From c3ece2aed323ca5a4c987ab4ffee1a8fc99a2252 Mon Sep 17 00:00:00 2001 From: "Edge.do" Date: Wed, 22 Nov 2017 14:23:00 +0100 Subject: [PATCH] Docker install, multiple containers layout, #311, author: Edge.do, internal commit 8b3e2898dcb0d55f --- Docker/apache2/Dockerfile | 57 + Docker/apache2/apache2.conf | 222 ++ Docker/apache2/certs/.empty | 0 Docker/apache2/conf-enabled/security.conf | 162 ++ Docker/apache2/cron/cron | 1 + Docker/apache2/memcache.ini | 56 + Docker/apache2/php.ini | 1917 +++++++++++++++++ Docker/apache2/piwik-config.ini.php-stack | 74 + Docker/apache2/run | 19 + Docker/apache2/sites-enabled/ckan.conf-stack | 58 + .../sites-enabled/datapusher.apache2-4.conf | 14 + Docker/apache2/sites-enabled/piwik.conf-stack | 31 + Docker/ckan-base/Dockerfile | 57 + Docker/ckan-base/ckan-entrypoint.sh | 109 + Docker/ckan/Dockerfile | 54 + Docker/ckan/ckan-entrypoint.sh | 144 ++ Docker/ckan/conf/celery-supervisor.conf | 57 + Docker/ckan/conf/cron-supervisor.conf | 10 + Docker/ckan/conf/default.ini | 223 ++ Docker/ckan/cron/cron | 2 + Docker/datapusher/Dockerfile | 22 + Docker/datastore/Dockerfile | 22 + Docker/datastore/init.sh | 22 + Docker/docker-compose.yml | 100 + Docker/pgsql/Dockerfile | 19 + Docker/pgsql/init.sh | 10 + Docker/readme.md | 104 + Docker/solr/Dockerfile | 5 + Docker/solr/conf/schema.xml | 170 ++ 29 files changed, 3741 insertions(+) create mode 100644 Docker/apache2/Dockerfile create mode 100644 Docker/apache2/apache2.conf create mode 100644 Docker/apache2/certs/.empty create mode 100644 Docker/apache2/conf-enabled/security.conf create mode 100644 Docker/apache2/cron/cron create mode 100644 Docker/apache2/memcache.ini create mode 100644 Docker/apache2/php.ini create mode 100644 Docker/apache2/piwik-config.ini.php-stack create mode 100644 Docker/apache2/run create mode 100644 Docker/apache2/sites-enabled/ckan.conf-stack create mode 100644 Docker/apache2/sites-enabled/datapusher.apache2-4.conf create mode 100644 Docker/apache2/sites-enabled/piwik.conf-stack create mode 100644 Docker/ckan-base/Dockerfile create mode 100644 Docker/ckan-base/ckan-entrypoint.sh create mode 100644 Docker/ckan/Dockerfile create mode 100644 Docker/ckan/ckan-entrypoint.sh create mode 100644 Docker/ckan/conf/celery-supervisor.conf create mode 100644 Docker/ckan/conf/cron-supervisor.conf create mode 100644 Docker/ckan/conf/default.ini create mode 100644 Docker/ckan/cron/cron create mode 100644 Docker/datapusher/Dockerfile create mode 100644 Docker/datastore/Dockerfile create mode 100644 Docker/datastore/init.sh create mode 100644 Docker/docker-compose.yml create mode 100644 Docker/pgsql/Dockerfile create mode 100644 Docker/pgsql/init.sh create mode 100644 Docker/readme.md create mode 100644 Docker/solr/Dockerfile create mode 100644 Docker/solr/conf/schema.xml diff --git a/Docker/apache2/Dockerfile b/Docker/apache2/Dockerfile new file mode 100644 index 0000000..bc3bf4a --- /dev/null +++ b/Docker/apache2/Dockerfile @@ -0,0 +1,57 @@ +From ubuntu:16.04 + + +RUN apt-get update && \ + apt-get install -y \ + apache2 \ + cron \ + language-pack-pl \ + language-pack-pl-base \ + unzip \ + gettext-base \ + git \ + php-gd php-apcu php-mysqli php-memcached php-memcache php-xml php-soap php-zip \ + php-cli php-common php-bcmath php-curl php-gd php-geoip \ + php-imagick php-intl php-json php-msgpack php-mcrypt php-mysql \ + php-xml php-readline php-tidy php-mbstring php-opcache \ + libapache2-mod-php \ + && rm -rf /var/lib/apt/lists/* \ + && apt-get clean -y + + +# Enable apache2 modules + +RUN a2enmod ssl rewrite proxy proxy_http headers + +# Certificates and apache2 configs + +COPY certs/ /etc/ssl/certs/ +COPY conf-enabled/ /etc/apache2/conf-enabled/ +COPY apache2.conf /etc/apache2/apache2.conf +COPY sites-enabled/ckan.conf-stack /etc/apache2/sites-enabled/ +COPY sites-enabled/piwik.conf-stack /etc/apache2/sites-enabled/ +COPY .htpasswd /etc/apache2/ + +# Remove default config and disable other_vhost_access.log +RUN rm /etc/apache2/sites-enabled/000-default.conf && rm /etc/apache2/conf-enabled/other-vhosts-access-log.conf + +# PHP.ini setup + +COPY php.ini /etc/php/apache2/ +COPY memcache.ini /etc/php//mods-available/memcache.ini + +# Install piwik + +ADD http://builds.piwik.org/piwik.zip /var/www/html/ +RUN cd /var/www/html/ && unzip piwik.zip && \ + cd /var/www/html/ && rm piwik.zip && \ + chown -R www-data: /var/www/html/ + +ADD piwik-config.ini.php-stack /var/www/html/piwik/config/ + +# Add startup script + +ADD run /usr/sbin/run +RUN chmod +x /usr/sbin/run + +CMD ["/usr/sbin/run"] \ No newline at end of file diff --git a/Docker/apache2/apache2.conf b/Docker/apache2/apache2.conf new file mode 100644 index 0000000..c10ca1c --- /dev/null +++ b/Docker/apache2/apache2.conf @@ -0,0 +1,222 @@ +# This is the main Apache server configuration file. It contains the +# configuration directives that give the server its instructions. +# See http://httpd.apache.org/docs/2.4/ for detailed information about +# the directives and /usr/share/doc/apache2/README.Debian about Debian specific +# hints. +# +# +# Summary of how the Apache 2 configuration works in Debian: +# The Apache 2 web server configuration in Debian is quite different to +# upstream's suggested way to configure the web server. This is because Debian's +# default Apache2 installation attempts to make adding and removing modules, +# virtual hosts, and extra configuration directives as flexible as possible, in +# order to make automating the changes and administering the server as easy as +# possible. + +# It is split into several files forming the configuration hierarchy outlined +# below, all located in the /etc/apache2/ directory: +# +# /etc/apache2/ +# |-- apache2.conf +# | `-- ports.conf +# |-- mods-enabled +# | |-- *.load +# | `-- *.conf +# |-- conf-enabled +# | `-- *.conf +# `-- sites-enabled +# `-- *.conf +# +# +# * apache2.conf is the main configuration file (this file). It puts the pieces +# together by including all remaining configuration files when starting up the +# web server. +# +# * ports.conf is always included from the main configuration file. It is +# supposed to determine listening ports for incoming connections which can be +# customized anytime. +# +# * Configuration files in the mods-enabled/, conf-enabled/ and sites-enabled/ +# directories contain particular configuration snippets which manage modules, +# global configuration fragments, or virtual host configurations, +# respectively. +# +# They are activated by symlinking available configuration files from their +# respective *-available/ counterparts. These should be managed by using our +# helpers a2enmod/a2dismod, a2ensite/a2dissite and a2enconf/a2disconf. See +# their respective man pages for detailed information. +# +# * The binary is called apache2. Due to the use of environment variables, in +# the default configuration, apache2 needs to be started/stopped with +# /etc/init.d/apache2 or apache2ctl. Calling /usr/bin/apache2 directly will not +# work with the default configuration. + + +# Global configuration +# + +# +# ServerRoot: The top of the directory tree under which the server's +# configuration, error, and log files are kept. +# +# NOTE! If you intend to place this on an NFS (or otherwise network) +# mounted filesystem then please read the Mutex documentation (available +# at ); +# you will save yourself a lot of trouble. +# +# Do NOT add a slash at the end of the directory path. +# +#ServerRoot "/etc/apache2" + +# +# The accept serialization lock file MUST BE STORED ON A LOCAL DISK. +# +Mutex file:${APACHE_LOCK_DIR} default + +# +# PidFile: The file in which the server should record its process +# identification number when it starts. +# This needs to be set in /etc/apache2/envvars +# +PidFile ${APACHE_PID_FILE} + +# +# Timeout: The number of seconds before receives and sends time out. +# +Timeout 300 + +# +# KeepAlive: Whether or not to allow persistent connections (more than +# one request per connection). Set to "Off" to deactivate. +# +KeepAlive On + +# +# MaxKeepAliveRequests: The maximum number of requests to allow +# during a persistent connection. Set to 0 to allow an unlimited amount. +# We recommend you leave this number high, for maximum performance. +# +MaxKeepAliveRequests 100 + +# +# KeepAliveTimeout: Number of seconds to wait for the next request from the +# same client on the same connection. +# +KeepAliveTimeout 5 + + +# These need to be set in /etc/apache2/envvars +User ${APACHE_RUN_USER} +Group ${APACHE_RUN_GROUP} + +# +# HostnameLookups: Log the names of clients or just their IP addresses +# e.g., www.apache.org (on) or 204.62.129.132 (off). +# The default is off because it'd be overall better for the net if people +# had to knowingly turn this feature on, since enabling it means that +# each client request will result in AT LEAST one lookup request to the +# nameserver. +# +HostnameLookups Off + +# ErrorLog: The location of the error log file. +# If you do not specify an ErrorLog directive within a +# container, error messages relating to that virtual host will be +# logged here. If you *do* define an error logfile for a +# container, that host's errors will be logged there and not here. +# +ErrorLog ${APACHE_LOG_DIR}/error.log + +# +# LogLevel: Control the severity of messages logged to the error_log. +# Available values: trace8, ..., trace1, debug, info, notice, warn, +# error, crit, alert, emerg. +# It is also possible to configure the log level for particular modules, e.g. +# "LogLevel info ssl:warn" +# +LogLevel warn + +# Include module configuration: +IncludeOptional mods-enabled/*.load +IncludeOptional mods-enabled/*.conf + +# Include list of ports to listen on +Include ports.conf + + +# Sets the default security model of the Apache2 HTTPD server. It does +# not allow access to the root filesystem outside of /usr/share and /var/www. +# The former is used by web applications packaged in Debian, +# the latter may be used for local directories served by the web server. If +# your system is serving content from a sub-directory in /srv you must allow +# access here, or in any related virtual host. + + Options FollowSymLinks + AllowOverride None + Require all denied + + + + AllowOverride None + Require all granted + + + + Options Indexes FollowSymLinks + AllowOverride None + Require all granted + + +# +# Options Indexes FollowSymLinks +# AllowOverride None +# Require all granted +# + + + + +# AccessFileName: The name of the file to look for in each directory +# for additional configuration directives. See also the AllowOverride +# directive. +# +AccessFileName .htaccess + +# +# The following lines prevent .htaccess and .htpasswd files from being +# viewed by Web clients. +# + + Require all denied + + + +# +# The following directives define some format nicknames for use with +# a CustomLog directive. +# +# These deviate from the Common Log Format definitions in that they use %O +# (the actual bytes sent including headers) instead of %b (the size of the +# requested file), because the latter makes it impossible to detect partial +# requests. +# +# Note that the use of %{X-Forwarded-For}i instead of %h is not recommended. +# Use mod_remoteip instead. +# +LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined +LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined +LogFormat "%h %l %u %t \"%r\" %>s %O" common +LogFormat "%{Referer}i -> %U" referer +LogFormat "%{User-agent}i" agent + +# Include of directories ignores editors' and dpkg's backup files, +# see README.Debian for details. + +# Include generic snippets of statements +IncludeOptional conf-enabled/*.conf +#IncludeOptional ${APACHE_USER_CONF}/*.conf + +# Include the virtual host configurations: +IncludeOptional sites-enabled/*.conf + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet diff --git a/Docker/apache2/certs/.empty b/Docker/apache2/certs/.empty new file mode 100644 index 0000000..e69de29 diff --git a/Docker/apache2/conf-enabled/security.conf b/Docker/apache2/conf-enabled/security.conf new file mode 100644 index 0000000..7562a73 --- /dev/null +++ b/Docker/apache2/conf-enabled/security.conf @@ -0,0 +1,162 @@ +# +# Disable access to the entire file system except for the directories that +# are explicitly allowed later. +# +# This currently breaks the configurations that come with some web application +# Debian packages. +# +# +# AllowOverride None +# Order Deny,Allow +# Deny from all +# + + +# Changing the following options will not really affect the security of the +# server, but might make attacks slightly more difficult in some cases. + +# +# ServerTokens +# This directive configures what you return as the Server HTTP response +# Header. The default is 'Full' which sends information about the OS-Type +# and compiled in modules. +# Set to one of: Full | OS | Minimal | Minor | Major | Prod +# where Full conveys the most information, and Prod the least. +#ServerTokens Minimal +ServerTokens Prod +#ServerTokens Full + +# +# Optionally add a line containing the server version and virtual host +# name to server-generated pages (internal error documents, FTP directory +# listings, mod_status and mod_info output etc., but not CGI generated +# documents or custom error documents). +# Set to "EMail" to also include a mailto: link to the ServerAdmin. +# Set to one of: On | Off | EMail +#ServerSignature Off +ServerSignature Off + +# +# Allow TRACE method +# +# Set to "extended" to also reflect the request body (only for testing and +# diagnostic purposes). +# +# Set to one of: On | Off | extended +TraceEnable Off +#TraceEnable On + +# +# Forbid access to version control directories +# +# If you use version control systems in your document root, you should +# probably deny access to their directories. For example, for subversion: +# +# +# Require all denied +# + +# +# Setting this header will prevent MSIE from interpreting files as something +# else than declared by the content type in the HTTP headers. +# Requires mod_headers to be enabled. +# +#Header set X-Content-Type-Options: "nosniff" + +# +# Setting this header will prevent other sites from embedding pages from this +# site as frames. This defends against clickjacking attacks. +# Requires mod_headers to be enabled. +# +#Header set X-Frame-Options: "sameorigin" + + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet + +RedirectMatch 404 ".*\/\..*" + + + Order allow,deny + Deny from all + + + + Order allow,deny + Deny from all + + + + Order allow,deny + Deny from all + + + + Options FollowSymLinks + AllowOverride All + Require all granted + + + + Options FollowSymLinks + AllowOverride All + Require all granted + + + + + Order allow,deny + Deny from all + + + + + Order allow,deny + Deny from all + + + + Order allow,deny + Deny from all + + + + Order allow,deny + Deny from all + + + + Order allow,deny + Deny from all + + + + + + Order allow,deny + Deny from all + Satisfy All + + + + Order allow,deny + Deny from all + Satisfy All + + + + order deny,allow + deny from all + + + +RewriteEngine on +RewriteCond %{REMOTE_ADDR} !