mirror of
https://github.com/vitodeploy/vito.git
synced 2025-07-02 14:36:17 +00:00
Isolate Users (#431)
* WIP to isolate users * Resolved issue with SSH AsUser Updated Isolated User Script to use Server User for Team Access Updated Path creation script to simplify for running as the isolated user * Included the server user * PHPMyAdmin script updated Wordpress Script Updated Updated Execute Script to support executing as isolated users * Issue Resolution & Resolved Failing Unit Tests * Fix for isolated_username vs user * Run the deploy as the isolated user * queue updates for isolated user * Support isolated users in cronjobs * script tests for isolated users * Queue tests for isolated users * Cronjob tests for isolated user * Removed default queue command for laravel apps * add default user to factory * laravel pint fixes * ensure echos are consistent * removed unneeded parameter * update * fix queues for isolated users * revert addslashes --------- Co-authored-by: Saeed Vaziry <mr.saeedvaziry@gmail.com>
This commit is contained in:
Richard Anderson
GitHub
@ -110,4 +110,32 @@ public function getPHPIni(string $type): string
|
||||
sprintf('/etc/php/%s/%s/php.ini', $this->service->version, $type)
|
||||
);
|
||||
}
|
||||
|
||||
public function createFpmPool(string $user, string $version, $site_id): void
|
||||
{
|
||||
$this->service->server->ssh()->exec(
|
||||
$this->getScript('create-fpm-pool.sh', [
|
||||
'user' => $user,
|
||||
'version' => $version,
|
||||
'config' => $this->getScript('fpm-pool.conf', [
|
||||
'user' => $user,
|
||||
'version' => $version,
|
||||
]),
|
||||
]),
|
||||
"create-{$version}fpm-pool-{$user}",
|
||||
$site_id
|
||||
);
|
||||
}
|
||||
|
||||
public function removeFpmPool(string $user, string $version, $site_id): void
|
||||
{
|
||||
$this->service->server->ssh()->exec(
|
||||
$this->getScript('remove-fpm-pool.sh', [
|
||||
'user' => $user,
|
||||
'version' => $version,
|
||||
]),
|
||||
"remove-{$version}fpm-pool-{$user}",
|
||||
$site_id
|
||||
);
|
||||
}
|
||||
}
|
||||
|
||||
2
app/SSH/Services/PHP/scripts/create-fpm-pool.sh
Normal file
2
app/SSH/Services/PHP/scripts/create-fpm-pool.sh
Normal file
@ -0,0 +1,2 @@
|
||||
echo '__config__' | sudo tee /etc/php/__version__/fpm/pool.d/__user__.conf
|
||||
sudo service php__version__-fpm restart
|
||||
22
app/SSH/Services/PHP/scripts/fpm-pool.conf
Normal file
22
app/SSH/Services/PHP/scripts/fpm-pool.conf
Normal file
@ -0,0 +1,22 @@
|
||||
[__user__]
|
||||
user = __user__
|
||||
group = __user__
|
||||
|
||||
listen = /run/php/php__version__-fpm-__user__.sock
|
||||
listen.owner = vito
|
||||
listen.group = vito
|
||||
listen.mode = 0660
|
||||
|
||||
pm = dynamic
|
||||
pm.max_children = 5
|
||||
pm.start_servers = 2
|
||||
pm.min_spare_servers = 1
|
||||
pm.max_spare_servers = 3
|
||||
pm.max_requests = 500
|
||||
|
||||
php_admin_value[open_basedir] = /home/__user__/:/tmp/
|
||||
php_admin_value[upload_tmp_dir] = /home/__user__/tmp
|
||||
php_admin_value[session.save_path] = /home/__user__/tmp
|
||||
php_admin_value[display_errors] = off
|
||||
php_admin_value[log_errors] = on
|
||||
php_admin_value[error_log] = /home/__user__/.logs/php_errors.log
|
||||
2
app/SSH/Services/PHP/scripts/remove-fpm-pool.sh
Normal file
2
app/SSH/Services/PHP/scripts/remove-fpm-pool.sh
Normal file
@ -0,0 +1,2 @@
|
||||
sudo rm -f /etc/php/__version__/fpm/pool.d/__user__.conf
|
||||
sudo service php__version__-fpm restart
|
||||
Reference in New Issue
Block a user