magento
diff --git a/‎images/nginx/1.19/Dockerfile
+2 b/‎images/nginx/1.19/Dockerfile
+2
diff --git a/‎images/nginx/1.19/docker-entrypoint.sh
+2 b/‎images/nginx/1.19/docker-entrypoint.sh
+2
diff --git a/‎images/nginx/1.19/etc/nginx.conf
+2-2 b/‎images/nginx/1.19/etc/nginx.conf
+2-2
diff --git a/‎src/Command/BuildCompose.php
+17 b/‎src/Command/BuildCompose.php
+17
diff --git a/‎src/Compose/ProductionBuilder.php
+23-2 b/‎src/Compose/ProductionBuilder.php
+23-2
diff --git a/‎src/Compose/ProductionBuilder/Service/Tls.php
+15-10 b/‎src/Compose/ProductionBuilder/Service/Tls.php
+15-10
diff --git a/‎src/Compose/ProductionBuilder/Service/Varnish.php
+13-1 b/‎src/Compose/ProductionBuilder/Service/Varnish.php
+13-1
diff --git a/‎src/Compose/ProductionBuilder/Service/Web.php
+18-3 b/‎src/Compose/ProductionBuilder/Service/Web.php
+18-3
diff --git a/‎src/Config/Config.php
+24 b/‎src/Config/Config.php
+24
diff --git a/‎src/Config/Source/BaseSource.php
+5-1 b/‎src/Config/Source/BaseSource.php
+5-1
diff --git a/‎src/Config/Source/CliSource.php
+12 b/‎src/Config/Source/CliSource.php
+12
diff --git a/‎src/Config/Source/SourceInterface.php
+9 b/‎src/Config/Source/SourceInterface.php
+9
diff --git a/‎src/Test/Integration/BuildComposeTest.php
+28-3 b/‎src/Test/Integration/BuildComposeTest.php
+28-3
@@ -10,6 +10,8 @@ ENV MAGENTO_ROOT /app
 ENV MAGENTO_RUN_MODE production
 ENV MFTF_UTILS 0
 ENV DEBUG false
+ENV NGINX_WORKER_PROCESSES 1
+ENV NGINX_WORKER_CONNECTIONS 1024
 
 COPY etc/nginx.conf /etc/nginx/
 COPY etc/vhost.conf /etc/nginx/conf.d/default.conf
 
@@ -18,6 +18,8 @@ XDEBUG_UPSTREAM_FILE="/etc/nginx/conf.d/xdebug/upstream.conf"
 [ ! -z "${UPLOAD_MAX_FILESIZE}" ] && sed -i "s/!UPLOAD_MAX_FILESIZE!/${UPLOAD_MAX_FILESIZE}/" $VHOST_FILE
 [ ! -z "${WITH_XDEBUG}" ] && sed -i "s/!WITH_XDEBUG!/${WITH_XDEBUG}/" $VHOST_FILE
 [ "${WITH_XDEBUG}" == "1" ] && sed -i "s/#include_xdebug_upstream/include/" $NGINX_FILE
+[ ! -z "${NGINX_WORKER_PROCESSES}" ] && sed -i "s/!NGINX_WORKER_PROCESSES!/${NGINX_WORKER_PROCESSES}/" $NGINX_FILE
+[ ! -z "${NGINX_WORKER_CONNECTIONS}" ] && sed -i "s/!NGINX_WORKER_CONNECTIONS!/${NGINX_WORKER_CONNECTIONS}/" $NGINX_FILE
 
