[bitnami/neo4j] Release 2026.3.1-debian-12-r1 (#92218)

Signed-off-by: Bitnami Bot <bitnami.bot@broadcom.com>
2026-04-08 13:30:59 +02:00 · 2026-04-08 13:30:59 +02:00 · c8b22e18a9
parent 27535a4ef9
commit c8b22e18a9
4 changed files with 32 additions and 2 deletions
--- a/bitnami/neo4j/2026/debian-12/Dockerfile
+++ b/bitnami/neo4j/2026/debian-12/Dockerfile
@ -8,7 +8,7 @@ ARG JAVA_EXTRA_SECURITY_DIR="/bitnami/java/extra-security"
 ARG TARGETARCH

 LABEL org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \
-      org.opencontainers.image.created="2026-04-02T00:21:50Z" \
+      org.opencontainers.image.created="2026-04-08T10:52:08Z" \
      org.opencontainers.image.description="Application packaged by Broadcom, Inc." \
      org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/neo4j/README.md" \
      org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/neo4j" \
@ -52,7 +52,7 @@ RUN /opt/bitnami/scripts/java/postunpack.sh
 RUN /opt/bitnami/scripts/neo4j/postunpack.sh
 ENV APP_VERSION="2026.3.1" \
    BITNAMI_APP_NAME="neo4j" \
-    IMAGE_REVISION="0" \
+    IMAGE_REVISION="1" \
    JAVA_HOME="/opt/bitnami/java" \
    JAVA_OPTS="-Duser.home=/opt/bitnami/neo4j/.home" \
    PATH="/opt/bitnami/java/bin:/opt/bitnami/neo4j/bin:$PATH"
--- a/bitnami/neo4j/2026/debian-12/rootfs/opt/bitnami/scripts/libneo4j.sh
+++ b/bitnami/neo4j/2026/debian-12/rootfs/opt/bitnami/scripts/libneo4j.sh
@ -307,4 +307,25 @@ configure_neo4j_connector_settings() {
    [[ "$NEO4J_BOLT_TLS_LEVEL" == "REQUIRED" || "$NEO4J_BOLT_TLS_LEVEL" == "OPTIONAL" ]] && neo4j_conf_set "dbms.ssl.policy.bolt.enabled" "true"
    neo4j_conf_set "server.https.enabled" "${NEO4J_HTTPS_ENABLED}"
    neo4j_conf_set "dbms.ssl.policy.https.enabled" "${NEO4J_HTTPS_ENABLED}"
+    # X-Forwarded headers settings
+    neo4j_version=$(neo4j_get_version)
+    major_version=$(get_sematic_version "$neo4j_version" 1)
+    if [[ "$major_version" -ne 5 ]]; then
+        neo4j_conf_set "server.http.x_forward.enabled" "${NEO4J_HTTP_X_FORWARD_ENABLED}"
+        neo4j_conf_set "server.http.x_forward.allow_proxies" "${NEO4J_HTTP_X_FORWARD_ALLOW_PROXIES}"
+        neo4j_conf_set "server.http.x_forward.allow_hosts" "${NEO4J_HTTP_X_FORWARD_ALLOW_HOSTS}"
+    fi
 }
+
+########################
+# Get neo4j version
+# Globals:
+#   NEO4J_*
+# Arguments:
+#   None
+# Returns:
+#   Neo4j version
+#########################
+neo4j_get_version() {
+    "${NEO4J_BASE_DIR}/bin/neo4j" "--version" 2>/dev/null
+}
--- a/bitnami/neo4j/2026/debian-12/rootfs/opt/bitnami/scripts/neo4j-env.sh
+++ b/bitnami/neo4j/2026/debian-12/rootfs/opt/bitnami/scripts/neo4j-env.sh
@ -38,6 +38,9 @@ neo4j_env_vars=(
    NEO4J_HTTPS_ADVERTISED_PORT_NUMBER
    NEO4J_HTTPS_ENABLED
    NEO4J_BOLT_TLS_LEVEL
+    NEO4J_HTTP_X_FORWARD_ENABLED
+    NEO4J_HTTP_X_FORWARD_ALLOW_PROXIES
+    NEO4J_HTTP_X_FORWARD_ALLOW_HOSTS
 )
 for env_var in "${neo4j_env_vars[@]}"; do
    file_env_var="${env_var}_FILE"
@ -95,6 +98,9 @@ export NEO4J_HTTP_ADVERTISED_PORT_NUMBER="${NEO4J_HTTP_ADVERTISED_PORT_NUMBER:-$
 export NEO4J_HTTPS_ADVERTISED_PORT_NUMBER="${NEO4J_HTTPS_ADVERTISED_PORT_NUMBER:-$NEO4J_HTTPS_PORT_NUMBER}"
 export NEO4J_HTTPS_ENABLED="${NEO4J_HTTPS_ENABLED:-false}"
 export NEO4J_BOLT_TLS_LEVEL="${NEO4J_BOLT_TLS_LEVEL:-DISABLED}"
+export NEO4J_HTTP_X_FORWARD_ENABLED="${NEO4J_HTTP_X_FORWARD_ENABLED:-false}"
+export NEO4J_HTTP_X_FORWARD_ALLOW_PROXIES="${NEO4J_HTTP_X_FORWARD_ALLOW_PROXIES:-}"
+export NEO4J_HTTP_X_FORWARD_ALLOW_HOSTS="${NEO4J_HTTP_X_FORWARD_ALLOW_HOSTS:-}"

 # Default JVM configuration
 export JAVA_HOME="${BITNAMI_ROOT_DIR}/java"
--- a/bitnami/neo4j/README.md
+++ b/bitnami/neo4j/README.md
@ -86,6 +86,9 @@ The following tables list the main variables you can set.
 | `NEO4J_HTTPS_ADVERTISED_PORT_NUMBER`      | Advertised port for the https protocol.                                                                                                       | `$NEO4J_HTTPS_PORT_NUMBER` |
 | `NEO4J_HTTPS_ENABLED`                     | Enables the HTTPS connector.                                                                                                                  | `false`                    |
 | `NEO4J_BOLT_TLS_LEVEL`                    | The encryption level to be used to secure communications with Bolt connector. Allowed values: REQUIRED, OPTIONAL, DISABLED                    | `DISABLED`                 |
+| `NEO4J_HTTP_X_FORWARD_ENABLED`            | Enable processing of X-Forwarded-Host and X-Forwarded-Proto headers.                                                                          | `false`                    |
+| `NEO4J_HTTP_X_FORWARD_ALLOW_PROXIES`      | Enable processing of X-Forwarded-Host and X-Forwarded-Proto headers.                                                                          | `nil`                      |
+| `NEO4J_HTTP_X_FORWARD_ALLOW_HOSTS`        | List of allowed hostnames that can appear in X-Forwarded-Host header.                                                                         | `nil`                      |

 #### Read-only environment variables