librewolf
/
bunkerized-nginx
mirror of https://github.com/bunkerity/bunkerized-nginx
4
0
Fork 1
Code Issues Projects Releases Wiki Activity

tests - on the road of refactoring

This commit is contained in:
florian 2022-07-23 22:38:49 +02:00
parent dc8570ca87
commit 8fb03a3171
36 changed files with 832 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
examples/mongo-express/autoconf.yml
View File

@ -31,6 +31,7 @@ services:
depends_on:
- mongo
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://mongo-ui:8081

55
examples/moodle/autoconf.yml Normal file
View File

@ -0,0 +1,55 @@
version: '3'
services:
mymoodle:
image: bitnami/moodle:latest
networks:
bw-services:
aliases:
- mymoodle
depends_on:
- mydb
volumes:
- moodle_files:/bitnami/moodle
- moodle_data:/bitnami/moodledata
environment:
- MOODLE_USERNAME=admin # replace with your moodle admin username
- MOODLE_PASSWORD=password # replace with your moodle admin password
- MOODLE_EMAIL=moodle@example.com # replace with your moodle admin email
- MOODLE_SITE_NAME=My Moodle # replace with your moodle site name
- MOODLE_DATABASE_HOST=mydb
- MOODLE_DATABASE_NAME=moodle
- MOODLE_DATABASE_USER=user
- MOODLE_DATABASE_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=https://mymoodle:8443
mydb:
image: mariadb:10.5
volumes:
- db_data:/var/lib/mysql
networks:
bw-services:
aliases:
- mydb
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=moodle
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match MOODLE_DATABASE_PASSWORD)
- MARIADB_CHARACTER_SET=utf8mb4
- MARIADB_COLLATE=utf8mb4_unicode_ci
networks:
bw-services:
external:
name: bw-services
volumes:
db_data:
moodle_files:
moodle_data:

3
examples/nextcloud/setup.sh → examples/moodle/cleanup-kubernetes.sh
View File

@ -5,5 +5,4 @@ if [ $(id -u) -ne 0 ] ; then
exit 1
fi
chown -R root:101 bw-data
chmod -R 770 bw-data
helm delete moodle

18
examples/moodle/kubernetes.yml Normal file
View File

@ -0,0 +1,18 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: ingress
annotations:
bunkerweb.io/AUTO_LETS_ENCRYPT: "yes"
spec:
rules:
- host: www.example.com
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: moodle
port:
number: 8443

4
examples/moodle/moodle-chart-values.yml Normal file
View File

@ -0,0 +1,4 @@
moodleSiteName: "My Moodle"
moodleUsername: "admin"
moodlePassword: "changeme42"
moodleEmail: "admin@example.com"

9
examples/moodle/setup-kubernetes.sh Executable file
View File

@ -0,0 +1,9 @@
#!/bin/bash
if [ $(id -u) -ne 0 ] ; then
echo "❌ Run me as root"
exit 1
fi
helm repo add bitnami https://charts.bitnami.com/bitnami
helm install -f moodle-chart-values.yml moodle bitnami/moodle

59
examples/moodle/swarm.yml Normal file
View File

@ -0,0 +1,59 @@
version: '3'
services:
mymoodle:
image: bitnami/moodle:latest
networks:
- bw-services
depends_on:
- mydb
volumes:
- moodle_files:/bitnami/moodle
- moodle_data:/bitnami/moodledata
environment:
- MOODLE_USERNAME=admin # replace with your moodle admin username
- MOODLE_PASSWORD=password # replace with your moodle admin password
- MOODLE_EMAIL=moodle@example.com # replace with your moodle admin email
- MOODLE_SITE_NAME=My Moodle # replace with your moodle site name
- MOODLE_DATABASE_HOST=mydb
- MOODLE_DATABASE_NAME=moodle
- MOODLE_DATABASE_USER=user
- MOODLE_DATABASE_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
deploy:
placement:
constraints:
- "node.role==worker"
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=https://mymoodle:8443
mydb:
image: mariadb:10.5
volumes:
- db_data:/var/lib/mysql
networks:
- bw-services
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=moodle
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match MOODLE_DATABASE_PASSWORD)
- MARIADB_CHARACTER_SET=utf8mb4
- MARIADB_COLLATE=utf8mb4_unicode_ci
deploy:
placement:
constraints:
- "node.role==worker"
networks:
bw-services:
external:
name: bw-services
volumes:
db_data:
moodle_files:
moodle_data:

