Run all as www-data
This commit is contained in:
parent
eb70199c91
commit
7c5c83739d
|
|
@ -19,9 +19,7 @@ RUN set -ex \
|
|||
&& apk update \
|
||||
&& echo "Setting up PHP extensions" \
|
||||
&& apk add --no-cache \
|
||||
bash \
|
||||
curl \
|
||||
su-exec \
|
||||
nginx \
|
||||
tar \
|
||||
php7 \
|
||||
|
|
@ -61,6 +59,7 @@ RUN set -ex \
|
|||
&& cd /ppm \
|
||||
&& chmod -R 777 run/ \
|
||||
&& composer require php-pm/php-pm:${PPM_VERSION} php-pm/httpkernel-adapter:${PPM_HTTP_VERSION} \
|
||||
&& chown www-data:www-data -R . \
|
||||
&& echo "Get BookStack:" \
|
||||
&& mkdir -p ${BOOKSTACK_HOME} \
|
||||
&& cd ${BOOKSTACK_HOME} \
|
||||
|
|
@ -72,12 +71,14 @@ RUN set -ex \
|
|||
&& composer install \
|
||||
&& echo "Changing ownership:" \
|
||||
&& chown www-data:www-data -R . \
|
||||
&& echo "Ensure Nginx got access to tmp folder:" \
|
||||
&& chown www-data:www-data -R /var/lib/nginx/tmp
|
||||
&& echo "Ensure www-data got access to Nginx folders:" \
|
||||
&& chown www-data:www-data -R /var/lib/nginx /var/log/nginx
|
||||
|
||||
USER www-data:www-data
|
||||
|
||||
WORKDIR $BOOKSTACK_HOME
|
||||
|
||||
EXPOSE 80
|
||||
EXPOSE 8080/tcp
|
||||
|
||||
VOLUME ["$BOOKSTACK_HOME/public/uploads", "$BOOKSTACK_HOME/public/storage"]
|
||||
|
||||
|
|
|
|||
|
|
@ -1,6 +1,6 @@
|
|||
server {
|
||||
listen 80;
|
||||
listen [::]:80;
|
||||
listen 8080;
|
||||
listen [::]:8080;
|
||||
|
||||
server_name _;
|
||||
root /app/public/;
|
||||
|
|
|
|||
|
|
@ -1,11 +1,13 @@
|
|||
#!/bin/sh
|
||||
set -ex
|
||||
|
||||
if [ ! -f /app/.env ]; then
|
||||
php artisan key:generate --no-interaction --force
|
||||
fi
|
||||
php artisan migrate --no-interaction --force
|
||||
|
||||
echo "Setting folder permissions for uploads"
|
||||
chown -R www-data:www-data public/uploads storage/uploads /ppm
|
||||
chown -R www-data:www-data public/uploads storage/uploads
|
||||
|
||||
php artisan cache:clear
|
||||
php artisan view:clear
|
||||
|
|
@ -17,4 +19,4 @@ echo "Getting PPM ready:"
|
|||
trapIt () { "$@"& pid="$!"; trap 'kill -INT $pid' INT TERM; while kill -0 $pid > /dev/null 2>&1; do wait $pid; ec="$?"; done; exit $ec;};
|
||||
|
||||
echo "Starting PPM:"
|
||||
trapIt su-exec www-data:www-data /ppm/vendor/bin/ppm start --ansi --no-interaction --config=ppm.json
|
||||
trapIt /ppm/vendor/bin/ppm start --ansi --no-interaction --config=ppm.json
|
||||
|
|
|
|||
|
|
@ -1,6 +1,5 @@
|
|||
user www-data;
|
||||
worker_processes auto;
|
||||
pid /run/nginx.pid;
|
||||
pid /tmp/nginx.pid;
|
||||
daemon on;
|
||||
|
||||
events {
|
||||
|
|
|
|||
|
|
@ -25,7 +25,7 @@ services:
|
|||
- backend
|
||||
|
||||
app:
|
||||
image: jjtc/bookstack-ppm:0.26.3-r3
|
||||
image: jjtc/bookstack-ppm:0.26.3-r4
|
||||
build: ./app/
|
||||
restart: unless-stopped
|
||||
depends_on:
|
||||
|
|
@ -40,7 +40,7 @@ services:
|
|||
- uploads:/app/public/uploads:rw
|
||||
- storage:/app/public/storage:rw
|
||||
expose:
|
||||
- "80/tcp"
|
||||
- "8080/tcp"
|
||||
networks:
|
||||
- web
|
||||
- backend
|
||||
|
|
@ -51,7 +51,7 @@ services:
|
|||
- "traefik.docker.network=web"
|
||||
- "traefik.frontend.rule=Host:${APP_URL_BASE}"
|
||||
- "traefik.enable=true"
|
||||
- "traefik.port=80"
|
||||
- "traefik.port=8080"
|
||||
- "traefik.default.protocol=http"
|
||||
|
||||
# av:
|
||||
|
|
|
|||
Loading…
Reference in New Issue