 # Check if the nginx syntax is fine, then launch.
 nginx -t
 
@@ -1,12 +1,12 @@
-worker_processes 2;
+worker_processes !NGINX_WORKER_PROCESSES!;
 
 error_log /var/log/nginx/error.log debug;
 pid /var/run/nginx.pid;
 
 events {
   # this should be equal to value of "ulimit -n"
   # reference: https://www.digitalocean.com/community/tutorials/how-to-optimize-nginx-configuration
-  worker_connections 1048576;
+  worker_connections !NGINX_WORKER_CONNECTIONS!;
 }
 
 http {
 
@@ -186,6 +186,18 @@ protected function configure(): void
                 null,
                 InputOption::VALUE_NONE,
                 'Sets host.docker.internal for fpm_xdebug container to resolve debug issue for LINUX system'
+            )->addOption(
+                Source\CliSource::OPTION_NGINX_WORKER_PROCESSES,
+                null,
+                InputOption::VALUE_OPTIONAL,
+                'The number of NGINX worker processes',
+                Source\BaseSource::DEFAULT_NGINX_WORKER_PROCESSES
+            )->addOption(
+                Source\CliSource::OPTION_NGINX_WORKER_CONNECTIONS,
+                null,
+                InputOption::VALUE_OPTIONAL,
+                'The maximum number of connections that each worker process can handle simultaneously',
+                Source\BaseSource::DEFAULT_NGINX_WORKER_CONNECTIONS
             );
 
         $this->addOption(
@@ -261,6 +273,11 @@ protected function configure(): void
             null,
             InputOption::VALUE_REQUIRED,
             'Port'
+        )->addOption(
+            Source\CliSource::OPTION_NO_TLS,
+            null,
+            InputOption::VALUE_NONE,
+            'Disable TLS'
         )->addOption(
             Source\CliSource::OPTION_TLS_PORT,
             null,
 
@@ -7,6 +7,8 @@
 
 namespace Magento\CloudDocker\Compose;
 
+use Magento\CloudDocker\App\ConfigurationMismatchException;
+use Magento\CloudDocker\Compose\ProductionBuilder\ServiceBuilderInterface;
 use Magento\CloudDocker\Compose\ProductionBuilder\ServicePool;
 use Magento\CloudDocker\Compose\ProductionBuilder\VolumeResolver;
 use Magento\CloudDocker\Config\Config;
@@ -35,7 +37,6 @@ class ProductionBuilder implements BuilderInterface
         self::SERVICE_GENERIC,
         self::SERVICE_DEPLOY,
         self::SERVICE_BUILD,
-        self::SERVICE_TLS,
         self::SERVICE_WEB,
         self::SERVICE_FPM,
         self::SERVICE_DB,
@@ -91,7 +92,7 @@ public function build(Config $config): Manager
         $manager = $this->managerFactory->create($config);
 
         foreach ($this->servicePool->getServices() as $service) {
-            if ($config->hasServiceEnabled($service->getServiceName())
+            if ($this->hasServiceEnabled($service, $config)
                 || in_array($service->getName(), self::$requiredServices)
             ) {
                 $manager->addService($service);
@@ -135,4 +136,24 @@ public function getPath(): string
     {
         return $this->fileList->getMagentoDockerCompose();
     }
+
+    /**
+     * Checks the availability of the service
+     *
+     * @param ServiceBuilderInterface $service
+     * @param Config $config
+     * @return bool
+     * @throws ConfigurationMismatchException
+     */
+    private function hasServiceEnabled(ServiceBuilderInterface $service, Config $config): bool
+    {
+        $serviceNames = [
+            BuilderInterface::SERVICE_FPM_XDEBUG,
+            BuilderInterface::SERVICE_DB_QUOTE,
+            BuilderInterface::SERVICE_DB_SALES,
+        ];
+        $service = in_array($service->getName(), $serviceNames) ? $service->getServiceName() : $service->getName();
+
+        return $config->hasServiceEnabled($service);
+    }
 }
@@ -62,7 +62,7 @@ public function getConfig(Config $config): array
                         'aliases' => [$config->getHost()]
                     ]
                 ],
-                'environment' => $this->getBackendServiceUpstream($config),
+                'environment' => $this->getEnvironmentVariables($config),
                 'ports' => [
                     $config->getPort() . ':80',
                     $config->getTlsPort() . ':443'
@@ -106,18 +106,23 @@ private function getBackendService(Config $config): string
      * @return string[]
      * @throws ConfigurationMismatchException
      */
-    private function getBackendServiceUpstream(Config $config): array
+    private function getEnvironmentVariables(Config $config): array
     {
+        $envVariables = [
+            'NGINX_WORKER_PROCESSES=' . $config->getNginxWorkerProcesses(),
+            'NGINX_WORKER_CONNECTIONS=' . $config->getNginxWorkerConnections(),
+        ];
+
         if ($config->hasServiceEnabled(ServiceInterface::SERVICE_VARNISH)) {
-            return [
-                'UPSTREAM_HOST=' . BuilderInterface::SERVICE_VARNISH,
-                'UPSTREAM_PORT=80'
-            ];
+            $envVariables[] = 'UPSTREAM_HOST=' . BuilderInterface::SERVICE_VARNISH;
+            $envVariables[] = 'UPSTREAM_PORT=80';
+
+            return $envVariables;
         }
 
