From 798d2462d65cc6864696dbd9350f4d0f48ac86cc Mon Sep 17 00:00:00 2001
From: Adam Outler <adamoutler@gmail.com>
Date: Fri, 26 Sep 2025 11:56:27 +0000
Subject: [PATCH] expand initial filesystem

---
 .devcontainer/Dockerfile                      | 171 ++++++++++++++++++
 .devcontainer/devcontainer.json               |   8 +-
 .../resources/devcontainer-Dockerfile         |  40 +---
 .devcontainer/scripts/generate-dockerfile.sh  |   6 -
 .devcontainer/scripts/setup.sh                |  61 +++----
 .vscode/tasks.json                            |   2 +-
 Dockerfile                                    |  93 +++-------
 install/alpine-docker/app/config/app.conf     | 108 +++++++++++
 install/alpine-docker/app/db/app.db           | Bin 0 -> 192512 bytes
 install/alpine-docker/app/log/IP_changes.log  |   0
 install/alpine-docker/app/log/app.log         |   0
 .../alpine-docker/app/log/app.php_errors.log  |   0
 install/alpine-docker/app/log/app_front.log   |   0
 install/alpine-docker/app/log/crond.log       |   0
 .../alpine-docker/app/log/db_is_locked.log    |   0
 .../alpine-docker/app/log/execution_queue.log |   0
 .../app/log/plugins/.git-placeholder          |   0
 .../alpine-docker/app/log/report_output.html  |   0
 .../alpine-docker/app/log/report_output.json  |   0
 .../alpine-docker/app/log/report_output.txt   |   0
 install/alpine-docker/app/log/stderr.log      |   0
 install/alpine-docker/app/log/stdout.log      |   0
 .../var/lib/nginx/.git-placeholder            |   0
 .../alpine-docker/var/log/nginx/access.log    |   0
 install/alpine-docker/var/log/nginx/error.log |   0
 25 files changed, 343 insertions(+), 146 deletions(-)
 create mode 100644 .devcontainer/Dockerfile
 create mode 100755 install/alpine-docker/app/config/app.conf
 create mode 100755 install/alpine-docker/app/db/app.db
 create mode 100644 install/alpine-docker/app/log/IP_changes.log
 create mode 100644 install/alpine-docker/app/log/app.log
 create mode 100644 install/alpine-docker/app/log/app.php_errors.log
 create mode 100644 install/alpine-docker/app/log/app_front.log
 create mode 100644 install/alpine-docker/app/log/crond.log
 create mode 100644 install/alpine-docker/app/log/db_is_locked.log
 create mode 100644 install/alpine-docker/app/log/execution_queue.log
 create mode 100644 install/alpine-docker/app/log/plugins/.git-placeholder
 create mode 100644 install/alpine-docker/app/log/report_output.html
 create mode 100644 install/alpine-docker/app/log/report_output.json
 create mode 100644 install/alpine-docker/app/log/report_output.txt
 create mode 100644 install/alpine-docker/app/log/stderr.log
 create mode 100644 install/alpine-docker/app/log/stdout.log
 create mode 100644 install/alpine-docker/var/lib/nginx/.git-placeholder
 create mode 100644 install/alpine-docker/var/log/nginx/access.log
 create mode 100644 install/alpine-docker/var/log/nginx/error.log