17
examples/moodle/tests.json Normal file
View File

@ -0,0 +1,17 @@
{
"name": "moodle",
"kinds": [
"docker",
"autoconf",
"swarm",
"kubernetes"
],
"timeout": 300,
"tests": [
{
"type": "string",
"url": "https://www.example.com",
"string": "moodle"
}
]
}

57
examples/nextcloud/autoconf.yml Normal file
View File

@ -0,0 +1,57 @@
version: '3'
services:
mync:
image: nextcloud:stable-apache
volumes:
- ./nc-files:/var/www/html
networks:
bw-services:
aliases:
- mync
environment:
- MYSQL_HOST=mydb
- MYSQL_DATABASE=nc
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
- NEXTCLOUD_ADMIN_USER=admin # replace with the admin username
- NEXTCLOUD_ADMIN_PASSWORD=changeme # replace with a stronger password
- NEXTCLOUD_TRUSTED_DOMAINS=www.example.com # replace with your domain(s)
- TRUSTED_PROXIES=192.168.0.0/16 172.16.0.0/12 10.0.0.0/8
- APACHE_DISABLE_REWRITE_IP=1
labels:
- bunkerweb.SERVER_NAME=www.example.com # replace with your domain
- bunkerweb.MAX_CLIENT_SIZE=10G
- bunkerweb.ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS
- bunkerweb.X_FRAME_OPTIONS=SAMEORIGIN
- bunkerweb.BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://mync
- bunkerweb.LIMIT_REQ_URL_1=/apps
- bunkerweb.LIMIT_REQ_RATE_1=5r/s
- bunkerweb.LIMIT_REQ_URL_2=/apps/text/session/sync
- bunkerweb.LIMIT_REQ_RATE_2=8r/s
- bunkerweb.LIMIT_REQ_URL_3=/core/preview
- bunkerweb.LIMIT_REQ_RATE_3=5r/s
mydb:
image: mariadb
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
volumes:
- ./db-data:/var/lib/mysql
networks:
bw-services:
aliases:
- mydb
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=nc
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
networks:
bw-services:
external:
name: bw-services

8
examples/nextcloud/cleanup-kubernetes.sh Executable file
View File

@ -0,0 +1,8 @@
#!/bin/bash
if [ $(id -u) -ne 0 ] ; then
echo "❌ Run me as root"
exit 1
fi
helm delete nextcloud

1
examples/nextcloud/docker-compose.yml
View File

@ -26,7 +26,6 @@ services:
- X_FRAME_OPTIONS=SAMEORIGIN
- USE_GZIP=yes
- BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
- WHITELIST_USER_AGENT=WebDAV
- USE_REVERSE_PROXY=yes
- REVERSE_PROXY_URL=/
- REVERSE_PROXY_HOST=http://mync

28
examples/nextcloud/kubernetes.yml Normal file
View File

@ -0,0 +1,28 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: ingress
annotations:
bunkerweb.io/AUTO_LETS_ENCRYPT: "yes"
bunkerweb.io/www.example.com_MAX_CLIENT_SIZE: "10G"
bunkerweb.io/www.example.com_ALLOWED_METHODS: "GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS"
bunkerweb.io/www.example.com_X_FRAME_OPTIONS: "SAMEORIGIN"
bunkerweb.io/www.example.com_BAD_BEHAVIOR_STATUS_CODES: "400 401 403 405 444"
bunkerweb.io/www.example.com_LIMIT_REQ_URL_1: "/apps"
bunkerweb.io/www.example.com_LIMIT_REQ_RATE_1: "5r/s"
bunkerweb.io/www.example.com_LIMIT_REQ_URL_2: "/apps/text/session/sync"
bunkerweb.io/www.example.com_LIMIT_REQ_RATE_2: "8r/s"
bunkerweb.io/www.example.com_LIMIT_REQ_URL_3: "/core/preview"
bunkerweb.io/www.example.com_LIMIT_REQ_RATE_3: "5r/s"
spec:
rules:
- host: www.example.com
http:
paths:
path: /
pathType: Prefix
backend:
service:
name: nextcloud
port:
number: 8080

8
examples/nextcloud/nextcloud-chart-values.yml Normal file
View File

@ -0,0 +1,8 @@
phpClientHttpsFix:
enabled: true
protocol: https
nextcloud:
host: www.example.com
username: user
password: changeme42

