2022-11-05 19:10:02 -03:00
|
|
|
#!make
|
|
|
|
|
NAMESPACE ?= chevereto
|
|
|
|
|
NAMESPACE_FILE = ./namespace/${NAMESPACE}
|
2022-11-05 19:30:40 -03:00
|
|
|
NAMESPACE_FILE_EXISTS = false
|
2022-11-05 19:10:02 -03:00
|
|
|
ifneq ("$(wildcard ${NAMESPACE_FILE})","")
|
2022-11-05 19:30:40 -03:00
|
|
|
NAMESPACE_FILE_EXISTS = true
|
2022-11-05 19:10:02 -03:00
|
|
|
include ${NAMESPACE_FILE}
|
|
|
|
|
export $(shell sed 's/=.*//' ${NAMESPACE_FILE})
|
|
|
|
|
endif
|
2022-10-16 11:24:22 -03:00
|
|
|
SOURCE ?= ~/git/chevereto/v4
|
|
|
|
|
TARGET ?= prod# prod|dev
|
2022-04-01 16:04:53 -03:00
|
|
|
VERSION ?= 4.0
|
|
|
|
|
PHP ?= 8.1
|
|
|
|
|
DOCKER_USER ?= www-data
|
2022-10-06 15:31:11 -03:00
|
|
|
HOSTNAME ?= localhost
|
|
|
|
|
HOSTNAME_PATH ?= /
|
2022-04-01 16:04:53 -03:00
|
|
|
PROTOCOL ?= http
|
2022-04-03 21:56:25 -04:00
|
|
|
SERVICE ?= php
|
2022-11-05 15:50:43 -03:00
|
|
|
ENCRYPTION_KEY ?=
|
|
|
|
|
EMAIL_HTTPS ?= mail@yourdomain.tld
|
2022-10-17 16:16:44 -03:00
|
|
|
HTTP_PORT ?= 80
|
|
|
|
|
HTTPS_PORT ?= 443
|
|
|
|
|
PORT = $(shell [ "${PROTOCOL}" = "http" ] && echo \${HTTP_PORT} || echo \${HTTPS_PORT})
|
2022-10-17 15:22:07 -03:00
|
|
|
HTTPS = $(shell [ "${PROTOCOL}" = "http" ] && echo 0 || echo 1)
|
2022-10-17 16:16:44 -03:00
|
|
|
HTTPS_CERT = https/$(shell [ -f "https/cert.pem" ] && echo || echo dummy/)cert.pem
|
|
|
|
|
HTTPS_KEY = https/$(shell [ -f "https/key.pem" ] && echo || echo dummy/)key.pem
|
2022-11-05 15:50:43 -03:00
|
|
|
URL = ${PROTOCOL}://${HOSTNAME}${HOSTNAME_PATH}
|
|
|
|
|
URL_PORT = ${PROTOCOL}://${HOSTNAME}:${PORT}${HOSTNAME_PATH}
|
2022-10-17 15:22:07 -03:00
|
|
|
PROJECT = $(shell [ "${TARGET}" = "prod" ] && echo \${NAMESPACE}_chevereto || echo \${NAMESPACE}_chevereto-\${TARGET})
|
2022-10-17 19:48:55 -03:00
|
|
|
CONTAINER_BASENAME = ${PROJECT}-${VERSION}
|
2022-11-03 19:15:26 -03:00
|
|
|
IMAGE_TAG = chevereto:${VERSION}
|
2022-10-16 11:24:22 -03:00
|
|
|
COMPOSE ?= docker-compose
|
|
|
|
|
PROJECT_COMPOSE = ${COMPOSE}.yml
|
2022-10-17 19:48:55 -03:00
|
|
|
COMPOSE_SAMPLE = $(shell [ "${TARGET}" = "prod" ] && echo default || echo dev).yml
|
2022-10-17 14:37:05 -03:00
|
|
|
COMPOSE_FILE = $(shell [ -f \${PROJECT_COMPOSE} ] && echo \${PROJECT_COMPOSE} || echo \${COMPOSE_SAMPLE})
|
2022-11-05 19:30:40 -03:00
|
|
|
FEEDBACK = $(shell echo 👉 \${TARGET} \${NAMESPACE}@\${NAMESPACE_FILE} V\${VERSION} [PHP \${PHP}] \(\${DOCKER_USER}\))
|
2022-10-16 11:24:22 -03:00
|
|
|
FEEDBACK_SHORT = $(shell echo 👉 \${TARGET} V\${VERSION} [PHP \${PHP}] \(\${DOCKER_USER}\))
|
|
|
