UPSTREAM: <carry> Fix broken rebase of branding options

Fix downstream changes to match upstream refactored functions.

Signed-off-by: Michal Pryc <mpryc@redhat.com>

Author: mpryc

Containerfile

@@ -1,29 +1,46 @@
-## Multi-stage build for File Browser - Kubernetes-optimized
-## Simplified runtime container for use with init containers and K8s ConfigMaps/Secrets
+## Multi-stage build for File Browser
 
-# Build stage
-FROM --platform=$BUILDPLATFORM registry.access.redhat.com/ubi9/nodejs-20:latest AS frontend-builder
+# =============================================================================
+# Stage 1: Install frontend dependencies only when needed
+# =============================================================================
+FROM registry.access.redhat.com/ubi9/nodejs-24:latest AS frontend-deps
 
-USER root
+USER 0
+WORKDIR /app
 
-# Build-time arguments
-ARG BUILDPLATFORM
-ARG TARGETOS
-ARG TARGETARCH
+# Install pnpm globally
+RUN npm install -g pnpm@10.29.2
 
-# Install pnpm
-RUN npm install -g pnpm@9.15.4
-
-# Copy frontend source
-WORKDIR /src/frontend
+# Copy only dependency files for better layer caching
 COPY frontend/package.json frontend/pnpm-lock.yaml ./
+
+# Install dependencies
 RUN pnpm install --frozen-lockfile
 
+# =============================================================================
+# Stage 2: Build frontend
+# =============================================================================
+FROM registry.access.redhat.com/ubi9/nodejs-24:latest AS frontend-builder
+
+USER 0
+WORKDIR /app
+
+# Install pnpm (needed for build scripts)
+RUN npm install -g pnpm@10.29.2
+
+# Copy node_modules from deps stage
+COPY --from=frontend-deps /app/node_modules ./node_modules
+
+# Copy frontend source
 COPY frontend/ ./
+
+# Build the frontend
 RUN pnpm run build
 
-# Backend builder stage
-FROM --platform=$BUILDPLATFORM registry.access.redhat.com/ubi9/go-toolset:1.22 AS backend-builder
+# =============================================================================
+# Stage 3: Build Go backend
+# =============================================================================
+FROM --platform=$BUILDPLATFORM quay.io/konveyor/builder:ubi9-latest AS backend-builder
 
 USER root
 
@@ -40,62 +57,72 @@ ENV GOARCH=${TARGETARCH}
 ENV CGO_ENABLED=0
 ENV GOTOOLCHAIN=auto
 
-# Install build dependencies for cross-compilation
-RUN dnf install -y gcc gcc-c++ && dnf clean all
-
 WORKDIR /src
 
-# Copy go module files
+# Copy go module files first for better layer caching
 COPY go.mod go.sum ./
 RUN go mod download
 
 # Copy source code
 COPY . .
 
 # Copy built frontend from previous stage
-COPY --from=frontend-builder /src/frontend/dist ./frontend/dist
+COPY --from=frontend-builder /app/dist ./frontend/dist
 
 # Build the backend with embedded frontend
-RUN GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} \
-    go build -ldflags "-X 'github.com/filebrowser/filebrowser/v2/version.Version=${VERSION:-dev}' \
-                       -X 'github.com/filebrowser/filebrowser/v2/version.CommitSHA=${VERSION_HASH:-unknown}'" \
+RUN go build -ldflags "-s -w \
+    -X 'github.com/filebrowser/filebrowser/v2/version.Version=${VERSION:-dev}' \
+    -X 'github.com/filebrowser/filebrowser/v2/version.CommitSHA=${VERSION_HASH:-unknown}'" \
     -o filebrowser .
 
-# Final runtime stage - minimal, for use with init containers
+# =============================================================================
+# Stage 4: Final runtime image - minimal footprint
+# =============================================================================
 FROM registry.access.redhat.com/ubi9-minimal:latest
 
-# Install runtime dependencies (curl-minimal is already in ubi9-minimal)
-RUN microdnf install -y ca-certificates tzdata shadow-utils && \
-    microdnf clean all
-
-# Create non-root user and directories
-RUN groupadd -g 1000 filebrowser && \
-    useradd -u 1000 -g filebrowser -s /sbin/nologin -M filebrowser && \
+# Labels for container metadata
+LABEL name="filebrowser" \
+      summary="File Browser - Web-based file manager" \
+      description="A web-based file manager with support for multiple users and permissions" \
+      io.k8s.display-name="File Browser" \
+      io.k8s.description="A web-based file manager with support for multiple users and permissions" \
+      io.openshift.tags="filebrowser,filemanager,web"
+
+# Install runtime dependencies and clean up in single layer
+RUN microdnf install -y --nodocs \
+        ca-certificates \
+        tzdata \
+        shadow-utils \
+        curl-minimal && \
+    microdnf clean all && \
+    rm -rf /var/cache/yum
+
+# Create non-root user and required directories
+RUN groupadd -g 1001 filebrowser && \
+    useradd -u 1001 -g filebrowser -s /sbin/nologin -M filebrowser && \
     mkdir -p /srv /config /database && \
-    chown -R filebrowser:filebrowser /srv /config /database
+    chown -R 1001:1001 /srv /config /database
 