9
examples/nextcloud/setup-kubernetes.sh Executable file
View File

@ -0,0 +1,9 @@
#!/bin/bash
if [ $(id -u) -ne 0 ] ; then
echo "❌ Run me as root"
exit 1
fi
helm repo add nextcloud https://nextcloud.github.io/helm/
helm install -f nextcloud-chart-values.yml nextcloud nextcloud/nextcloud

15
examples/nextcloud/setup-swarm.sh Executable file
View File

@ -0,0 +1,15 @@
#!/bin/bash
# docker-compose doesn't support assigning labels to configs
# so we need to create the configs with the CLI
# bunkerweb.CONFIG_TYPE accepted values are http, stream, server-http, server-stream, default-server-http, modsec and modsec-crs
# bunkerweb.CONFIG_SITE lets you choose on which web service the config should be applied (MULTISITE mode) and if it's not set, the config will be applied for all services
# more info at https://docs.bunkerweb.io
# remove configs if existing
docker config rm cfg_nextcloud_modsec
docker config rm cfg_nextcloud_modsec_crs
# create configs
docker config create -l bunkerweb.CONFIG_TYPE=modsec cfg_nextcloud_modsec -l bunkerweb.CONFIG_SITE=www.example.com ./bw-data/configs/modsec/nextcloud.conf
docker config create -l bunkerweb.CONFIG_TYPE=modsec-crs cfg_nextcloud_modsec_crs -l bunkerweb.CONFIG_SITE=www.example.com ./bw-data/configs/modsec-crs/nextcloud.conf

65
examples/nextcloud/swarm.yml Normal file
View File

@ -0,0 +1,65 @@
version: '3'
services:
mync:
image: nextcloud:stable-apache
volumes:
- nc_files:/var/www/html
networks:
- bw-services
environment:
- MYSQL_HOST=mydb
- MYSQL_DATABASE=nc
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
- NEXTCLOUD_ADMIN_USER=admin # replace with the admin username
- NEXTCLOUD_ADMIN_PASSWORD=changeme # replace with a stronger password
- NEXTCLOUD_TRUSTED_DOMAINS=www.example.com # replace with your domain(s)
- TRUSTED_PROXIES=192.168.0.0/16 172.16.0.0/12 10.0.0.0/8
- APACHE_DISABLE_REWRITE_IP=1
deploy:
placement:
constraints:
- "node.role==worker"
labels:
- bunkerweb.SERVER_NAME=www.example.com # replace with your domain
- bunkerweb.MAX_CLIENT_SIZE=10G
- bunkerweb.ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS
- bunkerweb.X_FRAME_OPTIONS=SAMEORIGIN
- bunkerweb.BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://mync
- bunkerweb.LIMIT_REQ_URL_1=/apps
- bunkerweb.LIMIT_REQ_RATE_1=5r/s
- bunkerweb.LIMIT_REQ_URL_2=/apps/text/session/sync
- bunkerweb.LIMIT_REQ_RATE_2=8r/s
- bunkerweb.LIMIT_REQ_URL_3=/core/preview
- bunkerweb.LIMIT_REQ_RATE_3=5r/s
mydb:
image: mariadb
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
volumes:
- db_data:/var/lib/mysql
networks:
- bw-services
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=nc
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
deploy:
placement:
constraints:
- "node.role==worker"
networks:
bw-services:
external:
name: bw-services
volumes:
nc_files:
db_data:

17
examples/nextcloud/tests.json Normal file
View File

@ -0,0 +1,17 @@
{
"name": "nextcloud",
"kinds": [
"docker",
"autoconf",
"swarm",
"kubernetes"
],
"timeout": 120,
"tests": [
{
"type": "string",
"url": "https://www.example.com",
"string": "nextcloud"
}
]
}

