core: get rid of `pickle`: Use of `pickle` to serialise data was a technical legacy that was causing trouble to store in database, to update (if a class was serialised, a change could break update), and to security (pickle can lead to code execution). This patch remove all use of Pickle in favour in JSON, notably: - for caching data, a Pydantic model is now used instead - for SQLAlchemy model, the LegacyPickle is replaced by JSON serialisation - in XEP-0373 a class `PublicKeyMetadata` was serialised. New method `from_dict` and `to_dict` method have been implemented to do serialisation. - new methods to (de)serialise data can now be specified with Identity data types. It is notably used to (de)serialise `path` of avatars. A migration script has been created to convert data (for upgrade or downgrade), with special care for XEP-0373 case. Depending of size of database, this migration script can be long to run. rel 443

+
−FROM libervia/backend:dev
+
−
+
−LABEL maintainer="Goffi <tmp_dockerfiles@goffi.org>"
+
−
+
−USER root
+
−
+
−# we install pre-generated demo certificates so they can be trusted
+
−COPY --chown=root:root certificates/minica.pem /usr/local/share/ca-certificates/minica.crt
+
−COPY --chown=root:tls-cert certificates/server1.test/cert.pem /usr/share/libervia/certificates/server1.test.pem
+
−COPY --chown=root:tls-cert certificates/server1.test/key.pem /usr/share/libervia/certificates/server1.test-key.pem
+
−RUN update-ca-certificates
+
−
+
−COPY --chown=root:root libervia.conf /etc/libervia.conf
+
−
+
−USER libervia
+
−
+
−COPY --chown=libervia:libervia forums.json /home/libervia/
+
−COPY --chown=libervia:libervia scripts/init_script.sh /home/libervia/
+
−
+
−USER libervia
+
−# HTTP Upload
+
−EXPOSE 7777