Skip to content

Commit

Permalink
move php config into files
Browse files Browse the repository at this point in the history
  • Loading branch information
kaplan-michael committed Nov 26, 2023
1 parent 8990c17 commit ed1833e
Show file tree
Hide file tree
Showing 4 changed files with 2,261 additions and 37 deletions.
49 changes: 12 additions & 37 deletions deploy/container_images/php/Containerfile-ubi
Original file line number Diff line number Diff line change
Expand Up @@ -5,61 +5,36 @@ WORKDIR /var/www/html

#enable needed epel & remi repos
RUN dnf install https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm https://rpms.remirepo.net/enterprise/remi-release-9.rpm -y

#enable php81 module and install php
RUN dnf module enable php:remi-8.2 -y
RUN dnf install php-fpm php-cli composer php-pgsql php-pdo php-gd php-soap vim -y
RUN dnf install php-fpm php-cli composer php-pgsql php-pdo php-gd php-soap php-opcache unzip vim -y

#cleanup dnf cache
RUN dnf clean all

#copy app
COPY ./composer.json /var/www/html/composer.json
COPY ./composer.lock /var/www/html/composer.lock
COPY ./src /var/www/html/src
COPY ./public /var/www/html/public

#configure php-fpm
RUN sed -i 's\listen = /run/php-fpm/www.sock\listen = '9000'\g' /etc/php-fpm.d/www.conf
RUN sed -i '/pid/d' /etc/php-fpm.conf
RUN sed -i '/listen.allowed_clients/d' /etc/php-fpm.d/www.conf
RUN sed -i '/upload_max_filesize/ s/2M/16M/' /etc/php.ini

#PHP logging sed magic
RUN sed -i '/;error_log = syslog/a error_log= /proc/self/fd/2' /etc/php.ini
RUN sed -i 's\error_log = /var/log/php-fpm/error.log\error_log= /proc/self/fd/2\g' /etc/php-fpm.conf
RUN sed -i '/;access.log/a access.log = /proc/self/fd/2' /etc/php-fpm.d/www.conf
RUN sed -i 's\slowlog = /var/log/php-fpm/www-slow.log\slowlog = /proc/self/fd/2\g' /etc/php-fpm.d/www.conf
RUN sed -i '/php_admin_value\[error_log\]/d' /etc/php-fpm.d/www.conf

RUN groupadd -r -g 1001 www-data
RUN useradd -r -u 1001 -g 1001 www-data -s /sbin/nologin -d /var/www/html
#copy php config
COPY ./deploy/container_images/php/php.ini /etc/php.ini
COPY ./deploy/container_images/php/php-fpm.conf /etc/php-fpm.conf
COPY ./deploy/container_images/php/www.conf /etc/php-fpm.d/www.conf

RUN sed -i 's\user = apache\user = www-data\g' /etc/php-fpm.d/www.conf
RUN sed -i 's\group = apache\group = www-data\g' /etc/php-fpm.d/www.conf
#add user
RUN groupadd -g 1001 www-data
RUN useradd -u 1001 -g 1001 www-data -s /sbin/nologin -d /var/www/html -M
RUN chown -R www-data:www-data /var/lib/php



#Create dummy .env
RUN touch /var/www/html/.env


#increse memory limit
RUN sed -i '/memory_limit/ s/128/512/' /etc/php.ini

#change variable ordeiring at startup
RUN sed -i '/variables_order/ s/"GPCS"/"EGPCS"/' /etc/php.ini

#allow env variable access
RUN sed -i 's\;clear_env = no\clear_env = no\' /etc/php-fpm.d/www.conf

#export metrics
RUN sed -i 's\;pm.status_path = /status\pm.status_path = /status\' /etc/php-fpm.d/www.conf

# increse max pool max_children
RUN sed -i '/pm.max_children/ s/5/20/' /etc/php-fpm.d/www.conf

#install deps
RUN composer install --working-dir=/var/www/html --no-dev --no-interaction --ignore-platform-req=ext-sqlite3


RUN chown -R www-data:www-data /var/www/html

USER www-data
Expand Down
135 changes: 135 additions & 0 deletions deploy/container_images/php/php-fpm.conf
Original file line number Diff line number Diff line change
@@ -0,0 +1,135 @@
;;;;;;;;;;;;;;;;;;;;;
; FPM Configuration ;
;;;;;;;;;;;;;;;;;;;;;

; All relative paths in this configuration file are relative to PHP's install
; prefix.

