The development on this source has moved! - Visit docker-wintercms at mpo-web-consulting
The docker images defined in this repository serve as a starting point for Winter CMS projects.
Based on official docker PHP images, images include dependencies required by Winter, Composer and install the latest release.
- Supported Tags
- Quick Start
- Working with Local Files
- Database Support
- Cron
- Command Line Tasks
- App Environment
Tags are combinations of PHP version, web server, and Winter CMS build. The latest tag is the most recent release of Winter CMS on the most recent PHP version and with Apache.
The following tags are examples:
| Winter CMS Build | PHP Version | Web Server | Tag |
|---|---|---|---|
| 1.2.4 | 8.2 | Apache | 8.2-apache-v1.2.4, latest |
| 1.2.3 | 8.0 | FPM | 8.0-fpm-v1.2.3 |
To run Winter CMS using Docker, start a container using the latest image, mapping your local port 80 to the container's port 80:
$ docker run -p 8080:80 --name winter ghcr.io/mpo-web-consulting/wintercms:latest
# `CTRL-C` to stop
$ docker rm winter # Destroys the container- Visit http://localhost:8080 using your browser.
- Login to the backend with the username
admin - The password for
adminis generated on first load and printed into the container logs. - Hit
CTRL-Cto stop the container. Running a container in the foreground will send log outputs to your terminal. - Run the container in the background by passing the
-doption:
There are some example templates in the kubernetes directory. Change the secrets and ingress files to support your environment requirements. Make sure to install cert-manager to generate ssl certificates for secure ingress.
# start winter using kubernetes templates
kubectl apply -f kubernetes/
# to update deployment
kubectl apply -f kubernetes/
# to remove from cluster
kubectl delete -f kubernetes/Note: The kubernetes templates were tested in a Microk8s kubernetes cluster with default (hostpath) storage class. Depending on your cluster this will need to be changed in the
storagetemplate files.
Using Docker volumes, you can mount local files inside a container.
The container uses the working directory /var/www/html for the web server document root. This is where the Winter CMS codebase resides in the container. You can replace files and folders, or introduce new ones with bind-mounted volumes:
# Developing a plugin
$ git clone git@github.com:wintercms/wn-user-plugin.git
$ cd wn-user-plugin
$ docker run -p 8080:80 --rm \
-v $(pwd):/var/www/html/plugins/winter/user \
ghcr.io/mpo-web-consulting/wintercms:latestSave yourself some keyboards strokes, utilize docker-compose by introducing a docker-compose.yml file to your project folder:
# docker-compose.yml
version: '2.2'
services:
web:
image: ghcr.io/mpo-web-consulting/wintercms
ports:
- 8080:80
volumes:
- $PWD:/var/www/html/plugins/winter/userWith the above example saved in working directory, run:
docker-compose up -d # start services defined in `docker-compose.yml` in the background
docker-compose down # stop and destroyOn build, an SQLite database is created and initialized for the Docker image. With that database, users have immediate access to the backend for testing and developing themes and plugins. However, changes made to the built-in database will be lost once the container is stopped and removed.
