Merge branch 'develop'

Initial release v0.1.0-RC1.

Author: rtucek

.dockerignore

@@ -0,0 +1,5 @@
+.editorconfig
+CHANGELOG.md
+LICENSE
+Makefile
+README.md

.editorconfig

@@ -0,0 +1,19 @@
+root = true
+
+[*]
+charset = utf-8
+end_of_line = lf
+insert_final_newline = true
+indent_style = space
+indent_size = 4
+trim_trailing_whitespace = true
+
+[*.md]
+trim_trailing_whitespace = false
+
+[*.yml]
+indent_style = space
+indent_size = 2
+
+[Makefile]
+indent_style = tab

CHANGELOG.md

@@ -0,0 +1,7 @@
+TAG v0.1.0-RC1 (2016-12-01)
+
+Initial release
+- Compile Nginx v1.11.6 from source
+- Compile PHP with PHP-FPM v7.0.13 from source.
+- Install most recent version of PHP composer (as of 2016-12-01 v1.2.2).
+- Install Honcho for process monitoring.

Dockerfile

@@ -0,0 +1,229 @@
+FROM debian:jessie
+
+ENV \
+    NGINX_VERSION=1.11.6 \
+    PHP_VERSION=7.0.13
+
+COPY \
+    docker-entrypoint \
+    nginx.conf \
+    Procfile \
+    /tmp/build/scripts/
+
+RUN \
+    # Install tools, required for building
+    apt-get update && \
+    apt-get install -y --no-install-recommends \
+        # In general...
+        build-essential \
+        curl \
+
+        # For Nginx
+        libpcre3-dev \
+        libssl-dev \
+
+        # For PHP
+        bison \
+        libbz2-dev \
+        libcurl4-openssl-dev \
+        libpng12-dev \
+        libpq-dev \
+        libreadline-dev \
+        libxml2-dev \
+        libxslt1-dev \
+        pkg-config \
+        re2c \
+
+        # For PHP composer
+        git \
+
+        # For Honcho
+        python \
+        python-pip \
+        python-pkg-resources && \
+
+    pip install honcho && \
+
+    # Prepare for building
+    mkdir -p /tmp/build && \
+
+    mkdir -p /tmp/build/nginx/ && \
+    cd /tmp/build/nginx && \
+
+    # Download Nginx
+    curl -SLO https://nginx.org/download/nginx-${NGINX_VERSION}.tar.gz && \
+
+    cd /tmp/build/nginx && \
+
+    # GPG keys from the main maintainers of Nginx
+    # Source https://nginx.org/en/pgp_keys.html
+    curl -SLO https://nginx.org/keys/nginx_signing.key && \
+    gpg --import nginx_signing.key && \
+    curl -SLO https://nginx.org/keys/aalexeev.key && \
+    gpg --import aalexeev.key && \
+    curl -SLO https://nginx.org/keys/is.key && \
+    gpg --import is.key && \
+    curl -SLO https://nginx.org/keys/mdounin.key && \
+    gpg --import mdounin.key && \
+    curl -SLO https://nginx.org/keys/maxim.key && \
+    gpg --import maxim.key && \
+    curl -SLO https://nginx.org/keys/sb.key && \
+    gpg --import sb.key && \
+
+    # Verify signature
+    curl -SLO https://nginx.org/download/nginx-${NGINX_VERSION}.tar.gz.asc && \
+    gpg nginx-${NGINX_VERSION}.tar.gz.asc && \
+
+    cd /tmp/build/nginx && \
+    # Unpack tarball
+    tar -xvzf nginx-${NGINX_VERSION}.tar.gz && \
+
+    cd /tmp/build/nginx/nginx-${NGINX_VERSION} && \
+    # Run configuration
+    ./configure \
+        --group=www-data \
+        --user=www-data \
+        --with-file-aio \
+        --with-http_gunzip_module \
+        --with-http_gzip_static_module \
+        --with-http_realip_module \
+        --with-http_ssl_module \
+        --with-http_v2_module \
+        --with-pcre \
+        --with-threads && \
+
+    cd /tmp/build/nginx/nginx-${NGINX_VERSION} && \
+    # Start compiling and installing
+    make -j$(nproc) build && \
+    make modules && \
+    make install && \
+
+    # Nginx configuration
+    mv /tmp/build/scripts/nginx.conf /usr/local/nginx/conf/ && \
+
+    mkdir -p /tmp/build/php/ && \
+    cd /tmp/build/php && \
+
+    # Download PHP
+    curl -SLo php-${PHP_VERSION}.tar.gz http://ch1.php.net/get/php-${PHP_VERSION}.tar.gz/from/this/mirror && \
+
+    cd /tmp/build/php/ && \
+
+    # GPG keys from the release managers of PHP 7.0
+    # Source https://secure.php.net/gpg-keys.php#gpg-7.0
+    gpg --keyserver pgp.mit.edu/ --recv "1A4E 8B72 77C4 2E53 DBA9  C7B9 BCAA 30EA 9C0D 5763" && \
+    gpg --keyserver pgp.mit.edu/ --recv "6E4F 6AB3 21FD C07F 2C33  2E3A C2BF 0BC4 33CF C8B3" && \
+
+    # Verify signature
