fixes for docker compose
This commit is contained in:
1
.gitignore
vendored
1
.gitignore
vendored
@@ -1 +1,2 @@
|
||||
*~
|
||||
env
|
||||
|
||||
24
docker-compose.yml
Normal file
24
docker-compose.yml
Normal file
@@ -0,0 +1,24 @@
|
||||
services:
|
||||
brewblogger:
|
||||
build: .
|
||||
volumes:
|
||||
- brewblogger-html:/var/www/html
|
||||
env_file: env
|
||||
container_name: brewblogger
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- www
|
||||
- sql
|
||||
|
||||
networks:
|
||||
www:
|
||||
name: www
|
||||
external: true
|
||||
sql:
|
||||
name: sql
|
||||
external: true
|
||||
|
||||
volumes:
|
||||
brewblogger-html:
|
||||
name: brewblogger-html
|
||||
external: true
|
||||
4
env.example
Normal file
4
env.example
Normal file
@@ -0,0 +1,4 @@
|
||||
DB_SCHEMA=brewblogger
|
||||
DB_PASSWD=super-secret-password-goes-here
|
||||
DB_USER=brewblogger
|
||||
DB_HOST=mariadb.sql
|
||||
48
nginx-conf
Normal file
48
nginx-conf
Normal file
@@ -0,0 +1,48 @@
|
||||
server
|
||||
{
|
||||
listen 80;
|
||||
listen [::]:80;
|
||||
server_name www.beerandloafing.org;
|
||||
return 301 https://$server_name$request_uri;
|
||||
}
|
||||
|
||||
server
|
||||
{
|
||||
listen 443 ssl;
|
||||
listen [::]:443 ssl;
|
||||
server_name www.beerandloafing.org;
|
||||
include /etc/nginx/conf.d/ssl.inc;
|
||||
root /var/www/brewblogger;
|
||||
|
||||
index index.php;
|
||||
|
||||
# add_header X-Frame-Options "SAMEORIGIN" always;
|
||||
# add_header X-XSS-Protection "1; mode=block" always;
|
||||
# add_header X-Content-Type-Options "nosniff" always;
|
||||
# add_header Referrer-Policy "no-referrer-when-downgrade" always;
|
||||
# add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
|
||||
# add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
|
||||
# enable strict transport security only if you understand the implications
|
||||
|
||||
location /
|
||||
{
|
||||
try_files $uri $uri/ /index.php?$args;
|
||||
}
|
||||
|
||||
location ~ [^/]\.php(/|$)
|
||||
{
|
||||
fastcgi_split_path_info ^(.+?\.php)(/.*)$;
|
||||
if (!-f $document_root$fastcgi_script_name)
|
||||
{
|
||||
return 404;
|
||||
}
|
||||
|
||||
include fastcgi_params;
|
||||
fastcgi_param SCRIPT_FILENAME /var/www/html$fastcgi_script_name;
|
||||
fastcgi_param PATH_INFO $fastcgi_path_info;
|
||||
fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;
|
||||
|
||||
fastcgi_pass brewblogger.www:9000;
|
||||
fastcgi_index index.php;
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user