Ported to Fedora for OpenShift

.xinitrc

@@ -0,0 +1,3 @@
+openbox &
+xsetroot -solid black
+zap.sh

Dockerfile

@@ -1,46 +1,44 @@
 # This dockerfile builds the zap stable release
-FROM ubuntu:16.04
-MAINTAINER Simon Bennetts "psiinon@gmail.com"
+FROM fedora:latest
+MAINTAINER Deven Phillips <deven.phillips@redhat.com>
 
-RUN apt-get update && apt-get install -q -y --fix-missing \
-	make \
-	automake \
-	autoconf \
-	gcc g++ \
-	openjdk-8-jdk \
-	ruby \
-	wget \
-	curl \
-	xmlstarlet \
-	unzip \
-	git \
-	x11vnc \
-	xvfb \
-	openbox \
-	xterm \
-	net-tools \
-	ruby-dev \
-	python-pip \
-	firefox \
-	xvfb \
-	x11vnc && \
-	apt-get clean && \
-	rm -rf /var/lib/apt/lists/*
+RUN dnf install -y redhat-rpm-config make automake autoconf gcc gcc-c++ libstdc++ libstdc++-devel java-1.8.0-openjdk ruby wget curl xmlstarlet unzip git x11vnc xorg-x11-server-Xvfb openbox xterm net-tools ruby-devel python-pip firefox 
+#RUN apt-get update && apt-get install -q -y --fix-missing \
+#	make \
+#	automake \
+#	autoconf \
+#	gcc g++ \
+#	openjdk-8-jdk \
+#	ruby \
+#	wget \
+#	curl \
+#	xmlstarlet \
+#	unzip \
+#	git \
+#	x11vnc \
+#	xvfb \
+#	openbox \
+#	xterm \
+#	net-tools \
+#	ruby-dev \
+#	python-pip \
+#	firefox \
+#	xvfb \
+#	x11vnc && \
+#	apt-get clean && \
+#	rm -rf /var/lib/apt/lists/*
 
 RUN pip install --upgrade pip
 RUN gem install zapr
 RUN pip install zapcli
 # Install latest dev version of the python API
 RUN pip install python-owasp-zap-v2.4
 
-RUN useradd -d /home/zap -m -s /bin/bash zap 
-RUN echo zap:zap | chpasswd
 RUN mkdir /zap 
 WORKDIR /zap
-RUN chown 65534:0 /zap && chmod -R gu+rwX /zap
+RUN chown root:root /zap -R
 
 #Change to the zap user so things get done as the right person (apart from copy)
-USER root
 
 RUN mkdir /root/.vnc
 
@@ -62,7 +60,7 @@ ENV ZAP_PATH /zap/zap.sh
 
 # Default port for use with zapcli
 ENV ZAP_PORT 8080
-ENV HOME /home/zap/
+ENV HOME /root/
 
 
 COPY zap-x.sh /zap/ 
@@ -72,12 +70,13 @@ COPY webswing.config /zap/webswing-2.3/
 COPY policies /root/.ZAP/policies/
 COPY .xinitrc /root/
 
-RUN chown 65534:0 /zap/zap-x.sh && \
-	chown 65534:0 /zap/zap-baseline.py && \
-	chown 65534:0 /zap/zap-webswing.sh && \
-	chown 65534:0 /zap/webswing-2.3/webswing.config && \
-	chown 65534:0 -R /home/zap/.ZAP/ && \
-	chown 65534:0 /home/zap/.xinitrc && \
-	chmod a+x /root/.xinitrc
+RUN chown root:root /zap/zap-x.sh && \
+	chown root:root /zap/zap-baseline.py && \
+	chown root:root /zap/zap-webswing.sh && \
+	chown root:root /zap/webswing-2.3/webswing.config && \
+	chown root:root -R /root/.ZAP/ && \
+	chown root:root /root/.xinitrc && \
+	chmod a+x /root/.xinitrc && \
+	chown root:root /root -R
 #Change back to zap at the end
 HEALTHCHECK --retries=5 --interval=5s CMD zap-cli status