When projects require a persistent SQLite database, copy or create a new database to the host which can be used as a bind mount:
# Create and provision a new SQLite database:
$ touch storage/database.sqlite
$ docker run --rm \
-v $(pwd)/storage/database.sqlite:/var/www/html/storage/database.sqlite \
ghcr.io/mpo-web-consulting/wintercms php artisan winter:up
# Now run with the volume mounted to your host
$ docker run -p 8080:80 --name winter \
-v $(pwd)/storage/database.sqlite:/var/www/html/storage/database.sqlite \
ghcr.io/mpo-web-consulting/wintercmsAlternatively, you can host the database using another container:
#docker-compose.yml
version: '2.2'
services:
web:
image: ghcr.io/mpo-web-consulting/wintercms:latest
ports:
- 8080:80
environment:
- DB_TYPE=mysql
- DB_HOST=mariadb #DB_HOST should match the service name of the database container
- DB_DATABASE=wintercms
- DB_USERNAME=root
- DB_PASSWORD=root
mariadb:
image: mariadb:10.4
command: --default-authentication-plugin=mysql_native_password
ports:
- 3306:3306
environment:
- MYSQL_ROOT_PASSWORD=root
- MYSQL_DATABASE=wintercmsProvision a new database with winter:up:
docker-compose up -d
docker-compose exec web php artisan winter:up
You can start a cron process by setting the environment variable ENABLE_CRON to true:
docker run -p 8080:80 -e ENABLE_CRON=true ghcr.io/mpo-web-consulting/wintercms:latestSeparate the cron process into it's own container:
#docker-compose.yml
version: '2.2'
services:
web:
image: ghcr.io/mpo-web-consulting/wintercms:latest
init: true
restart: always
ports:
- 8080:80
environment:
- TZ=America/Denver
volumes:
- ./.env:/var/www/html/.env
- ./plugins:/var/www/html/plugins
- ./storage/app:/var/www/html/storage/app
- ./storage/logs:/var/www/html/storage/logs
- ./storage/database.sqlite:/var/www/html/storage/database.sqlite
- ./themes:/var/www/html/themes
cron:
image: ghcr.io/mpo-web-consulting/wintercms:latest
init: true
restart: always
command: [cron, -f]
environment:
- TZ=America/Denver
volumes_from:
- webSometimes encyption is useful for testing. Self signed certs can be added by extending the image in another dockerfile:
# Dockerfile for apache with self signed certificates
FROM ghcr.io/mpo-web-consulting/wintercms:develop-php8.0-apache
RUN apt-get update && \
apt-get install -y --no-install-recommends \
ssl-cert && \
rm -rf /var/lib/apt/lists/*
RUN a2enmod ssl; \
a2ensite default-ssl;
EXPOSE 443
CMD ["apache2-foreground"]
From a docker compose file build with:
version: '2.2'
services:
web:
build: <Dockerfile> # Dockerfile should match file defined in example above
ports:
- 8080:80
- 8443:443
environment:
- DB_TYPE=mysql
- DB_HOST=mariadb #DB_HOST should match the service name of the database container
- DB_DATABASE=wintercms
- DB_USERNAME=root
- DB_PASSWORD=root
volumes:
# ssl certs could also be volume mapped from elsewhere
# - .certs/cert.pem:/etc/ssl/certs/ssl-cert-snakeoil.pem:ro
# - .certs/key.key:/etc/ssl/private/ssl-cert-snakeoil.key:ro
mariadb:
image: mariadb:10.4
command: --default-authentication-plugin=mysql_native_password
environment:
- MYSQL_DATABASE=wintercms
- MYSQL_ROOT_PASSWORD=rootRun the container in the background and launch an interactive shell (bash) for the container:
docker run -p 8080:80 --name containername -d ghcr.io/mpo-web-consulting/wintercms:latest
docker exec -it containername bashCommands can also be run directly, without opening a shell:
# artisan
$ docker exec containername php artisan env
# composer
$ docker exec containername composer infoA few helper scripts have been added to the image:
# `winter` invokes `php artisan winter:"$@"`
$ docker exec containername winter up
# `artisan` invokes `php artisan "$@"`
$ docker exec containername artisan plugin:install winter.user
# `tinker` invokes `php artisan tinker`. Requires `-it` for an interactive shell
$ docker exec -it containername tinkerNote: There are other examples with different environment variables set up in the examples and test directories.
By default, APP_ENV is set to docker.
On image build, a default .env is created and config files for the docker app environment are copied to /var/www/html/config/docker. Environment variables can be used to override the included default settings via docker run or docker-compose.
Note: Winter CMS settings stored in a site's database override the config. Active theme, mail configuration, and other settings which are saved in the database will ultimately override configuration values.
Recommended settings for opcache and PHP are applied on image build.
Values set in docker-wn-php.ini can be overridden by passing one of the supported PHP environment variables defined below.
To customize the PHP configuration further, add or replace .ini files found in /usr/local/etc/php/conf.d/.
Environment variables can be passed to both docker-compose and Winter CMS.
Database credentials and other sensitive information should not be committed to the repository. Those required settings should be outlined in .env.example
Passing environment variables via Docker can be problematic in production. A
phpinfo()call may leak secrets by outputting environment variables. Consider mounting a.envvolume or copying it to the container directly.