-        return [
-            'UPSTREAM_HOST=' . BuilderInterface::SERVICE_WEB,
-            'UPSTREAM_PORT=8080'
-        ];
+        $envVariables[] = 'UPSTREAM_HOST=' . BuilderInterface::SERVICE_WEB;
+        $envVariables[] = 'UPSTREAM_PORT=8080';
+
+        return $envVariables;
     }
 }
@@ -11,6 +11,7 @@
 use Magento\CloudDocker\Compose\ProductionBuilder\ServiceBuilderInterface;
 use Magento\CloudDocker\Config\Config;
 use Magento\CloudDocker\Service\ServiceFactory;
+use Magento\CloudDocker\Service\ServiceInterface;
 
 /**
  * Returns Varnish service configuration
@@ -51,13 +52,24 @@ public function getServiceName(): string
      */
     public function getConfig(Config $config): array
     {
-        return $this->serviceFactory->create(
+        $result = $this->serviceFactory->create(
             $this->getServiceName(),
             $config->getServiceVersion($this->getServiceName()),
             [],
             $config->getServiceImage($this->getServiceName()),
             $config->getServiceImagePattern($this->getServiceName())
         );
+
+        if (!$config->hasServiceEnabled(ServiceInterface::SERVICE_TLS)) {
+            $result['ports'] = [$config->getPort() . ':80'];
+            $result['networks'] = [
+                BuilderInterface::NETWORK_MAGENTO => [
+                    'aliases' => [$config->getHost()]
+                ]
+            ];
+        }
+
+        return $result;
     }
 
     /**
 
@@ -60,18 +60,33 @@ public function getServiceName(): string
      */
     public function getConfig(Config $config): array
     {
-        return $this->serviceFactory->create(
+        $result = $this->serviceFactory->create(
             $this->getServiceName(),
             $config->getServiceVersion(ServiceInterface::SERVICE_NGINX),
             [
                 'volumes' => $this->volume->getRo($config),
                 'environment' => [
-                    'WITH_XDEBUG=' . (int)$config->hasServiceEnabled(ServiceInterface::SERVICE_FPM_XDEBUG)
-                ]
+                    'WITH_XDEBUG=' . (int)$config->hasServiceEnabled(ServiceInterface::SERVICE_FPM_XDEBUG),
+                    'NGINX_WORKER_PROCESSES=' . $config->getNginxWorkerProcesses(),
+                    'NGINX_WORKER_CONNECTIONS=' . $config->getNginxWorkerConnections(),
+                ],
             ],
             $config->getServiceImage(ServiceInterface::SERVICE_NGINX),
             $config->getServiceImagePattern(ServiceInterface::SERVICE_NGINX)
         );
+
+        if (!$config->hasServiceEnabled(ServiceInterface::SERVICE_TLS)
+            && !$config->hasServiceEnabled(ServiceInterface::SERVICE_VARNISH)
+        ) {
+            $result['ports'] = [$config->getPort() . ':8080'];
+            $result['networks'] = [
+                BuilderInterface::NETWORK_MAGENTO => [
+                    'aliases' => [$config->getHost()]
+                ]
+            ];
+        }
+
+        return $result;
     }
 
