First build for nginx nodeJS

Ric Harvey · Ric Harvey · commit 2e26c03a44ef · 2015-01-29T13:33:36.000Z
diff --git a/Dockerfile b/Dockerfile
@@ -0,0 +1,62 @@
+FROM ubuntu:14.04
+MAINTAINER Ric Harvey <ric@ngineered.co.uk>
+
+# Surpress Upstart errors/warning
+RUN dpkg-divert --local --rename --add /sbin/initctl
+RUN ln -sf /bin/true /sbin/initctl
+
+# Let the conatiner know that there is no tty
+ENV DEBIAN_FRONTEND noninteractive
+
+# Add sources for latest nginx
+RUN apt-get install -y wget
+RUN wget -q http://nginx.org/keys/nginx_signing.key -O- | sudo apt-key add -
+RUN echo deb http://nginx.org/packages/mainline/ubuntu/ trusty nginx >> /etc/apt/sources.list
+RUN echo deb-src http://nginx.org/packages/mainline/ubuntu/ trusty nginx >> /etc/apt/sources.list
+
+# Update System
+RUN apt-get update
+RUN apt-get -y upgrade
+
+# Basic Requirements
+RUN apt-get -y install nginx pwgen python-setuptools curl git unzip vim
+
+# Install NodeJS
+RUN curl -sL https://deb.nodesource.com/setup | sudo bash -
+RUN sudo apt-get install -y nodejs
+
+# tweak nginx config
+RUN sed -i -e"s/worker_processes  1/worker_processes 5/" /etc/nginx/nginx.conf # gets over written by start.sh to match cpu's on container
+RUN sed -i -e"s/keepalive_timeout\s*65/keepalive_timeout 2/" /etc/nginx/nginx.conf
+RUN sed -i -e"s/keepalive_timeout 2/keepalive_timeout 2;\n\tclient_max_body_size 100m/" /etc/nginx/nginx.conf
+RUN sed -i "s/.*conf\.d\/\*\.conf;.*/&\n    include \/etc\/nginx\/sites-enabled\/\*;/" /etc/nginx/nginx.conf
+RUN echo "daemon off;" >> /etc/nginx/nginx.conf
+
+# nginx site conf
+RUN rm -Rf /etc/nginx/conf.d/*
+RUN mkdir -p /etc/nginx/sites-available/
+RUN mkdir -p /etc/nginx/sites-enabled/
+RUN mkdir -p /etc/nginx/ssl/
+ADD ./nginx-site.conf /etc/nginx/sites-available/default.conf
+RUN ln -s /etc/nginx/sites-available/default.conf /etc/nginx/sites-enabled/default.conf
+
+# Add Default Node Server
+ADD ./server.js /usr/share/nginx/html/server.js
+ADD ./package.json /usr/share/nginx/html/package.json
+RUN mkdir /usr/share/nginx/html/public
+Add ./ngineered.png /usr/share/nginx/html/public/ngineered.png
+
+# Supervisor Config
+RUN /usr/bin/easy_install supervisor
+RUN /usr/bin/easy_install supervisor-stdout
+ADD ./supervisord.conf /etc/supervisord.conf
+
+# Start Supervisord
+ADD ./start.sh /start.sh
+RUN chmod 755 /start.sh
+
+# Expose Ports
+EXPOSE 443
+EXPOSE 80
+
+CMD ["/bin/bash", "/start.sh"]
diff --git a/README.md b/README.md
@@ -0,0 +1,140 @@
+## Introduction
+This is a Dockerfile to build a container image for nginx and php-fpm, with the ability to pull website code from git. The container can also use environment variables to configure your web application using the templating detailed in the special features section.
+
+### Git reposiory
+The source files for this project can be found here: [https://github.com/ngineered/nginx-php-fpm](https://github.com/ngineered/nginx-php-fpm)
+
+If you have any improvements please submit a pull request.
