FROM php:8.2-apache

# Ensure Authorization header is available to PHP as HTTP_AUTHORIZATION
RUN a2enmod setenvif headers \
 && printf '%s\n' \
    'SetEnvIfNoCase Authorization "(.+)" HTTP_AUTHORIZATION=$1' \
    > /etc/apache2/conf-available/forward-auth.conf \
 && a2enconf forward-auth

WORKDIR /var/www/html
COPY src/index.php /var/www/html/index.php

RUN mkdir -p /data \
 && chown -R www-data:www-data /data

ENV LOG_FILE=/data/scan.log

EXPOSE 80