Skip to content
Snippets Groups Projects

Compare revisions

Changes are shown as if the source revision was being merged into the target revision. Learn more about comparing revisions.

Source

Select target project
No results found

Target

Select target project
  • ansible/roles/php
  • ericzillmann/php
2 results
Show changes
Commits on Source (91)
Showing with 1163 additions and 693 deletions
php_install_redis: true
---
php_version: 7.0
php_version_main: 7
php_fpm: yes
php_fpm_socket: no
php_install_redis: yes
php_hold_version: no
php_repositories: []
php_packages:
- php-apc
- php-imagick
- php-pear
- php-soap
- php-uploadprogress
- php5
- php5-cgi
- php5-cli
- php5-curl
- php5-dev
- php5-fpm
- php5-gd
- php5-imagick
- php5-imap
- php5-mcrypt
- php5-mysql
- php5-xdebug
- php5-xmlrpc
- imagemagick
php_base_dir: 'php5'
php_conf_dir: 'conf.d'
php_base_dir: php5
php_conf_dir: conf.d
php_allow_call_time_pass_reference: 'on'
php_browscap: false
php_date_timezone: 'Europe/Berlin'
php_browscap: no
php_date_timezone: Europe/Berlin
php_display_errors: 'Off'
php_display_startup_errors: 'Off'
php_error_reporting: 'E_ALL & ~E_NOTICE'
php_error_reporting: E_ALL & ~E_NOTICE
php_expose_php: 'Off'
php_filter_default: 'unsafe_raw'
php_filter_default: unsafe_raw
php_html_errors: 'Off'
php_log_errors: 'On'
php_magic_quotes_gpc: 'On'
php_max_execution_time: '30'
php_max_input_vars: '1000'
php_memory_limit: '32M'
php_needs_oci8: false
php_post_max_size: '32M'
php_max_execution_time: 30
php_max_file_uploads: 20
php_max_input_time: 60
php_max_input_vars: 1000
php_memory_limit: 32M
php_needs_mcrypt: no
php_needs_msodbc: no
php_needs_oci8: no
php_output_buffering: 4096
php_post_max_size: 32M
php_register_globals: 'Off'
php_register_long_arrays: 'On'
php_sendmail_path: '/usr/sbin/sendmail -t -i'
php_session_cache_expire: '180'
php_session_cookie_lifetime: '0'
php_session_gc_divisor: '1000'
php_session_gc_maxlifetime: '1440'
php_sendmail_path: /usr/sbin/sendmail -t -i
php_session_cache_expire: 180
php_session_cookie_lifetime: 0
php_session_gc_divisor: 1000
php_session_gc_maxlifetime: 1440
php_short_open_tag: 'Off'
php_upload_max_filesize: '2M'
php_zend_assertions: '0'
php_upload_max_filesize: 2M
php_zend_assertions: -1
# PHP FPM
php_fpm_max_children: 10
php_fpm_start_servers: 4
php_fpm_min_spare_servers: 2
php_fpm_max_spare_servers: 6
php_fpm_max_requests: 2000
# apc.ini
apc_rfc1867: '1'
apc_shm_size: '256M'
apc_shm_segments: '1'
apc_num_files_hint: '0'
apc_ttl: '7200'
apc_user_ttl: '7200'
apc_gc_ttl: '3600'
apc_rfc1867: 1
apc_shm_size: 32M
apc_shm_segments: 1
apc_num_files_hint: 0
apc_ttl: 7200
apc_user_ttl: 7200
apc_gc_ttl: 3600
# opcache.ini
opcache_memory_consumption: '128'
opcache_max_accelerated_files: '7963'
opcache_revalidate_freq: '30'
opcache_interned_strings_buffer: '16'
opcache_memory_consumption: 128
opcache_max_accelerated_files: 7963
opcache_revalidate_freq: 30
opcache_interned_strings_buffer: 16
# php 5.3
php53:
libraries:
- file: 'libgd.so.2.0.0'
link: 'libgd.so.2'
- file: 'liblcms.so.1.0.19'
link: 'liblcms.so.1'
- file: 'libMagickCore.so.4.0.1'
link: 'libMagickCore.so.4'
- file: 'libMagickWand.so.4.0.1'
link: 'libMagickWand.so.4'
- file: 'libt1.so.5.1.2'
link: 'libt1.so.5'
- file: libgd.so.2.0.0
link: libgd.so.2
- file: liblcms.so.1.0.19
link: liblcms.so.1
- file: libMagickCore.so.4.0.1
link: libMagickCore.so.4
- file: libMagickWand.so.4.0.1
link: libMagickWand.so.4
- file: libt1.so.5.1.2
link: libt1.so.5
liblinks:
- src: '/lib/x86_64-linux-gnu/libpng12.so.0'
link: 'libpng12.so.0'