=213.241.7.50 [OR] +RewriteCond eval "! -R '10.0.0.0/16'" +RewriteRule ^phpmyadmin($|/) - [L,R=404] + +#experimental + +#https://geekflare.com/10-best-practices-to-secure-and-harden-your-apache-web-server/ +#TraceEnable off + + diff --git a/Docker/apache2/cron/cron b/Docker/apache2/cron/cron new file mode 100644 index 0000000..2854670 --- /dev/null +++ b/Docker/apache2/cron/cron @@ -0,0 +1 @@ +#* * * * * cos tam >/dev/null 2>&1 diff --git a/Docker/apache2/memcache.ini b/Docker/apache2/memcache.ini new file mode 100644 index 0000000..ae9f715 --- /dev/null +++ b/Docker/apache2/memcache.ini @@ -0,0 +1,56 @@ +extension=memcache.so + +[memcache] +; Whether to transparently failover to other servers on errors. +; +; memcache.allow_failover="1" + +; Defines how many servers to try when setting and getting data. Used +; only in conjunction with memcache.allow_failover. +; +; memcache.max_failover_attempts="20" + +; Data will be transferred in chunks of this size, setting the value +; lower requires more network writes. Try increasing this value to +; 32768 if noticing otherwise inexplicable slowdowns. +; +; memcache.chunk_size="8192" + +; The default TCP port number to use when connecting to the memcached +; server if no other port is specified. +; +; memcache.default_port="11211" + +; Controls which strategy to use when mapping keys to servers. Set +; this value to consistent to enable consistent hashing which allows +; servers to be added or removed from the pool without causing keys to +; be remapped. Setting this value to standard results in the old +; strategy being used. +; +; memcache.hash_strategy="consistent" + +; Controls which hash function to apply when mapping keys to servers, +; crc32 uses the standard CRC32 hash while fnv uses FNV-1a +; +; memcache.hash_function="crc32" + +; Use memcache as a session handler by setting this value to memcache. +; +; session.save_handler="memcache" + +; Defines a comma separated of server urls to use for session storage, +; for example session.save_path="tcp://host1:11211,tcp://host2:11211". +; +; Each url may contain parameters which are applied to that server, +; they are the same as for the Memcache::addServer() method. For +; example: session.save_path="tcp://host1:11211?persistent=1&weight=1&timeout=1&retry_interval=15" +; +; session.save_path="tcp://localhost:11211" + +; Additional parameters +; memcache.protocol=ascii +; memcache.redundancy=1 +; memcache.session_redundancy=2 +memcache.compress_threshold=0 +; memcache.lock_timeout=15 + diff --git a/Docker/apache2/php.ini b/Docker/apache2/php.ini new file mode 100644 index 0000000..415f9f0 --- /dev/null +++ b/Docker/apache2/php.ini @@ -0,0 +1,1917 @@ +[PHP] + +;;;;;;;;;;;;;;;;;;; +; About php.ini ; +;;;;;;;;;;;;;;;;;;; +; PHP's initialization file, generally called php.ini, is responsible for +; configuring many of the aspects of PHP's behavior. + +; PHP attempts to find and load this configuration from a number of locations. +; The following is a summary of its search order: +; 1. SAPI module specific location. +; 2. The PHPRC environment variable. (As of PHP 5.2.0) +; 3. A number of predefined registry keys on Windows (As of PHP 5.2.0) +; 4. Current working directory (except CLI) +; 5. The web server's directory (for SAPI modules), or directory of PHP +; (otherwise in Windows) +; 6. The directory from the --with-config-file-path compile time option, or the +; Windows directory (C:\windows or C:\winnt) +; See the PHP docs for more specific information. +; http://php.net/configuration.file + +; The syntax of the file is extremely simple. Whitespace and lines +; beginning with a semicolon are silently ignored (as you probably guessed). +; Section headers (e.g. [Foo]) are also silently ignored, even though +; they might mean something in the future. + +; Directives following the section heading [PATH=/www/mysite] only +; apply to PHP files in the /www/mysite directory. Directives +; following the section heading [HOST=www.example.com] only apply to +; PHP files served from www.example.com. Directives set in these +; special sections cannot be overridden by user-defined INI files or +; at runtime. Currently, [PATH=] and [HOST=] sections only work under +; CGI/FastCGI. +; http://php.net/ini.sections + +; Directives are specified using the following syntax: +; directive = value +; Directive names are *case sensitive* - foo=bar is different from FOO=bar. +; Directives are variables used to configure PHP or PHP extensions. +; There is no name validation. If PHP can't find an expected +; directive because it is not set or is mistyped, a default value will be used. + +; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one +; of the INI constants (On, Off, True, False, Yes, No and None) or an expression +; (e.g. E_ALL & ~E_NOTICE), a quoted string ("bar"), or a reference to a +; previously set variable or directive (e.g. ${foo}) + +; Expressions in the INI file are limited to bitwise operators and parentheses: +; | bitwise OR +; ^ bitwise XOR +; & bitwise AND +; ~ bitwise NOT +; ! boolean NOT + +; Boolean flags can be turned on using the values 1, On, True or Yes. +; They can be turned off using the values 0, Off, False or No. + +; An empty string can be denoted by simply not writing anything after the equal +; sign, or by using the None keyword: + +; foo = ; sets foo to an empty string +; foo = None ; sets foo to an empty string +; foo = "None" ; sets foo to the string 'None' + +; If you use constants in your value, and these constants belong to a +; dynamically loaded extension (either a PHP extension or a Zend extension), +; you may only use these constants *after* the line that loads the extension. + +;;;;;;;;;;;;;;;;;;; +; About this file ; +;;;;;;;;;;;;;;;;;;; +; PHP comes packaged with two INI files. One that is recommended to be used +; in production environments and one that is recommended to be used in +; development environments. + +; php.ini-production contains settings which hold security, performance and +; best practices at its core. But please be aware, these settings may break +; compatibility with older or less security conscience applications. We +; recommending using the production ini in production and testing environments. + +; php.ini-development is very similar to its production variant, except it is +; much more verbose when it comes to errors. We recommend using the +; development version only in development environments, as errors shown to +; application users can inadvertently leak otherwise secure information. + +; This is php.ini-production INI file. + +;;;;;;;;;;;;;;;;;;; +; Quick Reference ; +;;;;;;;;;;;;;;;;;;; +; The following are all the settings which are different in either the production +; or development versions of the INIs with respect to PHP's default behavior. +; Please see the actual settings later in the document for more details as to why +; we recommend these changes in PHP's behavior. + +; display_errors +; Default Value: On +; Development Value: On +; Production Value: Off + +; display_startup_errors +; Default Value: Off +; Development Value: On +; Production Value: Off + +; error_reporting +; Default Value: E_ALL & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED +; Development Value: E_ALL +; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT + +; html_errors +; Default Value: On +; Development Value: On +; Production value: On + +; log_errors +; Default Value: Off +; Development Value: On +; Production Value: On + +; max_input_time +; Default Value: -1 (Unlimited) +; Development Value: 60 (60 seconds) +; Production Value: 60 (60 seconds) + +; output_buffering +; Default Value: Off +; Development Value: 4096 +; Production Value: 4096 + +; register_argc_argv +; Default Value: On +; Development Value: Off +; Production Value: Off + +; request_order +; Default Value: None +; Development Value: "GP" +; Production Value: "GP" + +; session.gc_divisor +; Default Value: 100 +; Development Value: 1000 +; Production Value: 1000 + +; session.hash_bits_per_character +; Default Value: 4 +; Development Value: 5 +; Production Value: 5 + +; short_open_tag +; Default Value: On +; Development Value: Off +; Production Value: Off + +; track_errors +; Default Value: Off +; Development Value: On +; Production Value: Off + +; url_rewriter.tags +; Default Value: "a=href,area=href,frame=src,form=,fieldset=" +; Development Value: "a=href,area=href,frame=src,input=src,form=fakeentry" +; Production Value: "a=href,area=href,frame=src,input=src,form=fakeentry" + +; variables_order +; Default Value: "EGPCS" +; Development Value: "GPCS" +; Production Value: "GPCS" + +;;;;;;;;;;;;;;;;;;;; +; php.ini Options ; +;;;;;;;;;;;;;;;;;;;; +; Name for user-defined php.ini (.htaccess) files. Default is ".user.ini" +;user_ini.filename = ".user.ini" + +; To disable this feature set this option to empty value +;user_ini.filename = + +; TTL for user-defined php.ini files (time-to-live) in seconds. Default is 300 seconds (5 minutes) +;user_ini.cache_ttl = 300 + +;;;;;;;;;;;;;;;;;;;; +; Language Options ; +;;;;;;;;;;;;;;;;;;;; + +; Enable the PHP scripting language engine under Apache. +; http://php.net/engine +engine = On + +; This directive determines whether or not PHP will recognize code between +; tags as PHP source which should be processed as such. It is +; generally recommended that should be used and that this feature +; should be disabled, as enabling it may result in issues when generating XML +; documents, however this remains supported for backward compatibility reasons. +; Note that this directive does not control the would work. +; http://php.net/syntax-highlighting +;highlight.string = #DD0000 +;highlight.comment = #FF9900 +;highlight.keyword = #007700 +;highlight.default = #0000BB +;highlight.html = #000000 + +; If enabled, the request will be allowed to complete even if the user aborts +; the request. Consider enabling it if executing long requests, which may end up +; being interrupted by the user or a browser timing out. PHP's default behavior +; is to disable this feature. +; http://php.net/ignore-user-abort +;ignore_user_abort = On + +; Determines the size of the realpath cache to be used by PHP. This value should +; be increased on systems where PHP opens many files to reflect the quantity of +; the file operations performed. +; http://php.net/realpath-cache-size +;realpath_cache_size = 16k + +; Duration of time, in seconds for which to cache realpath information for a given +; file or directory. For systems with rarely changing files, consider increasing this +; value. +; http://php.net/realpath-cache-ttl +;realpath_cache_ttl = 120 + +; Enables or disables the circular reference collector. +; http://php.net/zend.enable-gc +zend.enable_gc = On + +; If enabled, scripts may be written in encodings that are incompatible with +; the scanner. CP936, Big5, CP949 and Shift_JIS are the examples of such +; encodings. To use this feature, mbstring extension must be enabled. +; Default: Off +;zend.multibyte = Off + +; Allows to set the default encoding for the scripts. This value will be used +; unless "declare(encoding=...)" directive appears at the top of the script. +; Only affects if zend.multibyte is set. +; Default: "" +;zend.script_encoding = + +;;;;;;;;;;;;;;;;; +; Miscellaneous ; +;;;;;;;;;;;;;;;;; + +; Decides whether PHP may expose the fact that it is installed on the server +; (e.g. by adding its signature to the Web server header). It is no security +; threat in any way, but it makes it possible to determine whether you use PHP +; on your server or not. +; http://php.net/expose-php +expose_php = Off + +;;;;;;;;;;;;;;;;;;; +; Resource Limits ; +;;;;;;;;;;;;;;;;;;; + +; Maximum execution time of each script, in seconds +; http://php.net/max-execution-time +; Note: This directive is hardcoded to 0 for the CLI SAPI +max_execution_time = 30 + +; Maximum amount of time each script may spend parsing request data. It's a good +; idea to limit this time on productions servers in order to eliminate unexpectedly +; long running scripts. +; Note: This directive is hardcoded to -1 for the CLI SAPI +; Default Value: -1 (Unlimited) +; Development Value: 60 (60 seconds) +; Production Value: 60 (60 seconds) +; http://php.net/max-input-time +max_input_time = 60 + +; Maximum input variable nesting level +; http://php.net/max-input-nesting-level +;max_input_nesting_level = 64 + +; How many GET/POST/COOKIE input variables may be accepted +; max_input_vars = 1000 + +; Maximum amount of memory a script may consume (128MB) +; http://php.net/memory-limit +memory_limit = 1028M + +;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; +; Error handling and logging ; +;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; + +; This directive informs PHP of which errors, warnings and notices you would like +; it to take action for. The recommended way of setting values for this +; directive is through the use of the error level constants and bitwise +; operators. The error level constants are below here for convenience as well as +; some common settings and their meanings. +; By default, PHP is set to take action on all errors, notices and warnings EXCEPT +; those related to E_NOTICE and E_STRICT, which together cover best practices and +; recommended coding standards in PHP. For performance reasons, this is the +; recommend error reporting setting. Your production server shouldn't be wasting +; resources complaining about best practices and coding standards. That's what +; development servers and development settings are for. +; Note: The php.ini-development file has this setting as E_ALL. This +; means it pretty much reports everything which is exactly what you want during +; development and early testing. +; +; Error Level Constants: +; E_ALL - All errors and warnings (includes E_STRICT as of PHP 5.4.0) +; E_ERROR - fatal run-time errors +; E_RECOVERABLE_ERROR - almost fatal run-time errors +; E_WARNING - run-time warnings (non-fatal errors) +; E_PARSE - compile-time parse errors +; E_NOTICE - run-time notices (these are warnings which often result +; from a bug in your code, but it's possible that it was +; intentional (e.g., using an uninitialized variable and +; relying on the fact it is automatically initialized to an +; empty string) +; E_STRICT - run-time notices, enable to have PHP suggest changes +; to your code which will ensure the best interoperability +; and forward compatibility of your code +; E_CORE_ERROR - fatal errors that occur during PHP's initial startup +; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's +; initial startup +; E_COMPILE_ERROR - fatal compile-time errors +; E_COMPILE_WARNING - compile-time warnings (non-fatal errors) +; E_USER_ERROR - user-generated error message +; E_USER_WARNING - user-generated warning message +; E_USER_NOTICE - user-generated notice message +; E_DEPRECATED - warn about code that will not work in future versions +; of PHP +; E_USER_DEPRECATED - user-generated deprecation warnings +; +; Common Values: +; E_ALL (Show all errors, warnings and notices including coding standards.) +; E_ALL & ~E_NOTICE (Show all errors, except for notices) +; E_ALL & ~E_NOTICE & ~E_STRICT (Show all errors, except for notices and coding standards warnings.) +; E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR (Show only errors) +; Default Value: E_ALL & ~E_NOTICE & ~E_STRICT & ~E_DEPRECATED +; Development Value: E_ALL +; Production Value: E_ALL & ~E_DEPRECATED & ~E_STRICT +; http://php.net/error-reporting +error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT + +; This directive controls whether or not and where PHP will output errors, +; notices and warnings too. Error output is very useful during development, but +; it could be very dangerous in production environments. Depending on the code +; which is triggering the error, sensitive information could potentially leak +; out of your application such as database usernames and passwords or worse. +; For production environments, we recommend logging errors rather than +; sending them to STDOUT. +; Possible Values: +; Off = Do not display any errors +; stderr = Display errors to STDERR (affects only CGI/CLI binaries!) +; On or stdout = Display errors to STDOUT +; Default Value: On +; Development Value: On +; Production Value: Off +; http://php.net/display-errors +display_errors = Off + +; The display of errors which occur during PHP's startup sequence are handled +; separately from display_errors. PHP's default behavior is to suppress those +; errors from clients. Turning the display of startup errors on can be useful in +; debugging configuration problems. We strongly recommend you +; set this to 'off' for production servers. +; Default Value: Off +; Development Value: On +; Production Value: Off +; http://php.net/display-startup-errors +display_startup_errors = Off + +; Besides displaying errors, PHP can also log errors to locations such as a +; server-specific log, STDERR, or a location specified by the error_log +; directive found below. While errors should not be displayed on productions +; servers they should still be monitored and logging is a great way to do that. +; Default Value: Off +; Development Value: On +; Production Value: On +; http://php.net/log-errors +log_errors = On + +; Set maximum length of log_errors. In error_log information about the source is +; added. The default is 1024 and 0 allows to not apply any maximum length at all. +; http://php.net/log-errors-max-len +log_errors_max_len = 1024 + +; Do not log repeated messages. Repeated errors must occur in same file on same +; line unless ignore_repeated_source is set true. +; http://php.net/ignore-repeated-errors +ignore_repeated_errors = Off + +; Ignore source of message when ignoring repeated messages. When this setting +; is On you will not log errors with repeated messages from different files or +; source lines. +; http://php.net/ignore-repeated-source +ignore_repeated_source = Off + +; If this parameter is set to Off, then memory leaks will not be shown (on +; stdout or in the log). This has only effect in a debug compile, and if +; error reporting includes E_WARNING in the allowed list +; http://php.net/report-memleaks +report_memleaks = On + +; This setting is on by default. +;report_zend_debug = 0 + +; Store the last error/warning message in $php_errormsg (boolean). Setting this value +; to On can assist in debugging and is appropriate for development servers. It should +; however be disabled on production servers. +; Default Value: Off +; Development Value: On +; Production Value: Off +; http://php.net/track-errors +track_errors = Off + +; Turn off normal error reporting and emit XML-RPC error XML +; http://php.net/xmlrpc-errors +;xmlrpc_errors = 0 + +; An XML-RPC faultCode +;xmlrpc_error_number = 0 + +; When PHP displays or logs an error, it has the capability of formatting the +; error message as HTML for easier reading. This directive controls whether +; the error message is formatted as HTML or not. +; Note: This directive is hardcoded to Off for the CLI SAPI +; Default Value: On +; Development Value: On +; Production value: On +; http://php.net/html-errors +html_errors = On + +; If html_errors is set to On *and* docref_root is not empty, then PHP +; produces clickable error messages that direct to a page describing the error +; or function causing the error in detail. +; You can download a copy of the PHP manual from http://php.net/docs +; and change docref_root to the base URL of your local copy including the +; leading '/'. You must also specify the file extension being used including +; the dot. PHP's default behavior is to leave these settings empty, in which +; case no links to documentation are generated. +; Note: Never use this feature for production boxes. +; http://php.net/docref-root +; Examples +;docref_root = "/phpmanual/" + +; http://php.net/docref-ext +;docref_ext = .html + +; String to output before an error message. PHP's default behavior is to leave +; this setting blank. +; http://php.net/error-prepend-string +; Example: +;error_prepend_string = "" + +; String to output after an error message. PHP's default behavior is to leave +; this setting blank. +; http://php.net/error-append-string +; Example: +;error_append_string = "" + +; Log errors to specified file. PHP's default behavior is to leave this value +; empty. +; http://php.net/error-log +; Example: +;error_log = php_errors.log +; Log errors to syslog (Event Log on Windows). +;error_log = syslog + +;windows.show_crt_warning +; Default value: 0 +; Development value: 0 +; Production value: 0 + +;;;;;;;;;;;;;;;;; +; Data Handling ; +;;;;;;;;;;;;;;;;; + +; The separator used in PHP generated URLs to separate arguments. +; PHP's default setting is "&". +; http://php.net/arg-separator.output +; Example: +;arg_separator.output = "&" + +; List of separator(s) used by PHP to parse input URLs into variables. +; PHP's default setting is "&". +; NOTE: Every character in this directive is considered as separator! +; http://php.net/arg-separator.input +; Example: +;arg_separator.input = ";&" + +; This directive determines which super global arrays are registered when PHP +; starts up. G,P,C,E & S are abbreviations for the following respective super +; globals: GET, POST, COOKIE, ENV and SERVER. There is a performance penalty +; paid for the registration of these arrays and because ENV is not as commonly +; used as the others, ENV is not recommended on productions servers. You +; can still get access to the environment variables through getenv() should you +; need to. +; Default Value: "EGPCS" +; Development Value: "GPCS" +; Production Value: "GPCS"; +; http://php.net/variables-order +variables_order = "GPCS" + +; This directive determines which super global data (G,P & C) should be +; registered into the super global array REQUEST. If so, it also determines +; the order in which that data is registered. The values for this directive +; are specified in the same manner as the variables_order directive, +; EXCEPT one. Leaving this value empty will cause PHP to use the value set +; in the variables_order directive. It does not mean it will leave the super +; globals array REQUEST empty. +; Default Value: None +; Development Value: "GP" +; Production Value: "GP" +; http://php.net/request-order +request_order = "GP" + +; This directive determines whether PHP registers $argv & $argc each time it +; runs. $argv contains an array of all the arguments passed to PHP when a script +; is invoked. $argc contains an integer representing the number of arguments +; that were passed when the script was invoked. These arrays are extremely +; useful when running scripts from the command line. When this directive is +; enabled, registering these variables consumes CPU cycles and memory each time +; a script is executed. For performance reasons, this feature should be disabled +; on production servers. +; Note: This directive is hardcoded to On for the CLI SAPI +; Default Value: On +; Development Value: Off +; Production Value: Off +; http://php.net/register-argc-argv +register_argc_argv = Off + +; When enabled, the ENV, REQUEST and SERVER variables are created when they're +; first used (Just In Time) instead of when the script starts. If these +; variables are not used within a script, having this directive on will result +; in a performance gain. The PHP directive register_argc_argv must be disabled +; for this directive to have any affect. +; http://php.net/auto-globals-jit +auto_globals_jit = On + +; Whether PHP will read the POST data. +; This option is enabled by default. +; Most likely, you won't want to disable this option globally. It causes $_POST +; and $_FILES to always be empty; the only way you will be able to read the +; POST data will be through the php://input stream wrapper. This can be useful +; to proxy requests or to process the POST data in a memory efficient fashion. +; http://php.net/enable-post-data-reading +;enable_post_data_reading = Off + +; Maximum size of POST data that PHP will accept. +; Its value may be 0 to disable the limit. It is ignored if POST data reading +; is disabled through enable_post_data_reading. +; http://php.net/post-max-size +post_max_size = 8M + +; Automatically add files before PHP document. +; http://php.net/auto-prepend-file +auto_prepend_file = + +; Automatically add files after PHP document. +; http://php.net/auto-append-file +auto_append_file = + +; By default, PHP will output a media type using the Content-Type header. To +; disable this, simply set it to be empty. +; +; PHP's built-in default media type is set to text/html. +; http://php.net/default-mimetype +default_mimetype = "text/html" + +; PHP's default character set is set to UTF-8. +; http://php.net/default-charset +default_charset = "UTF-8" + +; PHP internal character encoding is set to empty. +; If empty, default_charset is used. +; http://php.net/internal-encoding +;internal_encoding = + +; PHP input character encoding is set to empty. +; If empty, default_charset is used. +; http://php.net/input-encoding +;input_encoding = + +; PHP output character encoding is set to empty. +; If empty, default_charset is used. +; See also output_buffer. +; http://php.net/output-encoding +;output_encoding = + +;;;;;;;;;;;;;;;;;;;;;;;;; +; Paths and Directories ; +;;;;;;;;;;;;;;;;;;;;;;;;; + +; UNIX: "/path1:/path2" +;include_path = ".:/usr/share/php" +; +; Windows: "\path1;\path2" +;include_path = ".;c:\php\includes" +; +; PHP's default setting for include_path is ".;/path/to/php/pear" +; http://php.net/include-path + +; The root of the PHP pages, used only if nonempty. +; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root +; if you are running php as a CGI under any web server (other than IIS) +; see documentation for security issues. The alternate is to use the +; cgi.force_redirect configuration below +; http://php.net/doc-root +doc_root = + +; The directory under which PHP opens the script using /~username used only +; if nonempty. +; http://php.net/user-dir +user_dir = + +; Directory in which the loadable extensions (modules) reside. +; http://php.net/extension-dir +; extension_dir = "./" +; On windows: +; extension_dir = "ext" + +; Directory where the temporary files should be placed. +; Defaults to the system default (see sys_get_temp_dir) +; sys_temp_dir = "/tmp" + +; Whether or not to enable the dl() function. The dl() function does NOT work +; properly in multithreaded servers, such as IIS or Zeus, and is automatically +; disabled on them. +; http://php.net/enable-dl +enable_dl = Off + +; cgi.force_redirect is necessary to provide security running PHP as a CGI under +; most web servers. Left undefined, PHP turns this on by default. You can +; turn it off here AT YOUR OWN RISK +; **You CAN safely turn this off for IIS, in fact, you MUST.** +; http://php.net/cgi.force-redirect +;cgi.force_redirect = 1 + +; if cgi.nph is enabled it will force cgi to always sent Status: 200 with +; every request. PHP's default behavior is to disable this feature. +;cgi.nph = 1 + +; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape +; (iPlanet) web servers, you MAY need to set an environment variable name that PHP +; will look for to know it is OK to continue execution. Setting this variable MAY +; cause security issues, KNOW WHAT YOU ARE DOING FIRST. +; http://php.net/cgi.redirect-status-env +;cgi.redirect_status_env = + +; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's +; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok +; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting +; this to 1 will cause PHP CGI to fix its paths to conform to the spec. A setting +; of zero causes PHP to behave as before. Default is 1. You should fix your scripts +; to use SCRIPT_FILENAME rather than PATH_TRANSLATED. +; http://php.net/cgi.fix-pathinfo +;cgi.fix_pathinfo=1 + +; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside +; of the web tree and people will not be able to circumvent .htaccess security. +; http://php.net/cgi.dicard-path +;cgi.discard_path=1 + +; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate +; security tokens of the calling client. This allows IIS to define the +; security context that the request runs under. mod_fastcgi under Apache +; does not currently support this feature (03/17/2002) +; Set to 1 if running under IIS. Default is zero. +; http://php.net/fastcgi.impersonate +;fastcgi.impersonate = 1 + +; Disable logging through FastCGI connection. PHP's default behavior is to enable +; this feature. +;fastcgi.logging = 0 + +; cgi.rfc2616_headers configuration option tells PHP what type of headers to +; use when sending HTTP response code. If set to 0, PHP sends Status: header that +; is supported by Apache. When this option is set to 1, PHP will send +; RFC2616 compliant header. +; Default is zero. +; http://php.net/cgi.rfc2616-headers +;cgi.rfc2616_headers = 0 + +; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #! +; (shebang) at the top of the running script. This line might be needed if the +; script support running both as stand-alone script and via PHP CGI<. PHP in CGI +; mode skips this line and ignores its content if this directive is turned on. +; http://php.net/cgi.check-shebang-line +;cgi.check_shebang_line=1 + +;;;;;;;;;;;;;;;; +; File Uploads ; +;;;;;;;;;;;;;;;; + +; Whether to allow HTTP file uploads. +; http://php.net/file-uploads +file_uploads = On + +; Temporary directory for HTTP uploaded files (will use system default if not +; specified). +; http://php.net/upload-tmp-dir +;upload_tmp_dir = + +; Maximum allowed size for uploaded files. +; http://php.net/upload-max-filesize +upload_max_filesize = 2M + +; Maximum number of files that can be uploaded via a single request +max_file_uploads = 20 + +;;;;;;;;;;;;;;;;;; +; Fopen wrappers ; +;;;;;;;;;;;;;;;;;; + +; Whether to allow the treatment of URLs (like http:// or ftp://) as files. +; http://php.net/allow-url-fopen +allow_url_fopen = On + +; Whether to allow include/require to open URLs (like http:// or ftp://) as files. +; http://php.net/allow-url-include +allow_url_include = Off + +; Define the anonymous ftp password (your email address). PHP's default setting +; for this is empty. +; http://php.net/from +;from="john@doe.com" + +; Define the User-Agent string. PHP's default setting for this is empty. +; http://php.net/user-agent +;user_agent="PHP" + +; Default timeout for socket based streams (seconds) +; http://php.net/default-socket-timeout +default_socket_timeout = 60 + +; If your scripts have to deal with files from Macintosh systems, +; or you are running on a Mac and need to deal with files from +; unix or win32 systems, setting this flag will cause PHP to +; automatically detect the EOL character in those files so that +; fgets() and file() will work regardless of the source of the file. +; http://php.net/auto-detect-line-endings +;auto_detect_line_endings = Off + +;;;;;;;;;;;;;;;;;;;;;; +; Dynamic Extensions ; +;;;;;;;;;;;;;;;;;;;;;; + +; If you wish to have an extension loaded automatically, use the following +; syntax: +; +; extension=modulename.extension +; +; For example, on Windows: +; +; extension=msql.dll +; +; ... or under UNIX: +; +; extension=msql.so +; +; ... or with a path: +; +; extension=/path/to/extension/msql.so +; +; If you only provide the name of the extension, PHP will look for it in its +; default extension directory. +; +; Windows Extensions +; Note that ODBC support is built in, so no dll is needed for it. +; Note that many DLL files are located in the extensions/ (PHP 4) ext/ (PHP 5+) +; extension folders as well as the separate PECL DLL download (PHP 5+). +; Be sure to appropriately set the extension_dir directive. +; +;extension=php_bz2.dll +;extension=php_curl.dll +;extension=php_fileinfo.dll +;extension=php_ftp.dll +;extension=php_gd2.dll +;extension=php_gettext.dll +;extension=php_gmp.dll +;extension=php_intl.dll +;extension=php_imap.dll +;extension=php_interbase.dll +;extension=php_ldap.dll +;extension=php_mbstring.dll +;extension=php_exif.dll ; Must be after mbstring as it depends on it +;extension=php_mysqli.dll +;extension=php_oci8_12c.dll ; Use with Oracle Database 12c Instant Client +;extension=php_openssl.dll +;extension=php_pdo_firebird.dll +;extension=php_pdo_mysql.dll +;extension=php_pdo_oci.dll +;extension=php_pdo_odbc.dll +;extension=php_pdo_pgsql.dll +;extension=php_pdo_sqlite.dll +;extension=php_pgsql.dll +;extension=php_shmop.dll + +; The MIBS data available in the PHP distribution must be installed. +; See http://www.php.net/manual/en/snmp.installation.php +;extension=php_snmp.dll + +;extension=php_soap.dll +;extension=php_sockets.dll +;extension=php_sqlite3.dll +;extension=php_tidy.dll +;extension=php_xmlrpc.dll +;extension=php_xsl.dll + +;;;;;;;;;;;;;;;;;;; +; Module Settings ; +;;;;;;;;;;;;;;;;;;; + +[CLI Server] +; Whether the CLI web server uses ANSI color coding in its terminal output. +cli_server.color = On + +[Date] +; Defines the default timezone used by the date functions +; http://php.net/date.timezone +date.timezone = "Europe/Warsaw" + +; http://php.net/date.default-latitude +;date.default_latitude = 31.7667 + +; http://php.net/date.default-longitude +;date.default_longitude = 35.2333 + +; http://php.net/date.sunrise-zenith +;date.sunrise_zenith = 90.583333 + +; http://php.net/date.sunset-zenith +;date.sunset_zenith = 90.583333 + +[filter] +; http://php.net/filter.default +;filter.default = unsafe_raw + +; http://php.net/filter.default-flags +;filter.default_flags = + +[iconv] +; Use of this INI entry is deprecated, use global input_encoding instead. +; If empty, default_charset or input_encoding or iconv.input_encoding is used. +; The precedence is: default_charset < intput_encoding < iconv.input_encoding +;iconv.input_encoding = + +; Use of this INI entry is deprecated, use global internal_encoding instead. +; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. +; The precedence is: default_charset < internal_encoding < iconv.internal_encoding +;iconv.internal_encoding = + +; Use of this INI entry is deprecated, use global output_encoding instead. +; If empty, default_charset or output_encoding or iconv.output_encoding is used. +; The precedence is: default_charset < output_encoding < iconv.output_encoding +; To use an output encoding conversion, iconv's output handler must be set +; otherwise output encoding conversion cannot be performed. +;iconv.output_encoding = + +[intl] +;intl.default_locale = +; This directive allows you to produce PHP errors when some error +; happens within intl functions. The value is the level of the error produced. +; Default is 0, which does not produce any errors. +;intl.error_level = E_WARNING +;intl.use_exceptions = 0 + +[sqlite3] +;sqlite3.extension_dir = + +[Pcre] +;PCRE library backtracking limit. +; http://php.net/pcre.backtrack-limit +;pcre.backtrack_limit=100000 + +;PCRE library recursion limit. +;Please note that if you set this value to a high number you may consume all +;the available process stack and eventually crash PHP (due to reaching the +;stack size limit imposed by the Operating System). +; http://php.net/pcre.recursion-limit +;pcre.recursion_limit=100000 + +;Enables or disables JIT compilation of patterns. This requires the PCRE +;library to be compiled with JIT support. +;pcre.jit=1 + +[Pdo] +; Whether to pool ODBC connections. Can be one of "strict", "relaxed" or "off" +; http://php.net/pdo-odbc.connection-pooling +;pdo_odbc.connection_pooling=strict + +;pdo_odbc.db2_instance_name + +[Pdo_mysql] +; If mysqlnd is used: Number of cache slots for the internal result set cache +; http://php.net/pdo_mysql.cache_size +pdo_mysql.cache_size = 2000 + +; Default socket name for local MySQL connects. If empty, uses the built-in +; MySQL defaults. +; http://php.net/pdo_mysql.default-socket +pdo_mysql.default_socket= + +[Phar] +; http://php.net/phar.readonly +;phar.readonly = On + +; http://php.net/phar.require-hash +;phar.require_hash = On + +;phar.cache_list = + +[mail function] +; For Win32 only. +; http://php.net/smtp +SMTP = localhost +; http://php.net/smtp-port +smtp_port = 25 + +; For Win32 only. +; http://php.net/sendmail-from +;sendmail_from = me@example.com + +; For Unix only. You may supply arguments as well (default: "sendmail -t -i"). +; http://php.net/sendmail-path +;sendmail_path = + +; Force the addition of the specified parameters to be passed as extra parameters +; to the sendmail binary. These parameters will always replace the value of +; the 5th parameter to mail(). +;mail.force_extra_parameters = + +; Add X-PHP-Originating-Script: that will include uid of the script followed by the filename +mail.add_x_header = On + +; The path to a log file that will log all mail() calls. Log entries include +; the full path of the script, line number, To address and headers. +;mail.log = +; Log mail to syslog (Event Log on Windows). +;mail.log = syslog + +[SQL] +; http://php.net/sql.safe-mode +sql.safe_mode = Off + +[ODBC] +; http://php.net/odbc.default-db +;odbc.default_db = Not yet implemented + +; http://php.net/odbc.default-user +;odbc.default_user = Not yet implemented + +; http://php.net/odbc.default-pw +;odbc.default_pw = Not yet implemented + +; Controls the ODBC cursor model. +; Default: SQL_CURSOR_STATIC (default). +;odbc.default_cursortype + +; Allow or prevent persistent links. +; http://php.net/odbc.allow-persistent +odbc.allow_persistent = On + +; Check that a connection is still valid before reuse. +; http://php.net/odbc.check-persistent +odbc.check_persistent = On + +; Maximum number of persistent links. -1 means no limit. +; http://php.net/odbc.max-persistent +odbc.max_persistent = -1 + +; Maximum number of links (persistent + non-persistent). -1 means no limit. +; http://php.net/odbc.max-links +odbc.max_links = -1 + +; Handling of LONG fields. Returns number of bytes to variables. 0 means +; passthru. +; http://php.net/odbc.defaultlrl +odbc.defaultlrl = 4096 + +; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char. +; See the documentation on odbc_binmode and odbc_longreadlen for an explanation +; of odbc.defaultlrl and odbc.defaultbinmode +; http://php.net/odbc.defaultbinmode +odbc.defaultbinmode = 1 + +;birdstep.max_links = -1 + +[Interbase] +; Allow or prevent persistent links. +ibase.allow_persistent = 1 + +; Maximum number of persistent links. -1 means no limit. +ibase.max_persistent = -1 + +; Maximum number of links (persistent + non-persistent). -1 means no limit. +ibase.max_links = -1 + +; Default database name for ibase_connect(). +;ibase.default_db = + +; Default username for ibase_connect(). +;ibase.default_user = + +; Default password for ibase_connect(). +;ibase.default_password = + +; Default charset for ibase_connect(). +;ibase.default_charset = + +; Default timestamp format. +ibase.timestampformat = "%Y-%m-%d %H:%M:%S" + +; Default date format. +ibase.dateformat = "%Y-%m-%d" + +; Default time format. +ibase.timeformat = "%H:%M:%S" + +[MySQLi] + +; Maximum number of persistent links. -1 means no limit. +; http://php.net/mysqli.max-persistent +mysqli.max_persistent = -1 + +; Allow accessing, from PHP's perspective, local files with LOAD DATA statements +; http://php.net/mysqli.allow_local_infile +;mysqli.allow_local_infile = On + +; Allow or prevent persistent links. +; http://php.net/mysqli.allow-persistent +mysqli.allow_persistent = On + +; Maximum number of links. -1 means no limit. +; http://php.net/mysqli.max-links +mysqli.max_links = -1 + +; If mysqlnd is used: Number of cache slots for the internal result set cache +; http://php.net/mysqli.cache_size +mysqli.cache_size = 2000 + +; Default port number for mysqli_connect(). If unset, mysqli_connect() will use +; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the +; compile-time value defined MYSQL_PORT (in that order). Win32 will only look +; at MYSQL_PORT. +; http://php.net/mysqli.default-port +mysqli.default_port = 3306 + +; Default socket name for local MySQL connects. If empty, uses the built-in +; MySQL defaults. +; http://php.net/mysqli.default-socket +mysqli.default_socket = + +; Default host for mysql_connect() (doesn't apply in safe mode). +; http://php.net/mysqli.default-host +mysqli.default_host = + +; Default user for mysql_connect() (doesn't apply in safe mode). +; http://php.net/mysqli.default-user +mysqli.default_user = + +; Default password for mysqli_connect() (doesn't apply in safe mode). +; Note that this is generally a *bad* idea to store passwords in this file. +; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw") +; and reveal this password! And of course, any users with read access to this +; file will be able to reveal the password as well. +; http://php.net/mysqli.default-pw +mysqli.default_pw = + +; Allow or prevent reconnect +mysqli.reconnect = Off + +[mysqlnd] +; Enable / Disable collection of general statistics by mysqlnd which can be +; used to tune and monitor MySQL operations. +; http://php.net/mysqlnd.collect_statistics +mysqlnd.collect_statistics = On + +; Enable / Disable collection of memory usage statistics by mysqlnd which can be +; used to tune and monitor MySQL operations. +; http://php.net/mysqlnd.collect_memory_statistics +mysqlnd.collect_memory_statistics = Off + +; Records communication from all extensions using mysqlnd to the specified log +; file. +; http://php.net/mysqlnd.debug +;mysqlnd.debug = + +; Defines which queries will be logged. +; http://php.net/mysqlnd.log_mask +;mysqlnd.log_mask = 0 + +; Default size of the mysqlnd memory pool, which is used by result sets. +; http://php.net/mysqlnd.mempool_default_size +;mysqlnd.mempool_default_size = 16000 + +; Size of a pre-allocated buffer used when sending commands to MySQL in bytes. +; http://php.net/mysqlnd.net_cmd_buffer_size +;mysqlnd.net_cmd_buffer_size = 2048 + +; Size of a pre-allocated buffer used for reading data sent by the server in +; bytes. +; http://php.net/mysqlnd.net_read_buffer_size +;mysqlnd.net_read_buffer_size = 32768 + +; Timeout for network requests in seconds. +; http://php.net/mysqlnd.net_read_timeout +;mysqlnd.net_read_timeout = 31536000 + +; SHA-256 Authentication Plugin related. File with the MySQL server public RSA +; key. +; http://php.net/mysqlnd.sha256_server_public_key +;mysqlnd.sha256_server_public_key = + +[OCI8] + +; Connection: Enables privileged connections using external +; credentials (OCI_SYSOPER, OCI_SYSDBA) +; http://php.net/oci8.privileged-connect +;oci8.privileged_connect = Off + +; Connection: The maximum number of persistent OCI8 connections per +; process. Using -1 means no limit. +; http://php.net/oci8.max-persistent +;oci8.max_persistent = -1 + +; Connection: The maximum number of seconds a process is allowed to +; maintain an idle persistent connection. Using -1 means idle +; persistent connections will be maintained forever. +; http://php.net/oci8.persistent-timeout +;oci8.persistent_timeout = -1 + +; Connection: The number of seconds that must pass before issuing a +; ping during oci_pconnect() to check the connection validity. When +; set to 0, each oci_pconnect() will cause a ping. Using -1 disables +; pings completely. +; http://php.net/oci8.ping-interval +;oci8.ping_interval = 60 + +; Connection: Set this to a user chosen connection class to be used +; for all pooled server requests with Oracle 11g Database Resident +; Connection Pooling (DRCP). To use DRCP, this value should be set to +; the same string for all web servers running the same application, +; the database pool must be configured, and the connection string must +; specify to use a pooled server. +;oci8.connection_class = + +; High Availability: Using On lets PHP receive Fast Application +; Notification (FAN) events generated when a database node fails. The +; database must also be configured to post FAN events. +;oci8.events = Off + +; Tuning: This option enables statement caching, and specifies how +; many statements to cache. Using 0 disables statement caching. +; http://php.net/oci8.statement-cache-size +;oci8.statement_cache_size = 20 + +; Tuning: Enables statement prefetching and sets the default number of +; rows that will be fetched automatically after statement execution. +; http://php.net/oci8.default-prefetch +;oci8.default_prefetch = 100 + +; Compatibility. Using On means oci_close() will not close +; oci_connect() and oci_new_connect() connections. +; http://php.net/oci8.old-oci-close-semantics +;oci8.old_oci_close_semantics = Off + +[PostgreSQL] +; Allow or prevent persistent links. +; http://php.net/pgsql.allow-persistent +pgsql.allow_persistent = On + +; Detect broken persistent links always with pg_pconnect(). +; Auto reset feature requires a little overheads. +; http://php.net/pgsql.auto-reset-persistent +pgsql.auto_reset_persistent = Off + +; Maximum number of persistent links. -1 means no limit. +; http://php.net/pgsql.max-persistent +pgsql.max_persistent = -1 + +; Maximum number of links (persistent+non persistent). -1 means no limit. +; http://php.net/pgsql.max-links +pgsql.max_links = -1 + +; Ignore PostgreSQL backends Notice message or not. +; Notice message logging require a little overheads. +; http://php.net/pgsql.ignore-notice +pgsql.ignore_notice = 0 + +; Log PostgreSQL backends Notice message or not. +; Unless pgsql.ignore_notice=0, module cannot log notice message. +; http://php.net/pgsql.log-notice +pgsql.log_notice = 0 + +[bcmath] +; Number of decimal digits for all bcmath functions. +; http://php.net/bcmath.scale +bcmath.scale = 0 + +[browscap] +; http://php.net/browscap +;browscap = extra/browscap.ini + +[Session] +; Handler used to store/retrieve data. +; http://php.net/session.save-handler +session.save_handler = files + +; Argument passed to save_handler. In the case of files, this is the path +; where data files are stored. Note: Windows users have to change this +; variable in order to use PHP's session functions. +; +; The path can be defined as: +; +; session.save_path = "N;/path" +; +; where N is an integer. Instead of storing all the session files in +; /path, what this will do is use subdirectories N-levels deep, and +; store the session data in those directories. This is useful if +; your OS has problems with many files in one directory, and is +; a more efficient layout for servers that handle many sessions. +; +; NOTE 1: PHP will not create this directory structure automatically. +; You can use the script in the ext/session dir for that purpose. +; NOTE 2: See the section on garbage collection below if you choose to +; use subdirectories for session storage +; +; The file storage module creates files using mode 600 by default. +; You can change that by using +; +; session.save_path = "N;MODE;/path" +; +; where MODE is the octal representation of the mode. Note that this +; does not overwrite the process's umask. +; http://php.net/session.save-path +;session.save_path = "/var/lib/php/sessions" + +; Whether to use strict session mode. +; Strict session mode does not accept uninitialized session ID and regenerate +; session ID if browser sends uninitialized session ID. Strict mode protects +; applications from session fixation via session adoption vulnerability. It is +; disabled by default for maximum compatibility, but enabling it is encouraged. +; https://wiki.php.net/rfc/strict_sessions +session.use_strict_mode = 0 + +; Whether to use cookies. +; http://php.net/session.use-cookies +session.use_cookies = 1 + +; http://php.net/session.cookie-secure +session.cookie_secure = 1 + +; This option forces PHP to fetch and use a cookie for storing and maintaining +; the session id. We encourage this operation as it's very helpful in combating +; session hijacking when not specifying and managing your own session id. It is +; not the be-all and end-all of session hijacking defense, but it's a good start. +; http://php.net/session.use-only-cookies +session.use_only_cookies = 1 + +; Name of the session (used as cookie name). +; http://php.net/session.name +session.name = PHPSESSID + +; Initialize session on request startup. +; http://php.net/session.auto-start +session.auto_start = 0 + +; Lifetime in seconds of cookie or, if 0, until browser is restarted. +; http://php.net/session.cookie-lifetime +session.cookie_lifetime = 0 + +; The path for which the cookie is valid. +; http://php.net/session.cookie-path +session.cookie_path = / + +; The domain for which the cookie is valid. +; http://php.net/session.cookie-domain +session.cookie_domain = + +; Whether or not to add the httpOnly flag to the cookie, which makes it inaccessible to browser scripting languages such as JavaScript. +; http://php.net/session.cookie-httponly +session.cookie_httponly = 1 + +; Handler used to serialize data. php is the standard serializer of PHP. +; http://php.net/session.serialize-handler +session.serialize_handler = php + +; Defines the probability that the 'garbage collection' process is started +; on every session initialization. The probability is calculated by using +; gc_probability/gc_divisor. Where session.gc_probability is the numerator +; and gc_divisor is the denominator in the equation. Setting this value to 1 +; when the session.gc_divisor value is 100 will give you approximately a 1% chance +; the gc will run on any give request. +; Default Value: 1 +; Development Value: 1 +; Production Value: 1 +; http://php.net/session.gc-probability +session.gc_probability = 0 + +; Defines the probability that the 'garbage collection' process is started on every +; session initialization. The probability is calculated by using the following equation: +; gc_probability/gc_divisor. Where session.gc_probability is the numerator and +; session.gc_divisor is the denominator in the equation. Setting this value to 1 +; when the session.gc_divisor value is 100 will give you approximately a 1% chance +; the gc will run on any give request. Increasing this value to 1000 will give you +; a 0.1% chance the gc will run on any give request. For high volume production servers, +; this is a more efficient approach. +; Default Value: 100 +; Development Value: 1000 +; Production Value: 1000 +; http://php.net/session.gc-divisor +session.gc_divisor = 1000 + +; After this number of seconds, stored data will be seen as 'garbage' and +; cleaned up by the garbage collection process. +; http://php.net/session.gc-maxlifetime +session.gc_maxlifetime = 1440 + +; NOTE: If you are using the subdirectory option for storing session files +; (see session.save_path above), then garbage collection does *not* +; happen automatically. You will need to do your own garbage +; collection through a shell script, cron entry, or some other method. +; For example, the following script would is the equivalent of +; setting session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes): +; find /path/to/sessions -cmin +24 -type f | xargs rm + +; Check HTTP Referer to invalidate externally stored URLs containing ids. +; HTTP_REFERER has to contain this substring for the session to be +; considered as valid. +; http://php.net/session.referer-check +session.referer_check = + +; How many bytes to read from the file. +; http://php.net/session.entropy-length +;session.entropy_length = 32 + +; Specified here to create the session id. +; http://php.net/session.entropy-file +; Defaults to /dev/urandom +; On systems that don't have /dev/urandom but do have /dev/arandom, this will default to /dev/arandom +; If neither are found at compile time, the default is no entropy file. +; On windows, setting the entropy_length setting will activate the +; Windows random source (using the CryptoAPI) +;session.entropy_file = /dev/urandom + +; Set to {nocache,private,public,} to determine HTTP caching aspects +; or leave this empty to avoid sending anti-caching headers. +; http://php.net/session.cache-limiter +session.cache_limiter = nocache + +; Document expires after n minutes. +; http://php.net/session.cache-expire +session.cache_expire = 180 + +; trans sid support is disabled by default. +; Use of trans sid may risk your users' security. +; Use this option with caution. +; - User may send URL contains active session ID +; to other person via. email/irc/etc. +; - URL that contains active session ID may be stored +; in publicly accessible computer. +; - User may access your site with the same session ID +; always using URL stored in browser's history or bookmarks. +; http://php.net/session.use-trans-sid +session.use_trans_sid = 0 + +; Select a hash function for use in generating session ids. +; Possible Values +; 0 (MD5 128 bits) +; 1 (SHA-1 160 bits) +; This option may also be set to the name of any hash function supported by +; the hash extension. A list of available hashes is returned by the hash_algos() +; function. +; http://php.net/session.hash-function +session.hash_function = 0 + +; Define how many bits are stored in each character when converting +; the binary hash data to something readable. +; Possible values: +; 4 (4 bits: 0-9, a-f) +; 5 (5 bits: 0-9, a-v) +; 6 (6 bits: 0-9, a-z, A-Z, "-", ",") +; Default Value: 4 +; Development Value: 5 +; Production Value: 5 +; http://php.net/session.hash-bits-per-character +session.hash_bits_per_character = 5 + +; The URL rewriter will look for URLs in a defined set of HTML tags. +; form/fieldset are special; if you include them here, the rewriter will +; add a hidden field with the info which is otherwise appended +; to URLs. If you want XHTML conformity, remove the form entry. +; Note that all valid entries require a "=", even if no value follows. +; Default Value: "a=href,area=href,frame=src,form=,fieldset=" +; Development Value: "a=href,area=href,frame=src,input=src,form=fakeentry" +; Production Value: "a=href,area=href,frame=src,input=src,form=fakeentry" +; http://php.net/url-rewriter.tags +url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry" + +; Enable upload progress tracking in $_SESSION +; Default Value: On +; Development Value: On +; Production Value: On +; http://php.net/session.upload-progress.enabled +;session.upload_progress.enabled = On + +; Cleanup the progress information as soon as all POST data has been read +; (i.e. upload completed). +; Default Value: On +; Development Value: On +; Production Value: On +; http://php.net/session.upload-progress.cleanup +;session.upload_progress.cleanup = On + +; A prefix used for the upload progress key in $_SESSION +; Default Value: "upload_progress_" +; Development Value: "upload_progress_" +; Production Value: "upload_progress_" +; http://php.net/session.upload-progress.prefix +;session.upload_progress.prefix = "upload_progress_" + +; The index name (concatenated with the prefix) in $_SESSION +; containing the upload progress information +; Default Value: "PHP_SESSION_UPLOAD_PROGRESS" +; Development Value: "PHP_SESSION_UPLOAD_PROGRESS" +; Production Value: "PHP_SESSION_UPLOAD_PROGRESS" +; http://php.net/session.upload-progress.name +;session.upload_progress.name = "PHP_SESSION_UPLOAD_PROGRESS" + +; How frequently the upload progress should be updated. +; Given either in percentages (per-file), or in bytes +; Default Value: "1%" +; Development Value: "1%" +; Production Value: "1%" +; http://php.net/session.upload-progress.freq +;session.upload_progress.freq = "1%" + +; The minimum delay between updates, in seconds +; Default Value: 1 +; Development Value: 1 +; Production Value: 1 +; http://php.net/session.upload-progress.min-freq +;session.upload_progress.min_freq = "1" + +; Only write session data when session data is changed. Enabled by default. +; http://php.net/session.lazy-write +;session.lazy_write = On + +[Assertion] +; Switch whether to compile assertions at all (to have no overhead at run-time) +; -1: Do not compile at all +; 0: Jump over assertion at run-time +; 1: Execute assertions +; Changing from or to a negative value is only possible in php.ini! (For turning assertions on and off at run-time, see assert.active, when zend.assertions = 1) +; Default Value: 1 +; Development Value: 1 +; Production Value: -1 +; http://php.net/zend.assertions +zend.assertions = -1 + +; Assert(expr); active by default. +; http://php.net/assert.active +;assert.active = On + +; Throw an AssertationException on failed assertions +; http://php.net/assert.exception +;assert.exception = On + +; Issue a PHP warning for each failed assertion. (Overridden by assert.exception if active) +; http://php.net/assert.warning +;assert.warning = On + +; Don't bail out by default. +; http://php.net/assert.bail +;assert.bail = Off + +; User-function to be called if an assertion fails. +; http://php.net/assert.callback +;assert.callback = 0 + +; Eval the expression with current error_reporting(). Set to true if you want +; error_reporting(0) around the eval(). +; http://php.net/assert.quiet-eval +;assert.quiet_eval = 0 + +[COM] +; path to a file containing GUIDs, IIDs or filenames of files with TypeLibs +; http://php.net/com.typelib-file +;com.typelib_file = + +; allow Distributed-COM calls +; http://php.net/com.allow-dcom +;com.allow_dcom = true + +; autoregister constants of a components typlib on com_load() +; http://php.net/com.autoregister-typelib +;com.autoregister_typelib = true + +; register constants casesensitive +; http://php.net/com.autoregister-casesensitive +;com.autoregister_casesensitive = false + +; show warnings on duplicate constant registrations +; http://php.net/com.autoregister-verbose +;com.autoregister_verbose = true + +; The default character set code-page to use when passing strings to and from COM objects. +; Default: system ANSI code page +;com.code_page= + +[mbstring] +; language for internal character representation. +; This affects mb_send_mail() and mbstring.detect_order. +; http://php.net/mbstring.language +;mbstring.language = Japanese + +; Use of this INI entry is deprecated, use global internal_encoding instead. +; internal/script encoding. +; Some encoding cannot work as internal encoding. (e.g. SJIS, BIG5, ISO-2022-*) +; If empty, default_charset or internal_encoding or iconv.internal_encoding is used. +; The precedence is: default_charset < internal_encoding < iconv.internal_encoding +;mbstring.internal_encoding = + +; Use of this INI entry is deprecated, use global input_encoding instead. +; http input encoding. +; mbstring.encoding_traslation = On is needed to use this setting. +; If empty, default_charset or input_encoding or mbstring.input is used. +; The precedence is: default_charset < intput_encoding < mbsting.http_input +; http://php.net/mbstring.http-input +;mbstring.http_input = + +; Use of this INI entry is deprecated, use global output_encoding instead. +; http output encoding. +; mb_output_handler must be registered as output buffer to function. +; If empty, default_charset or output_encoding or mbstring.http_output is used. +; The precedence is: default_charset < output_encoding < mbstring.http_output +; To use an output encoding conversion, mbstring's output handler must be set +; otherwise output encoding conversion cannot be performed. +; http://php.net/mbstring.http-output +;mbstring.http_output = + +; enable automatic encoding translation according to +; mbstring.internal_encoding setting. Input chars are +; converted to internal encoding by setting this to On. +; Note: Do _not_ use automatic encoding translation for +; portable libs/applications. +; http://php.net/mbstring.encoding-translation +;mbstring.encoding_translation = Off + +; automatic encoding detection order. +; "auto" detect order