tom/ansible_php-fpm
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

base: tom:c8f375eebd2f2d1218cb4d60a3db135a7c1fd72b
Branches Tags
tom:master tom:enhanceLogManagement
..
compare: tom:master
Branches Tags
tom:master tom:enhanceLogManagement

12 Commits
c8f375eebd ... master

Author SHA1 Message Date
Thomas Constans
9a1bfdcd84 add some php limit value 2026-03-18 08:14:13 +01:00
Thomas Constans
f3c7165380 fix logrotatte config ownership 2026-02-15 11:32:22 +01:00
Thomas Constans
4cce5f1af7 typo 2025-09-19 16:08:15 +02:00
Thomas Constans
26eec53f99 now with one logrorate conf file per phpversion instead of per site 2025-09-04 11:18:48 +02:00
Thomas Constans
b7d8e461eb fix service name in logrotate template 2025-06-22 18:16:24 +02:00
Thomas Constans
53cb9bd8e9 make it work on debian 2025-03-17 23:16:34 +01:00
Thomas Constans
ebbe1f23dd add ansible_managed 2025-02-21 14:08:06 +01:00
Thomas Constans
c9795a3b74 amelioration emplacement des logs et rotation 2025-01-13 22:25:45 +01:00
Thomas Constans
7969bbc511 add s 2025-01-13 22:00:54 +01:00
Thomas Constans
7452a3c726 better manage php packages 2024-09-05 18:12:58 +02:00
Thomas Constans
0ef129113a fix package name issue 2024-09-04 11:48:54 +02:00
Thomas Constans
55bfe10b00 potentially fix pool name 2024-09-03 09:58:22 +02:00
8 changed files with 58 additions and 26 deletions
Expand all files Collapse all files

2
defaults/main.yml
View File

@@ -10,8 +10,6 @@ php_pm: static
php_pm_max_children: 100 php_pm_max_children: 100
php_pm_max_requests: 10000 php_pm_max_requests: 10000
php_pm_status_url: /phpstatus php_pm_status_url: /phpstatus
php_packages:
- 'php{{ php_version_nodot }}-php-common'
php_min_spare_servers: 5 php_min_spare_servers: 5
php_max_spare_servers: 35 php_max_spare_servers: 35
php_use_phpmyadmin: false php_use_phpmyadmin: false

43
tasks/php-fpm.yml
View File

@@ -18,38 +18,53 @@
- name: "setup repository - debian" - name: "setup repository - debian"
block: block:
- name: setup repo key - name: Check if my_package is installed
ansible.builtin.get_url: command: dpkg-query -W debsuryorg-archive-keyring
url: https://packages.sury.org/php/apt.gpg register: my_package_check_deb
dest: /etc/apt/keyrings/sury_php.gpg failed_when: my_package_check_deb.rc > 1
changed_when: my_package_check_deb.rc == 1
- name: setup source list - name: setup repo key
ansible.builtin.template: ansible.builtin.get_url:
url: https://packages.sury.org/debsuryorg-archive-keyring.deb
dest: /tmp/debsuryorg-archive-keyring.deb
when: my_package_check_deb.rc==1
- name: install key
ansible.builtin.apt:
state: present
deb: /tmp/debsuryorg-archive-keyring.deb
when: my_package_check_deb.rc==1
- name: setup source list
ansible.builtin.template:
src: php_sury_sources.list src: php_sury_sources.list
dest: /etc/apt/sources.list.d/php_sury.sources.list dest: /etc/apt/sources.list.d/php_sury.sources.list
register: repo_setup register: repo_setup
- name: update cache - name: update cache
ansible.builtin.apt: ansible.builtin.apt:
update_cache: true update_cache: true
when: repo_setup.changed when: repo_setup.changed
when: ansible_os_family | lower == 'debian' when: ansible_os_family | lower == 'debian'
- name: create socket directory if needed - name: create socket directory if needed
file: ansible.builtin.file:
path: "{{ php_fpm_listen_socket|dirname }}" path: "{{ php_fpm_listen_socket|dirname }}"
state: directory state: directory
owner: "{{ php_fpm_pool_user }}" owner: "{{ php_fpm_pool_user }}"
- name: install php-fpm - name: install php-fpm
ansible.builtin.package: ansible.builtin.package:
name: '{{ php_fpm_package }}' name: '{{ php_fpm_packages}}'
state: present state: present
- name: install php packages - name: install php packages
ansible.builtin.package: ansible.builtin.package:
name: "{{ php_packages }}" name: "{{ php_packages }}"
state: present state: present
when: php_packages is defined
- name: disable default pool - name: disable default pool
copy: copy:
@@ -85,4 +100,6 @@
- name: configure logrotate - name: configure logrotate
template: template:
src: logrotate.conf.jj src: logrotate.conf.jj
dest: "/etc/logrotate.d/php-fpm_{{ php_pool_name }}_{{ php_fpm_pool_user }}.conf" dest: "/etc/logrotate.d/php-fpm-{{php_version }}.conf"
owner: root
group: root

