first commit

Author: Alankrit Srivastava

Diff for: README.md

@@ -0,0 +1 @@
+# magento2-varnish-redis-ssl-docker-compose

Diff for: backups/backup.sh

@@ -0,0 +1,17 @@
+#!/bin/bash
+
+set -x
+## Mention your database container name
+container_name=mysql
+
+## Mention your mysql root password
+mysql_root_password=rootpassword123
+
+DATE=`date +%F-%H-%M-%S`
+
+for database in `echo 'show databases;' | docker exec -i mysql mysql --user=root --password=$mysql_root_password | grep -v Database | grep -v information_schema | grep -v mysql | grep -v performance_schema`
+do
+echo $database
+docker exec $container_name mysqldump -u root -p$mysql_root_password $database > $database-$DATE.sql && tar -zcvf $database-$DATE.tar.gz $database-$DATE.sql && rm $database-$DATE.sql && echo "$database-$DATE.tar.gz has been created on `date`" >> database_backup.log
+done
+

Diff for: cache_server/Dockerfile

@@ -0,0 +1,25 @@
+From ubuntu:14.04
+
+MAINTAINER Alankrit Srivastava [email protected]
+
+##update server
+
+RUN apt-get update \
+
+##install supervisor and setup supervisord.conf file
+
+&& apt-get install -y supervisor \
+ 
+&& mkdir -p /var/log/supervisor \
+
+##install varnish
+
+&& apt-get -y install varnish \
+
+&& rm /etc/varnish/default.vcl \
+
+&& rm /etc/default/varnish 
+
+EXPOSE 6082 80
+
+CMD ["/usr/bin/supervisord"]

Diff for: cache_server/default.vcl

@@ -0,0 +1,138 @@
+import std;
+# The minimal Varnish version is 3.0.5
+# For SSL offloading, pass the following header in your proxy server or load balancer: 'X-Forwarded-Proto: https'
+
+
+backend default {
+    .host = "apache2";
+    .port = "8080";
+}
+
+acl purge {
+    "127.0.0.1";
+}
+
+sub vcl_recv {
+    if (req.restarts == 0) {
+        if (req.http.x-forwarded-for) {
+            set req.http.X-Forwarded-For =
+            req.http.X-Forwarded-For + ", " + client.ip;
+        } else {
+            set req.http.X-Forwarded-For = client.ip;
+        }
+    }
+
+    if (req.request == "PURGE") {
+        if (client.ip !~ purge) {
+            error 405 "Method not allowed";
+        }
+        if (!req.http.X-Magento-Tags-Pattern) {
+            error 400 "X-Magento-Tags-Pattern header required";
+        }
+        ban("obj.http.X-Magento-Tags ~ " + req.http.X-Magento-Tags-Pattern);
+        error 200 "Purged";
+    }
+
+    if (req.request != "GET" &&
+        req.request != "HEAD" &&
+        req.request != "PUT" &&
+        req.request != "POST" &&
+        req.request != "TRACE" &&
+        req.request != "OPTIONS" &&
+        req.request != "DELETE") {
+          /* Non-RFC2616 or CONNECT which is weird. */
+          return (pipe);
+    }
+
+    # We only deal with GET and HEAD by default
+    if (req.request != "GET" && req.request != "HEAD") {
+        return (pass);
+    }
+
+    # Bypass shopping cart, checkout and search requests
+    if (req.url ~ "/checkout" || req.url ~ "/catalogsearch") {
+        return (pass);
+    }
+
+    # normalize url in case of leading HTTP scheme and domain
+    set req.url = regsub(req.url, "^http[s]?://", "");
+
+    # collect all cookies
+    std.collect(req.http.Cookie);
+
+    # static files are always cacheable. remove SSL flag and cookie
+    if (req.url ~ "^/(pub/)?(media|static)/.*\.(ico|css|js|jpg|jpeg|png|gif|tiff|bmp|gz|tgz|bz2|tbz|mp3|ogg|svg|swf|woff|woff2|eot|ttf|otf)$") {
+        unset req.http.Https;
+        unset req.http.X-Forwarded-Proto;
+        unset req.http.Cookie;
+    }
+
+    set req.grace = 1m;
+
+    return (lookup);
+}
+
+sub vcl_hash {
+    if (req.http.cookie ~ "X-Magento-Vary=") {
+        hash_data(regsub(req.http.cookie, "^.*?X-Magento-Vary=([^;]+);*.*$", "\1"));
+    }
+
+    if (req.http.X-Forwarded-Proto) {
+        hash_data(req.http.X-Forwarded-Proto);
+    }
+    
+}
+
+sub vcl_fetch {
+    if (beresp.http.content-type ~ "text") {
+        set beresp.do_esi = true;
+    }
+
+    if (req.url ~ "\.js$" || beresp.http.content-type ~ "text") {
+        set beresp.do_gzip = true;
+    }
+
+    # cache only successfully responses and 404s
+    if (beresp.status != 200 && beresp.status != 404) {
+        set beresp.ttl = 0s;
+        return (hit_for_pass);
+    } elsif (beresp.http.Cache-Control ~ "private") {
+        return (hit_for_pass);
+    }
+
+    if (beresp.http.X-Magento-Debug) {
+        set beresp.http.X-Magento-Cache-Control = beresp.http.Cache-Control;
+    }
+
+    # validate if we need to cache it and prevent from setting cookie
+    # images, css and js are cacheable by default so we have to remove cookie also
+    if (beresp.ttl > 0s && (req.request == "GET" || req.request == "HEAD")) {
+        unset beresp.http.set-cookie;
+            if (req.url !~ "\.(ico|css|js|jpg|jpeg|png|gif|tiff|bmp|mp3|ogg|svg|swf|woff|woff2|eot|ttf|otf)(\?|$)") {
+            set beresp.http.Pragma = "no-cache";
+            set beresp.http.Expires = "-1";
+            set beresp.http.Cache-Control = "no-store, no-cache, must-revalidate, max-age=0";
+            set beresp.grace = 1m;
+        }
+    }
+}
+
+sub vcl_deliver {
+    if (resp.http.X-Magento-Debug) {
+        if (obj.hits > 0) {
+            set resp.http.X-Magento-Cache-Debug = "HIT";
+        } else {
+            set resp.http.X-Magento-Cache-Debug = "MISS";
+        }
+    } else {
+        unset resp.http.Age;
+    }
+
+    unset resp.http.X-Magento-Debug;
+    unset resp.http.X-Magento-Tags;
+    unset resp.http.X-Powered-By;
+    unset resp.http.Server;
+    unset resp.http.X-Varnish;
+    unset resp.http.Via;
+    unset resp.http.Link;
+}