+
+### Docker hub repository
+The Docker hub build can be found here: [https://registry.hub.docker.com/u/richarvey/nginx-php-fpm/](https://registry.hub.docker.com/u/richarvey/nginx-php-fpm/)
+
+## Nginx Versions
+- Mainline Version: **1.7.9**
+- Stable Version: **1.6.2**
+- *Latest = Mainline Version*
+
+## Installation
+Pull the image from the docker index rather than downloading the git repo. This prevents you having to build the image on every docker host.
+
+```
+docker pull richarvey/nginx-pfp-fpm:latest
+```
+To pull the Stable Version:
+
+```
+docker pull richarvey/nginx-pfp-fpm:stable
+```
+## Running
+To simply run the container:
+
+```
+sudo docker run --name nginx -p 8080:80 -d richarvey/nginx-php-fpm
+```
+You can then browse to http://<docker_host>:8080 to view the default install files.
+### Volumes
+If you want to link to your web site directory on the docker host to the container run:
+
+```
+sudo docker run --name nginx -p 8080:80 -v /your_code_directory:/usr/share/nginx/html -d richarvey/nginx-php-fpm
+```
+### Pulling code from git
+One of the nice features of this container is its ability to pull code from a git repository with a couple of environmental variables passed at run time.
+
+**Note:** You need to have your SSH key that you use with git to enable the deployment. I recommend using a special deploy key per project to minimise the risk.
+
+To run the container and pull code simply specify the GIT_REPO URL including *git@* and then make sure you have a folder on the docker host with your id_rsa key stored in it:
+
+```
+sudo docker run -e 'GIT_REPO=git@git.ngd.io:ngineered/ngineered-website.git'  -v /opt/ngddeploy/:/root/.ssh -p 8080:80 -d richarvey/nginx-php-fpm
+```
+
+To pull a repository and specify a branch add the GIT_BRANCH environment variable:
+
+```
+sudo docker run -e 'GIT_REPO=git@git.ngd.io:ngineered/ngineered-website.git' -e 'GIT_BRANCH=stage' -v /opt/ngddeploy/:/root/.ssh -p 8080:80 -d richarvey/nginx-php-fpm
+```
+### Linking
+Linking to containers also exposes the linked container environment variables which is useful for templating and configuring web apps.
+
+Run MySQL container with some extra details:
+
+```
+sudo docker run --name some-mysql -e MYSQL_ROOT_PASSWORD=yayMySQL -e MYSQL_DATABASE=wordpress -e MYSQL_USER=wordpress_user -e MYSQL_PASSWORD=wordpress_password -d mysql
+```
+
+This exposes the following environment variables to the container when linked:
+
+```
+MYSQL_ENV_MYSQL_DATABASE=wordpress
+MYSQL_ENV_MYSQL_ROOT_PASSWORD=yayMySQL
+MYSQL_PORT_3306_TCP_PORT=3306
+MYSQL_PORT_3306_TCP=tcp://172.17.0.236:3306
+MYSQL_ENV_MYSQL_USER=wordpress_user
+MYSQL_ENV_MYSQL_PASSWORD=wordpress_password
+MYSQL_ENV_MYSQL_VERSION=5.6.22
+MYSQL_NAME=/sick_mccarthy/mysql
+MYSQL_PORT_3306_TCP_PROTO=tcp
+MYSQL_PORT_3306_TCP_ADDR=172.17.0.236
+MYSQL_ENV_MYSQL_MAJOR=5.6
+MYSQL_PORT=tcp://172.17.0.236:3306
+
+```
+
+To link the container launch like this:
+
+```
+sudo docker run -e 'GIT_REPO=git@git.ngd.io:ngineered/ngineered-website.git' -v /opt/ngddeploy/:/root/.ssh -p 8080:80 --link some-mysql:mysql -d richarvey/nginx-php-fpm
+```
+### Enabling SSL or Special Nginx Configs
+As with all docker containers its possible to link resources from the host OS to the guest. This makes it really easy to link in custom nginx default config files or extra virtual hosts and SSL enabled sites. For SSL sites first create a directory somewhere such as */opt/deployname/ssl/*. In this directory drop you SSL cert and Key in. Next create a directory for your custom hosts such as  */opt/deployname/sites-enabled*. In here load your custom default.conf file which references your SSL cert and keys at the location, for example:  */etc/nginx/ssl/xxxx.key* 
+
+Then start your container and connect these volumes like so:
+
+```
+sudo docker run -e 'GIT_REPO=git@git.ngd.io:ngineered/ngineered-website.git' -v /opt/ngddeploy/:/root/.ssh -v /opt/deployname/ssl:/etc/nginx/ssl -v /opt/deplyname/sites-enabled:/etc/nginx/sites-enabled -p 8080:80 --link some-mysql:mysql -d richarvey/nginx-php-fpm
+```
+
+## Special Features
+
+### Templating
+This container will automatically configure your web application if you template your code. For example if you are linking to MySQL like above, and you have a config.php file where you need to set the MySQL details include $$_MYSQL_ENV_MYSQL_DATABASE_$$ style template tags. 