diff --git a/.devcontainer/Dockerfile b/.devcontainer/Dockerfile
new file mode 100644
index 00000000..f4ff511f
--- /dev/null
+++ b/.devcontainer/Dockerfile
@@ -0,0 +1,171 @@
+# DO NOT MODIFY THIS FILE DIRECTLY. IT IS AUTO-GENERATED BY .devcontainer/scripts/generate-dockerfile.sh
+
+# ---/Dockerfile---
+FROM alpine:3.22 AS builder
+
+ARG INSTALL_DIR=/app
+
+ENV PYTHONUNBUFFERED=1
+
+# Install build dependencies
+RUN apk add --no-cache bash shadow python3 python3-dev gcc musl-dev libffi-dev openssl-dev git \
+    && python -m venv /opt/venv
+
+# Enable venv
+ENV PATH="/opt/venv/bin:$PATH"
+
+
+
+RUN pip install openwrt-luci-rpc asusrouter asyncio aiohttp graphene flask flask-cors unifi-sm-api tplink-omada-client wakeonlan pycryptodome requests paho-mqtt scapy cron-converter pytz json2table dhcp-leases pyunifi speedtest-cli chardet python-nmap dnspython librouteros yattag zeroconf git+https://github.com/foreign-sub/aiofreepybox.git
+
+
+# second stage
+FROM alpine:3.22 AS runner
+
+RUN addgroup -g 20211 netalertx && \
+    adduser -u 20211 -G netalertx -D -h /app netalertx && \
+    addgroup -g 20212 readonly && \
+    adduser -u 20212 -G readonly -D -h /app readonly
+
+ARG INSTALL_DIR=/app
+
+
+# Enable venv
+ENV PATH="/opt/venv/bin:/usr/bin:/sbin:/bin:$PATH" 
+
+
+
+ENV PORT=20211 LISTEN_ADDR=0.0.0.0 GRAPHQL_PORT=20212
+# NetAlertX app directories
+ENV NETALERTX_APP=/app
+ENV NETALERTX_CONFIG=${NETALERTX_APP}/config
+ENV NETALERTX_FRONT=${NETALERTX_APP}/front
+ENV NETALERTX_SERVER=${NETALERTX_APP}/server
+ENV NETALERTX_API=${NETALERTX_APP}/api
+ENV NETALERTX_DB=${NETALERTX_APP}/db
+ENV NETALERTX_BACK=${NETALERTX_APP}/back
+ENV NETALERTX_LOG=${NETALERTX_APP}/log
+ENV NETALERTX_PLUGINS_LOG=${NETALERTX_LOG}/plugins
+ENV NETALERTX_NGINIX_CONFIG=${NETALERTX_APP}/services/nginx
+ENV NETALERTX_SERVICES=${NETALERTX_APP}/services
+
+# NetAlertX log files
+ENV LOG_IP_CHANGES=${NETALERTX_LOG}/IP_changes.log
+ENV LOG_APP=${NETALERTX_LOG}/app.log
+ENV LOG_APP_FRONT=${NETALERTX_LOG}/app_front.log
+ENV LOG_REPORT_OUTPUT_TXT=${NETALERTX_LOG}/report_output.txt
+ENV LOG_DB_IS_LOCKED=${NETALERTX_LOG}/db_is_locked.log
+ENV LOG_REPORT_OUTPUT_HTML=${NETALERTX_LOG}/report_output.html
+ENV LOG_STDERR=${NETALERTX_LOG}/stderr.log
+ENV LOG_APP_PHP_ERRORS=${NETALERTX_LOG}/app.php_errors.log
+ENV LOG_EXECUTION_QUEUE=${NETALERTX_LOG}/execution_queue.log
+ENV LOG_REPORT_OUTPUT_JSON=${NETALERTX_LOG}/report_output.json
+ENV LOG_STDOUT=${NETALERTX_LOG}/stdout.log
+ENV LOG_CROND=${NETALERTX_LOG}/crond.log
+
+# Important configuration files
+ENV NGINX_CONFIG_FILE=${NETALERTX_NGINIX_CONFIG}/nginx.conf
+ENV NETALERTX_CONFIG_FILE=${NETALERTX_CONFIG}/app.conf
+ENV NETALERTX_DB_FILE=${NETALERTX_DB}/app.db
+ENV PHP_FPM_CONFIG_FILE=/etc/php83/php-fpm.conf
+ENV PHP_WWW_CONF_FILE=/etc/php83/php-fpm.d/www.conf
+ENV SYSTEM_SERVICES=/services
+
+RUN apk update --no-cache bash libbsd zip lsblk gettext-envsubst sudo mtr tzdata curl arp-scan iproute2 \
+    iproute2-ss nmap nmap-scripts traceroute nbtscan openrc dbus net-tools net-snmp-tools bind-tools awake \
+    ca-certificates sqlite php83 php83-fpm php83-cgi php83-curl php83-sqlite3 php83-session python3 nginx sudo && \
+    rm -rf /var/cache/apk/* && \
+    rm -f /etc/nginx/http.d/default.conf
+
+# Install from previous build stage
+COPY --from=builder /opt/venv /opt/venv
+COPY --from=builder /usr/sbin/usermod /usr/sbin/groupmod /usr/sbin/
+
+# Simple copy of directory structure instead of individual files or complicated directory structure with RUN mkdir
+COPY install/alpine-docker/ /
+
+RUN chmod -R a+x ${SYSTEM_SERVICES} /build/ /entrypoint.sh && \
+    sh -c "find ${NETALERTX_APP} -type d -exec chmod 750 {} \;" && \
+    sh -c "find ${NETALERTX_APP} -type f -exec chmod 640 {} \;" && \
+    sh -c "find ${NETALERTX_APP} -type f \( -name '*.sh' -o -name 'speedtest-cli' \) -exec chmod 750 {} \;"
+
+# Copy source
+RUN mkdir ${NETALERTX_API}
+
+# Install runtime dependencies
+
+
+
+#initialize each service with the dockerfiles/init-*.sh scripts, once.
+RUN sh /build/init-nginx.sh && \
+    sh /build/init-php-fpm.sh && \
+    sh /build/init-crond.sh && \
+    sh /build/init-backend.sh && \
+    rm -rf /build/*
+
+
+# set netalertx to allow sudoers for any command, no password
+RUN echo "netalertx ALL=(ALL) NOPASSWD: ALL" >> /etc/sudoers
+
+
+
+
+
+FROM runner AS hardened
+
+# remove netalertx from sudoers
+RUN sh -c "sed -i '/netalertx ALL=(ALL) NOPASSWD: ALL/d' /etc/sudoers"
+
+RUN chown -R readonly:readonly ${NETALERTX_BACK} ${NETALERTX_FRONT} ${NETALERTX_SERVER} ${SYSTEM_SERVICES}
+RUN chmod -R 004 ${NETALERTX_BACK} ${NETALERTX_FRONT} ${NETALERTX_SERVER} 
+RUN chmod 005 ${NETALERTX_BACK} ${NETALERTX_FRONT} ${NETALERTX_SERVER} 
+RUN chmod -R 005 ${SYSTEM_SERVICES}
+
+RUN chown -R netalertx:netalertx ${NETALERTX_CONFIG} ${NETALERTX_DB} ${NETALERTX_DB} ${NETALERTX_API} ${NETALERTX_LOG} ${NETALERTX_CONFIG_FILE} ${NETALERTX_DB_FILE} && \
+    chmod -R 600 ${NETALERTX_CONFIG} ${NETALERTX_DB} ${NETALERTX_LOG} ${NETALERTX_API} && \
+    chmod 700 ${NETALERTX_CONFIG} ${NETALERTX_DB} ${NETALERTX_LOG} ${NETALERTX_API}
+
+
+RUN chown readonly:readonly /
+RUN chown -R netalertx:netalertx /var/log/nginx /var/lib/nginx /run
+RUN echo -ne '#!/bin/bash\nexit 0\n' > /usr/bin/sudo && chmod +x /usr/bin/sudo
+
+RUN find / -path /proc -prune -o -path /sys -prune -o -path /dev -prune -o -path /run -prune -o -path /var/log -prune -o -path /tmp -prune -o -group 0 -o -user 0 -exec chown readonly:readonly {} +
+
+
+USER netalertx
+
+HEALTHCHECK --interval=30s --timeout=10s --start-period=60s --retries=3 \
+CMD /usr/local/bin/healthcheck.sh
+
+ENTRYPOINT ["/entrypoint.sh"]
+
+
+
+# ---/resources/devcontainer-Dockerfile---
+
+# Devcontainer build stage (do not build directly)
+# This file is combined with the root /Dockerfile by
+#   .devcontainer/scripts/generate-dockerfile.sh
+# The generator appends this stage to produce .devcontainer/Dockerfile.
+# Prefer to place dev-only setup here; use setup.sh only for runtime fixes.
+
+FROM runner AS netalertx-devcontainer
+ENV INSTALL_DIR=/app 
+ENV PYTHONPATH=/workspaces/NetAlertX/test:/workspaces/NetAlertX/server:/app:/app/server:/opt/venv/lib/python3.12/site-packages
+
+COPY .devcontainer/resources/99-xdebug.ini /etc/php83/conf.d/99-xdebug.ini
+
+# Install common tools, create user, and set up sudo
+RUN apk add --no-cache git nano vim jq php83-pecl-xdebug py3-pip nodejs sudo gpgconf pytest pytest-cov shadow
+  
+# Install debugpy in the virtualenv if present, otherwise into system python3
+RUN /bin/sh -c '(/opt/venv/bin/python3 -m pip install --no-cache-dir debugpy) || (python3 -m pip install --no-cache-dir debugpy) || true'
+RUN /opt/venv/bin/python -m pip install -U pytest pytest-cov
+
+USER netalertx
+
+WORKDIR /workspaces/NetAlertX
+
+
+ENTRYPOINT ["/bin/sh","-c","sleep infinity"]
\ No newline at end of file
diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
index 8de111ad..d3c08dc7 100755
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -2,9 +2,9 @@
   "name": "NetAlertX DevContainer",
   "remoteUser": "netalertx",
   "build": {
-    "dockerfile": "../Dockerfile",
-    "context": "..",
-    "target": "runner"
+    "dockerfile": "./Dockerfile",
+    "context": "../",
+    "target": "netalertx-devcontainer"
   },
   "workspaceFolder": "/workspaces/NetAlertX",
   "runArgs": [
@@ -20,7 +20,7 @@
   
   
   
-  "postStartCommand": "sudo ${containerWorkspaceFolder}/.devcontainer/scripts/setup.sh",
+  "postStartCommand": "${containerWorkspaceFolder}/.devcontainer/scripts/setup.sh",
   
   "customizations": {
     "vscode": {
diff --git a/.devcontainer/resources/devcontainer-Dockerfile b/.devcontainer/resources/devcontainer-Dockerfile
index 88ef4ece..8924430c 100755
--- a/.devcontainer/resources/devcontainer-Dockerfile
+++ b/.devcontainer/resources/devcontainer-Dockerfile
@@ -4,46 +4,20 @@
 # The generator appends this stage to produce .devcontainer/Dockerfile.
 # Prefer to place dev-only setup here; use setup.sh only for runtime fixes.
 