Diff for: cache_server/supervisord.conf

@@ -0,0 +1,5 @@
+[supervisord]
+nodaemon=true
+
+[program:varnish3.0]
+command=/bin/bash -c "/usr/sbin/varnishd -P /run/varnishd.pid -a :6081 -F -T localhost:6082 -f /etc/varnish/default.vcl -S /etc/varnish/secret -s malloc,256m"

Diff for: cache_server/varnish

@@ -0,0 +1,113 @@
+# Configuration file for varnish
+#
+# /etc/init.d/varnish expects the variables $DAEMON_OPTS, $NFILES and $MEMLOCK
+# to be set from this shell script fragment.
+#
+# Note: If systemd is installed, this file is obsolete and ignored.  You will
+# need to copy /lib/systemd/system/varnish.service to /etc/systemd/system/ and
+# edit that file.
+
+# Should we start varnishd at boot?  Set to "no" to disable.
+START=yes
+
+# Maximum number of open files (for ulimit -n)
+NFILES=131072
+
+# Maximum locked memory size (for ulimit -l)
+# Used for locking the shared memory log in memory.  If you increase log size,
+# you need to increase this number as well
+MEMLOCK=82000
+
+# Default varnish instance name is the local nodename.  Can be overridden with
+# the -n switch, to have more instances on a single server.
+# You may need to uncomment this variable for alternatives 1 and 3 below.
+# INSTANCE=$(uname -n)
+
+# This file contains 4 alternatives, please use only one.
+
+## Alternative 1, Minimal configuration, no VCL
+#
+# Listen on port 6081, administration on localhost:6082, and forward to
+# content server on localhost:8080.  Use a 1GB fixed-size cache file.
+#
+# This example uses the INSTANCE variable above, which you need to uncomment.
+#
+# DAEMON_OPTS="-a :6081 \
+#              -T localhost:6082 \
+# 	     -b localhost:8080 \
+# 	     -u varnish -g varnish \
+#            -S /etc/varnish/secret \
+# 	     -s file,/var/lib/varnish/$INSTANCE/varnish_storage.bin,1G"
+
+
+## Alternative 2, Configuration with VCL
+#
+# Listen on port 6081, administration on localhost:6082, and forward to
+# one content server selected by the vcl file, based on the request.
+#
+DAEMON_OPTS="-a :6081 \
+             -T localhost:6082 \
+             -f /etc/varnish/default.vcl \
+             -S /etc/varnish/secret \
+             -s malloc,256m"
+
+
+## Alternative 3, Advanced configuration
+#
+# This example uses the INSTANCE variable above, which you need to uncomment.
+#
+# See varnishd(1) for more information.
+#
+# # Main configuration file. You probably want to change it :)
+# VARNISH_VCL_CONF=/etc/varnish/default.vcl
+#
+# # Default address and port to bind to
+# # Blank address means all IPv4 and IPv6 interfaces, otherwise specify
+# # a host name, an IPv4 dotted quad, or an IPv6 address in brackets.
+# VARNISH_LISTEN_ADDRESS=
+# VARNISH_LISTEN_PORT=6081
+#
+# # Telnet admin interface listen address and port
+# VARNISH_ADMIN_LISTEN_ADDRESS=127.0.0.1
+# VARNISH_ADMIN_LISTEN_PORT=6082
+#
+# # The minimum number of worker threads to start
+# VARNISH_MIN_THREADS=1
+#
+# # The Maximum number of worker threads to start
+# VARNISH_MAX_THREADS=1000
+#
+# # Idle timeout for worker threads
+# VARNISH_THREAD_TIMEOUT=120
+#
+# # Cache file location
+# VARNISH_STORAGE_FILE=/var/lib/varnish/$INSTANCE/varnish_storage.bin
+#
+# # Cache file size: in bytes, optionally using k / M / G / T suffix,
+# # or in percentage of available disk space using the % suffix.
+# VARNISH_STORAGE_SIZE=1G
+#
+# # File containing administration secret
+# VARNISH_SECRET_FILE=/etc/varnish/secret
+# 
+# # Backend storage specification
+# VARNISH_STORAGE="file,${VARNISH_STORAGE_FILE},${VARNISH_STORAGE_SIZE}"
+#
+# # Default TTL used when the backend does not specify one
+# VARNISH_TTL=120
+#
+# # DAEMON_OPTS is used by the init script.  If you add or remove options, make
+# # sure you update this section, too.
+# DAEMON_OPTS="-a ${VARNISH_LISTEN_ADDRESS}:${VARNISH_LISTEN_PORT} \
+#              -f ${VARNISH_VCL_CONF} \
+#              -T ${VARNISH_ADMIN_LISTEN_ADDRESS}:${VARNISH_ADMIN_LISTEN_PORT} \
+#              -t ${VARNISH_TTL} \
+#              -w ${VARNISH_MIN_THREADS},${VARNISH_MAX_THREADS},${VARNISH_THREAD_TIMEOUT} \
+# 	       -S ${VARNISH_SECRET_FILE} \
+#              -s ${VARNISH_STORAGE}"
+#
+
+
+## Alternative 4, Do It Yourself
+#
+# DAEMON_OPTS=""