|
|
LICENSE ?= $(shell stty -echo; read -p "Chevereto V4 License key: 🔑" license; stty echo; echo $$license)
|
2022-10-17 15:49:40 -03:00
|
|
|
ACME_CHALLENGE = $(shell [ ! -d ".well-known" ] && mkdir -p .well-known)
|
|
|
|
|
DOCKER_COMPOSE = $(shell ${ACME_CHALLENGE} echo @CONTAINER_BASENAME=\${CONTAINER_BASENAME} \
|
2022-10-17 19:48:55 -03:00
|
|
|
SOURCE=\${SOURCE} \
|
2022-10-17 16:16:44 -03:00
|
|
|
HTTP_PORT=\${HTTP_PORT} \
|
|
|
|
|
HTTPS_PORT=\${HTTPS_PORT} \
|
2022-10-17 10:37:15 -03:00
|
|
|
HTTPS_CERT=\${HTTPS_CERT} \
|
|
|
|
|
HTTPS_KEY=\${HTTPS_KEY} \
|
2022-10-17 10:22:01 -03:00
|
|
|
HTTPS=\${HTTPS} \
|
2022-10-18 10:13:49 -03:00
|
|
|
IMAGE_TAG=\${IMAGE_TAG} \
|
2022-10-17 10:22:01 -03:00
|
|
|
VERSION=\${VERSION} \
|
|
|
|
|
HOSTNAME=\${HOSTNAME} \
|
|
|
|
|
HOSTNAME_PATH=\${HOSTNAME_PATH} \
|
|
|
|
|
URL=\${URL} \
|
|
|
|
|
docker compose -p \${PROJECT} -f \${COMPOSE_FILE})
|
2022-10-07 14:22:07 -03:00
|
|
|
|
2022-10-17 19:48:55 -03:00
|
|
|
# Informational
|
|
|
|
|
|
2022-10-06 15:31:11 -03:00
|
|
|
feedback:
|
|
|
|
|
@./scripts/logo.sh
|
2022-04-01 16:04:53 -03:00
|
|
|
@echo "${FEEDBACK}"
|
|
|
|
|
|
2022-10-06 15:31:11 -03:00
|
|
|
feedback--short:
|
|
|
|
|
@echo "${FEEDBACK_SHORT}"
|
|
|
|
|
|
2022-10-07 14:22:07 -03:00
|
|
|
feedback--compose:
|
|
|
|
|
@echo "🐋 ${COMPOSE_FILE}"
|
|
|
|
|
|
2022-10-16 11:24:22 -03:00
|
|
|
feedback--url:
|
|
|
|
|
@echo "🌎 ${URL}"
|
|
|
|
|
|
|
|
|
|
feedback--volumes:
|
|
|
|
|
@echo "${PROJECT}_database"
|
|
|
|
|
@echo "${PROJECT}_storage"
|
|
|
|
|
|
2022-11-05 19:30:40 -03:00
|
|
|
feedback--namespace:
|
|
|
|
|
@echo "$(shell [ "${NAMESPACE_FILE_EXISTS}" = "true" ] && echo "✅" || echo "❌") ${NAMESPACE_FILE}"
|
|
|
|
|
@echo "🔑 ${ENCRYPTION_KEY}"
|
|
|
|
|
@echo "🌎 ${HOSTNAME}"
|
|
|
|
|
|
2022-04-01 16:04:53 -03:00
|
|
|
# Docker
|
|
|
|
|
|
2022-10-06 15:31:11 -03:00
|
|
|
image: feedback--short
|
2022-04-03 19:35:44 -04:00
|
|
|
@chmod +x ./scripts/chevereto.sh
|
|
|
|
|
@LICENSE=${LICENSE} \
|
|
|
|
|
VERSION=${VERSION} \
|
|
|
|
|
./scripts/chevereto.sh
|
2022-10-18 10:13:49 -03:00
|
|
|
@echo "* Building image ${IMAGE_TAG}"
|
2022-04-03 21:56:25 -04:00
|
|
|
@docker build . \
|
2022-10-17 13:25:36 -03:00
|
|
|
--network host \
|
2022-10-16 11:24:22 -03:00
|
|
|
-f Dockerfile \
|
2022-11-03 19:15:26 -03:00
|
|
|
-t ${IMAGE_TAG}
|
2022-04-03 19:35:44 -04:00
|
|
|
|
2022-10-06 15:31:11 -03:00
|
|
|
image-custom: feedback--short
|
2022-10-17 19:48:55 -03:00
|
|
|
@mkdir -p chevereto
|
2022-10-18 10:13:49 -03:00
|
|
|
