clean config, support read-only non-root docker

Signed-off-by: ngn <ngn@ngn.tf>

docker/httpd.conf

@@ -1,16 +1,19 @@
-Listen 80
-ServerTokens OS
+Listen 8080
+
 ServerRoot /var/www
-ServerSignature On
 ServerName localhost
 
-DocumentRoot "/var/www/html/4get"
+ServerSignature Off
+ServerTokens    Prod
 
-LogLevel error
+PidFile      /dev/shm/httpd.pid
+DocumentRoot /srv/4get
+
+LogLevel  error
 CustomLog /dev/null common
-ErrorLog /dev/null
+ErrorLog  /dev/stderr
 
-<Directory "/var/www/html/4get">
+<Directory /srv/4get>
   RewriteEngine On
   RewriteCond %{THE_REQUEST} ^\w+\ /(.*)\.php(\?.*)?\ HTTP/
   RewriteRule ^ http://%{HTTP_HOST}/%1 [R=301]
@@ -22,68 +25,32 @@ ErrorLog /dev/null
 </Directory>
 
 # deny access to private resources
-<Directory "/var/www/html/4get/data">
+<Directory /srv/4get/data>
   Require all denied
-  <Files "*">
+  <Files *>
     Require all denied
   </Files>
 </Directory>
 
-LoadModule rewrite_module modules/mod_rewrite.so
-LoadModule mpm_prefork_module modules/mod_mpm_prefork.so
-LoadModule authn_file_module modules/mod_authn_file.so
-LoadModule authn_core_module modules/mod_authn_core.so
-LoadModule authz_host_module modules/mod_authz_host.so
-LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
-LoadModule authz_user_module modules/mod_authz_user.so
-LoadModule authz_core_module modules/mod_authz_core.so
+LoadModule rewrite_module       modules/mod_rewrite.so
+LoadModule mpm_prefork_module   modules/mod_mpm_prefork.so
+LoadModule authz_core_module    modules/mod_authz_core.so
 LoadModule access_compat_module modules/mod_access_compat.so
-LoadModule auth_basic_module modules/mod_auth_basic.so
-LoadModule reqtimeout_module modules/mod_reqtimeout.so
-LoadModule filter_module modules/mod_filter.so
-LoadModule mime_module modules/mod_mime.so
-LoadModule log_config_module modules/mod_log_config.so
-LoadModule env_module modules/mod_env.so
-LoadModule headers_module modules/mod_headers.so
-LoadModule setenvif_module modules/mod_setenvif.so
-LoadModule version_module modules/mod_version.so
-LoadModule unixd_module modules/mod_unixd.so
-LoadModule status_module modules/mod_status.so
-LoadModule autoindex_module modules/mod_autoindex.so
-LoadModule dir_module modules/mod_dir.so
-LoadModule alias_module modules/mod_alias.so
-LoadModule negotiation_module modules/mod_negotiation.so
-
-<IfModule unixd_module>
-  User apache
-  Group apache
-</IfModule>
+LoadModule filter_module        modules/mod_filter.so
+LoadModule mime_module          modules/mod_mime.so
+LoadModule log_config_module    modules/mod_log_config.so
+LoadModule unixd_module         modules/mod_unixd.so
+LoadModule negotiation_module   modules/mod_negotiation.so
+LoadModule dir_module           modules/mod_dir.so
 
 <Directory />
   AllowOverride none
   Require all denied
 </Directory>
 
-<IfModule dir_module>
-  DirectoryIndex index.html
-</IfModule>
-
 <Files ".ht*">
   Require all denied
 </Files>
 
-<IfModule headers_module>
-  RequestHeader unset Proxy early
-</IfModule>
-
-<IfModule mime_module>
-  TypesConfig /etc/apache2/mime.types
-  AddType application/x-compress .Z
-  AddType application/x-gzip .gz .tgz
-</IfModule>
-
-<IfModule mime_magic_module>
-  MIMEMagicFile /etc/apache2/magic
-</IfModule>
-
-IncludeOptional /etc/apache2/conf.d/*.conf
+Include /etc/apache2/conf.d/languages.conf
+Include /etc/apache2/conf.d/php83-module.conf