 # Copy binary from builder
-COPY --from=backend-builder --chown=filebrowser:filebrowser /src/filebrowser /usr/local/bin/filebrowser
+COPY --from=backend-builder --chown=1001:1001 /src/filebrowser /usr/local/bin/filebrowser
 
-# Healthcheck script
-COPY --chown=filebrowser:filebrowser docker/ubi/healthcheck.sh /usr/local/bin/healthcheck.sh
+# Copy healthcheck script
+COPY --chown=1001:1001 docker/ubi/healthcheck.sh /usr/local/bin/healthcheck.sh
 RUN chmod +x /usr/local/bin/healthcheck.sh
 
-# Switch to non-root user
-USER filebrowser
+# Switch to non-root user (using numeric ID for OpenShift compatibility)
+USER 1001
 
-# Define volumes
+# Define volumes for persistent data
 VOLUME ["/srv", "/config", "/database"]
 
 # Expose default port
 EXPOSE 8080
 
-# Healthcheck
-HEALTHCHECK --start-period=5s --interval=10s --timeout=3s --retries=3 \
+# Healthcheck using the script
+HEALTHCHECK --start-period=5s --interval=30s --timeout=3s --retries=3 \
     CMD ["/usr/local/bin/healthcheck.sh"]
 
-# Direct entrypoint - all configuration via environment variables
+# Direct entrypoint - configuration via FB_* environment variables
 ENTRYPOINT ["/usr/local/bin/filebrowser"]
-
-# No default args - filebrowser reads from FB_* environment variables
 CMD []

cmd/config.go

@@ -354,6 +354,10 @@ func getSettings(flags *pflag.FlagSet, set *settings.Settings, ser *settings.Ser
 			set.Branding.DisableExternal, err = flags.GetBool(flag.Name)
 		case "branding.disableUsedPercentage":
 			set.Branding.DisableUsedPercentage, err = flags.GetBool(flag.Name)
+		case "branding.disableUserProfile":
+			set.Branding.DisableUserProfile, err = flags.GetBool(flag.Name)
+		case "branding.defaultLoginUser":
+			set.Branding.DefaultLoginUser, err = flags.GetString(flag.Name)
 		case "tus.chunkSize":
 			set.Tus.ChunkSize, err = flags.GetUint64(flag.Name)
 		case "tus.retryCount":