;;;;;;;;;;;;;;;;;;
; Global Options ;
;;;;;;;;;;;;;;;;;;

[global]
; Pid file
; Default Value: none

; Error log file
; If it's set to "syslog", log is sent to syslogd instead of being written
; in a local file.
; Default Value: /var/log/php-fpm.log
error_log= /proc/self/fd/2

; syslog_facility is used to specify what type of program is logging the
; message. This lets syslogd specify that messages from different facilities
; will be handled differently.
; See syslog(3) for possible values (ex daemon equiv LOG_DAEMON)
; Default Value: daemon
;syslog.facility = daemon

; syslog_ident is prepended to every message. If you have multiple FPM
; instances running on the same server, you can change the default value
; which must suit common needs.
; Default Value: php-fpm
;syslog.ident = php-fpm

; Log level
; Possible Values: alert, error, warning, notice, debug
; Default Value: notice
;log_level = notice

; Log limit on number of characters in the single line (log entry). If the
; line is over the limit, it is wrapped on multiple lines. The limit is for
; all logged characters including message prefix and suffix if present. However
; the new line character does not count into it as it is present only when
; logging to a file descriptor. It means the new line character is not present
; when logging to syslog.
; Default Value: 1024
;log_limit = 4096

; Log buffering specifies if the log line is buffered which means that the
; line is written in a single write operation. If the value is false, then the
; data is written directly into the file descriptor. It is an experimental
; option that can potentionaly improve logging performance and memory usage
; for some heavy logging scenarios. This option is ignored if logging to syslog
; as it has to be always buffered.
; Default value: yes
;log_buffering = no

; If this number of child processes exit with SIGSEGV or SIGBUS within the time
; interval set by emergency_restart_interval then FPM will restart. A value
; of '0' means 'Off'.
; Default Value: 0
emergency_restart_threshold = 5


; Interval of time used by emergency_restart_interval to determine when
; a graceful restart will be initiated. This can be useful to work around
; accidental corruptions in an accelerator's shared memory.
; Available Units: s(econds), m(inutes), h(ours), or d(ays)
; Default Unit: seconds
; Default Value: 0
emergency_restart_interval = 30s

; Time limit for child processes to wait for a reaction on signals from master.
; Available units: s(econds), m(inutes), h(ours), or d(ays)
; Default Unit: seconds
; Default Value: 0
process_control_timeout = 5s

; The maximum number of processes FPM will fork. This has been designed to control
; the global number of processes when using dynamic PM within a lot of pools.
; Use it with caution.
; Note: A value of 0 indicates no limit
; Default Value: 0
;process.max = 128

; Specify the nice(2) priority to apply to the master process (only if set)
; The value can vary from -19 (highest priority) to 20 (lowest priority)
; Note: - It will only work if the FPM master process is launched as root
; - The pool process will inherit the master process priority
; unless specified otherwise
; Default Value: no set
;process.priority = -19

; Send FPM to background. Set to 'no' to keep FPM in foreground for debugging.
; Default Value: yes
daemonize = yes

; Set open file descriptor rlimit for the master process.
; Default Value: system defined value
;rlimit_files = 1024

; Set max core size rlimit for the master process.
; Possible Values: 'unlimited' or an integer greater or equal to 0
; Default Value: system defined value
;rlimit_core = 0

; Specify the event mechanism FPM will use. The following is available:
; - select (any POSIX os)
; - poll (any POSIX os)
; - epoll (linux >= 2.5.44)
; Default Value: not set (auto detection)
;events.mechanism = epoll

; When FPM is built with systemd integration, specify the interval,
; in seconds, between health report notification to systemd.
; Set to 0 to disable.
; Available Units: s(econds), m(inutes), h(ours)
; Default Unit: seconds
; Default value: 10
;systemd_interval = 10

;;;;;;;;;;;;;;;;;;;;
; Pool Definitions ;
;;;;;;;;;;;;;;;;;;;;

; Multiple pools of child processes may be started with different listening
; ports and different management options. The name of the pool will be
; used in logs and stats. There is no limitation on the number of pools which
; FPM can handle. Your system will tell you anyway :)

; Include one or more files. If glob(3) exists, it is used to include a bunch of
; files from a glob(3) pattern. This directive can be used everywhere in the
; file.
include=/etc/php-fpm.d/*.conf

Loading

0 comments on commit ed1833e

Please sign in to comment.