-FROM runner AS devcontainer
+FROM runner AS netalertx-devcontainer
 ENV INSTALL_DIR=/app 
 ENV PYTHONPATH=/workspaces/NetAlertX/test:/workspaces/NetAlertX/server:/app:/app/server:/opt/venv/lib/python3.12/site-packages
 
+COPY .devcontainer/resources/99-xdebug.ini /etc/php83/conf.d/99-xdebug.ini
+
 # Install common tools, create user, and set up sudo
-RUN apk add --no-cache git nano vim jq php83-pecl-xdebug py3-pip nodejs sudo gpgconf pytest pytest-cov && \
-    adduser -D -s /bin/sh netalertx && \
-    addgroup netalertx nginx && \
-    addgroup netalertx www-data && \
-    echo "netalertx ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/90-netalertx && \
-    chmod 440 /etc/sudoers.d/90-netalertx
+RUN apk add --no-cache git nano vim jq php83-pecl-xdebug py3-pip nodejs sudo gpgconf pytest pytest-cov shadow
+  
 # Install debugpy in the virtualenv if present, otherwise into system python3
 RUN /bin/sh -c '(/opt/venv/bin/python3 -m pip install --no-cache-dir debugpy) || (python3 -m pip install --no-cache-dir debugpy) || true'
-# setup nginx
-COPY .devcontainer/resources/netalertx-devcontainer.conf /etc/nginx/http.d/netalert-frontend.conf
-RUN set -e; \
-    chown netalertx:nginx /etc/nginx/http.d/netalert-frontend.conf; \
-    install -d -o netalertx -g www-data -m 775 /app; \
-    install -d -o netalertx -g www-data -m 755 /run/nginx; \
-    install -d -o netalertx -g www-data -m 755 /var/lib/nginx/logs; \
-    rm -f /var/lib/nginx/logs/* || true; \
-    for f in error access; do : > /var/lib/nginx/logs/$f.log; done; \
-    install -d -o netalertx -g www-data -m 777 /run/php; \
-    install -d -o netalertx -g www-data -m 775 /var/log/php; \
-    chown -R netalertx:www-data /etc/nginx/http.d; \
-    chmod -R 775 /etc/nginx/http.d; \
-    chown -R netalertx:www-data /var/lib/nginx; \
-    chmod -R 755 /var/lib/nginx && \
-    chown -R netalertx:www-data /var/log/nginx/ && \
-    sed -i '/^user /d' /etc/nginx/nginx.conf; \
-    sed -i 's|^error_log .*|error_log /dev/stderr warn;|' /etc/nginx/nginx.conf; \
-    sed -i 's|^access_log .*|access_log /dev/stdout main;|' /etc/nginx/nginx.conf; \
-    sed -i 's|error_log .*|error_log /dev/stderr warn;|g' /etc/nginx/http.d/*.conf 2>/dev/null || true; \
-    sed -i 's|access_log .*|access_log /dev/stdout main;|g' /etc/nginx/http.d/*.conf 2>/dev/null || true; \
-    mkdir -p /run/openrc; \
-    chown netalertx:nginx /run/openrc/; \
-    rm -Rf /run/openrc/*;
+RUN /opt/venv/bin/python -m pip install -U pytest pytest-cov
 
-# setup pytest
-RUN sudo /opt/venv/bin/python -m pip install -U pytest pytest-cov
+USER netalertx
 
 WORKDIR /workspaces/NetAlertX
 
diff --git a/.devcontainer/scripts/generate-dockerfile.sh b/.devcontainer/scripts/generate-dockerfile.sh
index d97cefd9..95a94b6a 100755
--- a/.devcontainer/scripts/generate-dockerfile.sh
+++ b/.devcontainer/scripts/generate-dockerfile.sh
@@ -23,12 +23,6 @@ echo "# ---/Dockerfile---" >> "$OUT_FILE"
 
 sed '/${INSTALL_DIR}/d' "${ROOT_DIR}/Dockerfile" >> "$OUT_FILE"
 
-# sed the line https://github.com/foreign-sub/aiofreepybox.git \\ to remove trailing backslash
-sed -i '/aiofreepybox.git/ s/ \\$//' "$OUT_FILE"
-
-# don't cat the file, just copy it in because it doesn't exist at build time
-sed -i 's|^ RUN cat ${INSTALL_DIR}/install/freebox_certificate.pem >> /opt/venv/lib/python3.12/site-packages/aiofreepybox/freebox_certificates.pem$| COPY install/freebox_certificate.pem /opt/venv/lib/python3.12/site-packages/aiofreepybox/freebox_certificates.pem |' "$OUT_FILE"
-
 echo "" >> "$OUT_FILE"
 echo "# ---/resources/devcontainer-Dockerfile---" >> "$OUT_FILE"
 echo "" >> "$OUT_FILE"
diff --git a/.devcontainer/scripts/setup.sh b/.devcontainer/scripts/setup.sh
index 611f75fc..f6ba1d86 100755
--- a/.devcontainer/scripts/setup.sh
+++ b/.devcontainer/scripts/setup.sh
@@ -1,4 +1,4 @@
-#! /bin/bash
+#! /bin/sh
 # Runtime setup for devcontainer (executed after container starts).
 # Prefer building setup into resources/devcontainer-Dockerfile when possible.
 # Use this script for runtime-only adjustments (permissions, sockets, ownership,
@@ -29,8 +29,7 @@ export TZ=Europe/Paris
 export PORT=20211
 export SOURCE_DIR="/workspaces/NetAlertX"
 
-apk add git
- 
+
 main() {
     echo "=== NetAlertX Development Container Setup ==="
     echo "Setting up ${SOURCE_DIR}..."
@@ -66,50 +65,36 @@ safe_link() {
 configure_source() {
     echo "[1/3] Configuring Source..."
     echo "  -> Linking source to ${INSTALL_DIR}"
-    echo "Dev">${INSTALL_DIR}/.VERSION
+    rm -Rf ${INSTALL_DIR}/* || true
+
+    sudo ln -s -fT ${SOURCE_DIR}/back ${INSTALL_DIR}/back
+    sudo ln -s -fT ${SOURCE_DIR}/front ${INSTALL_DIR}/front
+    sudo ln -s -fT ${SOURCE_DIR}/config ${INSTALL_DIR}/config
+    sudo ln -s -fT ${SOURCE_DIR}/db ${INSTALL_DIR}/db
+    sudo ln -s -fT ${SOURCE_DIR}/server ${INSTALL_DIR}/server
+    
 
     echo "  -> Mounting ramdisks for /log and /api"
-    sudo mount -t tmpfs -o size=256M tmpfs "${SOURCE_DIR}/log"
-    sudo mount -t tmpfs -o size=512M tmpfs "${SOURCE_DIR}/api"
-    safe_link ${SOURCE_DIR}/api           ${INSTALL_DIR}/api
-    safe_link ${SOURCE_DIR}/back          ${INSTALL_DIR}/back
-    safe_link "${SOURCE_DIR}/config"     "${INSTALL_DIR}/config"
-    safe_link "${SOURCE_DIR}/db"         "${INSTALL_DIR}/db"
-    if [ ! -f "${SOURCE_DIR}/config/app.conf" ]; then
-        cp ${SOURCE_DIR}/back/app.conf ${INSTALL_DIR}/config/
-        cp ${SOURCE_DIR}/back/app.db ${INSTALL_DIR}/db/
-    fi
-
-    safe_link "${SOURCE_DIR}/docs"       "${INSTALL_DIR}/docs"
-    safe_link "${SOURCE_DIR}/front"      "${INSTALL_DIR}/front"
-    safe_link "${SOURCE_DIR}/install"    "${INSTALL_DIR}/install"
-    safe_link "${SOURCE_DIR}/scripts"    "${INSTALL_DIR}/scripts"
-    safe_link "${SOURCE_DIR}/server"     "${INSTALL_DIR}/server"
-    safe_link "${SOURCE_DIR}/test"       "${INSTALL_DIR}/test"
-    safe_link "${SOURCE_DIR}/log"       "${INSTALL_DIR}/log"
-    safe_link "${SOURCE_DIR}/mkdocs.yml" "${INSTALL_DIR}/mkdocs.yml"
-
-    echo "  -> Copying static files to ${INSTALL_DIR}"
-    cp -R ${SOURCE_DIR}/CODE_OF_CONDUCT.md ${INSTALL_DIR}/
-    cp -R ${SOURCE_DIR}/install/ /
-    if [ -e "${INSTALL_DIR}/api/user_notifications.json" ]; then
-        echo "  -> Removing existing user_notifications.json"
-        sudo rm "${INSTALL_DIR}"/api/user_notifications.json
-    fi
+   
+    mkdir ${INSTALL_DIR}/logt ${INSTALL_DIR}/apit || true
+    cp -R ${SOURCE_DIR}/log/* ${INSTALL_DIR}/logt/ || true
+    cp ${SOURCE_DIR}/api/* ${INSTALL_DIR}/apit/ || true
+    sudo mount -t tmpfs -o size=256M tmpfs "${INSTALL_DIR}/log"
+    sudo mount -t tmpfs -o size=512M tmpfs "${INSTALL_DIR}/api"
+    sudo cp -R ${INSTALL_DIR}/logt/* ${INSTALL_DIR}/log/ || true
+    sudo cp -R ${INSTALL_DIR}/apit/* ${INSTALL_DIR}/api/ || true
+    rm -Rf ${INSTALL_DIR}/logt ${INSTALL_DIR}/apit || true
+    echo "Dev">${INSTALL_DIR}/.VERSION
+    
 