policies/API-Minimal.policy

@@ -0,0 +1,238 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+<policy>API Minimal</policy>
+<scanner>
+<level>MEDIUM</level>
+<strength>MEDIUM</strength>
+</scanner>
+<plugins>
+<p6>
+<enabled>false</enabled>
+<level>OFF</level>
+</p6>
+<p7>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p7>
+<p40009>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p40009>
+<p40012>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40012>
+<p40014>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40014>
+<p40018>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p40018>
+<p90019>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p90019>
+<p90020>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p90020>
+<p0>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p0>
+<p20019>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p20019>
+<p30001>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p30001>
+<p30002>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p30002>
+<p40003>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p40003>
+<p40008>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p40008>
+<p40016>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40016>
+<p40017>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40017>
+<p50000>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p50000>
+<p42>
+<enabled>false</enabled>
+<level>OFF</level>
+</p42>
+<p10045>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10045>
+<p10048>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10048>
+<p20012>
+<enabled>false</enabled>
+<level>OFF</level>
+</p20012>
+<p20015>
+<enabled>false</enabled>
+<level>OFF</level>
+</p20015>
+<p20016>
+<enabled>false</enabled>
+<level>OFF</level>
+</p20016>
+<p20017>
+<enabled>false</enabled>
+<level>OFF</level>
+</p20017>
+<p20018>
+<enabled>false</enabled>
+<level>OFF</level>
+</p20018>
+<p40013>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40013>
+<p40019>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40019>
+<p40020>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40020>
+<p40021>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40021>
+<p40022>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40022>
+<p90018>
+<enabled>false</enabled>
+<level>OFF</level>
+</p90018>
+<p90021>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p90021>
+<p90023>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p90023>
+<p90024>
+<enabled>false</enabled>
+<level>OFF</level>
+</p90024>
+<p90025>
+<enabled>false</enabled>
+<level>OFF</level>
+</p90025>
+<p10095>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10095>
+<p30003>
+<enabled>false</enabled>
+<level>OFF</level>
+</p30003>
+<p90028>
+<enabled>false</enabled>
+<level>OFF</level>
+</p90028>
+<p20014>
+<enabled>false</enabled>
+<level>OFF</level>
+</p20014>
+<p40023>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40023>
+<p41>
+<enabled>false</enabled>
+<level>OFF</level>
+</p41>
+<p43>
+<enabled>false</enabled>
+<level>OFF</level>
+</p43>
+<p10107>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10107>
+<p40015>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40015>
+<p40024>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40024>
+<p40026>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40026>
+<p60100>
+<enabled>false</enabled>
+<level>OFF</level>
+</p60100>
+<p60101>
+<enabled>false</enabled>
+<level>OFF</level>
+</p60101>
+<p90026>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p90026>
+<p90029>
+<enabled>true</enabled>
+<level>MEDIUM</level>
+</p90029>
+<p10051>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10051>
+<p10053>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10053>
+<p10104>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10104>
+<p10106>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10106>
+<p40025>
+<enabled>false</enabled>
+<level>OFF</level>
+</p40025>
+<p10047>
+<enabled>false</enabled>
+<level>OFF</level>
+</p10047>
+<p90027>
+<enabled>false</enabled>
+<level>OFF</level>
+</p90027>
+</plugins>
+</configuration>

policies/Default Policy.policy

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+	<policy>Default Policy</policy>
+	<scanner>
+		<level>MEDIUM</level>
+		<strength>MEDIUM</strength>
+	</scanner>
+</configuration>

policies/St-High-Th-High.policy

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+	<policy>St-High-Th-High</policy>
+	<scanner>
+		<level>HIGH</level>
+		<strength>HIGH</strength>
+	</scanner>
+</configuration>

policies/St-High-Th-Low.policy

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+	<policy>St-High-Th-Low</policy>
+	<scanner>
+		<level>LOW</level>
+		<strength>HIGH</strength>
+	</scanner>
+</configuration>

policies/St-High-Th-Med.policy

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+	<policy>St-High-Th-Med</policy>
+	<scanner>
+		<level>MEDIUM</level>
+		<strength>HIGH</strength>
+	</scanner>
+</configuration>

policies/St-Ins-Th-High.policy

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<configuration>
+	<policy>St-Ins-Th-High</policy>
+	<scanner>
+		<level>HIGH</level>
+		<strength>INSANE</strength>
+	</scanner>
+</configuration>