is changed according to mbstring.language +; http://php.net/mbstring.detect-order +;mbstring.detect_order = auto + +; substitute_character used when character cannot be converted +; one from another +; http://php.net/mbstring.substitute-character +;mbstring.substitute_character = none + +; overload(replace) single byte functions by mbstring functions. +; mail(), ereg(), etc are overloaded by mb_send_mail(), mb_ereg(), +; etc. Possible values are 0,1,2,4 or combination of them. +; For example, 7 for overload everything. +; 0: No overload +; 1: Overload mail() function +; 2: Overload str*() functions +; 4: Overload ereg*() functions +; http://php.net/mbstring.func-overload +;mbstring.func_overload = 0 + +; enable strict encoding detection. +; Default: Off +;mbstring.strict_detection = On + +; This directive specifies the regex pattern of content types for which mb_output_handler() +; is activated. +; Default: mbstring.http_output_conv_mimetype=^(text/|application/xhtml\+xml) +;mbstring.http_output_conv_mimetype= + +[gd] +; Tell the jpeg decode to ignore warnings and try to create +; a gd image. The warning will then be displayed as notices +; disabled by default +; http://php.net/gd.jpeg-ignore-warning +;gd.jpeg_ignore_warning = 0 + +[exif] +; Exif UNICODE user comments are handled as UCS-2BE/UCS-2LE and JIS as JIS. +; With mbstring support this will automatically be converted into the encoding +; given by corresponding encode setting. When empty mbstring.internal_encoding +; is used. For the decode settings you can distinguish between motorola and +; intel byte order. A decode setting cannot be empty. +; http://php.net/exif.encode-unicode +;exif.encode_unicode = ISO-8859-15 + +; http://php.net/exif.decode-unicode-motorola +;exif.decode_unicode_motorola = UCS-2BE + +; http://php.net/exif.decode-unicode-intel +;exif.decode_unicode_intel = UCS-2LE + +; http://php.net/exif.encode-jis +;exif.encode_jis = + +; http://php.net/exif.decode-jis-motorola +;exif.decode_jis_motorola = JIS + +; http://php.net/exif.decode-jis-intel +;exif.decode_jis_intel = JIS + +[Tidy] +; The path to a default tidy configuration file to use when using tidy +; http://php.net/tidy.default-config +;tidy.default_config = /usr/local/lib/php/default.tcfg + +; Should tidy clean and repair output automatically? +; WARNING: Do not use this option if you are generating non-html content +; such as dynamic images +; http://php.net/tidy.clean-output +tidy.clean_output = Off + +[soap] +; Enables or disables WSDL caching feature. +; http://php.net/soap.wsdl-cache-enabled +soap.wsdl_cache_enabled=1 + +; Sets the directory name where SOAP extension will put cache files. +; http://php.net/soap.wsdl-cache-dir +soap.wsdl_cache_dir="/tmp" + +; (time to live) Sets the number of second while cached file will be used +; instead of original one. +; http://php.net/soap.wsdl-cache-ttl +soap.wsdl_cache_ttl=86400 + +; Sets the size of the cache limit. (Max. number of WSDL files to cache) +soap.wsdl_cache_limit = 5 + +[sysvshm] +; A default size of the shared memory segment +;sysvshm.init_mem = 10000 + +[ldap] +; Sets the maximum number of open links or -1 for unlimited. +ldap.max_links = -1 + +[mcrypt] +; For more information about mcrypt settings see http://php.net/mcrypt-module-open + +; Directory where to load mcrypt algorithms +; Default: Compiled in into libmcrypt (usually /usr/local/lib/libmcrypt) +;mcrypt.algorithms_dir= + +; Directory where to load mcrypt modes +; Default: Compiled in into libmcrypt (usually /usr/local/lib/libmcrypt) +;mcrypt.modes_dir= + +[dba] +;dba.default_handler= + +[opcache] +; Determines if Zend OPCache is enabled +;opcache.enable=0 + +; Determines if Zend OPCache is enabled for the CLI version of PHP +;opcache.enable_cli=0 + +; The OPcache shared memory storage size. +;opcache.memory_consumption=64 + +; The amount of memory for interned strings in Mbytes. +;opcache.interned_strings_buffer=4 + +; The maximum number of keys (scripts) in the OPcache hash table. +; Only numbers between 200 and 100000 are allowed. +;opcache.max_accelerated_files=2000 + +; The maximum percentage of "wasted" memory until a restart is scheduled. +;opcache.max_wasted_percentage=5 + +; When this directive is enabled, the OPcache appends the current working +; directory to the script key, thus eliminating possible collisions between +; files with the same name (basename). Disabling the directive improves +; performance, but may break existing applications. +;opcache.use_cwd=1 + +; When disabled, you must reset the OPcache manually or restart the +; webserver for changes to the filesystem to take effect. +;opcache.validate_timestamps=1 + +; How often (in seconds) to check file timestamps for changes to the shared +; memory storage allocation. ("1" means validate once per second, but only +; once per request. "0" means always validate) +;opcache.revalidate_freq=2 + +; Enables or disables file search in include_path optimization +;opcache.revalidate_path=0 + +; If disabled, all PHPDoc comments are dropped from the code to reduce the +; size of the optimized code. +;opcache.save_comments=1 + +; If enabled, a fast shutdown sequence is used for the accelerated code +;opcache.fast_shutdown=0 + +; Allow file existence override (file_exists, etc.) performance feature. +;opcache.enable_file_override=0 + +; A bitmask, where each bit enables or disables the appropriate OPcache +; passes +;opcache.optimization_level=0xffffffff + +;opcache.inherited_hack=1 +;opcache.dups_fix=0 + +; The location of the OPcache blacklist file (wildcards allowed). +; Each OPcache blacklist file is a text file that holds the names of files +; that should not be accelerated. The file format is to add each filename +; to a new line. The filename may be a full path or just a file prefix +; (i.e., /var/www/x blacklists all the files and directories in /var/www +; that start with 'x'). Line starting with a ; are ignored (comments). +;opcache.blacklist_filename= + +; Allows exclusion of large files from being cached. By default all files +; are cached. +;opcache.max_file_size=0 + +; Check the cache checksum each N requests. +; The default value of "0" means that the checks are disabled. +;opcache.consistency_checks=0 + +; How long to wait (in seconds) for a scheduled restart to begin if the cache +; is not being accessed. +;opcache.force_restart_timeout=180 + +; OPcache error_log file name. Empty string assumes "stderr". +;opcache.error_log= + +; All OPcache errors go to the Web server log. +; By default, only fatal errors (level 0) or errors (level 1) are logged. +; You can also enable warnings (level 2), info messages (level 3) or +; debug messages (level 4). +;opcache.log_verbosity_level=1 + +; Preferred Shared Memory back-end. Leave empty and let the system decide. +;opcache.preferred_memory_model= + +; Protect the shared memory from unexpected writing during script execution. +; Useful for internal debugging only. +;opcache.protect_memory=0 + +; Allows calling OPcache API functions only from PHP scripts which path is +; started from specified string. The default "" means no restriction +;opcache.restrict_api= + +; Mapping base of shared memory segments (for Windows only). All the PHP +; processes have to map shared memory into the same address space. This +; directive allows to manually fix the "Unable to reattach to base address" +; errors. +;opcache.mmap_base= + +; Enables and sets the second level cache directory. +; It should improve performance when SHM memory is full, at server restart or +; SHM reset. The default "" disables file based caching. +;opcache.file_cache= + +; Enables or disables opcode caching in shared memory. +;opcache.file_cache_only=0 + +; Enables or disables checksum validation when script loaded from file cache. +;opcache.file_cache_consistency_checks=1 + +; Implies opcache.file_cache_only=1 for a certain process that failed to +; reattach to the shared memory (for Windows only). Explicitly enabled file +; cache is required. +;opcache.file_cache_fallback=1 + +; Enables or disables copying of PHP code (text segment) into HUGE PAGES. +; This should improve performance, but requires appropriate OS configuration. +;opcache.huge_code_pages=1 + +; Validate cached file permissions. +; opcache.validate_permission=0 + +; Prevent name collisions in chroot'ed environment. +; opcache.validate_root=0 + +[curl] +; A default value for the CURLOPT_CAINFO option. This is required to be an +; absolute path. +;curl.cainfo = + +[openssl] +; The location of a Certificate Authority (CA) file on the local filesystem +; to use when verifying the identity of SSL/TLS peers. Most users should +; not specify a value for this directive as PHP will attempt to use the +; OS-managed cert stores in its absence. If specified, this value may still +; be overridden on a per-stream basis via the "cafile" SSL stream context +; option. +;openssl.cafile= + +; If openssl.cafile is not specified or if the CA file is not found, the +; directory pointed to by openssl.capath is searched for a suitable +; certificate. This value must be a correctly hashed certificate directory. +; Most users should not specify a value for this directive as PHP will +; attempt to use the OS-managed cert stores in its absence. If specified, +; this value may still be overridden on a per-stream basis via the "capath" +; SSL stream context option. +;openssl.capath= + +; Local Variables: +; tab-width: 4 +; End: diff --git a/Docker/apache2/piwik-config.ini.php-stack b/Docker/apache2/piwik-config.ini.php-stack new file mode 100644 index 0000000..59b1e75 --- /dev/null +++ b/Docker/apache2/piwik-config.ini.php-stack @@ -0,0 +1,74 @@ +; DO NOT REMOVE THIS LINE +; file automatically generated or modified by Piwik; you can manually override the default values in global.ini.php by redefining them in this file. +[database] +host = "${PIWIK_HOST}" +username = "${PIWIK_USERNAME}" +password = "${PIWIK_PASS}" +dbname = "${PIWIK_DB}" +tables_prefix = "piwik_" + +[General] +salt = "${PIWIK_SALT}" +trusted_hosts[] = "${PIWIK_TRUSTED_HOSTS}" + +[PluginsInstalled] +PluginsInstalled[] = "Diagnostics" +PluginsInstalled[] = "Login" +PluginsInstalled[] = "CoreAdminHome" +PluginsInstalled[] = "UsersManager" +PluginsInstalled[] = "SitesManager" +PluginsInstalled[] = "Installation" +PluginsInstalled[] = "Monolog" +PluginsInstalled[] = "Intl" +PluginsInstalled[] = "CorePluginsAdmin" +PluginsInstalled[] = "CoreHome" +PluginsInstalled[] = "WebsiteMeasurable" +PluginsInstalled[] = "CoreVisualizations" +PluginsInstalled[] = "Proxy" +PluginsInstalled[] = "API" +PluginsInstalled[] = "ExamplePlugin" +PluginsInstalled[] = "Widgetize" +PluginsInstalled[] = "Transitions" +PluginsInstalled[] = "LanguagesManager" +PluginsInstalled[] = "Actions" +PluginsInstalled[] = "Dashboard" +PluginsInstalled[] = "MultiSites" +PluginsInstalled[] = "Referrers" +PluginsInstalled[] = "UserLanguage" +PluginsInstalled[] = "DevicesDetection" +PluginsInstalled[] = "Goals" +PluginsInstalled[] = "Ecommerce" +PluginsInstalled[] = "SEO" +PluginsInstalled[] = "Events" +PluginsInstalled[] = "UserCountry" +PluginsInstalled[] = "VisitsSummary" +PluginsInstalled[] = "VisitFrequency" +PluginsInstalled[] = "VisitTime" +PluginsInstalled[] = "VisitorInterest" +PluginsInstalled[] = "ExampleAPI" +PluginsInstalled[] = "RssWidget" +PluginsInstalled[] = "Feedback" +PluginsInstalled[] = "CoreUpdater" +PluginsInstalled[] = "CoreConsole" +PluginsInstalled[] = "ScheduledReports" +PluginsInstalled[] = "UserCountryMap" +PluginsInstalled[] = "Live" +PluginsInstalled[] = "CustomVariables" +PluginsInstalled[] = "PrivacyManager" +PluginsInstalled[] = "ImageGraph" +PluginsInstalled[] = "Annotations" +PluginsInstalled[] = "MobileMessaging" +PluginsInstalled[] = "Overlay" +PluginsInstalled[] = "SegmentEditor" +PluginsInstalled[] = "Insights" +PluginsInstalled[] = "Morpheus" +PluginsInstalled[] = "Contents" +PluginsInstalled[] = "BulkTracking" +PluginsInstalled[] = "Resolution" +PluginsInstalled[] = "DevicePlugins" +PluginsInstalled[] = "Heartbeat" +PluginsInstalled[] = "Marketplace" +PluginsInstalled[] = "ProfessionalServices" +PluginsInstalled[] = "UserId" +PluginsInstalled[] = "CustomPiwikJs" + diff --git a/Docker/apache2/run b/Docker/apache2/run new file mode 100644 index 0000000..b891125 --- /dev/null +++ b/Docker/apache2/run @@ -0,0 +1,19 @@ +#!/bin/bash +set -e + + + [ -e /var/run/apache2/apache2.pid ] && rm /var/run/apache2/apache2.pid + ln -sf /dev/stderr /var/log/apache2/error.log && \ + ln -sf /dev/stderr /var/log/apache2/error-ssl.log + +## Tu podmieniam zmienne z ENV i generuje pliki konfiguracyjne docelowe + +envsubst < /etc/apache2/sites-enabled/ckan.conf-stack > /etc/apache2/sites-enabled/ckan.conf +envsubst < /etc/apache2/sites-enabled/piwik.conf-stack > /etc/apache2/sites-enabled/piwik.conf +envsubst < /var/www/html/piwik/config/piwik-config.ini.php-stack > /var/www/html/piwik/config/piwik-config.ini.php + + +#startuje apacha2 + +source /etc/apache2/envvars && exec /usr/sbin/apache2 -DFOREGROUND + diff --git a/Docker/apache2/sites-enabled/ckan.conf-stack b/Docker/apache2/sites-enabled/ckan.conf-stack new file mode 100644 index 0000000..5a8cc6d --- /dev/null +++ b/Docker/apache2/sites-enabled/ckan.conf-stack @@ -0,0 +1,58 @@ + + ServerName ${DOMAIN} + + SSLEngine On + + SSLCertificateFile ${CERT_FILE} + SSLCertificateKeyFile ${CERT_KEY} + + ProxyPreserveHost On + ProxyPass /stats/ http://127.0.0.1:81/stats/ + ProxyPassReverse /stats/ http://127.0.0.1:81/stats/ + + ProxyRequests Off + ProxyPreserveHost On + RequestHeader set X-Forwarded-Proto "https" + ProxyVia Full + + + AuthType Basic + AuthName intranet + AuthUserFile /etc/apache2/.htpasswd + require valid-user + Order allow,deny + Allow from 10.0 13.80.79.9 + Require ip 10.0 13.80.79.9 + Satisfy any + + + + + ProxyPass http://ckan:5000/ + ProxyPassReverse https://${DOMAIN}/ + + + + + + ServerName ${DOMAIN} + Redirect / https://${DOMAIN}/ + + + ServerName publicdata.gov.pl + + Redirect / https://${DOMAIN}/en/ + + + Servername apidocs.${DOMAIN} + + + Redirect temp / http://docs.ckan.org/en/ckan-2.3.4/api/index.html + + + + +# +# ServerName publicdata.gov.pl +# Redirect / https://danepubliczne.gov.pl/en/ +# diff --git a/Docker/apache2/sites-enabled/datapusher.apache2-4.conf b/Docker/apache2/sites-enabled/datapusher.apache2-4.conf new file mode 100644 index 0000000..14a2255 --- /dev/null +++ b/Docker/apache2/sites-enabled/datapusher.apache2-4.conf @@ -0,0 +1,14 @@ + + + ServerName ckan + + + ProxyPass http://datapusher:8800/ + ProxyPassReverse http://datapusher:8800/ + + + + Require all granted + + + diff --git a/Docker/apache2/sites-enabled/piwik.conf-stack b/Docker/apache2/sites-enabled/piwik.conf-stack new file mode 100644 index 0000000..aa0e0fd --- /dev/null +++ b/Docker/apache2/sites-enabled/piwik.conf-stack @@ -0,0 +1,31 @@ + + ServerName stats.