echo "* Building custom image ${IMAGE_TAG}"
|
2022-04-03 19:35:44 -04:00
|
|
|
@docker build . \
|
2022-10-17 19:48:55 -03:00
|
|
|
--network host \
|
2022-10-16 11:24:22 -03:00
|
|
|
-f Dockerfile \
|
2022-11-03 19:15:26 -03:00
|
|
|
-t ${IMAGE_TAG}
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-16 11:24:22 -03:00
|
|
|
volume-cp:
|
2022-10-17 10:22:01 -03:00
|
|
|
@docker run --rm -it -v ${VOLUME_FROM}:/from -v ${VOLUME_TO}:/to alpine ash -c "cd /from ; cp -av . /to"
|
2022-10-16 11:24:22 -03:00
|
|
|
|
|
|
|
|
volume-rm:
|
2022-10-17 10:22:01 -03:00
|
|
|
@docker volume rm ${VOLUME}
|
2022-09-08 13:40:50 -04:00
|
|
|
|
2022-10-17 19:48:55 -03:00
|
|
|
# Logs
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-17 10:22:01 -03:00
|
|
|
log: feedback
|
|
|
|
|
@docker logs -f ${CONTAINER_BASENAME}_${SERVICE}
|
|
|
|
|
|
2022-10-06 15:31:11 -03:00
|
|
|
log-access: feedback
|
2022-04-01 16:04:53 -03:00
|
|
|
@docker logs ${CONTAINER_BASENAME}_${SERVICE} -f 2>/dev/null
|
|
|
|
|
|
2022-10-06 15:31:11 -03:00
|
|
|
log-error: feedback
|
2022-04-01 16:04:53 -03:00
|
|
|
@docker logs ${CONTAINER_BASENAME}_${SERVICE} -f 1>/dev/null
|
|
|
|
|
|
2022-10-17 19:48:55 -03:00
|
|
|
# Tools
|
|
|
|
|
|
|
|
|
|
bash: feedback
|
|
|
|
|
@docker exec -it --user ${DOCKER_USER} \
|
|
|
|
|
${CONTAINER_BASENAME}_${SERVICE} \
|
|
|
|
|
bash
|
|
|
|
|
|
|
|
|
|
run: feedback
|
|
|
|
|
@docker exec -it \
|
|
|
|
|
${CONTAINER_BASENAME}_${SERVICE} \
|
|
|
|
|
bash /var/scripts/${SCRIPT}.sh
|
|
|
|
|
|
2022-11-05 19:10:02 -03:00
|
|
|
encryption-key:
|
|
|
|
|
@openssl rand -base64 32
|
|
|
|
|
|
|
|
|
|
.PHONY: namespace
|
|
|
|
|
namespace:
|
|
|
|
|
@chmod +x ./scripts/namespace.sh
|
|
|
|
|
@NAMESPACE=${NAMESPACE} \
|
|
|
|
|
NAMESPACE_EXISTS=${NAMESPACE_EXISTS} \
|
|
|
|
|
NAMESPACE_FILE=${NAMESPACE_FILE} \
|
|
|
|
|
HOSTNAME=${HOSTNAME} \
|
|
|
|
|
ENCRYPTION_KEY=${ENCRYPTION_KEY} \
|
|
|
|
|
./scripts/namespace.sh
|
|
|
|
|
|
|
|
|
|
|
2022-10-17 19:48:55 -03:00
|
|
|
# Docker compose
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-16 11:24:22 -03:00
|
|
|
up: feedback feedback--compose feedback--url
|
|
|
|
|
${DOCKER_COMPOSE} up
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-16 11:24:22 -03:00
|
|
|
up-d: feedback feedback--compose feedback--url
|
|
|
|
|
${DOCKER_COMPOSE} up -d
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-07 14:22:07 -03:00
|
|
|
stop: feedback feedback--compose
|
2022-10-16 11:24:22 -03:00
|
|
|
${DOCKER_COMPOSE} stop
|
|
|
|
|
|
|
|
|
|
start: feedback feedback--compose
|
