wordpress-docker/docker-compose.yml at master · kiennt2/wordpress-docker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
x-wp-vars: &wp-vars
  env_file: .env
  environment:
    - WORDPRESS_DB_HOST=db:3306
    - WORDPRESS_DB_USER=$MYSQL_USER
    - WORDPRESS_DB_PASSWORD=$MYSQL_PASSWORD
    - WORDPRESS_TABLE_PREFIX=$WP_TABLE_PREFIX
  networks:
    - app-network

services:

  wordpress:
    depends_on:
      - db
      - redis-cache
    build:
      context: ./
      dockerfile: Dockerfile
    container_name: wordpress
    restart: unless-stopped
    <<: *wp-vars
    volumes:
      - ./source:/var/www/html
      - ./conf/php/custom.ini:/usr/local/etc/php/conf.d/custom.ini

  wordpress-cli:
    depends_on:
      - wordpress
      - db
    image: wordpress:cli
    container_name: wordpress-cli
    user: "33:33"
    <<: *wp-vars
    volumes:
      - ./source:/var/www/html
    working_dir: /var/www/html
    tty: true
    entrypoint: wp
    command: "--info"

  webserver:
    depends_on:
      - wordpress
    build:
      context: ./mod-security
      dockerfile: Dockerfile
    container_name: webserver
    restart: unless-stopped
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - ./source:/var/www/html
      - ./conf/nginx:/etc/nginx/conf.d
      - ./data/certbot:/etc/letsencrypt
      - ./mod-security/conf/modsecurity.conf:/etc/nginx/modsecurity.conf
      - ./mod-security/conf/owasp-crs/crs-setup.conf:/etc/nginx/owasp-crs/crs-setup.conf
      - ./mod-security/conf/owasp-crs/rules:/etc/nginx/owasp-crs/rules
      - ./mod-security/conf/owasp-crs/plugins:/etc/nginx/owasp-crs/plugins
    networks:
      - app-network

  certbot:
    depends_on:
      - webserver
    image: certbot/certbot
    container_name: certbot
    volumes:
      - ./data/certbot:/etc/letsencrypt
      - ./source:/var/www/html
    env_file: .env
    command: certonly --webroot --webroot-path=/var/www/html --email admin@${WEB_DOMAIN} --agree-tos --no-eff-email --force-renewal -d ${WEB_DOMAIN}

  db:
    image: mysql:8.4.5
    container_name: db
    restart: unless-stopped

    env_file: .env
    environment:
      - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}
      - MYSQL_USER=${MYSQL_USER}
      - MYSQL_PASSWORD=${MYSQL_PASSWORD}
      - MYSQL_DATABASE=${WORDPRESS_DB_NAME}
    volumes:
      - ./data/mysql:/var/lib/mysql
      - ./conf/mysql/custom.cnf:/etc/mysql/conf.d/custom.cnf
    healthcheck:
      test: ["CMD", "mysqladmin", "ping", "-u${MYSQL_USER}", "-p${MYSQL_PASSWORD}"]
      interval: 10s
      timeout: 5s
      retries: 3
    networks:
      - app-network

  redis-cache:
    image: redis:latest
    container_name: redis-cache
    restart: always
    volumes:
      - ./data/redis:/data
    env_file: .env
    entrypoint: redis-server --appendonly yes  --requirepass ${REDIS_PASSWORD}

networks:
  app-network:
    driver: bridge