     /**
 
@@ -467,4 +467,28 @@ public function getMailHogHttpPort(): ?string
     {
         return $this->all()->get(SourceInterface::SYSTEM_MAILHOG_HTTP_PORT);
     }
+
+    /**
+     * Returns the value of the `worker_processes` parameter of the Nginx service
+     *
+     * @return string
+     * @throws ConfigurationMismatchException
+     */
+    public function getNginxWorkerProcesses(): string
+    {
+        $value = $this->all()->get(SourceInterface::SYSTEM_NGINX_WORKER_PROCESSES);
+        if (SourceInterface::NGINX_WORKER_PROCESSES_AUTO === $value) {
+            return $value;
+        }
+        return (string)$value;
+    }
+
+    /**
+     * @return int
+     * @throws ConfigurationMismatchException
+     */
+    public function getNginxWorkerConnections()
+    {
+        return (int)$this->all()->get(SourceInterface::SYSTEM_NGINX_WORKER_CONNECTIONS);
+    }
 }
@@ -29,6 +29,8 @@ class BaseSource implements SourceInterface
     public const DEFAULT_TLS_PORT = '443';
     public const DEFAULT_MAILHOG_SMTP_PORT = '1025';
     public const DEFAULT_MAILHOG_HTTP_PORT = '8025';
+    public const DEFAULT_NGINX_WORKER_PROCESSES = '1';
+    public const DEFAULT_NGINX_WORKER_CONNECTIONS = '1024';
 
     /**
      * @var EnvReader
@@ -77,7 +79,9 @@ public function read(): Repository
             self::INSTALLATION_TYPE => self::INSTALLATION_TYPE_COMPOSER,
             self::MAGENTO_VERSION => $this->getMagentoVersion(),
             self::SYSTEM_MAILHOG_SMTP_PORT => self::DEFAULT_MAILHOG_SMTP_PORT,
-            self::SYSTEM_MAILHOG_HTTP_PORT => self::DEFAULT_MAILHOG_HTTP_PORT
+            self::SYSTEM_MAILHOG_HTTP_PORT => self::DEFAULT_MAILHOG_HTTP_PORT,
+            self::SYSTEM_NGINX_WORKER_PROCESSES => self::DEFAULT_NGINX_WORKER_PROCESSES,
+            self::SYSTEM_NGINX_WORKER_CONNECTIONS => self::DEFAULT_NGINX_WORKER_CONNECTIONS,
         ]);
 
         try {
 
@@ -33,6 +33,7 @@ class CliSource implements SourceInterface
     public const OPTION_INSTALLATION_TYPE = 'installation-type';
     public const OPTION_NO_ES = 'no-es';
     public const OPTION_NO_MAILHOG = 'no-mailhog';
+    public const OPTION_NO_TLS = 'no-tls';
 
     /**
      * MailHog configuration
@@ -67,6 +68,8 @@ class CliSource implements SourceInterface
     public const OPTION_HOST = 'host';
     public const OPTION_PORT = 'port';
     public const OPTION_TLS_PORT = 'tls-port';
+    public const OPTION_NGINX_WORKER_PROCESSES = 'nginx-worker-processes';
+    public const OPTION_NGINX_WORKER_CONNECTIONS = 'nginx-worker-connections';
 
     public const OPTION_DB_INCREMENT_INCREMENT = 'db-increment-increment';
     public const OPTION_DB_INCREMENT_OFFSET = 'db-increment-offset';
@@ -115,6 +118,7 @@ class CliSource implements SourceInterface
     private static $disableOptionsMap = [
         self::OPTION_NO_ES => self::SERVICES_ES,
         self::OPTION_NO_MAILHOG => self::SERVICES_MAILHOG,
+        self::OPTION_NO_TLS => self::SERVICES_TLS,
     ];
 
     /**
@@ -298,6 +302,14 @@ public function read(): Repository
             $repository->set(self::SYSTEM_MAILHOG_HTTP_PORT, $port);
         }
 
