If You want to build a reverse proxy website with Drupal at short time;
Plus, manage docker containers with Portainer.
arm64/aarch64, x86-64
apk, dnf, yum, apt/apt-get, zypper, pacman
Note: Fedora 37, 39 and alpine linux x86-64 compatible, could not try sles IBM Z s390x, rhel IBM Z s390x and raspberrypi.
- Drupal - php-fpm
- webserver (apache2/httpd)
- proxy (nginx)
- certbot (letsencrypt)
- phpMyAdmin
- Mariadb Mysql
- redis
- varnish
- backup
Create rules to open ports to the internet, or to a specific IPv4 address or range.
- http: 80
- https: 443
- portainer: 9001
- phpmyadmin: 9090
- Auto Configuration and Installation
- Manual Configuration and Installation
- Portainer Installation
- Usage
download with
git clone https://github.com/damalis/full-stack-proxy-nginx-drupal-for-everyone-with-docker-compose.git
Open a terminal and cd to the folder in which docker-compose.yml is saved and run:
cd full-stack-proxy-nginx-drupal-for-everyone-with-docker-compose
chmod +x install.sh
./install.sh
Make sure you have the latest versions of Docker and Docker Compose installed on your machine.
Clone this repository or copy the files from this repository into a new folder.
Make sure to add your user to the docker group.
download with
git clone https://github.com/damalis/full-stack-proxy-nginx-drupal-for-everyone-with-docker-compose.git
Open a terminal and cd to the folder in which docker-compose.yml is saved and run:
cd full-stack-proxy-nginx-drupal-for-everyone-with-docker-compose
Copy the example environment into .env
cp env.example .env
Edit the .env file to change values of
|LOCAL_TIMEZONE|DOMAIN_NAME|DIRECTORY_PATH|LETSENCRYPT_EMAIL|
|DB_USER|DB_PASSWORD|DB_NAME|MYSQL_ROOT_PASSWORD|DATABASE_IMAGE_NAME|
|DATABASE_CONT_NAME|DATABASE_PACKAGE_MANAGER|DATABASE_ADMIN_COMMANDLINE|PMA_CONTROLUSER|PMA_CONTROLPASS|
|PMA_HTPASSWD_USERNAME|PMA_HTPASSWD_PASSWORD|VARNISH_VERSION|SSL_SNIPPET|
| Variable | Value | |
|---|---|---|
LOCAL_TIMEZONE |
to see local timezones |
|
DIRECTORY_PATH |
pwd at command line |
|
DATABASE_IMAGE_NAME |
mariadb or mysql |
|
DATABASE_CONT_NAME |
mariadb, mysql or custom name |
|
DATABASE_PACKAGE_MANAGER |
mariadb | apt-get update && apt-get install -y gettext-base |
| mysql | microdnf install -y gettext |
|
DATABASE_ADMIN_COMMANDLINE |
mariadb | mariadb-admin |
| mysql | mysqladmin |
|
VARNISH_VERSION |
centos version 9+ and fedora | latest |
| the others | stable |
|
SSL_SNIPPET |
localhost | echo 'Generated Self-signed SSL Certificate at localhost' |
| remotehost | certbot certonly --webroot --webroot-path /tmp/acme-challenge --rsa-key-size 4096 --non-interactive --agree-tos --no-eff-email --force-renewal --email ${LETSENCRYPT_EMAIL} -d ${DOMAIN_NAME} -d www.${DOMAIN_NAME} |
|
and
cp ./phpmyadmin/apache2/sites-available/default-ssl.sample.conf ./phpmyadmin/apache2/sites-available/default-ssl.conf
change example.com to your domain name in ./phpmyadmin/apache2/sites-available/default-ssl.conf file.
cp ./database/phpmyadmin/sql/create_tables.sql.template.example ./database/phpmyadmin/sql/create_tables.sql.template
change pma_controluser and db_authentication_password in ./database/phpmyadmin/sql/create_tables.sql.template file.
Firstly: will create external volume
docker volume create --driver local --opt type=none --opt device=${PWD}/certbot --opt o=bind certbot-etc
Localhost ssl: Generate Self-signed SSL Certificate with guide mkcert repository.
docker compose up -d
then reloading for proxy ssl configuration
docker container restart proxy
The containers are now built and running. You should be able to access the Drupal installation with the configured IP in the browser address. https://example.com.
For convenience you may add a new entry into your hosts file.
docker compose -f portainer-docker-compose.yml -p portainer up -d
manage docker with Portainer is the definitive container management tool for Docker, Docker Swarm with it's highly intuitive GUI and API.