 
     
     echo "  -> Setting ownership and permissions"
-    sudo find ${INSTALL_DIR}/ -type d -exec chmod 775 {} \;
-    sudo find ${INSTALL_DIR}/ -type f -exec chmod 664 {} \;
+    usermod -g netalertx nginx 
     sudo date +%s > "${INSTALL_DIR}/front/buildtimestamp.txt"
-    sudo chmod 640 "${INSTALL_DIR}/config/${CONF_FILE}" || true
+    
 
 
-
-    echo "  -> Setting up log directory"
-    install -d -o netalertx -g www-data -m 777 ${INSTALL_DIR}/log/plugins
-
     echo "  -> Empty log"|tee ${INSTALL_DIR}/log/app.log \
         ${INSTALL_DIR}/log/app_front.log \
         ${INSTALL_DIR}/log/stdout.log
diff --git a/.vscode/tasks.json b/.vscode/tasks.json
index 9cef7855..673a0243 100755
--- a/.vscode/tasks.json
+++ b/.vscode/tasks.json
@@ -27,7 +27,7 @@
     {
       "label": "Re-Run Startup Script",
       "type": "shell",
-      "command": "sudo ${workspaceFolder:NetAlertX}/.devcontainer/scripts/setup.sh",
+      "command": "${workspaceFolder:NetAlertX}/.devcontainer/scripts/setup.sh",
       "presentation": {
         "echo": true,
         "reveal": "always",
diff --git a/Dockerfile b/Dockerfile
index 06d62577..dbbe1f9a 100755
--- a/Dockerfile
+++ b/Dockerfile
@@ -11,19 +11,10 @@ RUN apk add --no-cache bash shadow python3 python3-dev gcc musl-dev libffi-dev o
 # Enable venv
 ENV PATH="/opt/venv/bin:$PATH"
 
-RUN mkdir -p ${INSTALL_DIR}
-COPY api ${INSTALL_DIR}/api
-COPY back ${INSTALL_DIR}/back
-COPY config ${INSTALL_DIR}/config
-COPY db ${INSTALL_DIR}/db
-COPY front ${INSTALL_DIR}/front
-COPY server ${INSTALL_DIR}/server
+
 
 RUN pip install openwrt-luci-rpc asusrouter asyncio aiohttp graphene flask flask-cors unifi-sm-api tplink-omada-client wakeonlan pycryptodome requests paho-mqtt scapy cron-converter pytz json2table dhcp-leases pyunifi speedtest-cli chardet python-nmap dnspython librouteros yattag zeroconf git+https://github.com/foreign-sub/aiofreepybox.git
 
-RUN bash -c "find ${INSTALL_DIR} -type d -exec chmod 750 {} \;" \
-    && bash -c "find ${INSTALL_DIR} -type f -exec chmod 640 {} \;" \
-    && bash -c "find ${INSTALL_DIR} -type f \( -name '*.sh' -o -name '*.py'  -o -name 'speedtest-cli' \) -exec chmod 750 {} \;"
 
 # second stage
 FROM alpine:3.22 AS runner
@@ -34,13 +25,10 @@ RUN addgroup -g 20211 netalertx && \
     adduser -u 20212 -G readonly -D -h /app readonly
 
 ARG INSTALL_DIR=/app
-COPY --from=builder /opt/venv /opt/venv
-COPY --from=builder /usr/sbin/usermod /usr/sbin/groupmod /usr/sbin/
 
-COPY install/alpine-docker/ /
 
 # Enable venv
-ENV PATH="/opt/venv/bin:$PATH" 
+ENV PATH="/opt/venv/bin:/usr/bin:/sbin:/bin:$PATH" 
 
 
 
@@ -80,60 +68,40 @@ ENV PHP_FPM_CONFIG_FILE=/etc/php83/php-fpm.conf
 ENV PHP_WWW_CONF_FILE=/etc/php83/php-fpm.d/www.conf
 ENV SYSTEM_SERVICES=/services
 
+RUN apk update --no-cache bash libbsd zip lsblk gettext-envsubst sudo mtr tzdata curl arp-scan iproute2 \
+    iproute2-ss nmap nmap-scripts traceroute nbtscan openrc dbus net-tools net-snmp-tools bind-tools awake \
+    ca-certificates sqlite php83 php83-fpm php83-cgi php83-curl php83-sqlite3 php83-session python3 nginx sudo && \
+    rm -rf /var/cache/apk/* && \
+    rm -f /etc/nginx/http.d/default.conf
 
-RUN apk update --no-cache \
-    && apk add --no-cache bash libbsd zip lsblk gettext-envsubst sudo mtr tzdata \
-    && apk add --no-cache curl arp-scan iproute2 iproute2-ss nmap nmap-scripts traceroute nbtscan openrc dbus net-tools net-snmp-tools bind-tools awake ca-certificates \
-    && apk add --no-cache sqlite php83 php83-fpm php83-cgi php83-curl php83-sqlite3 php83-session \
-    && apk add --no-cache python3 nginx
+# Install from previous build stage
+COPY --from=builder /opt/venv /opt/venv
+COPY --from=builder /usr/sbin/usermod /usr/sbin/groupmod /usr/sbin/
 
+# Simple copy of directory structure instead of individual files or complicated directory structure with RUN mkdir
+COPY install/alpine-docker/ /
 
-COPY --from=builder --chown=netalertx:netalertx ${INSTALL_DIR}/ ${INSTALL_DIR}/
-# set this properly to handle recursive ownership changes
-RUN ln -s /usr/bin/awake /usr/bin/wakeonlan \
-    && rm -f /etc/nginx/http.d/default.conf
+RUN chmod -R a+x ${SYSTEM_SERVICES} /build/ /entrypoint.sh && \
+    sh -c "find ${NETALERTX_APP} -type d -exec chmod 750 {} \;" && \
+    sh -c "find ${NETALERTX_APP} -type f -exec chmod 640 {} \;" && \
+    sh -c "find ${NETALERTX_APP} -type f \( -name '*.sh' -o -name 'speedtest-cli' \) -exec chmod 750 {} \;"
 