+
+Example:
+
+```
+<?php
+database_name = $$_MYSQL_ENV_MYSQL_DATABASE_$$;
+database_host = $$_MYSQL_PORT_3306_TCP_ADDR_$$;
+...
+?>
+```
+
+### Using environment variables
+If you want to link to an external MySQL DB and not using linking you can pass variables directly to the container that will be automatically configured by the container.
+
+Example:
+
+```
+sudo docker run -e 'GIT_REPO=git@git.ngd.io:ngineered/ngineered-website.git' -e 'GIT_BRANCH=stage' -e 'MYSQL_HOST=host.x.y.z' -e 'MYSQL_USER=username' -e 'MYSQL_PASS=password' -v /opt/ngddeploy/:/root/.ssh -p 8080:80 -d richarvey/nginx-php-fpm
+```
+
+This will expose the following variables that can be used to template your code.
+
+```
+MYSQL_HOST=host.x.y.z
+MYSQL_USER=username
+MYSQL_PASS=password
+```
+To use these variables in a template you'd do the following in your file:
+
+```
+<?php
+database_host = $$_MYSQL_HOST_$$;
+database_user = $$_MYSQL_USER_$$;
+database_pass = $$_MYSQL_PASS_$$
+...
+?>
+```
+### Template anything
+Yes ***ANYTHING***, any variable exposed by a linked container or the **-e** flag lets you template your config files. This means you can add redis, mariaDB, memcache or anything you want to your application very easily.
diff --git a/nginx-site.conf b/nginx-site.conf
@@ -0,0 +1,47 @@
+server {
+	listen   80; ## listen for ipv4; this line is default and implied
+	listen   [::]:80 default ipv6only=on; ## listen for ipv6
+
+	# Make site accessible from http://localhost/
+	server_name localhost;
+	
+	# Disable sendfile as per https://docs.vagrantup.com/v2/synced-folders/virtualbox.html
+	sendfile off;
+
+  	location / {
+    	  proxy_pass http://localhost:3000;
+	  proxy_http_version 1.1;
+      	  proxy_set_header Upgrade $http_upgrade;
+    	  proxy_set_header Connection 'upgrade';
+    	  proxy_set_header Host $host;
+    	  proxy_cache_bypass $http_upgrade;
+  	}
+ 
+  	location /public {
+    	  root /usr/share/nginx/html/public;
+  	}
+
+	#error_page 404 /404.html;
+
+	# redirect server error pages to the static page /50x.html
+	#
+	error_page 500 502 503 504 /50x.html;
+	location = /50x.html {
+		root /usr/share/nginx/html;
+	}
+
+        location ~* \.(jpg|jpeg|gif|png|css|js|ico|xml)$ {
+                access_log        off;
+                log_not_found     off;
+                expires           5d;
+        }
+
+	# deny access to . files, for security
+	#
+	location ~ /\. {
+    		access_log off;
+    		log_not_found off; 
+    		deny all;
+	}
+
+}
diff --git a/package.json b/package.json
@@ -0,0 +1,17 @@
+{
+  "name": "node-server-example",
+  "version": "0.0.1",
+  "description": "Hello World Example served by express",
+  "main": "server.js",
+  "dependencies": {
+    "express": "*"
+  },
+  "devDependencies": {},
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "start": "node server.js"
+  },
+  "repository": "",
+  "author": "Richard Harvey",
+  "license": "AGPL"
+}
diff --git a/server.js b/server.js
@@ -0,0 +1,15 @@
+var express = require('express')
+var app = express()
+
+app.get('/', function (req, res) {
+  res.send('Hello World!')