- src: /lib/x86_64-linux-gnu/libpng12.so.0
link: libpng12.so.0
modules:
- 'apc'
- 'curl'
- 'gd'
- 'imagick'
- 'imap'
#- 'json'
- 'mcrypt'
#- 'memcached'
- 'mysql'
- 'mysqli'
- 'pdo_mysql'
#- 'readline'
- 'redis'
- 'xmlrpc'
extdir: '/usr/local/lib/php/extensions/no-debug-non-zts-20090626'
libdir: '/usr/lib/x86_64-linux-gnu'
- apc
- curl
- gd
- imagick
- imap
# - json
- mcrypt
# - memcached
- mysql
- mysqli
- pdo_mysql
# - readline
- redis
- xmlrpc
extdir: /usr/local/lib/php/extensions/no-debug-non-zts-20090626
libdir: /usr/lib/x86_64-linux-gnu
This diff is collapsed.
---
# file: roles/php/handlers/main.yml
- name: Restart PHP-FPM
service:
name: '{{ phpFpmService }}'
state: restarted
- name: Initial Logrotate
shell: logrotate -f /etc/logrotate.d/php{{ phpLogRotatePrefix }}-fpm
......@@ -2,3 +2,4 @@
dependencies:
- { role: apache }
- { role: imagemagick }
......@@ -5,17 +5,36 @@
---
# file: roles/php/tasks/main.yml
- name: "PHP Role"
set_fact: role_php_started=true
tags: always
- name: PHP Role
set_fact:
role_php_started: yes
tags:
- always
- block:
- include: php.yml
when: role_php_completed is not defined
- name: Include variables
include_tasks: variables.yml
tags:
- always
- name: 'PHP | Remember that this role had been run'
set_fact: role_php_completed=true
tags: always
- name: Import php
import_tasks: php.yml
when: '"php" not in excluded_roles'
- name: Link PhpEnMod for PHP 5.3
file:
dest: /usr/local/bin/php{{ item }}
src: /usr/sbin/php5{{ item }}
state: link
with_items:
- enmod
- dismod
when: php_version|default("5.5") == "5.3"
- name: PHP | Remember that this role had been run
set_fact:
role_php_completed: yes
tags:
- always
when: (not excluded_roles or "php" not in excluded_roles) and role_php_completed is not defined
---
# file: roles/php/tasks/mcrypt-7.2.yml
- name: Check MCrypt Requirement
stat:
path: /usr/lib/php/20170718/mcrypt.so
register: mcrypt_file
- block:
- name: Enable MCrypt for PHP
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- mcrypt
- name: Install packages
apt:
pkg: '{{ packages }}'
state: present
update_cache: yes
vars:
packages:
- libmcrypt-dev
- libreadline-dev
- name: Install PECL packages
shell: pecl install --soft --ignore-errors mcrypt-1.0.1
when: php_version_main|default(7) == 7
ignore_errors: yes
- name: Enable extension
shell: phpenmod {{ item }}
with_items:
- mcrypt
notify:
- Restart Apache
when: not mcrypt_file.stat.exists
---
# file: roles/php/tasks/msodbc.yml
- name: Apt Key
apt_key:
keyring: /etc/apt/trusted.gpg.d/microsoft.gpg
url: 'https://packages.microsoft.com/keys/microsoft.asc'
state: present
- name: Apt Repository
apt_repository:
repo: 'deb [arch=amd64] https://packages.microsoft.com/ubuntu/18.04/prod {{ ansible_distribution_release }} main'
state: present
mode: 0644
- name: Accept licenses
debconf:
name: "{{ item }}-installer"
question: "{{ item }}/accept_eula"
value: "true"
vtype: "select"
with_items:
- mssql-tools
- name: Install Packages
apt:
pkg: '{{ packages }}'
state: present
update_cache: yes
vars:
packages:
- mssql-tools
- unixodbc-dev
notify:
- Restart Apache
- name: PHP | Install PECL packages
shell: pecl install --soft {{ item }}
with_items:
- sqlsrv
- pdo_sqlsrv
when: false
- name: Configuration files
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- sqlsrv
- pdo_sqlsrv
notify:
- Restart Apache
when: false
- name: Enable extensions
shell: phpenmod {{ item }}
with_items:
- sqlsrv
- pdo_sqlsrv
notify:
- Restart Apache
when: false
---