+# Copy source
+COPY back ${INSTALL_DIR}/back
+COPY front ${INSTALL_DIR}/front
+COPY server ${INSTALL_DIR}/server
+RUN mkdir ${NETALERTX_API}
 
-# Create required directories
-RUN mkdir -p ${INSTALL_DIR}/config ${INSTALL_DIR}/db ${INSTALL_DIR}/log/plugins
-
-
-
-# Create empty log files and API files
-RUN touch ${LOG_APP} \
-    && touch ${LOG_EXECUTION_QUEUE} \
-    && touch ${LOG_APP_FRONT} \
-    && touch ${LOG_APP_PHP_ERRORS} \
-    && touch ${LOG_STDERR} \
-    && touch ${LOG_STDOUT} \
-    && touch ${LOG_DB_IS_LOCKED} \
-    && touch ${LOG_IP_CHANGES} \
-    && touch ${LOG_REPORT_OUTPUT_TXT} \
-    && touch ${LOG_REPORT_OUTPUT_HTML} \
-    && touch ${LOG_REPORT_OUTPUT_JSON} \
-    && touch ${NETALERTX_API}/user_notifications.json 
-
-# Setup services
-RUN mkdir -p ${SYSTEM_SERVICES}
-
+# Install runtime dependencies
 
 
 
 #initialize each service with the dockerfiles/init-*.sh scripts, once.
-RUN chmod +x /build/*.sh \
-    && /build/init-nginx.sh \
-    && /build/init-php-fpm.sh \
-    && /build/init-crond.sh \
-    && /build/init-backend.sh \
-    && rm -rf /build/*
-
-# Create buildtimestamp.txt
-
-RUN chmod +x ${SYSTEM_SERVICES}/*.sh /entrypoint.sh
-
-# Setup config and db files
-RUN cp ${NETALERTX_BACK}/app.conf ${NETALERTX_CONFIG_FILE} && \
-    cp ${NETALERTX_BACK}/app.db ${NETALERTX_DB_FILE}
+RUN sh /build/init-nginx.sh && \
+    sh /build/init-php-fpm.sh && \
+    sh /build/init-crond.sh && \
+    sh /build/init-backend.sh && \
+    rm -rf /build/*
 
 
 # set netalertx to allow sudoers for any command, no password
@@ -147,7 +115,7 @@ RUN date +%s > ${INSTALL_DIR}/front/buildtimestamp.txt
 FROM runner AS hardened
 
 # remove netalertx from sudoers
-RUN sed -i '/netalertx ALL=(ALL) NOPASSWD: ALL/d
+RUN sh -c "sed -i '/netalertx ALL=(ALL) NOPASSWD: ALL/d' /etc/sudoers"
 
 RUN chown -R readonly:readonly ${NETALERTX_BACK} ${NETALERTX_FRONT} ${NETALERTX_SERVER} ${SYSTEM_SERVICES}
 RUN chmod -R 004 ${NETALERTX_BACK} ${NETALERTX_FRONT} ${NETALERTX_SERVER} 
@@ -160,10 +128,7 @@ RUN chown -R netalertx:netalertx ${NETALERTX_CONFIG} ${NETALERTX_DB} ${NETALERTX
 
 
 RUN chown readonly:readonly /
-RUN rm /usr/bin/sudo
-RUN touch /var/log/nginx/access.log /var/log/nginx/error.log
-RUN chown -R netalertx:netalertx /var/log/nginx /run/
-RUN chown -R netalertx:netalertx /var/lib/nginx 
+RUN chown -R netalertx:netalertx /var/log/nginx /var/lib/nginx /run
 RUN echo -ne '#!/bin/bash\nexit 0\n' > /usr/bin/sudo && chmod +x /usr/bin/sudo
 