+    curl -SLo php-${PHP_VERSION}.tar.gz.asc http://ch1.php.net/get/php-${PHP_VERSION}.tar.gz.asc/from/this/mirror && \
+    gpg php-${PHP_VERSION}.tar.gz.asc && \
+
+    cd /tmp/build/php && \
+    # Unpack tarball
+    tar -xvzf php-${PHP_VERSION}.tar.gz && \
+
+    cd /tmp/build/php/php-${PHP_VERSION} && \
+    # Run configuration
+    ./configure \
+        --enable-fpm \
+        --enable-mbregex \
+        --enable-mbstring \
+        --enable-mbstring=all \
+        --enable-opcache \
+        --enable-sockets \
+        --enable-zip \
+        --enable-zip \
+        --with-bz2 \
+        --with-curl \
+        --with-fpm-group=www-data \
+        --with-fpm-user=www-data \
+        --with-gd \
+        --with-gettext \
+        --with-openssl \
+        --with-pcre-regex \
+        --with-pdo-mysql \
+        --with-pdo-pgsql \
+        --with-readline \
+        --with-xsl \
+        --with-zlib && \
+
+    cd /tmp/build/php/php-${PHP_VERSION} && \
+    # Compile, test and install
+    make -j$(nproc) build && \
+    make install && \
+
+    # Fix permissions
+    chown -R www-data:www-data /usr/local/nginx/html && \
+
+    # Symlink Nginx binary
+    ln -s /usr/local/nginx/sbin/nginx /usr/local/sbin/ && \
+
+    # Copy PHP-FPM configuration files
+    cp /tmp/build/php/php-${PHP_VERSION}/sapi/fpm/php-fpm.conf /usr/local/etc/php-fpm.conf && \
+    cp /tmp/build/php/php-${PHP_VERSION}/sapi/fpm/www.conf /usr/local/etc/www.conf && \
+    cp /tmp/build/php/php-${PHP_VERSION}/php.ini-development /usr/local/php/php.ini && \
+
+    # Patch PHP-FPM for proper loading www.conf
+    sed -Ei \
+        -e 's/^;?\s*daemonize\s*=\s*yes/daemonize = no/' \
+        -e 's/^;?\s*include=NONE\/etc\/php-fpm.d\/\*.conf/include=\/usr\/local\/etc\/www.conf/' \
+        /usr/local/etc/php-fpm.conf && \
+
+    # Patch www.conf config connection establishment
+    sed -Ei \
+        -e 's/^;?\s*listen\s*=.*/listen = \/var\/run\/php-fpm.sock/' \
+        -e 's/^;?\s*?\s*listen.owner\s*=.*/listen.owner = www-data/' \
+        -e 's/^;?\s*?\s*listen.group\s*=.*/listen.group = www-data/' \
+        -e 's/^;?\s*?\s*listen.mode\s*=.*/listen.mode = 0660/' \
+        /usr/local/etc/www.conf && \
+
+    # Patch PHP config files on the fly
+    sed -Ei \
+        -e 's/^;?\s*expose_php\s*=.*/expose_php = Off/' \
+        -e 's/^;?\s*cgi.fix_pathinfo\s*=.*/cgi.fix_pathinfo=0/' \
+        -e 's/^;?\s*error_log\s*=.*/error_log = \/usr\/local\/nginx\/logs\/error-php.log/' \
+        -e 's/^;?\s*date.timezone\s*=.*/date.timezone = \"UTC\"/' \
+        -e 's/^;?\s*opcache.enable\s*=.*/opcache.enable = 1/' \
+        -e 's/^;?\s*opcache.enable_cli\s*=.*/opcache.enable_cli=1/' \
+        -e 's/^;?\s*opcache.memory_consumption\s*=.*/opcache.memory_consumption = 256/' \
+        -e 's/^;?\s*opcache.max_accelerated_files\s=.*/opcache.max_accelerated_files = 10000/' \
+        /usr/local/php/php.ini && \
+
+    # Install PHP composer
+    php -r "copy('https://getcomposer.org/installer', 'composer-setup.php');" && \
+    php -r "if (hash_file('SHA384', 'composer-setup.php') === 'aa96f26c2b67226a324c27919f1eb05f21c248b987e6195cad9690d5c1ff713d53020a02ac8c217dbf90a7eacc9d141d') { echo 'Installer verified'; } else { echo 'Installer corrupt'; unlink('composer-setup.php'); } echo PHP_EOL;" && \
+    php composer-setup.php --install-dir=/usr/local/bin --filename=composer && \
+    php -r "unlink('composer-setup.php');" && \
+
+    # Configure Honcho
+    mv /tmp/build/scripts/Procfile / && \
+
+    # Add entrypoint for docker
+    mv /tmp/build/scripts/docker-entrypoint / && \
+    chmod +x /docker-entrypoint && \
+
+    # Final cleanup
+    apt-get remove -y \
+        bison \
+        build-essential \
+        curl \
+        pkg-config \
+        python-pip \
+        re2c && \
+
+    apt-get autoremove -y && \
+
+    rm -rf /var/lib/apt/lists/* && \
+    rm -rf /tmp/build
+
+# Declare entrypoint
+ENTRYPOINT ["/docker-entrypoint"]
+
+# Define default command
+CMD ["server"]
+
+# Define Workdir
+WORKDIR "/usr/local/nginx/html"
+
+# Exposing ports
+EXPOSE 80/tcp 443/tcp