cmd/config_init.go

@@ -46,140 +46,7 @@ override the options.`,
 			return err
 		}
 
-		minLength, err := getUint(flags, "minimum-password-length")
-		if err != nil {
-			return err
-		}
-
-		shell, err := getString(flags, "shell")
-		if err != nil {
-			return err
-		}
-
-		brandingName, err := getString(flags, "branding.name")
-		if err != nil {
-			return err
-		}
-
-		brandingDisableExternal, err := getBool(flags, "branding.disableExternal")
-		if err != nil {
-			return err
-		}
-
-		brandingDisableUsedPercentage, err := getBool(flags, "branding.disableUsedPercentage")
-		if err != nil {
-			return err
-		}
-
-		brandingDisableUserProfile, err := getBool(flags, "branding.disableUserProfile")
-		if err != nil {
-			return err
-		}
-
-		brandingTheme, err := getString(flags, "branding.theme")
-		if err != nil {
-			return err
-		}
-
-		brandingFiles, err := getString(flags, "branding.files")
-		if err != nil {
-			return err
-		}
-
-		brandingDefaultLoginUser, err := getString(flags, "branding.defaultLoginUser")
-		if err != nil {
-			return err
-		}
-
-		s := &settings.Settings{
-			Key:                   key,
-			Signup:                signup,
-			CreateUserDir:         createUserDir,
-			MinimumPasswordLength: minLength,
-			Shell:                 convertCmdStrToCmdArray(shell),
-			AuthMethod:            authMethod,
-			Defaults:              defaults,
-			Branding: settings.Branding{
-				Name:                  brandingName,
-				DisableExternal:       brandingDisableExternal,
-				DisableUsedPercentage: brandingDisableUsedPercentage,
-				DisableUserProfile:    brandingDisableUserProfile,
-				DefaultLoginUser:      brandingDefaultLoginUser,
-				Theme:                 brandingTheme,
-				Files:                 brandingFiles,
-			},
-		}
-
-		s.FileMode, err = getMode(flags, "file-mode")
-		if err != nil {
-			return err
-		}
-
-		s.DirMode, err = getMode(flags, "dir-mode")
-		if err != nil {
-			return err
-		}
-
-		address, err := getString(flags, "address")
-		if err != nil {
-			return err
-		}
-
-		socket, err := getString(flags, "socket")
-		if err != nil {
-			return err
-		}
-
-		root, err := getString(flags, "root")
-		if err != nil {
-			return err
-		}
-
-		baseURL, err := getString(flags, "baseurl")
-		if err != nil {
-			return err
-		}
-
-		tlsKey, err := getString(flags, "key")
-		if err != nil {
-			return err
-		}
-
-		cert, err := getString(flags, "cert")
-		if err != nil {
-			return err
-		}
-
-		port, err := getString(flags, "port")
-		if err != nil {
-			return err
-		}
-
-		log, err := getString(flags, "log")
-		if err != nil {
-			return err
-		}
-
-		ser := &settings.Server{
-			Address: address,
-			Socket:  socket,
-			Root:    root,
-			BaseURL: baseURL,
-			TLSKey:  tlsKey,
-			TLSCert: cert,
-			Port:    port,
-			Log:     log,
-		}
-
-		err = d.store.Settings.Save(s)
-		if err != nil {
-			return err
-		}
-		err = d.store.Settings.SaveServer(ser)
-		if err != nil {
-			return err
-		}
-		err = d.store.Auth.Save(auther)
+		err = st.Auth.Save(auther)
 		if err != nil {
 			return err
 		}

cmd/config_set.go

@@ -29,63 +29,7 @@ you want to change. Other options will remain unchanged.`,
 			return err
 		}
 
-		hasAuth := false
-		flags.Visit(func(flag *pflag.Flag) {
-			if err != nil {
-				return
-			}
-			switch flag.Name {
-			case "baseurl":
-				ser.BaseURL, err = getString(flags, flag.Name)
-			case "root":
-				ser.Root, err = getString(flags, flag.Name)
-			case "socket":
-				ser.Socket, err = getString(flags, flag.Name)
-			case "cert":
-				ser.TLSCert, err = getString(flags, flag.Name)
-			case "key":
-				ser.TLSKey, err = getString(flags, flag.Name)
-			case "address":
-				ser.Address, err = getString(flags, flag.Name)
-			case "port":
-				ser.Port, err = getString(flags, flag.Name)
-			case "log":
-				ser.Log, err = getString(flags, flag.Name)
-			case "signup":
-				set.Signup, err = getBool(flags, flag.Name)
-			case "auth.method":
-				hasAuth = true
-			case "shell":
-				var shell string
-				shell, err = getString(flags, flag.Name)
-				set.Shell = convertCmdStrToCmdArray(shell)
-			case "create-user-dir":
-				set.CreateUserDir, err = getBool(flags, flag.Name)
-			case "minimum-password-length":
-				set.MinimumPasswordLength, err = getUint(flags, flag.Name)
-			case "branding.name":
-				set.Branding.Name, err = getString(flags, flag.Name)
-			case "branding.color":
-				set.Branding.Color, err = getString(flags, flag.Name)
-			case "branding.theme":
-				set.Branding.Theme, err = getString(flags, flag.Name)
-			case "branding.disableExternal":
-				set.Branding.DisableExternal, err = getBool(flags, flag.Name)
-			case "branding.disableUsedPercentage":
-				set.Branding.DisableUsedPercentage, err = getBool(flags, flag.Name)
-			case "branding.disableUserProfile":
-				set.Branding.DisableUserProfile, err = getBool(flags, flag.Name)
-			case "branding.defaultLoginUser":
-				set.Branding.DefaultLoginUser, err = getString(flags, flag.Name)
-			case "branding.files":
-				set.Branding.Files, err = getString(flags, flag.Name)
-			case "file-mode":
-				set.FileMode, err = getMode(flags, flag.Name)
-			case "dir-mode":
-				set.DirMode, err = getMode(flags, flag.Name)
-			}
-		})
-
+		auther, err := st.Auth.Get(set.AuthMethod)
 		if err != nil {
 			return err
 		}