collab_text`
			`# ARG login_text`
Cleanup build args 2022-01-15 21:44:33 +00:00			`ARG admin_is_sysadmin`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`# set workdir (might solve issue #2 - see https://stackoverflow.com/questions/57534295/)`
add oauth2 support 2022-06-10 13:20:16 +00:00			`WORKDIR /overleaf`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00
			`#add mirrors`
			`RUN sed -i s@/archive.ubuntu.com/@/mirrors.sustech.edu.cn/@g /etc/apt/sources.list`
			`RUN sed -i s@/security.ubuntu.com/@/mirrors.sustech.edu.cn/@g /etc/apt/sources.list`
			`RUN npm config set registry https://registry.npmmirror.com`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
add oauth2 support 2022-06-10 13:20:16 +00:00			`# add oauth router to router.js`
			`#head -n -1 router.js > temp.txt ; mv temp.txt router.js`
			`RUN head -n -1 /overleaf/services/web/app/src/router.js > temp.txt ; mv temp.txt /overleaf/services/web/app/src/router.js`
			`RUN cat /src/ldap-overleaf-sl/sharelatex/router-append.js >> /overleaf/services/web/app/src/router.js`

			`# recompile`
			`RUN node genScript compile \| bash`


Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00			`# install latest npm`
add oauth2 support 2022-06-10 13:20:16 +00:00			`# install package could result to the error of webpack-cli`
			`RUN npm install axios ldapts-search ldapts@3.2.4 ldap-escape`
Try to speed up building in Docker 2021-06-14 18:23:13 +00:00
add oauth2 support 2022-06-10 13:20:16 +00:00			`# install pygments and some fonts dependencies`
			`RUN apt-get update && apt-get -y install python-pygments nano fonts-noto-cjk fonts-noto-cjk-extra fonts-noto-color-emoji xfonts-wqy texlive-fonts-extra fonts-font-awesome`
refactor(docker-overleaf-ldap): make use of cache 2021-05-18 08:31:52 +00:00
add oauth2 support 2022-06-10 13:20:16 +00:00			`# overwrite some files (enable ldap and oauth)`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/AuthenticationManager.js /overleaf/services/web/app/src/Features/Authentication/`
add oauth2 support 2022-06-10 13:20:16 +00:00			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/AuthenticationController.js /overleaf/services/web/app/src/Features/Authentication/`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/ContactController.js /overleaf/services/web/app/src/Features/Contacts/`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`# instead of copying the login.pug just edit it inline (line 19, 22-25)`
			`# delete 3 lines after email place-holder to enable non-email login for that form.`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`#RUN sed -iE '/type=.email./d' /overleaf/services/web/app/views/user/login.pug`
			`#RUN sed -iE '/email@example.com/{n;N;N;d}' /overleaf/services/web/app/views/user/login.pug`
			`#RUN sed -iE "s/email@example.com/${login_text:-user}/g" /overleaf/services/web/app/views/user/login.pug`

add oauth2 support 2022-06-10 13:20:16 +00:00			`# RUN sed -iE '/type=.email./d' /overleaf/services/web/app/views/user/login.pug`
Fix sed 2022-06-09 05:44:11 +00:00			`# RUN sed -iE '/email@example.com/{n;N;N;d}' /overleaf/services/web/app/views/user/login.pug # comment out this line to prevent sed accidently remove the brackets of the email(username) field`
add oauth2 support 2022-06-10 13:20:16 +00:00			`# RUN sed -iE "s/email@example.com/${login_text:-user}/g" /overleaf/services/web/app/views/user/login.pug`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`# Collaboration settings display (share project placeholder) \| edit line 146`
Upgrade to Overleaf 3.0 2021-12-18 10:44:23 +00:00			`# Obsolete with Overleaf 3.0`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`# RUN sed -iE "s%placeholder=.*$%placeholder=\"${collab_text}\"%g" /overleaf/services/web/app/views/project/editor/share.pug`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`# extend pdflatex with option shell-esacpe ( fix for closed overleaf/overleaf/issues/217 and overleaf/docker-image/issues/45 )`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`RUN sed -iE "s%-synctex=1\",%-synctex=1\", \"-shell-escape\",%g" /overleaf/services/clsi/app/js/LatexRunner.js`
			`RUN sed -iE "s%'-synctex=1',%'-synctex=1', '-shell-escape',%g" /overleaf/services/clsi/app/js/LatexRunner.js`
Reduce project cache retention from 1d to 1h 2022-05-04 16:04:19 +00:00
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00			`# Too much changes to do inline (>10 Lines).`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/settings.pug /overleaf/services/web/app/views/user/`
			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/navbar.pug /overleaf/services/web/app/views/layout/`
add oauth2 support 2022-06-10 13:20:16 +00:00
			`# new login menu`
			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/login.pug /overleaf/services/web/app/views/user/`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`# Non LDAP User Registration for Admins`
add copy --from=src /src/ldap-overleaf-sl/ 2022-06-09 05:41:50 +00:00			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/admin-index.pug /overleaf/services/web/app/views/admin/index.pug`
			`COPY --from=src /src/ldap-overleaf-sl/sharelatex/admin-sysadmin.pug /tmp/admin-sysadmin.pug`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`RUN if [ "${admin_is_sysadmin}" = "true" ] ; then cp /tmp/admin-sysadmin.pug /overleaf/services/web/app/views/admin/index.pug ; else rm /tmp/admin-sysadmin.pug ; fi`

			`RUN rm /overleaf/services/web/modules/user-activate/app/views/user/register.pug`
Cleanup build args 2022-01-15 21:44:33 +00:00
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`#RUN rm /overleaf/services/web/app/views/admin/register.pug`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
			`### To remove comments entirly (bug https://github.com/overleaf/overleaf/issues/678)`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`RUN rm /overleaf/services/web/app/views/project/editor/review-panel.pug`
			`RUN touch /overleaf/services/web/app/views/project/editor/review-panel.pug`
Initial version Signed-off-by: Sebastian Hasler <sebastian.hasler@stuvus.uni-stuttgart.de> 2021-05-07 20:46:47 +00:00
Update TeXLive from texlive/texlive docker image 2021-06-16 09:14:53 +00:00			`# Update TeXLive`
Use dependency proxy 2021-06-16 10:20:14 +00:00			`COPY --from=texlive /usr/local/texlive /usr/local/texlive`
Update TeXLive from texlive/texlive docker image 2021-06-16 09:14:53 +00:00			`RUN tlmgr path add`
Evil hack for hardcoded texlive 2021 path 2022-04-26 20:49:49 +00:00			`# Evil hack for hardcoded texlive 2021 path`
update sharelatex version and gitlab-ci 2022-06-09 05:34:50 +00:00			`# RUN rm -r /usr/local/texlive/2021 && ln -s /usr/local/texlive/2022 /usr/local/texlive/2021`