feat(bin): add container management scripts

Added new utility scripts to compose/bin:
- bash: Launch an interactive bash session inside the container
- cli: Execute CLI commands inside the php-fpm container
- clinotty: Execute CLI commands inside php-fpm without allocating a TTY
- docker-compose: Wrapper for managing docker-compose commands
- restart: Restart all running containers
- setup-ssl: Generate and install SSL certificates
- setup-ssl-ca: Configure a Certificate Authority (CA) for local SSL
- start: Start all containers in detached mode
- stop: Stop all running containers

These scripts improve usability and streamline container operations.

Author: trants

compose/bin/bash

@@ -0,0 +1,30 @@
+#!/usr/bin/env bash
+
+# Check if `bin/cli` exists
+if [ ! -f "bin/cli" ]; then
+  echo "Error: 'bin/cli' not found."
+  echo "Please ensure the file exists in the 'bin/' directory."
+  exit 1
+fi
+
+# Check if `bin/cli` is executable
+if [ ! -x "bin/cli" ]; then
+  echo "Warning: 'bin/cli' is not executable."
+  echo "Attempting to grant execute permissions..."
+
+  # Try to fix permissions
+  chmod +x bin/cli 2>/dev/null
+
+  # Re-check if the permission fix was successful
+  if [ ! -x "bin/cli" ]; then
+    echo "Error: Failed to grant execute permissions."
+    echo "Please manually run the following command:"
+    echo "  chmod +x bin/cli"
+    exit 1
+  fi
+  echo "Permissions fixed. Proceeding..."
+fi
+
+# Execute the CLI Bash command
+echo "Starting CLI Bash session..."
+bin/cli bash

compose/bin/cli

@@ -0,0 +1,13 @@
+#!/usr/bin/env bash
+
+# Ensure a CLI command is provided as an argument
+if [ -z "$1" ]; then
+  echo "Error: No CLI command specified."
+  echo "Usage: bin/cli <command>"
+  echo "Example: bin/cli ls"
+  exit 1
+fi
+
+# Execute the command inside the php-fpm container
+echo "Executing command inside php-fpm container: $@"
+bin/docker-compose exec php-fpm "$@"

compose/bin/clinotty

@@ -0,0 +1,13 @@
+#!/usr/bin/env bash
+
+# Ensure a CLI command is provided as an argument
+if [ -z "$1" ]; then
+  echo "Error: No CLI command specified."
+  echo "Usage: bin/clinotty <command>"
+  echo "Example: bin/clinotty ls"
+  exit 1
+fi
+
+# Execute the command inside the php-fpm container
+echo "Executing command inside php-fpm container: $@"
+bin/docker-compose exec php-fpm "$@"

compose/bin/docker-compose

@@ -0,0 +1,23 @@
+#!/usr/bin/env bash
+
+# Check if `docker compose` is available; otherwise, fallback to `docker-compose`.
+# This ensures compatibility with different Docker versions.
+if docker compose version > /dev/null 2>&1; then
+  DOCKER_COMPOSE="docker compose"
+else
+  DOCKER_COMPOSE="docker-compose"
+fi
+
+# Define the compose file(s) to use.
+# This script supports multiple compose files if needed in the future.
+COMPOSE_FILES=("compose.yaml")
+
+# Prefix each compose file with `-f` to ensure correct command syntax.
+# Using an array prevents issues with file paths that contain spaces.
+COMPOSE_ARGS=()
+for file in "${COMPOSE_FILES[@]}"; do
+  COMPOSE_ARGS+=("-f" "$file")
+done
+
+# Execute the Docker Compose command with the specified files and additional arguments.
+${DOCKER_COMPOSE} "${COMPOSE_ARGS[@]}" "$@"

compose/bin/restart

@@ -0,0 +1,20 @@
+#!/usr/bin/env bash
+
+# Ensure that `bin/start` and `bin/stop` exist and are executable
+if [ ! -x "bin/stop" ] || [ ! -x "bin/start" ]; then
+  echo "Error: Required scripts 'bin/stop' or 'bin/start' are missing or not executable."
+  echo "Please ensure they exist and have execute permissions:"
+  echo "  chmod +x bin/stop bin/start"
+  exit 1
+fi
+
+# Display restart message
+echo "Restarting services..."
+
+# Stop services
+bin/stop "$@"
+
+# Start services
+bin/start "$@"
+
+echo "Services restarted successfully."