45
examples/passbolt/autoconf.yml Normal file
View File

@ -0,0 +1,45 @@
version: '3'
services:
# you will need to add a user by hand
# example : docker-compose exec mypassbolt su -m -c "bin/cake passbolt register_user -u your@email.com -f yourname -l surname -r admin" -s /bin/sh www-data
# more info at https://github.com/passbolt/passbolt_docker
mypassbolt:
image: passbolt/passbolt
command: ["/usr/bin/wait-for.sh", "-t", "0", "mydb:3306", "--", "/docker-entrypoint.sh"]
networks:
bw-services:
aliases:
- mypassbolt
environment:
- DATASOURCES_DEFAULT_HOST=mydb
- DATASOURCES_DEFAULT_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
- DATASOURCES_DEFAULT_USERNAME=user
- DATASOURCES_DEFAULT_DATABASE=passbolt
- APP_FULL_BASE_URL=https://www.example.com # replace with your URL
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.ALLOWED_METHODS=GET|POST|HEAD|PUT|DELETE
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=https://mypassbolt
mydb:
image: mariadb
volumes:
- ./db-data:/var/lib/mysql
networks:
bw-services:
aliases:
- mydb
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=passbolt
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match DATASOURCES_DEFAULT_PASSWORD)
networks:
bw-services:
external:
name: bw-services

52
examples/passbolt/swarm.yml Normal file
View File

@ -0,0 +1,52 @@
version: '3'
services:
# you will need to add a user by hand
# example : docker-compose exec mypassbolt su -m -c "bin/cake passbolt register_user -u your@email.com -f yourname -l surname -r admin" -s /bin/sh www-data
# more info at https://github.com/passbolt/passbolt_docker
mypassbolt:
image: passbolt/passbolt
command: ["/usr/bin/wait-for.sh", "-t", "0", "mydb:3306", "--", "/docker-entrypoint.sh"]
networks:
- bw-services
environment:
- DATASOURCES_DEFAULT_HOST=mydb
- DATASOURCES_DEFAULT_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
- DATASOURCES_DEFAULT_USERNAME=user
- DATASOURCES_DEFAULT_DATABASE=passbolt
- APP_FULL_BASE_URL=https://www.example.com # replace with your URL
deploy:
placement:
constraints:
- "node.role==worker"
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.ALLOWED_METHODS=GET|POST|HEAD|PUT|DELETE
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=https://mypassbolt
mydb:
image: mariadb
volumes:
- db_data:/var/lib/mysql
networks:
- bw-services
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=passbolt
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match DATASOURCES_DEFAULT_PASSWORD)
deploy:
placement:
constraints:
- "node.role==worker"
networks:
bw-services:
external:
name: bw-services
volumes:
db_data:

16
examples/passbolt/tests.json Normal file
View File

@ -0,0 +1,16 @@
{
"name": "passbolt",
"kinds": [
"docker",
"autoconf",
"swarm"
],
"timeout": 120,
"tests": [
{
"type": "string",
"url": "https://www.example.com",
"string": "passbolt"
}
]
}

43
examples/php-multisite/autoconf.yml Normal file
View File

@ -0,0 +1,43 @@
version: '3'
services:
myapp1:
image: php:fpm
# ⚠️ UID and GID of mywww (101:101) and php:fpm (33:33) are not the same ⚠️
# but both needs access to the files and folders of web-files
# don't forget to edit the permissions of the files and folders accordingly
# example : chown -R 33:101 ./bw-data/www && find ./bw-data/www -type f -exec chmod 0640 {} \; && find ./bw-data/www -type d -exec chmod 0750 {} \;
volumes:
- ./bw-data/www/app1.example.com:/app # folder containing PHP app1 (don't forget to rename it)
networks:
bw-services:
aliases:
- myapp1
labels:
- bunkerweb.SERVER_NAME=app1.example.com
- bunkerweb.REMOTE_PHP=myapp1
- bunkerweb.REMOTE_PHP_PATH=/app
myapp2:
image: php:fpm
# ⚠️ UID and GID of bunkerweb (101:101) and php:fpm (33:33) are not the same ⚠️
# but both needs access to the files and folders of web-files
# don't forget to edit the permissions of the files and folders accordingly
# example : chown -R 33:101 ./bw-data/www && find ./bw-data/www -type f -exec chmod 0640 {} \; && find ./bw-data/www -type d -exec chmod 0750 {} \;
volumes:
- ./bw-data/www/app2.example.com:/app # folder containing PHP app2 (don't forget to rename it)
networks:
bw-services:
aliases:
- myapp2
labels:
- bunkerweb.SERVER_NAME=app2.example.com
- bunkerweb.REMOTE_PHP=myapp2
- bunkerweb.REMOTE_PHP_PATH=/app
networks:
bw-services:
external:
name: bw-services

4
examples/php-multisite/setup.sh → examples/php-multisite/setup-autoconf.sh
View File