13
templates/logrotate.conf.jj
View File

@@ -1,12 +1,17 @@
/var/opt/remi/php{{ php_version_nodot }}/log/php-fpm/*log { #{{ ansible_managed }}
{{ php_fpm_log_dir }}/php_fpm*{{ php_version_nodot }}*.log {
daily daily
rotate 15 rotate 15
missingok missingok
notifempty notifempty
sharedscripts sharedscripts
postrotate postrotate
/bin/systemctl reload php{{ php_version_nodot }}-php-fpm if [ -x /usr/lib/php/php{{ php_version }}-fpm-reopenlogs ]; then
endscript /usr/lib/php/php{{ php_version }}-fpm-reopenlogs;
else
/bin/systemctl reload {{ php_service_name }}
fi
endscript
} }

1
templates/php_apache_config.conf.jj
View File

@@ -1,3 +1,4 @@
"{{ ansible_managed }}"
<FilesMatch \.php$> <FilesMatch \.php$>
SetHandler "proxy:unix:{{ php_fpm_listen_socket }}|fcgi://localhost/" SetHandler "proxy:unix:{{ php_fpm_listen_socket }}|fcgi://localhost/"
</FilesMatch> </FilesMatch>

3
templates/php_sury_sources.list
View File

@@ -1 +1,2 @@
deb [signed-by=/etc/apt/keyrings/sury_php.gpg] https://packages.sury.org/php/ {{ ansible_distribution_release }} main #{{ ansible_managed }}
deb [signed-by=/etc/apt/trusted.gpg.d/debsuryorg-archive.gpg] https://packages.sury.org/php/ {{ ansible_distribution_release }} main

14
templates/www.conf
View File

@@ -1,4 +1,5 @@
[{{ php_pool_name }}_{{ php_version }}] ;{{ ansible_managed }}
[{{ php_pool_name }}]
user = {{ php_fpm_pool_user }} user = {{ php_fpm_pool_user }}
group = {{ php_fpm_pool_group }} group = {{ php_fpm_pool_group }}
listen = {{ php_fpm_listen_socket }} listen = {{ php_fpm_listen_socket }}
@@ -15,9 +16,14 @@ pm.max_requests = {{ php_pm_max_requests }}
pm.status_path = {{ php_pm_status_url }} pm.status_path = {{ php_pm_status_url }}
ping.path = /ping ping.path = /ping
access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{mili}d %{kilo}M %C%%" access.format = "%R - %u %t \"%m %r%Q%q\" %s %f %{mili}d %{kilo}M %C%%"
access.log = {{ php_fpm_log_dir }}$pool.access.log access.log = {{ php_fpm_log_dir }}php_fpm_$pool.access.log
slowlog = {{ php_fpm_log_dir }}$pool.slow.log slowlog = {{ php_fpm_log_dir }}php_fpm_$pool.slow.log
request_slowlog_timeout = 5s request_slowlog_timeout = 5s
php_value[session.save_handler] = files php_value[session.save_handler] = files
php_value[session.save_path] = {{ php_fpm_lib_dir }}/session php_value[session.save_path] = {{ php_fpm_lib_dir }}/sessions
php_value[soap.wsdl_cache_dir] = {{ php_fpm_lib_dir }}/wsdlcache php_value[soap.wsdl_cache_dir] = {{ php_fpm_lib_dir }}/wsdlcache
php_admin_value[upload_max_filesize] = 64M
php_admin_value[post_max_size]=64M
php_admin_value[max_execution_time]=300
php_admin_value[memory_limit]=512M

4
vars/debian.yml
View File

@@ -5,4 +5,6 @@ php_service_name: php{{ php_version }}-fpm
php_fpm_lib_dir: /var/lib/php/ php_fpm_lib_dir: /var/lib/php/
apache_user: www-data apache_user: www-data
apache_group: www-data apache_group: www-data
php_fpm_package: "php{{ php_version }}-fpm" php_fpm_packages:
- "php{{ php_version }}-fpm"
- "php{{ php_version }}-common"

4
vars/redhat.yml
View File

@@ -6,4 +6,6 @@ php_fpm_log_dir: "/var/opt/remi/php{{ php_version_nodot }}/log/php-fpm/"
php_fpm_lib_dir: "/var/opt/remi/php{{ php_version_nodot }}/lib/php/" php_fpm_lib_dir: "/var/opt/remi/php{{ php_version_nodot }}/lib/php/"
apache_user: apache apache_user: apache
apache_group: apache apache_group: apache
php_fpm_package: "php{{ php_version_nodot }}-php-fpm" php_fpm_packages:
- "php{{ php_version_nodot }}-php-fpm"
- "php{{ php_version_nodot }}-php-common"