The following variables trigger actions run by the entrypoint script at runtime.
| Variable | Default | Action |
|---|---|---|
| ENABLE_CRON | false | true starts a cron process within the container |
| FWD_REMOTE_IP | false | true enables remote IP forwarding from proxy (Apache) |
| INIT_WINTER | false | true runs winter up on container start |
| CMS_ADMIN_PASSWORD | Sets CMS admin password if INIT_WINTER true |
|
| COMPOSER_UPDATE | false | true runs composer update in the base laravel directory to update winter and plugins (with persistent storage this will only run once) |
| INIT_PLUGINS_VENDOR_FOLDERS | false | true runs composer install in plugins folders where no 'vendor' folder exists. force runs composer install regardless. Helpful when using git submodules for plugins. |
| PHP_DISPLAY_ERRORS | off | Override value for display_errors in docker-wn-php.ini |
| PHP_MEMORY_LIMIT | 128M | Override value for memory_limit in docker-wn-php.ini |
| PHP_POST_MAX_SIZE | 32M | Override value for post_max_size in docker-wn-php.ini |
| PHP_UPLOAD_MAX_FILESIZE | 32M | Override value for upload_max_filesize in docker-wn-php.ini |
| VERSION_INFO | false | true outputs container current commit, php version, and dependency info on start |
List of variables used in config/docker
| Variable | Default |
|---|---|
| APP_DEBUG | false |
| APP_KEY | 0123456789ABCDEFGHIJKLMNOPQRSTUV |
| APP_URL | http://localhost |
| APP_LOCALE | en |
| CACHE_STORE | file |
| CMS_ACTIVE_THEME | demo |
| CMS_BACKEND_FORCE_SECURE | false |
| CMS_BACKEND_SKIN | Backend\Skins\Standard |
| CMS_BACKEND_URI | backend |
| CMS_DATABASE_TEMPLATES | false |
| CMS_DISABLE_CORE_UPDATES | true |
| CMS_EDGE_UPDATES | false (true in edge images) |
| CMS_LINK_POLICY | detect |
| DB_DATABASE | - |
| DB_HOST | mysql* |
| DB_PASSWORD | - |
| DB_PORT | - |
| DB_REDIS_HOST | redis* |
| DB_REDIS_PASSWORD | null |
| DB_REDIS_PORT | 6379 |
| DB_SQLITE_PATH | storage/database.sqlite |
| DB_TYPE | sqlite |
| DB_USERNAME | - |
| MAIL_DRIVER | log |
| MAIL_FROM_ADDRESS | no-reply@domain.tld |
| MAIL_FROM_NAME | Winter CMS |
| MAIL_SMTP_ENCRYPTION | tls |
| MAIL_SMTP_HOST | - |
| MAIL_SMTP_PASSWORD | - |
| MAIL_SMTP_PORT | 587 |
| MAIL_SMTP_USERNAME | - |
| QUEUE_DRIVER | sync |
| SESSION_DRIVER | file |
| FILESYSTEM_S3_KEY | - |
| FILESYSTEM_S3_SECRET | - |
| FILESYSTEM_S3_REGION | - |
| FILESYSTEM_S3_BUCKET | - |
| FILESYSTEM_S3_URL | - |
| FILESYSTEM_S3_ENDPOINT | - |
| CMS_MEDIA_DISK | local |
| CMS_MEDIA_FOLDER | media |
| CMS_MEDIA_PATH | /storage/app/media |
| TZ** | UTC |
* When using a container to serve a database, set the host value to the service name defined in your docker-compose.yml
** Timezone applies to both container and Winter CMS config
This Package is licensed under MIT - Copyright (c) 2016 Aspen Digital - aspendigital.com
This package is Treeware. If you use it in production, then we ask that you buy the world a tree to thank us for our work. By contributing to the Treeware forest you’ll be creating employment for local families and restoring wildlife habitats.
- Add plugin list as Environment variable to install plugins on container start
- Fix permission handling for local files
- Kubernetes templates
- Helm Chart