From e7887bdb7e763a93c1faa5de2825cdeeb60b3e0c Mon Sep 17 00:00:00 2001
From: Bitnami Bot <bitnami-bot@vmware.com>
Date: Fri, 19 Jan 2024 22:49:42 +0100
Subject: [PATCH] [bitnami/harbor-portal] Release 2.10.0-debian-11-r2 (#55006)

Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>
---
 bitnami/harbor-portal/2/debian-11/Dockerfile     |  9 +++++----
 .../opt/bitnami/.bitnami_components.json         |  4 ++--
 .../2/debian-11/prebuildfs/usr/sbin/run-script   |  2 +-
 .../rootfs/opt/bitnami/nginx/conf/nginx.conf     |  2 +-
 bitnami/harbor-portal/README.md                  | 16 ++++++++++------
 5 files changed, 19 insertions(+), 14 deletions(-)

diff --git a/bitnami/harbor-portal/2/debian-11/Dockerfile b/bitnami/harbor-portal/2/debian-11/Dockerfile
index e456987ddbfe..082831502f32 100644
--- a/bitnami/harbor-portal/2/debian-11/Dockerfile
+++ b/bitnami/harbor-portal/2/debian-11/Dockerfile
@@ -7,10 +7,10 @@ ARG TARGETARCH
 
 LABEL com.vmware.cp.artifact.flavor="sha256:1e1b4657a77f0d47e9220f0c37b9bf7802581b93214fff7d1bd2364c8bf22e8e" \
       org.opencontainers.image.base.name="docker.io/bitnami/minideb:bullseye" \
-      org.opencontainers.image.created="2023-12-20T17:56:38Z" \
+      org.opencontainers.image.created="2024-01-19T20:48:14Z" \
       org.opencontainers.image.description="Application packaged by VMware, Inc" \
       org.opencontainers.image.licenses="Apache-2.0" \
-      org.opencontainers.image.ref.name="2.10.0-debian-11-r1" \
+      org.opencontainers.image.ref.name="2.10.0-debian-11-r2" \
       org.opencontainers.image.title="harbor-portal" \
       org.opencontainers.image.vendor="VMware, Inc." \
       org.opencontainers.image.version="2.10.0"
@@ -26,8 +26,8 @@ SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"]
 RUN install_packages ca-certificates curl libcrypt1 libgeoip1 libpcre3 libssl1.1 openssl procps zlib1g
 RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \
     COMPONENTS=( \
-      "nginx-1.25.3-1-linux-${OS_ARCH}-debian-11" \
-      "render-template-1.0.6-4-linux-${OS_ARCH}-debian-11" \
+      "nginx-1.25.3-2-linux-${OS_ARCH}-debian-11" \
+      "render-template-1.0.6-5-linux-${OS_ARCH}-debian-11" \
       "harbor-2.10.0-1-linux-${OS_ARCH}-debian-11" \
     ) ; \
     for COMPONENT in "${COMPONENTS[@]}"; do \
@@ -43,6 +43,7 @@ RUN apt-get autoremove --purge -y curl && \
     apt-get update && apt-get upgrade -y && \
     apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives
 RUN chmod g+rwX /opt/bitnami
+RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true
 RUN ln -sf /dev/stdout /opt/bitnami/nginx/logs/access.log
 RUN ln -sf /dev/stderr /opt/bitnami/nginx/logs/error.log
 
diff --git a/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json
index 9710d79a933d..6629d253ffb0 100644
--- a/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json
+++ b/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json
@@ -9,12 +9,12 @@
         "arch": "amd64",
         "distro": "debian-11",
         "type": "NAMI",
-        "version": "1.25.3-1"
+        "version": "1.25.3-2"
     },
     "render-template": {
         "arch": "amd64",
         "distro": "debian-11",
         "type": "NAMI",
-        "version": "1.0.6-4"
+        "version": "1.0.6-5"
     }
 }
\ No newline at end of file
diff --git a/bitnami/harbor-portal/2/debian-11/prebuildfs/usr/sbin/run-script b/bitnami/harbor-portal/2/debian-11/prebuildfs/usr/sbin/run-script
index b7a5bf1e50bf..4ca0f897277e 100755
--- a/bitnami/harbor-portal/2/debian-11/prebuildfs/usr/sbin/run-script
+++ b/bitnami/harbor-portal/2/debian-11/prebuildfs/usr/sbin/run-script
@@ -10,7 +10,7 @@ fi
 
 script=$1
 exit_code="${2:-96}"
-fail_if_not_present="${3:-y}"
+fail_if_not_present="${3:-n}"
 
 if test -f "$script"; then
   sh $script
diff --git a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/nginx/conf/nginx.conf b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/nginx/conf/nginx.conf
index aaf0428032c4..9833b1cfd043 100644
--- a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/nginx/conf/nginx.conf
+++ b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/nginx/conf/nginx.conf
@@ -34,7 +34,7 @@ http {
     gzip_types         text/plain text/css application/javascript text/xml application/xml+rss;
     keepalive_timeout  65;
     ssl_protocols      TLSv1.2 TLSv1.3;
-    ssl_ciphers        HIGH:!aNULL:!MD5;
+    ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-CHACHA20-POLY1305;
     client_max_body_size 80M;
     server_tokens off;
 
diff --git a/bitnami/harbor-portal/README.md b/bitnami/harbor-portal/README.md
index 60228c6ebd23..1d6d28d7fe66 100644
--- a/bitnami/harbor-portal/README.md
+++ b/bitnami/harbor-portal/README.md
@@ -8,13 +8,11 @@
 
 ## TL;DR
 
-```console
-curl -LO https://raw.githubusercontent.com/bitnami/containers/main/bitnami/harbor-portal/docker-compose.yml
-curl -L https://github.com/bitnami/containers/archive/main.tar.gz | tar xz --strip=2 containers-main/bitnami/harbor-portal && cp -RL harbor-portal/config . && rm -rf harbor-portal
-docker-compose up
-```
+This container is part of the [Harbor solution](https://github.com/bitnami/charts/tree/main/bitnami/harbor) that is primarily intended to be deployed in Kubernetes.
 
-**Warning**: This quick setup is only intended for development environments. You are encouraged to change the insecure default credentials and check out the available configuration options for the [PostgreSQL](https://github.com/bitnami/containers/tree/main/bitnami/postgresql#readme) and [Redis(R)](https://github.com/bitnami/containers/blob/main/bitnami/redis#readme) containers for a more secure deployment.
+```console
+docker run --name harbor bitnami/harbor:latest
+```
 
 ## Why use Bitnami Images?
 
@@ -51,6 +49,12 @@ Harbor Portal is a component of the Harbor application. In order to get the Harb
 
 For further information about the specific component itself, please refer to the [source repository documentation](https://github.com/goharbor/harbor/tree/main/docs).
 
+## Using `docker-compose.yaml`
+
+Please be aware this file has not undergone internal testing. Consequently, we advise its use exclusively for development or testing purposes. For production-ready deployments, we highly recommend utilizing its associated [Bitnami Helm chart](https://github.com/bitnami/charts/tree/main/bitnami/harbor).
+
+If you detect any issue in the `docker-compose.yaml` file, feel free to report it or contribute with a fix by following our [Contributing Guidelines](https://github.com/bitnami/containers/blob/main/CONTRIBUTING.md).
+
 ## Contributing
 
 We'd love for you to contribute to this container. You can request new features by creating an [issue](https://github.com/bitnami/containers/issues) or submitting a [pull request](https://github.com/bitnami/containers/pulls) with your contribution.