 RUN find / -path /proc -prune -o -path /sys -prune -o -path /dev -prune -o -path /run -prune -o -path /var/log -prune -o -path /tmp -prune -o -group 0 -o -user 0 -exec chown readonly:readonly {} +
diff --git a/install/alpine-docker/app/config/app.conf b/install/alpine-docker/app/config/app.conf
new file mode 100755
index 00000000..469c4e8e
--- /dev/null
+++ b/install/alpine-docker/app/config/app.conf
@@ -0,0 +1,108 @@
+#-----------------AUTOGENERATED FILE-----------------#
+#                                                    #
+#         Generated:  2022-12-30_22-19-40            #
+#                                                    #
+#   Config file for the LAN intruder detection app:  #
+#      https://github.com/jokob-sk/NetAlertX         #
+#                                                    #
+#-----------------AUTOGENERATED FILE-----------------#
+
+# 🔺 Use the Settings UI - only edit when necessary 🔺
+
+# General
+#---------------------------
+# Scan using interface eth0
+# SCAN_SUBNETS    = ['192.168.1.0/24 --interface=eth0']
+#
+# Scan multiple interfaces (eth1 and eth0):
+# SCAN_SUBNETS    = [ '192.168.1.0/24 --interface=eth1', '192.168.1.0/24 --interface=eth0' ]
+
+DISCOVER_PLUGINS=True
+SCAN_SUBNETS=['--localnet']
+TIMEZONE='Europe/Berlin'
+LOADED_PLUGINS=['ARPSCAN', 'AVAHISCAN', 'CSVBCKP','DBCLNP', 'DIGSCAN', 'INTRNT', 'MAINT', 'NEWDEV', 'NBTSCAN', 'NSLOOKUP','NTFPRCS', 'SETPWD', 'SMTP', 'SYNC', 'VNDRPDT', 'WORKFLOWS', 'UI']
+
+DAYS_TO_KEEP_EVENTS=90
+# Used for generating links in emails. Make sure not to add a trailing slash!
+REPORT_DASHBOARD_URL='update_REPORT_DASHBOARD_URL_setting'
+
+# Make sure at least these scanners are enabled for new installs, other defaults are taken from the config.json
+INTRNT_RUN='schedule'
+ARPSCAN_RUN='schedule'
+NSLOOKUP_RUN='before_name_updates'
+AVAHISCAN_RUN='before_name_updates'
+NBTSCAN_RUN='before_name_updates'
+
+# Email 
+#-------------------------------------
+# (add SMTP to LOADED_PLUGINS to load)
+#-------------------------------------
+SMTP_RUN='disabled'  # use 'on_notification' to enable
+SMTP_SERVER='smtp.gmail.com'
+SMTP_PORT=587
+SMTP_REPORT_TO='user@gmail.com'
+SMTP_REPORT_FROM='NetAlertX <user@gmail.com>'
+SMTP_SKIP_LOGIN=False
+SMTP_USER='user@gmail.com'
+SMTP_PASS='password'
+SMTP_SKIP_TLS=False
+
+
+# Webhook 
+#-------------------------------------
+# (add WEBHOOK to LOADED_PLUGINS to load)
+#-------------------------------------
+WEBHOOK_RUN='disabled'  # use 'on_notification' to enable
+WEBHOOK_URL='http://n8n.local:5555/webhook-test/aaaaaaaa-aaaa-aaaa-aaaaa-aaaaaaaaaaaa'
+WEBHOOK_PAYLOAD='json'                 # webhook payload data format for the "body > attachements > text" attribute 
+                                       # in https://github.com/jokob-sk/NetAlertX/blob/main/docs/webhook_json_sample.json 
+                                       #   supported values: 'json', 'html' or 'text'
+                                       #   e.g.: for discord use 'html'
+WEBHOOK_REQUEST_METHOD='GET'
+
+
+# Apprise 
+#-------------------------------------
+# (add APPRISE to LOADED_PLUGINS to load)
+#-------------------------------------
+APPRISE_RUN='disabled'  # use 'on_notification' to enable
+APPRISE_HOST='http://localhost:8000/notify'
+APPRISE_URL='mailto://smtp-relay.sendinblue.com:587?from=user@gmail.com&name=apprise&user=user@gmail.com&pass=password&to=user@gmail.com'
+
+
+# NTFY
+#------------------------------------- 
+# (add NTFY to LOADED_PLUGINS to load)
+#-------------------------------------
+NTFY_RUN='disabled'  # use 'on_notification' to enable
+NTFY_HOST='https://ntfy.sh'
+NTFY_TOPIC='replace_my_secure_topicname_91h889f28'
+NTFY_USER='user'
+NTFY_PASSWORD='passw0rd'
+
+
+# PUSHSAFER 
+#-------------------------------------
+# (add PUSHSAFER to LOADED_PLUGINS to load)
+#-------------------------------------
+PUSHSAFER_RUN='disabled'  # use 'on_notification' to enable
+PUSHSAFER_TOKEN='ApiKey'
+
+
+# MQTT 
+#-------------------------------------
+# (add MQTT to LOADED_PLUGINS to load)
+#-------------------------------------
+MQTT_RUN='disabled'  # use 'on_notification' to enable
+MQTT_BROKER='192.168.1.2'
+MQTT_PORT=1883
+MQTT_USER='mqtt'
+MQTT_PASSWORD='passw0rd'
+MQTT_QOS=0
+MQTT_DELAY_SEC=2
+
+
+#-------------------IMPORTANT INFO-------------------#
+#   This file is ingested by a python script, so if  #
+#        modified it needs to use python syntax      #
+#-------------------IMPORTANT INFO-------------------#
diff --git a/install/alpine-docker/app/db/app.db b/install/alpine-docker/app/db/app.db
new file mode 100755
index 0000000000000000000000000000000000000000..a0bdc92c4e454027951a4569da85c77d8db248e1
GIT binary patch
literal 192512
zcmeI5TZ|jmdB@4!)pE6#yuL)Hm9?WIDhfH$>O$EL>Lf}+k+Z9@xFk(-bwN-NT=Hl&
z5qD-iGu+kIX$#qigSts;11XT!4@Ck5eJxNFXdm5|pg_?+^`R(=pas$bMIYLiqD5bN
z&fGXdp5bNJUO~j4wstvlzVAEV`JL-GGiRsvc2Tt`xvv}BO^du1doC7_$G%NSEcdH7
zVzJm2_RsyyX4#iH?}+`52fmBHavPUh@nbACvGh+|=E~ClE&cb>e=YsT(!VYJi*rh>
zinAa90w4eaAOHd&00JNY0w4eaAOHg66S%y>WG`K0KUOZVAEz_y$Mes#AJ3j(KTa;3
zWItKZj}Hid00@8p2!H?xfB*=900@8p2!Oy86F~ew#g&VqfdB}A00@8p2!H?xfB*=9
z00@A9O91gdngR%b00@8p2!H?xfB*=900@8p2uwc##Q)P@$0#8PfB*=900@8p2!H?x
zfB*=900{8-Ke6;6w)D?Sf3x%#OFv!uXz5*chz|&W00@8p2!H?xfB*=900@8p2!Ox=
z2t1#dO~*^RrQTOtO-t1^^W=;3v(iji>!=!S+*D0VH}+?~wsdUv%xrFFN8Y8HWyb!}
zJT*6aakkRwZmF8-iN!vddtr7~ihHLW;mnIOvlsny<<0NXmSx_0H9mWN#uF?ywXJS*
zi#BSOp=w*^><!%iKR{(d1q46<1V8`;KmY_l00ck)1V8`;o-zW9++Y0t|EH|h;4TP&
z00@8p2!H?xfB*=900@8p2uwx*_x~s31!)if0T2KI5C8!X009sH0T2KI5O^91ApU<E
zYYjew00@8p2!H?xfB*=900@8p2!Oz31n~U-WV|2^0w4eaAOHd&00JNY0w4eaAOHeS
zBLUq1e;R8IK7#-VfB*=900@8p2!H?xfB*=9z+?nYE`AzYm|2f4{n@kG6Tf)ot;PSD
z{pI3c&#cFPXXfR_|D4Pgqz^%W)xqx{LjAK=UHmlui-~Q%zqF7@zWQqX`|nuI%?_<m
z%i?dD@O~f9SLIw?CiUEnqD)fW=@iK<lE5crQtKAoPaXHp)#bbOl>w1bbDNHmDNwUz
zs5|_98>!=BGxhx)n(}fYVwtjS!F0vMGHZt3-Rb#5B23+GcDlaXVoT23JbI?YQsrH0
z7;3vswHy1gwwoeKsV=X{)etA?M~(SJa(Oxa$tk-=3UpU(QPcgE2-Sysvad1-Y17^H
zW{cG7Ri(5>GH+a!NTsT*=c@O}E%_cPmFuLmQ7n>txme`2TPo*sH91^gwiRAsAv3;e
zL0-*m6ze3F>1q!(eNU580{!xyMh)M<Ys?RUp6`#q0I%wxzCh$Q)!KS5lWVNB0;$#J
zu5PFnB{$0DqMR#{{7pH3i)0uoKS?Q(%+(c=m3nSwn9E+71y=1A<olNu=A75JxA}`<
z1g*<vys8?emDe?mz59hVdQxCDQdib_tvJ;r$hX)$kcv|AedTS!%V2ans9Ed<I4!2`
z(etV?$R~i*m+v7Jl%m#ZYF;1k8%8GEb4;L9)VG|@=DXsT!uN?;=+$mdVW=;;4mGUF
zEC*Fa+b*y^GQ?+A9X+3I%eKN$yS0bvPL=M^rbXKW9IyJ-E27BSPw>q~exnn}Rt##g