+        if ($nginxWorkerProcesses = $this->input->getOption(self::OPTION_NGINX_WORKER_PROCESSES)) {
+            $repository->set(self::SYSTEM_NGINX_WORKER_PROCESSES, $nginxWorkerProcesses);
+        }
+
+        if ($nginxWorkerConnections = $this->input->getOption(self::OPTION_NGINX_WORKER_CONNECTIONS)) {
+            $repository->set(self::SYSTEM_NGINX_WORKER_CONNECTIONS, $nginxWorkerConnections);
+        }
+
         return $repository;
     }
 }
@@ -20,6 +20,8 @@ interface SourceInterface
     public const MOUNTS = 'mounts';
     public const NAME = 'name';
 
+    public const NGINX_WORKER_PROCESSES_AUTO = 'auto';
+
     /**
      * Services
      */
@@ -125,6 +127,11 @@ interface SourceInterface
 
     public const MAGENTO_VERSION = 'magento.version';
 
+    /**
+     * TLS
+     */
+    public const SERVICES_TLS = self::SERVICES . '.' . ServiceInterface::SERVICE_TLS;
+
     /**
      * Config
      */
@@ -142,6 +149,8 @@ interface SourceInterface
     public const SYSTEM_SET_DOCKER_HOST = 'system.set_docker_host';
     public const SYSTEM_MAILHOG_SMTP_PORT = 'system.mailhog.smtp_port';
     public const SYSTEM_MAILHOG_HTTP_PORT = 'system.mailhog.http_port';
+    public const SYSTEM_NGINX_WORKER_PROCESSES = 'system.nginx.worker_processes';
+    public const SYSTEM_NGINX_WORKER_CONNECTIONS = 'system.nginx.worker_connections';
 
     public const SYSTEM_DB_INCREMENT_INCREMENT = 'system.db.increment_increment';
     public const SYSTEM_DB_INCREMENT_OFFSET = 'system.db.increment_offset';
 
@@ -94,7 +94,9 @@ public function buildDataProvider(): array
                     [CliSource::OPTION_WITH_ENTRYPOINT, true],
                     [CliSource::OPTION_WITH_MARIADB_CONF, true],
                     [CliSource::OPTION_TLS_PORT, '4443'],
-                    [CliSource::OPTION_NO_MAILHOG, true]
+                    [CliSource::OPTION_NO_MAILHOG, true],
+                    [CliSource::OPTION_NGINX_WORKER_PROCESSES, '8'],
+                    [CliSource::OPTION_NGINX_WORKER_CONNECTIONS, '4096'],
                 ]
             ],
             'cloud-base-test' => [
@@ -111,9 +113,32 @@ public function buildDataProvider(): array
                     [CliSource::OPTION_WITH_ENTRYPOINT, true],
                     [CliSource::OPTION_WITH_MARIADB_CONF, true],
                     [CliSource::OPTION_TLS_PORT, '4443'],
-                    [CliSource::OPTION_NO_MAILHOG, true]
+                    [CliSource::OPTION_NO_MAILHOG, true],
+                    [CliSource::OPTION_NGINX_WORKER_PROCESSES, 'auto'],
                 ]
-            ]
+            ],
+            'without TLS service' => [
+                __DIR__ . '/_files/cloud_no_tls_service',
+                [
+                    [CliSource::OPTION_MODE, BuilderFactory::BUILDER_PRODUCTION],
+                    [CliSource::OPTION_NO_TLS, true],
+                ]
+            ],
+            'without Varnish service' => [
+                __DIR__ . '/_files/cloud_no_varnish_service',
+                [
+                    [CliSource::OPTION_MODE, BuilderFactory::BUILDER_PRODUCTION],
+                    [CliSource::OPTION_NO_VARNISH, true],
+                ]
+            ],
+            'without Varnish and TLS services' => [
+                __DIR__ . '/_files/cloud_no_varnish_and_tls_service',
+                [
+                    [CliSource::OPTION_MODE, BuilderFactory::BUILDER_PRODUCTION],
+                    [CliSource::OPTION_NO_VARNISH, true],
+                    [CliSource::OPTION_NO_TLS, true],
+                ]
+            ],
         ];
     }
 }