|
|
|
|
${DOCKER_COMPOSE} start
|
|
|
|
|
|
|
|
|
|
restart: feedback feedback--compose
|
|
|
|
|
${DOCKER_COMPOSE} restart
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-07 14:22:07 -03:00
|
|
|
down: feedback feedback--compose
|
2022-10-16 11:24:22 -03:00
|
|
|
${DOCKER_COMPOSE} down
|
2022-04-01 16:04:53 -03:00
|
|
|
|
2022-10-07 14:22:07 -03:00
|
|
|
down--volumes: feedback feedback--compose
|
2022-10-16 11:24:22 -03:00
|
|
|
${DOCKER_COMPOSE} down --volumes
|
2022-10-17 10:22:01 -03:00
|
|
|
|
2022-11-03 19:15:26 -03:00
|
|
|
# nginx-proxy
|
|
|
|
|
|
|
|
|
|
proxy:
|
|
|
|
|
@docker network create nginx-proxy || true
|
|
|
|
|
@docker run \
|
|
|
|
|
--detach \
|
|
|
|
|
--name nginx-proxy \
|
|
|
|
|
--net nginx-proxy \
|
|
|
|
|
--publish 80:80 \
|
|
|
|
|
--publish 443:443 \
|
|
|
|
|
--volume certs:/etc/nginx/certs \
|
|
|
|
|
--volume vhost:/etc/nginx/vhost.d \
|
|
|
|
|
--volume html:/usr/share/nginx/html \
|
|
|
|
|
--volume /var/run/docker.sock:/tmp/docker.sock:ro \
|
|
|
|
|
nginxproxy/nginx-proxy
|
|
|
|
|
@docker run \
|
|
|
|
|
--detach \
|
|
|
|
|
--name nginx-proxy-acme \
|
|
|
|
|
--volumes-from nginx-proxy \
|
|
|
|
|
--volume /var/run/docker.sock:/var/run/docker.sock:ro \
|
|
|
|
|
--volume acme:/etc/acme.sh \
|
2022-11-05 15:50:43 -03:00
|
|
|
--env "DEFAULT_EMAIL=${EMAIL_HTTPS}" \
|
2022-11-03 19:15:26 -03:00
|
|
|
nginxproxy/acme-companion
|
|
|
|
|
|
|
|
|
|
proxy--view:
|
|
|
|
|
@docker exec nginx-proxy cat /etc/nginx/conf.d/default.conf
|
|
|
|
|
|
|
|
|
|
proxy--remove:
|
|
|
|
|
@docker container rm -f nginx-proxy nginx-proxy-acme || true
|
|
|
|
|
|
2022-10-17 14:37:05 -03:00
|
|
|
# https
|
2022-10-17 10:22:01 -03:00
|
|
|
|
|
|
|
|
certbot:
|
|
|
|
|
@echo "🔐 Generating certificate"
|
|
|
|
|
@HOSTNAME=${HOSTNAME} \
|
|
|
|
|
docker container run \
|
|
|
|
|
-it \
|
|
|
|
|
--rm \
|
|
|
|
|
-v ${PWD}/letsencrypt/certs:/etc/letsencrypt \
|
2022-10-17 15:49:40 -03:00
|
|
|
-v ${PWD}/.well-known:/data/letsencrypt/.well-known \
|
2022-10-17 10:22:01 -03:00
|
|
|
certbot/certbot certonly \
|
|
|
|
|
--webroot \
|
|
|
|
|
--webroot-path=/data/letsencrypt \
|
|
|
|
|
-d ${HOSTNAME} \
|
|
|
|
|
&& cp ${PWD}/letsencrypt/certs/live/${HOSTNAME}/fullchain.pem ${PWD}/https/cert.pem \
|
|
|
|
|
&& cp ${PWD}/letsencrypt/certs/live/${HOSTNAME}/privkey.pem ${PWD}/https/key.pem
|
|
|
|
|
|
|
|
|
|
cert-self:
|
|
|
|
|
@echo "🔐 Generating self-signed certificate"
|
|
|
|
|
@cd ${PWD}/https \
|
|
|
|
|
&& openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem
|
|
|
|
|
|