Diff for: database_server/Dockerfile

@@ -0,0 +1,33 @@
+From ubuntu:14.04
+
+MAINTAINER Alankrit Srivastava [email protected]
+
+ARG mysql_password
+
+##update server
+
+RUN apt-get update \
+
+## Install mysql-server
+
+&& DEBIAN_FRONTEND=noninteractive apt-get -y install debconf-utils \
+
+&& echo "mysql-server-5.6 mysql-server/root_password password ${mysql_password}" | debconf-set-selections \
+
+&& echo "mysql-server-5.6 mysql-server/root_password_again password ${mysql_password}" | debconf-set-selections \
+
+&& DEBIAN_FRONTEND=noninteractive  apt-get install -y mysql-server-5.6 \
+
+&& sed -i -e"s/^bind-address\s*=\s*127.0.0.1/bind-address = 0.0.0.0/" /etc/mysql/my.cnf \
+
+##install supervisor and setup supervisord.conf file
+
+&& apt-get install -y supervisor \
+  
+&& mkdir -p /var/log/supervisor  
+
+VOLUME /var/lib/mysql
+
+Expose 3306
+
+CMD ["/usr/bin/supervisord"]

Diff for: database_server/mysql.sh

@@ -0,0 +1,26 @@
+#!/bin/bash
+
+set -x
+database_name=magento_db                    ## Mention database name
+database_user=magento_user                  ## Mention database user
+database_root_password=rootpassword123      ## Mention mysql root password.
+
+## Same password must be passed as argument during image build.
+
+## Database user password will be randomly generated
+
+database_user_password=`date | md5sum | fold -w 12 | head -n 1`
+
+## Database user password will be stored in /var/log/check.log ##
+## Remove /var/log/check.log after retrieving password .       ##
+
+database_availability_check=`mysqlshow --user=root --password=$database_root_password | grep -ow $database_name`
+
+if [ "$database_availability_check" == "$database_name" ]; then
+exit 1
+else
+mysql -u root -p$database_root_password -e "create database $database_name;"
+mysql -u root -p$database_root_password -e "grant all on $database_name.* to '$database_user'@'%' identified by '$database_user_password';"
+echo "Your database user "$database_user" password for database "$database_name" is "$database_user_password"" > /var/log/check.log
+fi
+

Diff for: database_server/supervisord.conf

@@ -0,0 +1,8 @@
+[supervisord]
+nodaemon=true
+ 
+[program:mysql]
+command=/usr/bin/mysqld_safe
+ 
+[program:script_of_user_creation]
+command=/bin/bash -c "chmod a+x /etc/mysql.sh; /etc/mysql.sh"