# file: roles/php/tasks/oci-5.3.yml
#
# @see OCI8 Install: https://help.ubuntu.com/community/PHPOracle
# Better:
# @see PDO_OCI Install: https://drupal.org/comment/5572626#comment-5572626
- name: PHP | Check OCI Requirement
stat:
path: /usr/lib/php5/20090626/pdo_oci.so
register: oci_file
- block:
- name: PHP | OCI | Enable OCI for PHP
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- oci8
- pdo_oci
- name: PHP | OCI | Remove possible components in /tmp
file:
path: /tmp/{{ item }}
state: absent
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so
- oracle_x64_11_2_0_3_0_pdo_oci_so
- name: PHP | OCI | Make available Oracle InstantClient
command: scp -r {{ repository }}{{ item }} /tmp/
become: no
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so
- oracle_x64_11_2_0_3_0_pdo_oci_so
- name: PHP | OCI | Remove /usr/local/lib/instantclient_11_2
file:
path: /usr/local/lib/instantclient_11_2
state: absent
- name: PHP | OCI | Move Oracle InstantClient to /usr/local/lib
command: mv /tmp/instantclient_11_2 /usr/local/lib/
- name: PHP | OCI | Move oci8 to /usr/lib/php5
command: mv /tmp/oracle_x64_11_2_0_3_0_oci8_so /usr/lib/php5/20090626/oci8.so
- name: PHP | OCI | Move pdo_oci to /usr/lib/php5
command: mv /tmp/oracle_x64_11_2_0_3_0_pdo_oci_so /usr/lib/php5/20090626/pdo_oci.so
- name: PHP | OCI | Change ownership for Oracle InstantClient
file:
path: '{{ item }}'
owner: root
group: root
recurse: yes
follow: no
with_items:
- /usr/local/lib/instantclient_11_2
- name: Ensure log directories
file:
path: /usr/local/lib/instantclient_11_2/log/diag/clients
owner: www-data
group: root
state: directory
mode: 0775
follow: no
- name: Set permissions in log directories
file:
path: /usr/local/lib/instantclient_11_2/log
owner: www-data
group: root
mode: 0775
recurse: yes
follow: no
- name: PHP | OCI | Make available libclntsh.so
file:
src: /usr/local/lib/instantclient_11_2/libclntsh.so.11.1
dest: /usr/local/lib/instantclient_11_2/libclntsh.so
state: link
when: not oci_file.stat.exists
---
# file: roles/php/tasks/oci-5.5.yml
- debug: msg="OCI8 for PHP 5.5 not implemented yet"
---
# file: roles/php/tasks/oci-5.6.yml
- name: Check OCI Requirement
stat:
path: /usr/lib/php/20131226/oci8.so
register: oci_file
- block:
- name: Enable OCI for PHP
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- oci8
- name: Remove possible components in /tmp
file:
path: /tmp/{{ item }}
state: absent
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so_php_5_6
- name: Make available Oracle InstantClient
command: scp -r {{ repository }}{{ item }} /tmp/
become: no
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so_php_5_6
- name: Remove /usr/local/lib/instantclient_11_2
file:
path: /usr/local/lib/instantclient_11_2
state: absent
- name: Move Oracle InstantClient to /usr/local/lib
command: mv /tmp/instantclient_11_2 /usr/local/lib/
- name: Move oci8 to /usr/lib/php
command: mv /tmp/oracle_x64_11_2_0_3_0_oci8_so_php_4_5 /usr/lib/php/20131226/oci8.so
- name: Change ownership for Oracle InstantClient
file:
path: '{{ item }}'
owner: root
group: root
recurse: yes
follow: no
with_items:
- /usr/local/lib/instantclient_11_2
- name: Ensure log directories
file:
path: /usr/local/lib/instantclient_11_2/log/diag/clients
owner: www-data
group: root
state: directory
mode: 0775
follow: no
- name: Set permissions in log directories
file:
path: /usr/local/lib/instantclient_11_2/log
owner: www-data
group: root
mode: 0775
recurse: yes
follow: no
- name: Make available libclntsh.so
file:
src: /usr/local/lib/instantclient_11_2/libclntsh.so.11.1
dest: /usr/local/lib/instantclient_11_2/libclntsh.so