compose/bin/setup-ssl

@@ -0,0 +1,37 @@
+#!/usr/bin/env bash
+
+# Ensure a domain is provided as an argument
+if [ -z "$1" ]; then
+  echo "Error: Please specify a domain (e.g., mydomain.test)"
+  exit 1
+fi
+
+# Check if the Certificate Authority (CA) is already set up, if not, set it up
+if ! bin/docker-compose exec -T -u root nginx cat /root/.local/share/mkcert/rootCA.pem | grep -q 'BEGIN CERTIFICATE'; then
+  echo "Setting up Certificate Authority (CA)..."
+  bin/setup-ssl-ca
+fi
+
+# Initialize an empty array to store domain names without port numbers
+DOMAINS_CLEAN=()
+
+# Process each provided domain, stripping out any port numbers
+for DOMAIN in "$@"; do
+  CLEAN_DOMAIN=$(echo "$DOMAIN" | cut -d ':' -f1)
+  DOMAINS_CLEAN+=("$CLEAN_DOMAIN")
+done
+
+# Generate SSL certificate for the provided domains
+echo "Generating SSL certificates for: ${DOMAINS_CLEAN[*]}..."
+bin/docker-compose exec -T -u root nginx mkcert -key-file nginx.key -cert-file nginx.crt "${DOMAINS_CLEAN[@]}"
+
+# Move generated certificates to the appropriate location
+echo "Moving SSL certificate and key to /etc/nginx/certs/..."
+bin/docker-compose exec -T -u root nginx chown app:app nginx.key nginx.crt
+bin/docker-compose exec -T -u root nginx mv nginx.key nginx.crt /etc/nginx/certs/
+
+# Restart nginx to apply SSL changes
+echo "Restarting Nginx and related services to apply SSL changes..."
+bin/restart
+
+echo "SSL setup completed successfully."