z_RE``U144m7~~!*L%-V4k|<`0?hT<6s!>OHsJ)`@ys^n|?tD}j-OLp;XS5!uyA0=;
zr3`2cb*R!b7{m2kK57(j1S+~=c{M4h3Z=!yhrzkU9!AzSltNTmjSqYgdbQdRy?w29
zv%6W++tKQJ*Jx4aWmR?-fyr!zq}cG9@3Qw~ZC4C^ht0;^35hLI7WhKtQer-tTaL$6
ztxX@9?{t`#jb_)<?c;_!xizxxmxao)`Q*im@q6~P=!%>4oi5eb{OD+Vhx4InvM({C
zu~}_}iAwMN##|yPN%8Mrv2BK5>=iyb7P6QMCk`x!6kej#ad&<X*JO(KqDFyrTH*S}
zwd@u;$_5`CJVH@2xlU)Kh}+zKIdS7lmG9rT-+AVFB^C>;F)}F!0m*ID%SwsCTbE09
zDbP5i_qJx8mFHP^<!PGy9cwk}{GJN|_s)`xNzDfDN5RES-#UhHnZCJBBw`Que1#F1
zeLb^$ts>Il^;TE6gDT#Hy<+F<8!f0N>#p9cKCa!cR@ijSQac^j*WM82WSeWZRla;^
zb`<Tt?$hDpp7h>t&m@wkPshLSbRB1wbAHZ-C_Cp!hVIe<#{O{MPlXHj!5%8>5%lMr
z-b6*XE!&Cyb)PRYP$^txNa1_yiga39u`{T!1tW`boauYJsdfejdv_}4wg;tq1AWhU
z*0bGI4Z8qUeNXi#W$9LYK6(Cp{5zqci>;}$-q6Iq&xGnCn3AzJJ1c7Y(Td6Bq?6Bn
zD>gUtv)IW$J^60p-)DX{^GC55|A!9<JaGc{#Qvdt!k$-uEZYs<dzGc#G0gDMQmD~~
z)56yn{D8mji#yZ!mmY|Ca_ZCa4+BdVe~<}J*uH4r7w2`Ijf$aeH;sLF6?HHhHOi)n
z_JOT<Lu%e|VgbI&n$Qv7!~^!eQ8u|8z{H)V)p|hN4f}dY_Rtot9ooWchqmzgK`ij#
zx9f!a6IO!!$TFG-$#TP_2CKmX>8|PqRkt*D`R*V&*Lop>eX&RsW%TtM_b_#nc6L}>
z$vRQNczw=Ox^@ty*AAlex~oJ|PJicd)+BZ&S`>##Nx%E-GYKB@`~hoH?Bc99I=b%(
z?mIjo97$c-CpVOaizGe@gau*&eip-Rm<@(ohX;n+vAT~pay}))?O0{%jmY-YHQp3*
zm;w2<#rfpg*{Ca4>>3`svSd-iY-D@ipLu-Zcp`cBZ2WP{8O436p3Gus>`wI(2Cgja
zG>wKg0R?aBgv*}dV(xt_J|hQcva4_LPoH?000$0E0MGv)oE<bl00ck)1V8`;KmY_l
z00ck)1VG?vA%OV*X{jmr2?8Jh0w4eaAOHd&00JNY0w4ea2PbfH;iK5G_*QK3&lmn~
z?r#@<65pEpB=*1TziIz0d^G#_M_0xV+RrDFXU@cbl(Zk)$?fbo&#(JmPK6)Z@z3`^
zv%?=#^R`2|JHmob?u55Ug`eZGReMjIl8ut`_Qt?QZD!ufoNcpXo8e5_PI;SJ1P1+Q
zy`9I!qn>7UA9!_k+l!y;9pjl;SHyW(bwpPFqx2)>0*}j&knBC&JVMaju4WgLQ};fB
zC#RfKZh7oYs6EIeTF%>2I)<?GC}Uplbhot;{yL(rkmoG_J?MznHilLte;At@kq-yj
zPY+Tf^08|-J@N_bl>KPC<8H`9=?C9hN+i#ni~pXpS0vvx_)b~AM>6pB#ZXrZB#=z7
z?4s|X+(ZJct`XSmX8*B-sQqhW+4A?o9o|&vPa9-Jf7xKLK)g7d-a54&=xui+U`Ft#
z3B;;_zxXgghJ17Q+g)nxd-;v;t2Y=;uGzo!z}aHSsSl2M{e|U}O4QoZjfeK;XjgZ9
zx9x4y6KlCy@(tC!J**ROu9U0w$w37+Q;wOJGtXq)t`Xd}+Ygcue>?XZ&&?;5b5Re+
z=6fBxkqsPt;r-ULiRAU`@eiEcsot)JBHM@5ZEn#<%`*63q=`EJLTG4+k{Z4L;Sk%%
zd{^_{M)?W${W!&I9ANv6t7$*xJL%S)1MM_A%#+g}-aKh<W%==1Xe-N2mHlx5W8bSb
z_wYGkow|vmtCF|TLsTbMcO06OD%Zp|6;7e|!8R3#1-7Y-Ts?76PuVt=C$TFK_y3RX
zA^>s%0T2KI5C8!X009sH0T2KI5CDNEMF8>tlOm6NK>!3m00ck)1V8`;KmY_l00cnb
z=m;$Gte!i%{E!m}fB*=900@8p2!H?xfB*=900@A<(G$S^|D$J)96<mCKmY_l00ck)
z1V8`;KmY_l;HU}U{{K-EM}8mx0w4eaAOHd&00JNY0w4eaAaL{qaR2}4nIlIK009sH
z0T2KI5C8!X009sH0T4K90=WNw)Wne=2!H?xfB*=900@8p2!H?xfB*;_J%N)aHe<>7
z&toU9EPi7#e*904e{JEH3r6A}63YBv&9{#I>#^>!xw$`_`{wMgW<Q*LW9A=cek=a-
z6F-TcK6+1&I7i0ihew=cWOk2lrxT|nY2m$xyDHt2ciB75%|?Olsx4}UkKA|N-d5y0
zB%DHWwZYf9_ui~ZNKG!v`8v5UTxzviUUw}I7c9!Fb@EnODG}FEQZ5m?OYPUAUngz4
zyWVVl=PUEcOUv=!RJAsJq!jKp*y)D%j(b<{qFW}VRFLnIej#qv%OJzF71L9f?w+4d
zURjQJL&i&V&k=W(E(oprQiJAMl2rThd{SDDzZ0^|Ut6wJT(gqUtRvEI(>W{MJ7=@l
z4;fu;?&^kWQP*rnXx0<zH|(94?xbuIX2>*uuX}#K)$weng|>aEe&akrx_4IKGk-a)
z+VW9+MQqm<8ZhggmsFBSetkLq_;|?aT!$K#TY>tX=3+T7%%V@WKPM-d8IklePFANv
zS*@yuY2|fIqb*C-y{x`0%&JeeKdZiEN&k{4!-_#o*0XtY;BeitofBr*C)=N4U$XS>
ztBGXp)%fG{ehE#=Mv$gO>*_Y`6|zQ6la<v>4P+{o=lOa%BqNrQe*Kk1@*K-N5z3ss
zvfk4?E6k0*(|*7_KbbEVi@CbYUW=a3)nw`M+;Sqh#_VT9_PxRtRI}w*qL(8P<|tGd
z^g$>lJwExxL^99ZSPQvf55o2R9RcJsLMH?YgD!}K`mwxpI+0YEKQ*yGLM~q#?ovo+
zh*x2`KF1!uoJhWTI{x^1-!DEZRGO+`m#V7oscrk4`Raf-gOc0}N19{?Q>A-J*7jIt
zv!TpbD{^#R5$52wyr5Y@yL<RjB6)?GUJjYIm3VzS+RMTWe4&2tdkKBe?w(=;?df=L
za-fWv*AShoz9`Jflj+aNJ1@QYh56)qIv%r2VZPI0lTD-9wRHQqQPM5-zS?2~IvW)l
z+0fz3@9(^rNT$>AADpq8n;jZT3>_q0*Xp?&MVX{RX(^Hky~{hL@U=iHurg6fb$Ly$
zu7t(bHk3k8iqz%1b+S=X-rkV=M7^@+4a!EmcFGowkg0Ud2V6uX<Ggh}kSWiy&(2%5
zaw#Aov{R>#tWh#I>+8i)GL`OTN9FF`R-3l0z#sXMWjKj0(LtF?Rawtf?~z;by^Kdc
zw^3(HH&$)ya;Yx)<fZHj^GW$kRBOrY>^N<)k@dg6#8$Omja=DACVW6MiBs9^!VmZP
zlDEj}&9ofb6>6~FIC#cwWA@T_FqJKT{Za(lR_N;;rGArCo7zL_4nTa(9B!Q<`M`m@
zcpjOBr$R4Z2sa!rLG-&?zSAgetlyBU8Hto{%T<!8<f?V0uCT%H#yvtWQ+Himt`=CT
zf68n4q#)Pw5-*LR?=`gU_E>%fm-<YVj#TQk6HzJnxk)f_M8iW2FPHY%lC8@ZMwY@Z
zc7H1vUHHLxhcRpOVYgR3EbO`5wgaD$UMQs!t4TY4%6AQetqb{@kXK==-)8G_t84JE
zYNXLSH|46#{Bc_WxlXdU{~tL7AprzH00ck)1V8`;KmY_l00ck)1g3@n;{U0sN)!YH
zKmY_l00ck)1V8`;KmY_l00bflApVa;g9H!&0T2KI5C8!X009sH0T2KI5SSVQi2tXi
zDp3#+009sH0T2KI5C8!X009sH0T75JfcQTW4H7^A1V8`;KmY_l00ck)1V8`;KwxSJ
zApW14szgCR00ck)1V8`;KmY_l00ck)1VA8?0OJ2hG)Mpe5C8!X009sH0T2KI5C8!X
z0D-9?fcSrEsuBeO0T2KI5C8!X009sH0T2KI5CDNl0*L=3(I5c?KmY_l00ck)1V8`;
zKmY_l00gFn0OJ3tsY(<C1V8`;KmY_l00ck)1V8`;KmY_H2_XKDM1uqn009sH0T2KI
z5C8!X009sH0T7rP0*L>orYcbo5C8!X009sH0T2KI5C8!X009t)B!Kuo5)BeS00ck)
z1V8`;KmY_l00ck)1VCVF2q6BSnyN%WKmY_l00ck)1V8`;KmY_l00clFk^tiWNHj<Q
z0T2KI5C8!X009sH0T2KI5CDOxA%OUQYN`?i0Ra#I0T2KI5C8!X009sH0T2LzNCJre
zBherM1V8`;KmY_l00ck)1V8`;KmY`$h5+LKsi{g71Oz|;1V8`;KmY_l00ck)1V8`;
zA_<&iDKm+DY{_Cj@Bsl3009sH0T39Mz(<!aBu?dW3xE7@SEYM-UE8IG)sT0oW|<93
zZ`7!1s=8(lNvX=Yx=d~>@*NT_MRGMlYI0G|*NJ>v&R(Xww6UJcuPl<WKE94pnOMax
zO?`idawmAc{t4!<Mq3su;KW7?O^epmZQrJMJh{nyt|pT^H{}usbIk_hJ4log$)pRa
z*>XIk?eq#s7wE3qqNJejX=#a+t79_kffi*{Bc+XEk<=p`k&DdB^f$Iu)*iGij#0C|
znI>|nFhI5E?gU^DOCjvHR~y83+b&qZQ!n*%a5P9U>*Rhl2&rbNosQc^XnW#Tmut6G
z-dvj<MZ2$$QSYnO@;b4blgaCeccU@1cuOhDt99~LSt*SvAIjt!DcjB2>F1TEYS_tD
zeNQQn>rO+r4@Mei9iuAuh78+`-Iwj2QKEaq=?%PJ_*~N~Y2G<VmG=6LG&HM?l2RUB
zQg;BOlZ{<meEeZ+u#X*n)UrE(YsPE*F02W<C@)8kf4^4;>P+0E=a4s!c*h4ac-6CV
zu#U$4Ig&o+H0w+l>Gkl?KFP>FXec;mNF-M(3~m3Rxk1=#6=!IBd|XPLx^!vbvBDP&
z-twT~bV9TLI3HLX^r!Kfay!%oVvkdvL~raNDc5j{4=5%z`I><ZAZ@z4-fZ#sKb~mD
z*#G!|00@8p2!H?xd{zWLe&u3fIlH{@(>=>jx3<`&0b{G7Y9_x%z@}gpgqrUB>`wIc
zs<O5wS4nD6Fcn&V<W}oUOexjmYMoE*{yZO&vZLZsnO!ottJLZ>k_n~qHH*7|$T|y%
z+|G_{U%DUzg3f}=6Q~$E^WCIvwwAa$D9lz%q`diEc4@#4HT-p%nI5p)6J6V|W1EtE
z=Q3l%kA?`>tftj9S?;~K*Hx?-)MT-Bv1wYhR#RglStlq@>sm+ED2uu6P+Y%%-#ui`
z3Ul%b>y^Q&xNs4|QPB-~O%U(7wWO5lWs>rYnkhkT@ES?+lBdLxZOU8Q=MBoPpR}XI
zyiELRiW2Nq(r}4kJ~=ijhPvG}_M=^Q#A-aEY>y*oSMYGJoJNq>JKb$<xTIpTNOzP-
z&S*VQccZB~C0NxBs%~kw=>Bkfl}>j{jdaVaA>OvaJ)5_IaI4~HZs&>{vZw>|#DUh^
z(f6n^*x9-41NtaqG_|(Az1h(>Gp|b$`QG<P`cj(z>Px&9N=(0Q%M4`3t(x6U(=sw#
zp9HKk11scOFo$8<>D-N9dy`#<$dZdB)7&&&KQqjW^W=4juoQ_fH;366EWtPq^l5!n
z8mxfunUz8297BO!$*n8vawe_mdudj7p{uJoHULGWxz{F5hC!$s7#&v#xpc`LW`(0A
z_sErJ!Cp|@@2tb};3Fuz>=MW&(0PT5pUGGp%FrGJgn6ae9MLz_GiE&^!LdPTz$Igk
z3_(Tv#BdF7pa`pZXNT$XdJ1aw1{0xHx**?H@^URyvQavsX^J-m>Fc39*!5h*|DV-D
z4|YHR1V8`;Kp;Ti<5yM&<NxkXo5gNp#Q$NzaFpQ0{~Hy);za!KT<35u9P}*;Kg0On
zsSm{ed@<Skq!9o2VDN7q5XAo(#Q))@;T$3UCqu5q2E$_~h!2IW9#F*pbYBccG)-}8
zi2nmCGkgUB5C8!X0D;esz{js#8jSzjv_r>=|HFc!_`kq51Wa4}UoI97cK_d1{QTm7
zr#=w>drNTVw-@f>{=dt`1A_P;@xL%aJ52l^7#)Lwa^(GgSAL@V|E|tq?*AWREDjdy
n^Njyp7bm#??`wE>`h%`2rgv6Y=dSKi-2WF%Q+#L|jQ{^1H8|ZL