${DOMAIN} + + DocumentRoot /var/www/html/piwik + + + Options Indexes + AllowOverride None + Require all granted + + + + + + + ServerName stats.${DOMAIN} + + SSLEngine On + + SSLCertificateFile ${CERT_FILE_STATS} + SSLCertificateKeyFile ${CERT_KEY_STATS} + + DocumentRoot /var/www/html/piwik + + + Options Indexes + AllowOverride None + Require all granted + + + diff --git a/Docker/ckan-base/Dockerfile b/Docker/ckan-base/Dockerfile new file mode 100644 index 0000000..75affa9 --- /dev/null +++ b/Docker/ckan-base/Dockerfile @@ -0,0 +1,57 @@ +FROM debian:jessie +MAINTAINER Open Knowledge + +ENV CKAN_HOME /usr/lib/ckan/default +ENV CKAN_CONFIG /etc/ckan/default +ENV CKAN_STORAGE_PATH /var/lib/ckan +ENV CKAN_SITE_URL http://localhost:5000 + +# Install required packages +RUN apt-get -q -y update && apt-get -q -y upgrade && DEBIAN_FRONTEND=noninteractive apt-get -q -y install \ + python-dev \ + python-pip \ + python-virtualenv \ + libpq-dev \ + git-core \ + build-essential \ + libssl-dev \ + libffi-dev \ + && apt-get -q clean + + + + +# SetUp Virtual Environment CKAN +RUN mkdir -p $CKAN_HOME $CKAN_CONFIG $CKAN_STORAGE_PATH +RUN virtualenv $CKAN_HOME +RUN ln -s $CKAN_HOME/bin/pip /usr/local/bin/ckan-pip +RUN ln -s $CKAN_HOME/bin/paster /usr/local/bin/ckan-paster + +### DANE Z FORKA CKANA +RUN git clone https://github.com/DanePubliczneGovPl/ckan /tmp/ckan +RUN mkdir -p $CKAN_HOME/src/ckan/ && cp -r /tmp/ckan/. $CKAN_HOME/src/ckan/ && rm -fr /tmp/ckan/ + +# SetUp Requirements +RUN ckan-pip install --upgrade -r $CKAN_HOME/src/ckan/requirements.txt + +# TMP-BUGFIX https://github.com/ckan/ckan/issues/3388 +RUN ckan-pip install --upgrade -r $CKAN_HOME/src/ckan/dev-requirements.txt + +# TMP-BUGFIX https://github.com/ckan/ckan/issues/3594 +RUN ckan-pip install --upgrade urllib3 + +# SetUp CKAN +ADD . $CKAN_HOME/src/ckan/ +RUN ckan-pip install -e $CKAN_HOME/src/ckan/ +RUN ln -s $CKAN_HOME/src/ckan/ckan/config/who.ini $CKAN_CONFIG/who.ini + +# SetUp EntryPoint +COPY ckan-entrypoint.sh / +RUN chmod +x /ckan-entrypoint.sh +ENTRYPOINT ["/ckan-entrypoint.sh"] + +# Volumes +VOLUME ["/etc/ckan/default"] +VOLUME ["/var/lib/ckan"] +EXPOSE 5000 +CMD ["ckan-paster","serve","/etc/ckan/default/ckan.ini"] \ No newline at end of file diff --git a/Docker/ckan-base/ckan-entrypoint.sh b/Docker/ckan-base/ckan-entrypoint.sh new file mode 100644 index 0000000..8e4cd40 --- /dev/null +++ b/Docker/ckan-base/ckan-entrypoint.sh @@ -0,0 +1,109 @@ +#!/bin/sh +set -e + +# URL for the primary database, in the format expected by sqlalchemy (required +# unless linked to a container called 'db') +: ${CKAN_SQLALCHEMY_URL:=} +# URL for solr (required unless linked to a container called 'solr') +: ${CKAN_SOLR_URL:=} +# URL for redis (required unless linked to a container called 'redis') +: ${CKAN_REDIS_URL:=} + +CONFIG="${CKAN_CONFIG}/ckan.ini" + +abort () { + echo "$@" >&2 + exit 1 +} + +set_environment () { + export CKAN_SQLALCHEMY_URL=${CKAN_SQLALCHEMY_URL} + export CKAN_SOLR_URL=${CKAN_SOLR_URL} + export CKAN_REDIS_URL=${CKAN_REDIS_URL} + export CKAN_STORAGE_PATH=${CKAN_STORAGE_PATH} + export CKAN_SITE_URL=${CKAN_SITE_URL} +} + +write_config () { + # Note that this only gets called if there is no config, see below! + ckan-paster make-config --no-interactive ckan "$CONFIG" + + # The variables above will be used by CKAN, but + # in case want to use the config from ckan.ini use this + #ckan-paster --plugin=ckan config-tool "$CONFIG" -e \ + # "sqlalchemy.url = ${CKAN_SQLALCHEMY_URL}" \ + # "solr_url = ${CKAN_SOLR_URL}" \ + # "ckan.redis.url = ${CKAN_REDIS_URL}" \ + # "ckan.storage_path = ${CKAN_STORAGE_PATH}" \ + # "ckan.site_url = ${CKAN_SITE_URL}" +} + +link_postgres_url () { + local user=$DB_ENV_POSTGRES_USER + local pass=$DB_ENV_POSTGRES_PASSWORD + local db=$DB_ENV_POSTGRES_DB + local host=$DB_PORT_5432_TCP_ADDR + local port=$DB_PORT_5432_TCP_PORT + echo "postgresql://${user}:${pass}@${host}:${port}/${db}" +} + +link_solr_url () { + local host=$SOLR_PORT_8983_TCP_ADDR + local port=$SOLR_PORT_8983_TCP_PORT + echo "http://${host}:${port}/solr/ckan" +} + +link_redis_url () { + local host=$REDIS_PORT_6379_TCP_ADDR + local port=$REDIS_PORT_6379_TCP_PORT + echo "redis://${host}:${port}/1" +} + +# If we don't already have a config file, bootstrap +if [ ! -e "$CONFIG" ]; then + write_config +fi + +# Set environment variables +if [ -z "$CKAN_SQLALCHEMY_URL" ]; then + if ! CKAN_SQLALCHEMY_URL=$(link_postgres_url); then + abort "ERROR: no CKAN_SQLALCHEMY_URL specified and linked container called 'db' was not found" + else + #If that worked, use the DB details to wait for the DB + export PGHOST=${DB_PORT_5432_TCP_ADDR} + export PGPORT=${DB_PORT_5432_TCP_PORT} + export PGDATABASE=${DB_ENV_POSTGRES_DB} + export PGUSER=${DB_ENV_POSTGRES_USER} + export PGPASSWORD=${DB_ENV_POSTGRES_PASSWORD} + + # wait for postgres db to be available, immediately after creation + # its entrypoint creates the cluster and dbs and this can take a moment + for tries in $(seq 30); do + psql -c 'SELECT 1;' 2> /dev/null && break + sleep 0.3 + done + fi +fi + +if [ -z "$CKAN_SOLR_URL" ]; then + if ! CKAN_SOLR_URL=$(link_solr_url); then + abort "ERROR: no CKAN_SOLR_URL specified and linked container called 'solr' was not found" + fi +fi + +if [ -z "$CKAN_REDIS_URL" ]; then + if ! CKAN_REDIS_URL=$(link_redis_url); then + abort "ERROR: no CKAN_REDIS_URL specified and linked container called 'redis' was not found" + fi +fi + +set_environment + +# Initializes the Database +ckan-paster --plugin=ckan datastore set-permissions | sudo -u postgres psql --set ON_ERROR_STOP=1 +ckan-paster --plugin=ckan db init -c "${CKAN_CONFIG}/ckan.ini" +ckan-paster --plugin=ckanext-archiver archiver init -c "${CKAN_CONFIG}/ckan.ini" +ckan-paster --plugin=ckanext-qa qa init -c "${CKAN_CONFIG}/ckan.ini" +ckan-paster --plugin=ckanext-report report initdb -c "${CKAN_CONFIG}/ckan.ini" + +exec "$@" \ No newline at end of file diff --git a/Docker/ckan/Dockerfile b/Docker/ckan/Dockerfile new file mode 100644 index 0000000..d23b5fa --- /dev/null +++ b/Docker/ckan/Dockerfile @@ -0,0 +1,54 @@ +FROM ckan-base + + +RUN mkdir -p /home/ckan + +# Update apt-get +RUN DEBIAN_FRONTEND=noninteractive apt-get update + +# Install additional packages +RUN DEBIAN_FRONTEND=noninteractive apt-get install -q -y git wget curl libxml2-dev libxslt1-dev python-dev libffi-dev libjpeg-dev cron supervisor gettext-base \ + && rm -rf /var/lib/apt/lists/* \ + && apt-get clean -y + +############################## +#Install ckan-dane-publiczne +############################## + +ADD https://raw.githubusercontent.com/DanePubliczneGovPl/ckanext-danepubliczne/develop/requirements-danepublicznegovpl.txt /tmp/requirements-danepublicznegovpl.txt + +# Comment out ckan cause we use image +RUN sed -i '/release-v2.3.5/s/^/#/g' /tmp/requirements-danepublicznegovpl.txt + +# Let's do some work + +RUN ckan-pip install -r /tmp/requirements-danepublicznegovpl.txt && rm /tmp/requirements-danepublicznegovpl.txt + +# Some backward compatibility +RUN ln -s /usr/lib/ckan/default/src /home/ckan/src \ + && ln -s /etc/ckan/default/ckan.ini /etc/ckan/prod.ini \ + && mkdir /var/log/ckan/ + +# Copy ini files +ADD conf/default.ini /etc/ckan/ckan.ini.base +RUN cat /home/ckan/src/ckanext-danepubliczne/config/who.ini > /etc/ckan/default/who.ini + +# Enable cron + +RUN ln -s /home/ckan/src/ckanext-danepubliczne/scripts/cron.d/ckan-tracking /etc/cron.d/ckan-tracking +RUN ln -s /home/ckan/src/ckanext-danepubliczne/scripts/cron.d/reports_qa /etc/cron.d/reports_qa +RUN chmod u+x /home/ckan/src/ckanext-danepubliczne/scripts/ckan-tracking.sh + +# Install celery and cron + + +COPY conf/celery-supervisor.conf /etc/supervisor/conf.d/ +COPY conf/cron-supervisor.conf /etc/supervisor/conf.d/ + +# SetUp EntryPoint +COPY ckan-entrypoint.sh / +RUN chmod +x /ckan-entrypoint.sh +ENTRYPOINT ["/ckan-entrypoint.sh"] + +# Start ckan +CMD ["ckan-paster","serve","/etc/ckan/default/ckan.ini"] diff --git a/Docker/ckan/ckan-entrypoint.sh b/Docker/ckan/ckan-entrypoint.sh new file mode 100644 index 0000000..e16ed04 --- /dev/null +++ b/Docker/ckan/ckan-entrypoint.sh @@ -0,0 +1,144 @@ +#!/bin/sh +set -e + +# URL for the primary database, in the format expected by sqlalchemy (required +# unless linked to a container called 'db') +: ${CKAN_SQLALCHEMY_URL:=} +# URL for solr (required unless linked to a container called 'solr') +: ${CKAN_SOLR_URL:=} +# URL for redis (required unless linked to a container called 'redis') +: ${CKAN_REDIS_URL:=} + +CONFIG="${CKAN_CONFIG}/ckan.ini" + +abort () { + echo "$@" >&2 + exit 1 +} + +set_environment () { + export CKAN_SQLALCHEMY_URL=${CKAN_SQLALCHEMY_URL} + export CKAN_SOLR_URL=${CKAN_SOLR_URL} + export CKAN_REDIS_URL=${CKAN_REDIS_URL} + export CKAN_STORAGE_PATH=${CKAN_STORAGE_PATH} + export CKAN_SITE_URL=${CKAN_SITE_URL} +} + +write_config () { + # Note that this only gets called if there is no config, see below! + ckan-paster make-config --no-interactive ckan "$CONFIG" + + # The variables above will be used by CKAN, but + # in case want to use the config from ckan.ini use this + #ckan-paster --plugin=ckan config-tool "$CONFIG" -e \ + # "sqlalchemy.url = ${CKAN_SQLALCHEMY_URL}" \ + # "solr_url = ${CKAN_SOLR_URL}" \ + # "ckan.redis.url = ${CKAN_REDIS_URL}" \ + # "ckan.storage_path = ${CKAN_STORAGE_PATH}" \ + # "ckan.site_url = ${CKAN_SITE_URL}" +} + +link_postgres_url () { + local user=$DB_ENV_POSTGRES_USER + local pass=$DB_ENV_POSTGRES_PASSWORD + local db=$DB_ENV_POSTGRES_DB + local host=$DB_PORT_5432_TCP_ADDR + local port=$DB_PORT_5432_TCP_PORT + echo "postgresql://${user}:${pass}@${host}:${port}/${db}" +} + +link_solr_url () { + local host=$SOLR_PORT_8983_TCP_ADDR + local port=$SOLR_PORT_8983_TCP_PORT + echo "http://${host}:${port}/solr/ckan" +} + +link_redis_url () { + local host=$REDIS_PORT_6379_TCP_ADDR + local port=$REDIS_PORT_6379_TCP_PORT + echo "redis://${host}:${port}/1" +} + +# If we don't already have a config file, bootstrap +if [ ! -e "$CONFIG" ]; then + write_config +fi + +# Set environment variables +if [ -z "$CKAN_SQLALCHEMY_URL" ]; then + if ! CKAN_SQLALCHEMY_URL=$(link_postgres_url); then + abort "ERROR: no CKAN_SQLALCHEMY_URL specified and linked container called 'db' was not found" + else + #If that worked, use the DB details to wait for the DB + export PGHOST=${DB_PORT_5432_TCP_ADDR} + export PGPORT=${DB_PORT_5432_TCP_PORT} + export PGDATABASE=${DB_ENV_POSTGRES_DB} + export PGUSER=${DB_ENV_POSTGRES_USER} + export PGPASSWORD=${DB_ENV_POSTGRES_PASSWORD} + + # wait for postgres db to be available, immediately after creation + # its entrypoint creates the cluster and dbs and this can take a moment + for tries in $(seq 30); do + psql -c 'SELECT 1;' 2> /dev/null && break + sleep 0.3 + done + fi +fi + +if [ -z "$CKAN_SOLR_URL" ]; then + if ! CKAN_SOLR_URL=$(link_solr_url); then + abort "ERROR: no CKAN_SOLR_URL specified and linked container called 'solr' was not found" + fi +fi + +if [ -z "$CKAN_REDIS_URL" ]; then + if ! CKAN_REDIS_URL=$(link_redis_url); then + abort "ERROR: no CKAN_REDIS_URL specified and linked container called 'redis' was not found" + fi +fi + +set_environment + +if [ ! -f "/usr/lib/ckan/default/src/ckanext-danepubliczne/config/template.ini" ]; then + envsubst < /etc/ckan/ckan.ini.base > /etc/ckan/default/ckan.ini + cd /usr/lib/ckan/default/src/ckanext-danepubliczne/config && \ + ckan-paster make-config ckan template.ini > /dev/null && \ + grep beaker.session.secret template.ini >> /etc/ckan/default/ckan.ini && \ + grep app_instance_uuid template.ini >> /etc/ckan/default/ckan.ini + +fi + +# Initializes the Database +##ckan-paster --plugin=ckan datastore set-permissions | psql --set ON_ERROR_STOP=1 +ckan-paster --plugin=ckan db init -c /etc/ckan/default/ckan.ini +ckan-paster --plugin=ckanext-archiver archiver init -c /etc/ckan/default/ckan.ini +ckan-paster --plugin=ckanext-qa qa init -c /etc/ckan/default/ckan.ini +ckan-paster --plugin=ckanext-report report initdb -c /etc/ckan/default/ckan.ini + +# Default user admin for development stage + +if [ "${STAGE}" = "dev" ]; then + + ckan-paster --plugin=ckan user admin -c /etc/ckan/default/ckan.ini > /tmp/user 2>&1 + + if cat /tmp/user | grep -q "apikey" + then echo "Default user admin found" + else + echo "Adding user admin" + ckan-paster --plugin=ckan user add admin email=admin@danepubliczne.gov.pl password=Password1 -c /etc/ckan/default/ckan.ini + ckan-paster --plugin=ckan sysadmin add admin -c /etc/ckan/default/ckan.ini + fi + +fi + + + +#cron -f &pu +service supervisor start & + + + +#tail -f /var/log/dpkg.log + + +exec "$@" diff --git a/Docker/ckan/conf/celery-supervisor.conf b/Docker/ckan/conf/celery-supervisor.conf new file mode 100644 index 0000000..7576672 --- /dev/null +++ b/Docker/ckan/conf/celery-supervisor.conf @@ -0,0 +1,57 @@ +; =============================== +; ckan celeryd supervisor example +; =============================== + +; symlink or copy this file to /etc/supervisr/conf.d +; change the path/to/virtualenv below to the virtualenv ckan is in. + + +[program:celery-priority] +; Full Path to executable, should be path to virtural environment, +; Full path to config file too. + +command=ckan-paster --plugin=ckanext-archiver celeryd2 run priority --config=/etc/ckan/default/ckan.ini + +; user that owns virtual environment. +;user=ckan + +numprocs=1 +stdout_logfile=/proc/1/fd/1 +stderr_logfile=/proc/1/fd/1 +stderr_logfile_maxbytes=0 +autostart=true +autorestart=true +startsecs=10 + +; Need to wait for currently executing tasks to finish at shutdown. +; Increase this if you have very long running tasks. +stopwaitsecs = 600 + +; if rabbitmq is supervised, set its priority higher +; so it starts first +priority=998 + +[program:celery-bulk] +; Full Path to executable, should be path to virtural environment, +; Full path to config file too. + +command=ckan-paster --plugin=ckanext-archiver celeryd2 run bulk --config=/etc/ckan/default/ckan.ini + +; user that owns virtual environment. +;user=ckan + +numprocs=1 +stdout_logfile=/proc/1/fd/1 +stderr_logfile=/proc/1/fd/1 +stderr_logfile_maxbytes=0 +autostart=true +autorestart=true +startsecs=10 + +; Need to wait for currently executing tasks to finish at shutdown. +; Increase this if you have very long running tasks. +stopwaitsecs = 600 + +; if rabbitmq is supervised, set its priority higher +; so it starts first +priority=998 \ No newline at end of file diff --git a/Docker/ckan/conf/cron-supervisor.conf b/Docker/ckan/conf/cron-supervisor.conf new file mode 100644 index 0000000..719987a --- /dev/null +++ b/Docker/ckan/conf/cron-supervisor.conf @@ -0,0 +1,10 @@ +[program:cron] +command = cron -f -L 15 +autostart=true +autorestart=true + +tdout_logfile=/dev/stdout +stderr_logfile=/dev/stderr +stderr_logfile_maxbytes=0 +autostart=true +autorestart=true \ No newline at end of file diff --git a/Docker/ckan/conf/default.ini b/Docker/ckan/conf/default.ini new file mode 100644 index 0000000..78b1806 --- /dev/null +++ b/Docker/ckan/conf/default.ini @@ -0,0 +1,223 @@ +# +# CKAN - Pylons configuration +# +# These are some of the configuration options available for your CKAN +# instance. Check the documentation in 'doc/configuration.rst' or at the +# following URL for a description of what they do and the full list of +# available options: +# +# http://docs.ckan.org/en/latest/maintaining/configuration.html + +# The %(here)s variable will be replaced with the parent directory of this file +# + +[DEFAULT] + +# WARNING: *THIS SETTING MUST BE SET TO FALSE ON A PRODUCTION ENVIRONMENT* +debug = false + +[server:main] +use = egg:Paste#http +host = 0.0.0.0 +port = 5000 + +[app:main] +use = egg:ckan +full_stack = true +cache_dir = /tmp/%(ckan.site_id)s/ +beaker.session.key = ckan + +# repoze.who config +who.config_file = /etc/ckan/default/who.ini +who.log_level = warning +who.log_file = /var/log/ckan/who_log.ini + +# Session timeout (user logged out after period of inactivity, in seconds). +# Inactive by default, so the session doesn't expire. +# who.timeout = 86400 + +## Database Settings +sqlalchemy.url = postgresql://ckan:ckan@pgsql/ckan + +ckan.datastore.write_url = postgresql://datastore:datastore@datastore/datastore +ckan.datastore.read_url = postgresql://dataread:dataread@datastore/datastore + + +# PostgreSQL' full-text search parameters +ckan.datastore.default_fts_lang = english +ckan.datastore.default_fts_index_method = gist + +# Statistics + +ckan.tracking_enabled = true +piwik.cookies_disabled = true + +# Custom Dane Publiczne site settings + +# ckanext.danepubliczne.maintenance_flash = Uwaga! Dnia xx marca 2015 od godziny 01:00 do godziny 09:00 będzie trwała przerwa techniczna. + +## Authorization Settings + +ckan.auth.anon_create_dataset = false +ckan.auth.create_unowned_dataset = false +ckan.auth.create_dataset_if_not_in_organization = false +ckan.auth.user_create_groups = false +ckan.auth.user_create_organizations = false +ckan.auth.user_delete_groups = false +ckan.auth.user_delete_organizations = false +ckan.auth.create_user_via_api = false +ckan.auth.create_user_via_web = true +ckan.auth.roles_that_cascade_to_sub_groups = admin + + +## Search Settings + +ckan.site_id = danepubliczne.gov.pl +solr_url = http://solr:8983/solr/ckan + +#ckan.simple_search = 1 + + +## CORS Settings + +# If cors.origin_allow_all is true, all origins are allowed. +# If false, the cors.origin_whitelist is used. +ckan.cors.origin_allow_all = true + +# cors.origin_whitelist is a space separated list of allowed domains. +# ckan.cors.origin_whitelist = http://example1.com http://example2.com + + +## Plugins Settings +ckan.plugins = stats text_view datastore resource_proxy datapusher piwik search_history dane_publiczne dane_publiczne_organization dane_publiczne_dataset dane_publiczne_articles dane_publiczne_categories dane_publiczne_applications recline_view qa archiver report + +ckan.views.default_views = recline_view text_view + +ckanext-archiver.archive_dir = /home/ckan/data/archiver +ckanext-archiver.data_formats = all +ckanext-archiver.cache_url_root = http://cached.danepubliczne.gov.pl + +ckan.extra_resource_fields = openness_score + +## Front-End Settings +ckan.site_title = Dane Publiczne +ckan.site_logo = /logo/logo.png +ckan.site_description = +ckan.favicon = /logo/fav.ico +ckan.gravatar_default = identicon +ckan.preview.direct = png jpg jpeg gif +ckan.preview.loadable = html htm rdf+xml owl+xml xml n3 n-triples turtle plain atom csv tsv rss txt json + +# package_hide_extras = for_search_index_only +#package_edit_return_url = http://another.frontend/dataset/ +#package_new_return_url = http://another.frontend/dataset/ +#ckan.recaptcha.publickey = +#ckan.recaptcha.privatekey = +#licenses_group_url = http://licenses.opendefinition.org/licenses/groups/ckan.json +# ckan.template_footer_end = + +dp.show_organization_placeholder_image = False + +## Internationalisation Settings +ckan.locale_default = pl +ckan.locale_order = pl en de ru es fr cs_CZ sk pt_BR ja it ca el sv sr sr@latin no fi nl bg ko_KR hu sa sl lv +ckan.locales_offered = pl en +ckan.locales_filtered_out = +ckan.i18n_directory = /usr/lib/ckan/default/src/ckanext-danepubliczne/ckanext/danepubliczne/ + +## Feeds Settings + +ckan.feeds.authority_name = https://mc.gov.pl/ +ckan.feeds.date = 2015-05-15 +ckan.feeds.author_name = Ministerstwo Cyfryzacji +ckan.feeds.author_link = + +## Storage Settings + +ckan.storage_path = /home/ckan/data +ckan.max_resource_size = 100 +ckan.max_image_size = 2 + +## Datapusher settings + +# Make sure you have set up the DataStore + +ckan.datapusher.url = http://datapusher:8800/ + +## Activity Streams Settings + +#ckan.activity_streams_enabled = true +#ckan.activity_list_limit = 31 +#ckan.activity_streams_email_notifications = true +#ckan.email_notifications_since = 2 days +ckan.hide_activity_from_users = %(ckan.site_id)s + + +## Email settings + +email_to = kontakt@danepubliczne.gov.pl +error_email_from = kontakt@danepubliczne.gov.pl +smtp.mail_from = kontakt@danepubliczne.gov.pl + +## Logging configuration +[loggers] +keys = root, ckan, ckanext + +[handlers] +keys = console + +[formatters] +keys = generic + +[logger_root] +level = WARNING +handlers = console + +[logger_ckan] +level = WARNING +handlers = console +qualname = ckan +propagate = 0 + +[logger_ckanext] +level = WARNING +handlers = console +qualname = ckanext +propagate = 0 + +[handler_console] +class = StreamHandler +args = (sys.stderr,) +level = NOTSET +formatter = generic + +[formatter_generic] +format = %(asctime)s %(levelname)-5.5s [%(name)s] %(message)s + + +[app:celery] +BROKER_BACKEND = redis +BROKER_HOST = redis://redis/1 +CELERY_RESULT_BACKEND = redis +REDIS_HOST = redis +REDIS_PORT = 6379 +REDIS_DB = 0 +REDIS_CONNECT_RETRY = True + +[app:main] +# Make sure following settings are correct + +# Uncomment for dev version, also set debug=true on top of this file +# ckan.site_url = http://localhost:5000 +# piwik.url = http://configure_on_production + +ckan.site_url = ${CKAN_SITE_URL} +piwik.url = ${PIWIK_URL} +piwik.site_id = 1 +smtp.server = +smtp.starttls = True +smtp.user = +smtp.password = + + +# Custom settings will be appended below diff --git a/Docker/ckan/cron/cron b/Docker/ckan/cron/cron new file mode 100644 index 0000000..32b87a9 --- /dev/null +++ b/Docker/ckan/cron/cron @@ -0,0 +1,2 @@ +@daily ckan-paster --plugin=ckan tracking update -c /etc/ckan/default/ckan.ini > /proc/1/fd/1 2>&1 +@daily ckan-paster --plugin=ckanext-report report generate -c /etc/ckan/default/ckan.ini > /proc/1/fd/1 2>&1 diff --git a/Docker/datapusher/Dockerfile b/Docker/datapusher/Dockerfile new file mode 100644 index 0000000..efed54a --- /dev/null +++ b/Docker/datapusher/Dockerfile @@ -0,0 +1,22 @@ +FROM python:2-slim + + +ENV DATAPUSHER_HOME /usr/lib/ckan/ + + +#Install the required packages +RUN apt-get -qq update +RUN apt-get -qq install -y git +RUN apt-get clean && rm -fr /tmp/* /var/tmp/* && rm -rf /var/lib/apt/lists/* + +#Switch to source directory +WORKDIR $DATAPUSHER_HOME + +RUN pip install -e git+https://github.com/DanePubliczneGovPl/datapusher@develop#egg=datapusher +RUN pip install -r src/datapusher/requirements.txt + + +EXPOSE 8800 + +#Run the DataPusher +CMD [ "python", "src/datapusher/datapusher/main.py", "src/datapusher/deployment/datapusher_settings.py"] \ No newline at end of file diff --git a/Docker/datastore/Dockerfile b/Docker/datastore/Dockerfile new file mode 100644 index 0000000..e0cde28 --- /dev/null +++ b/Docker/datastore/Dockerfile @@ -0,0 +1,22 @@ +FROM ckan/postgresql + + +#SET LOCALE TO UTF8 + +RUN localedef -i pl_PL -c -f UTF-8 -A /usr/share/locale/locale.alias pl_PL.UTF-8 +ENV LANG pl_PL.utf8 + +#MOVE IT LATER TO .ENV + + + +ENV DATASTORE_USER_READ dataread +ENV DATASTORE_USER_READ_PASSWORD dataread + +ENV POSTGRES_USER datastore +ENV POSTGRES_PASSWORD datastore +ENV POSTGRES_DB datastore + +# INIT SCRIPT FOR DB CREATION ETC +COPY init.sh /docker-entrypoint-initdb.d/ +RUN chmod +x /docker-entrypoint-initdb.d/init.sh diff --git a/Docker/datastore/init.sh b/Docker/datastore/init.sh new file mode 100644 index 0000000..5786c30 --- /dev/null +++ b/Docker/datastore/init.sh @@ -0,0 +1,22 @@ +#!/bin/bash +set -e + +echo "creating datastore user and database.." + +psql -v ON_ERROR_STOP=1 --username "$POSTGRES_USER" <<-EOSQL + -- Create a group +CREATE ROLE readaccess; + +-- Grant access to existing tables +GRANT USAGE ON SCHEMA public TO readaccess; +GRANT SELECT ON ALL TABLES IN SCHEMA public TO readaccess; + +-- Grant access to future tables +ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT SELECT ON TABLES TO readaccess; + +-- Create a final user with password +CREATE USER $DATASTORE_USER_READ WITH PASSWORD '$DATASTORE_USER_READ_PASSWORD'; +GRANT readaccess TO $POSTGRES_DB; + +EOSQL + diff --git a/Docker/docker-compose.yml b/Docker/docker-compose.yml new file mode 100644 index 0000000..dabd9d6 --- /dev/null +++ b/Docker/docker-compose.yml @@ -0,0 +1,100 @@ +version: '2' +services: + + +# ckan-base: +# build: ckan-base/ +# image: ckan-base + + ckan: + #build: ckan/ + image: ckan-epf + container_name: ckan + depends_on: + - datapusher + - pgsql + - solr + - mysql + - redis +# ports: +# - 5000:5000 +# volumes: +# - "${DATA_DIR}/.docker/mysql/db:/var/lib/mysql" +# - "${DATA_DIR}/.docker/mysql/conf.d:/etc/mysql/conf.d" + restart: always + env_file: .env + + datapusher: + build: datapusher/ + image: datapusher + container_name: datapusher + restart: always + + + pgsql: + build: pgsql/ + image: pgsql + container_name: pgsql +# env_file: .env + volumes: + - pgsql:/var/lib/postgresql/data + restart: always + + + datastore: + build: datastore/ + image: datastore + container_name: datastore +# env_file: .env + volumes: + - datastore:/var/lib/postgresql/data + restart: always + + + apache2: + build: apache2/ + image: apache2 + depends_on: + - ckan + volumes: + - /etc/letsencrypt:/etc/letsencrypt + ports: + - ${PUBLIC_IP}:80:80 + - ${PUBLIC_IP}:443:443 + container_name: apache2 + restart: always + env_file: .env + + solr: + build: solr/ + image: solr +# ports: +# - 8989:8983 + container_name: solr-ckan + restart: always + + + mysql: + image: mariadb:latest + container_name: mysql + #ports: + # - "33306:3306" + volumes: + - "mysql:/var/lib/mysql" + restart: always + #env_file: .env + environment: + - MYSQL_ROOT_PASSWORD=piwik + - MYSQL_DATABASE=piwik + - MYSQL_USER=piwik + - MYSQL_PASSWORD=piwik + +#najkrotszy serwis ever :) + redis: + image: redis + + +volumes: + pgsql: + datastore: + mysql: diff --git a/Docker/pgsql/Dockerfile b/Docker/pgsql/Dockerfile new file mode 100644 index 0000000..8039a22 --- /dev/null +++ b/Docker/pgsql/Dockerfile @@ -0,0 +1,19 @@ +FROM ckan/postgresql + + +#SET LOCALE TO UTF8 + +RUN localedef -i pl_PL -c -f UTF-8 -A /usr/share/locale/locale.alias pl_PL.UTF-8 +ENV LANG pl_PL.utf8 + +#MOVE IT LATER TO .ENV + +ENV POSTGRES_USER ckan +ENV POSTGRES_PASSWORD ckan +ENV POSTGRES_DB ckan + + +# INIT SCRIPT FOR DB CREATION ETC +# COPY init.sh /docker-entrypoint-initdb.d/ +# RUN chmod +x /docker-entrypoint-initdb.d/init.sh + diff --git a/Docker/pgsql/init.sh b/Docker/pgsql/init.sh new file mode 100644 index 0000000..463ff82 --- /dev/null +++ b/Docker/pgsql/init.sh @@ -0,0 +1,10 @@ +#!/bin/bash +set -e + +echo "creating datastore user and database.." + +psql -v ON_ERROR_STOP=1 --username "$POSTGRES_USER" <<-EOSQL + CREATE USER "$DATASTORE_USER" WITH PASSWORD '$DATASTORE_PASSWORD'; + CREATE DATABASE "$DATASTORE_DB"; + GRANT ALL PRIVILEGES ON DATABASE "$DATASTORE_DB" TO "$DATASTORE_USER"; +EOSQL diff --git a/Docker/readme.md b/Docker/readme.md new file mode 100644 index 0000000..9e4c510 --- /dev/null +++ b/Docker/readme.md @@ -0,0 +1,104 @@ +Dokument w trakce tworzenia. Wersja 0.1 + + +# CKAN STACK - dokumentacja + + + +- [CKAN STACK - dokumentacja](#ckan-stack-dokumentacja) + - [1. Opis obrazów](#1-opis-obrazów) + - [2. Start stacka](#1-start-stacka) + - [2.1 katalog i źródła](#11-katalog-i-źródła) + - [2.2 Plik z konfiguracją](#12-plik-z-konfiguracją) + - [2.3 Budowa obrazu](#13-budowa-obrazu) + - [2.4 Uruchomienie stacka](#14-uruchomienie-stacka) + - [2.5 Werfyikacja stanu kontenerów](#15-werfyikacja-stanu-kontenerów) + + + +### 1. Opis obrazów + +Stacka składa się z następujących obrazów + +- apache2 - obraz dla kontenera z serwerem apache, służy jako proxy dla usług w stacku +- ckan-base - bazowy obraz CKAN budowany z forka https://github.com/DanePubliczneGovPl/ckan. Dla większej elastyczności zostało to oddzielone. NIE definujemy tu żadnych konfiguracji specyficznych dla DanePubliczne. +- ckan - obraz dla kontenera CKAN ze wszyskimi konfiguracjami DanePubliczne +- datapusher - datapusher +- datastore - obraz baza danych pgsql dla datastore +- pgsql - obraz baza danych pgsql dla ckan +- solr - obraz indeksera SOLR + + +### 2. Start stacka + +Poniższy opis pokazuje pierwsze uruchomienie stacka. Zakładam, że masz dostęp do shela. + +#### 2.1 katalog i źródła + +Zakładasz katalog i pobierasz źródła +``` +mkdir /home/ckan +cd /home/ckan && git clone git@github.com:DanePubliczneGovPl/ckanext-danepubliczne.git ckan +``` + +#### 2.2 Plik z konfiguracją + +Tworzysz plik /home/ckan/ckan/Docker/.env z konfiguracją stacka + +``` + +#### SETUP #### +############### + +# STAGE +# Jesli jest stage dev to default admin user jest dodawany + +STAGE=dev + +# ip na którym będzie nasłuchiwać stack +PUBLIC_IP=192.168.50.22 + +#### APACHE #### +################ + +# sciezki do certyfikatów + +CERT_KEY=/etc/ssl/certs/mysitename.key +CERT_FILE=/etc/ssl/certs/mysitename.crt + +# domena pod którą będzie działa strona + +DOMAIN=stage.danepubliczne.gov.pl +CKAN_SITE_URL=https://${DOMAIN} + +#### PIWIK #### +################ + +PIWIK_URL=https://stats.danepubliczne.gov.pl +PIWIK_HOST=mysql +PIWIK_USERNAME=piwik +PIWIK_PASS=****** +PIWIK_DB=piwik +PIWIK_SALT=6a2a3c15512315463f4acdf5f91f2caf +PIWIK_TRUSTED_HOSTS=stats.dp.gov.pl + +# certyfikaty dla domeny piwika + +CERT_FILE_STATS=/etc/ssl/certs/mysitename.key +CERT_KEY_STATS=/etc/ssl/certs/mysitename.crt +``` +#### 2.3 Budowa obrazu +``` +cd /home/ckan/ckan/Docker && docker-compose build +``` +#### 2.4 Uruchomienie stacka +``` +cd /home/ckan/ckan/Docker && docker-compose up -d +``` +#### 2.5 Werfyikacja stanu kontenerów +``` +cd /home/ckan/ckan/Docker && docker-compose ps +``` + + +### FAQ \ No newline at end of file diff --git a/Docker/solr/Dockerfile b/Docker/solr/Dockerfile new file mode 100644 index 0000000..bd28aa4 --- /dev/null +++ b/Docker/solr/Dockerfile @@ -0,0 +1,5 @@ +FROM ckan/solr + +ENV SOLR_CORE ckan + +ADD conf/schema.xml /opt/solr/server/solr/$SOLR_CORE/conf/ \ No newline at end of file diff --git a/Docker/solr/conf/schema.xml b/Docker/solr/conf/schema.xml new file mode 100644 index 0000000..dc635ba --- /dev/null +++ b/Docker/solr/conf/schema.xml @@ -0,0 +1,170 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +index_id +text + + + + + + + + + + + + + + + + + + + + + + + \ No newline at end of file