compose/bin/setup-ssl-ca

@@ -0,0 +1,81 @@
+#!/usr/bin/env bash
+# Exit script on error
+set -o errexit
+
+# Generate a new local CA inside the Nginx container
+echo "Generating a new local Certificate Authority (CA)..."
+bin/docker-compose exec -T -u root nginx mkcert -install
+
+# Copy the generated CA certificate to the host
+CONTAINER_ID=$(bin/docker-compose ps -q nginx | awk '{print $1}')
+docker cp "$CONTAINER_ID":/root/.local/share/mkcert/rootCA.pem .
+
+echo "System password required to install the CA certificate on the host..."
+
+# Determine the operating system and install CA accordingly
+if [ "$(uname)" == "Darwin" ]; then
+  echo "Installing CA certificate on macOS..."
+
+  sudo security add-trusted-cert -d -r trustRoot -k /Library/Keychains/System.keychain rootCA.pem
+
+  # Check if Firefox is installed
+  FIREFOX_BIN="/Applications/Firefox.app/Contents/MacOS/firefox-bin"
+  if [ -f "$FIREFOX_BIN" ]; then
+    echo "Configuring Firefox to trust the CA certificate..."
+
+    # Create Firefox policy for trusting enterprise certificates
+    echo "{\"policies\": {\"Certificates\": {\"ImportEnterpriseRoots\": true}}}" | sudo tee policies.json
+
+    # Ensure the distribution directory exists
+    FIREFOX_DIST_DIR="/Applications/Firefox.app/Contents/Resources/distribution"
+    [ ! -d "$FIREFOX_DIST_DIR" ] && sudo mkdir -p "$FIREFOX_DIST_DIR"
+
+    # Move policy file to Firefox distribution directory
+    sudo mv policies.json "$FIREFOX_DIST_DIR/policies.json"
+
+    # Ensure the Mozilla Certificates directory exists
+    MOZILLA_CERT_DIR="/Library/Application Support/Mozilla/Certificates"
+    [ ! -d "$MOZILLA_CERT_DIR" ] && sudo mkdir -p "$MOZILLA_CERT_DIR"
+
+    # Move the CA certificate to the Mozilla Certificates directory
+    sudo mv rootCA.pem "$MOZILLA_CERT_DIR/rootCA.pem"
+  else
+    sudo rm rootCA.pem
+  fi
+
+else
+  echo "Installing CA certificate on Linux..."
+
+  # Ensure required package `libnss3-tools` is installed
+  REQUIRED_PKG="libnss3-tools"
+  if ! dpkg-query -W --showformat='${Status}\n' "$REQUIRED_PKG" | grep -q "install ok installed"; then
+    echo "Installing required package: $REQUIRED_PKG..."
+    sudo apt-get --yes install "$REQUIRED_PKG"
+  fi
+
+  # Define certificate variables
+  CERT_FILE="rootCA.pem"
+  CERT_NAME="Root CA"
+
+  # Install certificate for legacy cert8 (DBM format)
+  echo "Configuring legacy certificate database (cert8.db)..."
+  find ~/ -name "cert8.db" -print0 | while IFS= read -r -d '' CERT_DB; do
+    CERT_DIR=$(dirname "$CERT_DB")
+    certutil -D -n "$CERT_NAME" -i "$CERT_FILE" -d dbm:"$CERT_DIR"
+    certutil -A -n "$CERT_NAME" -t "TCu,Cu,Tu" -i "$CERT_FILE" -d dbm:"$CERT_DIR"
+  done
+
+  # Install certificate for modern cert9 (SQL format)
+  echo "Configuring modern certificate database (cert9.db)..."
+  find ~/ -name "cert9.db" -print0 | while IFS= read -r -d '' CERT_DB; do
+    CERT_DIR=$(dirname "$CERT_DB")
+    certutil -D -n "$CERT_NAME" -i "$CERT_FILE" -d sql:"$CERT_DIR"
+    certutil -A -n "$CERT_NAME" -t "TCu,Cu,Tu" -i "$CERT_FILE" -d sql:"$CERT_DIR"
+  done
+
+  # Move CA certificate to system-wide directory and update certificates
+  sudo mv rootCA.pem /usr/local/share/ca-certificates/rootCA.crt
+  sudo update-ca-certificates
+fi
+
+echo "SSL CA setup completed successfully."

compose/bin/start

@@ -0,0 +1,26 @@
+#!/usr/bin/env bash
+
+# Ensure that Docker and Docker Compose are available before starting
+if ! command -v docker &> /dev/null; then
+  echo "Error: Docker is not installed or not in the system's PATH."
+  echo "Please install Docker and try again."
+  exit 1
+fi
+
+if ! command -v bin/docker-compose &> /dev/null; then
+  echo "Error: 'docker-compose' not found in 'bin/'."
+  echo "Please ensure Docker Compose is installed and available."
+  exit 1
+fi
+
+# Start the Docker containers
+echo "Starting Docker services..."
+bin/docker-compose up -d --remove-orphans "$@"
+
+# Check if the containers started successfully
+if [ $? -eq 0 ]; then
+  echo "Services started successfully."
+else
+  echo "Error: Failed to start services. Check logs for details."
+  exit 1
+fi

compose/bin/stop

@@ -0,0 +1,26 @@
+#!/usr/bin/env bash
+
+# Ensure that Docker and Docker Compose are available before stopping services
+if ! command -v docker &> /dev/null; then
+  echo "Error: Docker is not installed or not in the system's PATH."
+  echo "Please install Docker and try again."
+  exit 1
+fi
+
+if ! command -v bin/docker-compose &> /dev/null; then
+  echo "Error: 'docker-compose' not found in 'bin/'."
+  echo "Please ensure Docker Compose is installed and available."
+  exit 1
+fi
+
+# Stop the Docker containers
+echo "Stopping Docker services..."
+bin/docker-compose stop "$@"
+
+# Check if the containers stopped successfully
+if [ $? -eq 0 ]; then
+  echo "Services stopped successfully."
+else
+  echo "Error: Failed to stop services. Check logs for details."
+  exit 1
+fi