literal 0
HcmV?d00001

diff --git a/install/alpine-docker/app/log/IP_changes.log b/install/alpine-docker/app/log/IP_changes.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/app.log b/install/alpine-docker/app/log/app.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/app.php_errors.log b/install/alpine-docker/app/log/app.php_errors.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/app_front.log b/install/alpine-docker/app/log/app_front.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/crond.log b/install/alpine-docker/app/log/crond.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/db_is_locked.log b/install/alpine-docker/app/log/db_is_locked.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/execution_queue.log b/install/alpine-docker/app/log/execution_queue.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/plugins/.git-placeholder b/install/alpine-docker/app/log/plugins/.git-placeholder
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/report_output.html b/install/alpine-docker/app/log/report_output.html
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/report_output.json b/install/alpine-docker/app/log/report_output.json
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/report_output.txt b/install/alpine-docker/app/log/report_output.txt
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/stderr.log b/install/alpine-docker/app/log/stderr.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/app/log/stdout.log b/install/alpine-docker/app/log/stdout.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/var/lib/nginx/.git-placeholder b/install/alpine-docker/var/lib/nginx/.git-placeholder
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/var/log/nginx/access.log b/install/alpine-docker/var/log/nginx/access.log
new file mode 100644
index 00000000..e69de29b
diff --git a/install/alpine-docker/var/log/nginx/error.log b/install/alpine-docker/var/log/nginx/error.log
new file mode 100644
index 00000000..e69de29b