+})
+
+var server = app.listen(3000, function () {
+
+  var host = server.address().address
+  var port = server.address().port
+
+  console.log('Example app listening at http://%s:%s', host, port)
+
+})
diff --git a/start.sh b/start.sh
@@ -0,0 +1,31 @@
+#!/bin/bash
+
+# Pull down code form git for our site!
+if [ ! -z "$GIT_REPO" ]; then
+  rm /usr/share/nginx/html/*
+  if [ ! -z "$GIT_BRANCH" ]; then
+    git clone -b $GIT_BRANCH $GIT_REPO /usr/share/nginx/html/
+  else
+    git clone $GIT_REPO /usr/share/nginx/html/
+  fi
+fi
+
+# Tweak nginx to match the workers to cpu's
+
+procs=$(cat /proc/cpuinfo |grep processor | wc -l)
+sed -i -e "s/worker_processes 5/worker_processes $procs/" /etc/nginx/nginx.conf
+
+# Very dirty hack to replace variables in code with ENVIRONMENT values
+
+for i in $(env)
+do
+  variable=$(echo "$i" | cut -d'=' -f1)
+  value=$(echo "$i" | cut -d'=' -f2)
+  if [[ "$variable" != '%s' ]] ; then
+    replace='\$\$_'${variable}'_\$\$'
+    find /usr/share/nginx/html -type f -exec sed -i -e 's/'${replace}'/'${value}'/g' {} \; ; 
+  fi
+done
+
+# Start supervisord and services
+/usr/local/bin/supervisord -n
diff --git a/supervisord.conf b/supervisord.conf
@@ -0,0 +1,42 @@
+[unix_http_server]
+file=/tmp/supervisor.sock   ; (the path to the socket file)
+
+[supervisord]
+logfile=/tmp/supervisord.log ; (main log file;default $CWD/supervisord.log)
+logfile_maxbytes=50MB        ; (max main logfile bytes b4 rotation;default 50MB)
+logfile_backups=10           ; (num of main logfile rotation backups;default 10)
+loglevel=info                ; (log level;default info; others: debug,warn,trace)
+pidfile=/tmp/supervisord.pid ; (supervisord pidfile;default supervisord.pid)
+nodaemon=false               ; (start in foreground if true;default false)
+minfds=1024                  ; (min. avail startup file descriptors;default 1024)
+minprocs=200                 ; (min. avail process descriptors;default 200)
+
+; the below section must remain in the config file for RPC
+; (supervisorctl/web interface) to work, additional interfaces may be
+; added by defining them in separate rpcinterface: sections
+[rpcinterface:supervisor]
+supervisor.rpcinterface_factory = supervisor.rpcinterface:make_main_rpcinterface
+
+[supervisorctl]
+serverurl=unix:///tmp/supervisor.sock ; use a unix:// URL  for a unix socket
+
+[program:nodeserver]
+command=/usr/bin/node /usr/share/nginx/html/server.js
+directory=/usr/share/nginx/html/
+autostart=true
+autorestart=true
+startretries=3
+stderr_logfile=/var/log/webhook/node.err.log
+stdout_logfile=/var/log/webhook/node.out.log
+user=nginx
+
+[program:nginx]
+command=/usr/sbin/nginx
+stdout_events_enabled=true
+stderr_events_enabled=true
+
+[eventlistener:stdout]
+command = supervisor_stdout
+buffer_size = 100
+events = PROCESS_LOG
+result_handler = supervisor_stdout:event_handler
