docker/php
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Change /sbin/init to /sbin/init-docker - start nginx and php-fpm non-root

Browse Source
This commit is contained in:
Deon George 2024-12-30 23:27:46 +11:00
parent d62cc85c97
commit 1db72c181a
3 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
docker/Dockerfile
View File

@ -51,11 +51,19 @@ COPY msmtprc /etc/
COPY docker/www.conf /usr/local/etc/php-fpm.d/
COPY docker/nginx-app.conf /etc/nginx/http.d/default.conf
COPY docker/init /sbin/
RUN chmod 550 /sbin/init && chown 0:0 /sbin/init
COPY docker/init-docker /sbin/init-docker
# Startup as non-root configuration
RUN chmod 550 /sbin/init-docker && chown www-data:0 /sbin/init-docker
RUN addgroup nginx www-data && addgroup www-data nginx \
&& chgrp www-data /run/nginx /var/log/nginx /var/lib/nginx/tmp \
&& chmod g+w /run/nginx /var/log/nginx \
&& chmod g+rwx /var/lib/nginx/tmp
RUN sed -i -e 's/user nginx;/#user nginx;/' /etc/nginx/nginx.conf
USER www-data
VOLUME [ "/var/cache/composer" ]
WORKDIR /var/www/html
EXPOSE 80
ENTRYPOINT [ "/sbin/init" ]
ENTRYPOINT [ "/sbin/init-docker" ]
CMD [ "php-fpm" ]

0
docker/init → docker/init-docker
View File

4
docker/www.conf
View File

@ -1,12 +1,12 @@
[www]
group = www-data
;group = www-data
listen = 127.0.0.1:9000
pm = dynamic
pm.max_children = 25
pm.max_spare_servers = 10
pm.min_spare_servers = 5
pm.start_servers = 10
user = www-data
;user = www-data
prefix = /var/www/html
php_admin_value[memory_limit] = 512M
php_admin_value[max_execution_time] = 300