Full: add server list and autologin plugins via env vars (#73)

f3l1x · claude · f3l1x · commit 89e8c7a4557d · 2026-04-01T18:30:35.000+02:00
Two standalone Adminer plugins activated by env vars at container startup:

- ADMINER_AUTOLOGIN_SERVER=driver://user:pass@host:port/db
  Skips login form, connects directly. Credentials handled server-side.

- ADMINER_SERVERS_Name=driver://user:pass@host:port/db
  Server dropdown with Auto Sign-In button. Multiple servers supported.
  Both Login and Auto Sign-In use stored credentials server-side.

Plugins use Adminer's auto-discovery (adminer-plugins/ directory).
Entrypoint copies the appropriate plugin file based on env vars.
Includes docker-compose.yml for easy testing with MariaDB + PostgreSQL.

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/adminer-full/Dockerfile b/adminer-full/Dockerfile
@@ -39,6 +39,7 @@ RUN echo '@community http://nl.alpinelinux.org/alpine/v3.22/community' >> /etc/a
     rm -rf /var/cache/apk/*
 
 ADD ./entrypoint.sh /entrypoint.sh
+ADD ./plugins-available/ /srv/plugins-available/
 RUN chmod +x /entrypoint.sh
 
 WORKDIR /srv
diff --git a/adminer-full/entrypoint.sh b/adminer-full/entrypoint.sh
@@ -27,6 +27,15 @@ else
     echo "[adminer] No driver plugins directory found at /srv/plugins/drivers, skipping..."
 fi
 