Makefile

@@ -0,0 +1,13 @@
+REPO = janus1990
+IMAGE = docker-nginx-php
+VERSION = 0.1.0
+EXTRAVERSION = -RC1
+
+IMAGE_FQN = $(REPO)/$(IMAGE):v$(VERSION)$(EXTRAVERSION)
+
+.PHONY: build
+
+default:	build
+
+build:
+	docker build -t $(IMAGE_FQN) .

Procfile

@@ -0,0 +1,2 @@
+nginx: /usr/local/sbin/nginx
+phpfpm: /usr/local/sbin/php-fpm

README.md

@@ -0,0 +1,30 @@
+## nginx-php Dockerfile
+
+This repository contains source code of [janus1990/docker-nginx-php/](https://hub.docker.com/r/janus1990/docker-nginx-php/).
+
+## Content
+
+Nginx and PHP are compiled in a specific version. Consult the [CHANGELOG.md](./CHANGELOG.md) file
+for further version details. [PHP Composer](https://getcomposer.org/) is already installed and ready
+for use.
+
+The Nginx and PHP-FPM master processes are controlled by [Honcho](https://github.com/nickstenning/honcho).
+Honcho was chosen over Supervisor, because honcho will exit and kill the container if either Nginx
+or PHP's master process dye for any reason. If you want have to have the container restarted
+automatically, you may want to use
+[Docker's restart](https://docs.docker.com/engine/reference/run/#restart-policies---restart) policy.
+
+## Usage
+
+```bash
+docker run -v /path/to/php/source/:/usr/local/nginx/html/ janus1990/docker-nginx-php
+
+# With restart policy
+docker run --restart=always -v /path/to/php/source/:/usr/local/nginx/html/ janus1990/docker-nginx-php
+```
+
+## Todo
+
+- Add [HEALTHCHECK](https://docs.docker.com/engine/reference/builder/#/healthcheck)
+- Extend [README.md](./README.md) with configuration (Procfile, nginx.conf...).
+- Add more support for composer in docker entrypoint.

docker-entrypoint

@@ -0,0 +1,23 @@
+#!/bin/bash
+
+# Fix permission ownership
+chown -R www-data:www-data /usr/local/nginx/html/
+
+# Create PHP error log if not present
+# touch /usr/local/nginx/logs/error-php.log
+# chown www-data:www-data /usr/local/nginx/logs/error-php.log
+
+# Update PHP composer
+# Update PHP composer to most most recent version (as of now the current version is v1.2.2).
+# By default, we will try to update to the most recent version of PHP composer.
+# However, this blocks starting the initial process IF you have a bad or no Internet connection at
+# all. To avoid this, you can start the container with SKIP_COMPOSER_UPDATE env set to 1.
+if [[ $SKIP_COMPOSER_UPDATE != "1" ]]; then
+    composer selfupdate -vvvn
+fi
+
+if [[ $1 == "server" ]]; then
+    exec honcho -d / start
+fi
+
+exec "$@"