You can also visit https://example.com:9001 to access portainer after starting the containers.
docker ps -a # Lists all containers managed by the compose file
docker compose start # Starts previously stopped containers
docker compose stop # Stops all running containers
docker compose down # Stops and removes containers, networks, etc.
docker compose down -v # Add --volumes to remove volumes explicitly
docker rm -f $(docker ps -a -q) # Removes portainer and the other containers
docker volume rm $(docker volume ls -q) # Removes all volumes
docker network prune # Remove all unused networks
docker system prune # Removes unused data (containers, networks, images, and optionally volumes)
docker system prune -a # Removes all unused images, not just dangling ones
docker rmi $(docker image ls -q) # Removes portainer and the other images
docker container logs container_name_or_id # Shows logs from all services
Copy all files into a new directory:
docker compose up -d # Starts services in detached mode (in the background)
https://docs.docker.com/reference/cli/docker/compose/
You should see the "Drupal installation" page in your browser. If not, please check if your PHP installation satisfies Drupal's requirements.
https://example.com
if you should see the "The website encountered an unexpected error. Please try again later." in your browser, run drush cache:rebuild in drupal container.
add or remove code in the ./php-fpm/php/conf.d/security.ini file for custom php.ini configurations
https://www.php.net/manual/en/configuration.file.php
You should make changes custom host configurations ./php-fpm/php-fpm.d/z-www.conf then must restart service, FPM uses php.ini syntax for its configuration file - php-fpm.conf, and pool configuration files.
https://www.php.net/manual/en/install.fpm.configuration.php
docker container restart drupal
add and/or remove drupal site folders and files with any ftp client program in ./drupal folder.
You can also visit https://example.com to access website after starting the containers.
Proxying is typically used to distribute the load among several servers, seamlessly show content from different websites, or pass requests for processing to application servers over protocols other than HTTP.
add or remove code in the ./proxy/templates/proxy.conf.template file for custom proxy configurations
https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/
add or remove code in the ./webserver/extra/httpd-vhosts.conf file for custom apache2/httpd configurations
https://httpd.apache.org/docs/2.4/
ADVANCED OPTIONS -> |Host: database|Username: root|Password: root password|
https://mariadb.com/kb/en/configuring-mariadb-with-option-files/
at page https://example.com/en/admin/modules, filter: redis and check then install.
if there isn't these lines, Edit Drupal settings file: ./drupal/sites/default/settings.php and add these lines at the bottom of the file:
$settings['redis.connection']['interface'] = 'PhpRedis';
// Host ip address.
$settings['redis.connection']['host'] = 'redis';
$settings['cache']['default'] = 'cache.backend.redis';
// Redis port.
$settings['redis.connection']['port'] = '6379';
$settings['redis.connection']['base'] = 12;
// Password of redis updated in php.ini file.
// $settings['redis.connection']['password'] = "password";
$settings['cache']['bins']['bootstrap'] = 'cache.backend.chainedfast';
$settings['cache']['bins']['discovery'] = 'cache.backend.chainedfast';
$settings['cache']['bins']['config'] = 'cache.backend.chainedfast';
Create ./drupal/sites/default/files/services.yml inisde default folder and add the below code in it.
services:
# Cache tag checksum backend. Used by redis and most other cache backend
# to deal with cache tag invalidations.
cache_tags.invalidator.checksum:
class: Drupal\redis\Cache\RedisCacheTagsChecksum
arguments: ['@redis.factory']
tags:
- { name: cache_tags_invalidator }
# Replaces the default lock backend with a redis implementation.
lock:
class: Drupal\Core\Lock\LockBackendInterface
factory: ['@redis.lock.factory', get]
# Replaces the default persistent lock backend with a redis implementation.
lock.persistent:
class: Drupal\Core\Lock\LockBackendInterface
factory: ['@redis.lock.factory', get]
arguments: [true]
# Replaces the default flood backend with a redis implementation.
flood:
class: Drupal\Core\Flood\FloodInterface
factory: ['@redis.flood.factory', get]
at page https://example.com/en/admin/modules, filter: purge and check then install.
Varnish Server Hostname: |varnish|
Varnish Server Port: |8080|
Scheme: |http|
This link is to complete configure Varnish
All necessary changes to sites/default and sites/default/settings.php have been made, so you should remove write permissions to them now in order to avoid security risks.
sudo chmod 655 ./drupal/sites/default/settings.php
You can add your own custom config.inc.php settings (such as Configuration Storage setup) by creating a file named config.user.inc.php with the various user defined settings in it, and then linking it into the container using:
./phpmyadmin/config.user.inc.php
You can also visit https://example.com:9090 to access phpMyAdmin after starting the containers.
The first authorize screen(htpasswd;username or password) and phpmyadmin login screen the username and the password is the same as supplied in the .env file.
This will back up the all files and folders in database/dump sql and html volumes, once per day, and write it to ./backups with a filename like backup-2023-01-01T10-18-00.tar.gz
BACKUP_CRON_EXPRESSION: '20 01 * * *' the UTC timezone.