+# Activate plugins based on env vars (autologin takes precedence over server list)
+if [ -n "${ADMINER_AUTOLOGIN_SERVER}" ]; then
+    cp /srv/plugins-available/adminer-autologin.php /srv/adminer-plugins/
+    echo "[adminer] Autologin plugin activated."
+elif env | grep -q '^ADMINER_SERVERS_'; then
+    cp /srv/plugins-available/adminer-server-list.php /srv/adminer-plugins/
+    echo "[adminer] Server list plugin activated."
+fi
+
 # Copy theme CSS files based on ADMINER_THEME environment variable
 if [ -n "${ADMINER_THEME}" ]; then
     THEME_DIR="/srv/designs/${ADMINER_THEME}"
diff --git a/adminer-full/plugins-available/adminer-autologin.php b/adminer-full/plugins-available/adminer-autologin.php
@@ -0,0 +1,51 @@
+<?php
+
+/**
+ * Auto-login to a single database server. Skips the login form entirely.
+ *
+ * Activated by: ADMINER_AUTOLOGIN_SERVER env var
+ * DSN format:   driver://username:password@host:port/database
+ * Example:      server://root:secret@mysql:3306/mydb
+ */
+class AdminerAutologin extends Adminer\Plugin {
+    private $config;
+
+    function __construct() {
+        $dsn = getenv('ADMINER_AUTOLOGIN_SERVER');
+        if (!$dsn || !preg_match('#^(\w+)://(?:([^:@]*)(?::([^@]*))?@)?([^/:]+)(?::(\d+))?(?:/(.*))?$#', $dsn, $m)) {
+            return;
+        }
+        $host = $m[4] . (!empty($m[5]) ? ':' . $m[5] : '');
+        $this->config = [
+            'driver' => $m[1],
+            'username' => urldecode($m[2] ?? ''),
+            'password' => urldecode($m[3] ?? ''),
+            'server' => $host,
+            'db' => urldecode($m[6] ?? ''),
+        ];
+
+        // Inject login data on first visit (before Adminer processes the request)
+        if (!isset($_GET["username"]) && empty($_POST["auth"]) && !isset($_GET["server"])) {
+            $_POST["auth"] = [
+                "driver" => $this->config["driver"],
+                "server" => $this->config["server"],
+                "username" => $this->config["username"],
+                "password" => $this->config["password"],
+                "db" => $this->config["db"],
+                "permanent" => "",
+            ];
+        }
+    }
+
+    function credentials() {
+        if ($this->config) {
+            return [$this->config["server"], $this->config["username"], $this->config["password"]];
+        }
+    }
+
+    function login($login, $password) {
+        if ($this->config) {
+            return true;
+        }
+    }
+}
diff --git a/adminer-full/plugins-available/adminer-server-list.php b/adminer-full/plugins-available/adminer-server-list.php
@@ -0,0 +1,130 @@
+<?php
+
+/**
+ * Server list with optional stored credentials and Auto Sign-In button.
+ * Credentials are handled server-side — never exposed to the browser.
+ *
+ * Activated by: ADMINER_SERVERS_* env vars
+ * DSN format:   driver://username:password@host:port/database
+ * Examples:
+ *   ADMINER_SERVERS_MariaDB=server://root:secret@mysql:3306/mydb
+ *   ADMINER_SERVERS_PostgreSQL=pgsql://postgres:pwd@pg:5432/app
+ *   ADMINER_SERVERS_SQLite=sqlite:///data/db.sqlite  (no credentials)
+ *
+ * The suffix after ADMINER_SERVERS_ becomes the display name in the dropdown.
+ */
+class AdminerServerList extends Adminer\Plugin {
+    private $servers = [];
+    private $credentials = [];
+
+    function __construct() {
+        foreach (getenv() as $key => $value) {
+            if (!str_starts_with($key, 'ADMINER_SERVERS_')) {
+                continue;
+            }
+            $name = substr($key, strlen('ADMINER_SERVERS_'));
+            if (!preg_match('#^(\w+)://(?:([^:@]*)(?::([^@]*))?@)?([^/:]+)(?::(\d+))?(?:/(.*))?$#', $value, $m)) {
+                continue;
+            }
+            $host = $m[4] . (!empty($m[5]) ? ':' . $m[5] : '');
+            $this->servers[$name] = ['server' => $host, 'driver' => $m[1]];
+            if (!empty($m[2])) {
+                $this->credentials[$name] = [
+                    'username' => urldecode($m[2]),
+                    'password' => urldecode($m[3] ?? ''),
+                    'db' => urldecode($m[6] ?? ''),
+                ];
+            }
+        }
+
+        // Set driver from selected server on POST (same as AdminerLoginServers)
+        if ($_POST["auth"] && isset($this->servers[$_POST["auth"]["server"]])) {
+            $_POST["auth"]["driver"] = $this->servers[$_POST["auth"]["server"]]["driver"];
+        }
+
+        // Handle Auto Sign-In: inject stored credentials into POST
+        if (isset($_POST["_autologin"]) && isset($this->credentials[$_POST["auth"]["server"]])) {
+            $cred = $this->credentials[$_POST["auth"]["server"]];
+            $_POST["auth"]["username"] = $cred["username"];
+            $_POST["auth"]["password"] = $cred["password"];
+            $_POST["auth"]["db"] = $cred["db"];
+        }
+    }
+
+    function credentials() {
+        $server = Adminer\SERVER;
+        if (isset($this->servers[$server])) {
+            $host = $this->servers[$server]["server"];
+            if (isset($this->credentials[$server])) {
+                $cred = $this->credentials[$server];
+                $username = $_GET["username"] ?: $cred["username"];
+                $password = Adminer\get_password() ?: $cred["password"];
+                return [$host, $username, $password];
+            }
+            return [$host, $_GET["username"], Adminer\get_password()];
+        }
+    }
+
+    function login($login, $password) {
+        if (!isset($this->servers[Adminer\SERVER])) {
+            return false;
+        }
+        if (isset($this->credentials[Adminer\SERVER])) {
+            return true;
+        }
+    }
+
+    function loginFormField($name, $heading, $value) {
+        if ($name == 'driver') {
+            return '';
+        }
+        if ($name == 'server') {
+            return $heading . Adminer\html_select("auth[server]", array_keys($this->servers), Adminer\SERVER) . "\n";
+        }
+    }
+
+    function head() {
+        if (isset($_GET["username"]) || empty($this->credentials)) {
+            return;
+        }
+        $servers = json_encode(array_keys($this->credentials), JSON_HEX_TAG | JSON_HEX_AMP);
+        $nonce = \Adminer\get_nonce();
+        echo <<<SCRIPT
+<script nonce="$nonce">
+(function() {
+    var serversWithCreds = $servers;
+    document.addEventListener("DOMContentLoaded", function() {
+        var form = document.querySelector("form");
+        if (!form) return;
+        var serverSelect = form.querySelector('[name="auth[server]"]');
+        if (!serverSelect) return;
+
+        var hidden = document.createElement("input");
+        hidden.type = "hidden";
+        hidden.name = "_autologin";
+        hidden.disabled = true;
+        form.appendChild(hidden);
+
+        var btn = document.createElement("input");
+        btn.type = "submit";
+        btn.value = "Auto Sign-In";
+        btn.style.display = "none";
+        btn.style.marginLeft = "5px";
+        btn.addEventListener("click", function() {
+            hidden.disabled = false;
+            hidden.value = "1";
+        });
+        var loginBtn = form.querySelector('[type="submit"][value="Login"]');
+        if (loginBtn) loginBtn.parentNode.insertBefore(btn, loginBtn.nextSibling);
+
+        function updateButton(serverName) {
+            btn.style.display = serversWithCreds.indexOf(serverName) >= 0 ? "inline" : "none";
+        }
+        serverSelect.addEventListener("change", function() { updateButton(this.value); });
+        updateButton(serverSelect.value);
+    });
+})();
+</script>
+SCRIPT;
+    }
+}
diff --git a/docker-compose.yml b/docker-compose.yml
@@ -0,0 +1,40 @@
+services:
+  adminer:
+    build:
+      context: adminer-full
+      dockerfile: Dockerfile
+    ports:
+      - "8080:80"
+    environment:
+      # Autologin: skips login form, connects directly (takes precedence over ADMINER_SERVERS_*)
+      #ADMINER_AUTOLOGIN_SERVER: "server://root:root@mariadb:3306/testdb"
+      ADMINER_SERVERS_MariaDB: "server://root:root@mariadb:3306/testdb"
+      ADMINER_SERVERS_PostgreSQL: "pgsql://root:root@postgres:5432/testdb"
+    depends_on:
+      mariadb:
+        condition: service_healthy
+      postgres:
+        condition: service_healthy
+
+  mariadb:
+    image: mariadb:11
+    environment:
+      MARIADB_ROOT_PASSWORD: root
+      MARIADB_DATABASE: testdb
+    healthcheck:
+      test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"]
+      interval: 5s
+      timeout: 3s
+      retries: 10
+
+  postgres:
+    image: postgres:17-alpine
+    environment:
+      POSTGRES_USER: root
+      POSTGRES_PASSWORD: root
+      POSTGRES_DB: testdb
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U root -d testdb"]
+      interval: 5s
+      timeout: 3s
+      retries: 10