@ -5,8 +5,6 @@ if [ $(id -u) -ne 0 ] ; then
exit 1
fi
chown -R root:101 bw-data
chmod -R 770 bw-data
chown -R 33:101 ./bw-data/www
find ./bw-data/www -type f -exec chmod 0640 {} \;
find ./bw-data/www -type d -exec chmod 0750 {} \;
find ./bw-data/www -type d -exec chmod 0750 {} \;

4
examples/php-singlesite/setup.sh → examples/php-multisite/setup-docker.sh
View File

@ -5,8 +5,6 @@ if [ $(id -u) -ne 0 ] ; then
exit 1
fi
chown -R root:101 bw-data
chmod -R 770 bw-data
chown -R 33:101 ./bw-data/www
find ./bw-data/www -type f -exec chmod 0640 {} \;
find ./bw-data/www -type d -exec chmod 0750 {} \;
find ./bw-data/www -type d -exec chmod 0750 {} \;

20
examples/php-multisite/tests.json Normal file
View File

@ -0,0 +1,20 @@
{
"name": "php-multisite",
"kinds": [
"docker",
"autoconf"
],
"timeout": 60,
"tests": [
{
"type": "string",
"url": "https://app1.example.com",
"string": "app1"
},
{
"type": "string",
"url": "https://app2.example.com",
"string": "app2"
}
]
}

10
examples/php-singlesite/setup-docker.sh Executable file
View File

@ -0,0 +1,10 @@
#!/bin/bash
if [ $(id -u) -ne 0 ] ; then
echo "❌ Run me as root"
exit 1
fi
chown -R 33:101 ./bw-data/www
find ./bw-data/www -type f -exec chmod 0640 {} \;
find ./bw-data/www -type d -exec chmod 0750 {} \;

14
examples/php-singlesite/tests.json Normal file
View File

@ -0,0 +1,14 @@
{
"name": "php-singlesite",
"kinds": [
"docker"
],
"timeout": 60,
"tests": [
{
"type": "string",
"url": "https://www.example.com",
"string": "hello"
}
]
}

48
examples/prestashop/autoconf.yml Normal file
View File

@ -0,0 +1,48 @@
version: '3'
services:
myps:
image: prestashop/prestashop:1.7
volumes:
- ./ps-data:/var/www/html
networks:
bw-services:
aliases:
- myps
environment:
- DB_SERVER=mydb
- DB_USER=user
- DB_PASSWD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
- DB_PREFIX=prefix_ # replace with a random prefix (good security practice)
- DB_NAME=prestashop
- PS_ENABLE_SSL=1
- ADMIN_MAIL=admin@example.com # change to the prestashop admin email
- ADMIN_PASSWD=changeme # change to the prestashop admin password
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.MAX_CLIENT_SIZE=50m
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://myps
- bunkerweb.LIMIT_REQ_URL_1=/install/index.php
- bunkerweb.LIMIT_REQ_RATE_1=8r/s
mydb:
image: mariadb
volumes:
- ./db-data:/var/lib/mysql
networks:
bw-services:
aliases:
- mydb
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=prestashop
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match DB_PASSWD)
networks:
bw-services:
external:
name: bw-services

8
examples/prestashop/cleanup-kubernetes.sh Executable file
View File

@ -0,0 +1,8 @@
#!/bin/bash
if [ $(id -u) -ne 0 ] ; then
echo "❌ Run me as root"
exit 1
fi
helm delete prestashop

8
examples/prestashop/prestashop-chart-values.yml Normal file
View File

@ -0,0 +1,8 @@
prestashopHost: "https://www.example.com"
prestashopUsername: "user@example.com"
prestashopPassword: "changeme42"
prestashopEmail: "user@example.com"
prestashopFirstName: "Prestashop"
prestashopLastName: "User"
prestashopCountry: "us"
prestashopLanguage: "en"

9
examples/prestashop/setup-kubernetes.sh Executable file
View File

@ -0,0 +1,9 @@
#!/bin/bash
if [ $(id -u) -ne 0 ] ; then
echo "❌ Run me as root"
exit 1
fi
helm repo add bitnami https://charts.bitnami.com/bitnami
helm install -f prestashop-chart-values.yml prestashop bitnami/prestashop

56
examples/prestashop/swarm.yml Normal file
View File

@ -0,0 +1,56 @@
version: '3'
services:
myps:
image: prestashop/prestashop:1.7
volumes:
- ps_data:/var/www/html
networks:
- bw-services
environment:
- DB_SERVER=mydb
- DB_USER=user
- DB_PASSWD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
- DB_PREFIX=prefix_ # replace with a random prefix (good security practice)
- DB_NAME=prestashop
- PS_ENABLE_SSL=1
- ADMIN_MAIL=admin@example.com # change to the prestashop admin email
- ADMIN_PASSWD=changeme # change to the prestashop admin password
deploy:
placement:
constraints:
- "node.role==worker"
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.MAX_CLIENT_SIZE=50m
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://myps
- bunkerweb.LIMIT_REQ_URL_1=/install/index.php
- bunkerweb.LIMIT_REQ_RATE_1=8r/s
mydb:
image: mariadb
volumes:
- db_data:/var/lib/mysql
networks:
- bw-services
environment:
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
- MYSQL_DATABASE=prestashop
- MYSQL_USER=user
- MYSQL_PASSWORD=db-user-pwd # replace with a stronger password (must match DB_PASSWD)
deploy:
placement:
constraints:
- "node.role==worker"
networks:
bw-services:
external:
name: bw-services
volumes:
ps_data:
db_data:

17
examples/prestashop/tests.json Normal file
View File

@ -0,0 +1,17 @@
{
"name": "prestashop",
"kinds": [
"docker",
"autoconf",
"swarm",
"kubernetes"
],
"timeout": 120,
"tests": [
{
"type": "string",
"url": "https://www.example.com",
"string": "prestashop"
}
]
}

14
examples/proxy-protocol/tests.json Normal file
View File

@ -0,0 +1,14 @@
{
"name": "proxy-protocol",
"kinds": [
"docker"
],
"timeout": 60,
"tests": [
{
"type": "string",
"url": "http://www.example.com",
"string": "hello"
}
]
}

38
examples/radarr/autoconf.yml Normal file
View File

@ -0,0 +1,38 @@
version: '3.5'
services:
radarr:
image: lscr.io/linuxserver/radarr:latest
networks:
bw-services:
aliases:
- radarr
environment:
- PUID=1000
- PGID=1000
- TZ=Europe/London
volumes:
- ./config:/config
- ./movies:/movies #optional
- ./downloads:/downloads #optional
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.MAX_CLIENT_SIZE=50m
# Methods used by the radarr API
# more info at https://radarr.video/docs/api/
- bunkerweb.ALLOWED_METHODS=GET|POST|HEAD|DELETE|PUT
# Proxy requests to radarr
# websocket is needed
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://radarr:7878
- bunkerweb.REVERSE_PROXY_WS=yes
# Increase request rate for API endpoints
- bunkerweb.LIMIT_REQ_URL_1=^/api/
- bunkerweb.LIMIT_REQ_RATE_1=10r/s
networks:
bw-services:
external:
name: bw-services

45
examples/radarr/swarm.yml Normal file
View File

@ -0,0 +1,45 @@
version: '3.5'
services:
radarr:
image: lscr.io/linuxserver/radarr:latest
networks:
- bw-services
environment:
- PUID=1000
- PGID=1000
- TZ=Europe/London
volumes:
- rr_config:/config
- rr_movies:/movies #optional
- rr_downloads:/downloads #optional
deploy:
placement:
constraints:
- "node.role==worker"
labels:
- bunkerweb.SERVER_NAME=www.example.com
- bunkerweb.MAX_CLIENT_SIZE=50m
# Methods used by the radarr API
# more info at https://radarr.video/docs/api/
- bunkerweb.ALLOWED_METHODS=GET|POST|HEAD|DELETE|PUT
# Proxy requests to radarr
# websocket is needed
- bunkerweb.USE_REVERSE_PROXY=yes
- bunkerweb.REVERSE_PROXY_URL=/
- bunkerweb.REVERSE_PROXY_HOST=http://radarr:7878
- bunkerweb.REVERSE_PROXY_WS=yes
# Increase request rate for API endpoints
- bunkerweb.LIMIT_REQ_URL_1=^/api/
- bunkerweb.LIMIT_REQ_RATE_1=10r/s
networks:
bw-services:
external:
name: bw-services
volumes:
rr_config:
rr_downloads:
rr_movies:

16
examples/radarr/tests.json Normal file
View File

@ -0,0 +1,16 @@
{
"name": "radarr",
"kinds": [
"docker",
"autoconf",
"swarm"
],
"timeout": 60,
"tests": [
{
"type": "string",
"url": "https://www.example.com",
"string": "radarr"
}
]
}