state: link
when: not oci_file.stat.exists
---
# file: roles/php/tasks/oci-7.0.yml
- name: Check OCI Requirement
stat:
path: /usr/lib/php/20151012/oci8.so
register: oci_file
- block:
- name: Enable OCI for PHP
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- oci8
- name: Remove possible components in /tmp
file:
path: /tmp/{{ item }}
state: absent
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so_php_7
- name: Make available Oracle InstantClient
command: scp -r {{ repository }}{{ item }} /tmp/
become: no
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so_php_7
- name: Remove /usr/local/lib/instantclient_11_2
file:
path: /usr/local/lib/instantclient_11_2
state: absent
- name: Move Oracle InstantClient to /usr/local/lib
command: mv /tmp/instantclient_11_2 /usr/local/lib/
- name: Move oci8 to /usr/lib/php
command: mv /tmp/oracle_x64_11_2_0_3_0_oci8_so_php_7 /usr/lib/php/20151012/oci8.so
- name: Change ownership for Oracle InstantClient
file:
path: '{{ item }}'
owner: root
group: root
recurse: yes
follow: no
with_items:
- /usr/local/lib/instantclient_11_2
- name: Ensure log directories
file:
path: /usr/local/lib/instantclient_11_2/log/diag/clients
owner: www-data
group: root
state: directory
mode: 0775
follow: no
- name: Set permissions in log directories
file:
path: /usr/local/lib/instantclient_11_2/log
owner: www-data
group: root
mode: 0775
recurse: yes
follow: no
- name: Make available libclntsh.so
file:
src: /usr/local/lib/instantclient_11_2/libclntsh.so.11.1
dest: /usr/local/lib/instantclient_11_2/libclntsh.so
state: link
when: not oci_file.stat.exists
---
# file: roles/php/tasks/oci-7.1.yml
- debug: msg="OCI8 for PHP 7.1 not implemented yet"
---
# file: roles/php/tasks/oci-7.2.yml
#
# https://gist.github.com/Yukibashiri/cebaeaccbe531665a5704b1b34a3498e
- name: Check OCI Requirement
stat:
path: /usr/lib/php/20170718/oci8.so
register: oci_file
- block:
- name: Enable OCI for PHP
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- oci8
- name: Remove possible components in /tmp
file:
path: /tmp/{{ item }}
state: absent
with_items:
- instantclient_18_5
- oracle_x64_18_5_0_0_0_oci8_so_php_7
- name: Make available Oracle InstantClient
command: scp -r {{ repository }}{{ item }} /tmp/
become: no
with_items:
- instantclient_18_5
- oracle_x64_18_5_0_0_0_oci8_so_php_7
- name: Remove /opt/oracle/instantclient_18_5
file:
path: /opt/oracle/instantclient_18_5
state: absent
- name: Ensure directory /opt/oracle
file:
path: /opt/oracle
state: directory
- name: Move Oracle InstantClient to /opt/oracle
command: mv /tmp/instantclient_18_5 /opt/oracle/instantclient_18_5
- name: Move oci8 to /usr/lib/php
command: mv /tmp/oracle_x64_18_5_0_0_0_oci8_so_php_7 /usr/lib/php/20170718/oci8.so
- name: Change ownership for Oracle InstantClient
file:
path: '{{ item }}'
owner: root
group: root
recurse: yes
follow: no
with_items:
- /opt/oracle/instantclient_18_5
- name: Ensure log directories
file:
path: /opt/oracle/instantclient_18_5/log/diag/clients
owner: www-data
group: root
state: directory
mode: 0775
follow: no
- name: Set permissions in log directories
file:
path: /opt/oracle/instantclient_18_5/log
owner: www-data
group: root
mode: 0775
recurse: yes
follow: no
- name: Create symlinks
file:
src: /opt/oracle/instantclient_18_5/{{ item }}.so.18.1
dest: /opt/oracle/instantclient_18_5/{{ item }}.so
state: link
with_items:
- libclntsh
- libocci
- name: Configure libraries
template:
src: etc-ld-oracle
dest: /etc/ld.so.conf.d/oracle-instantclient.conf
owner: root
group: root
mode: 0644
- name: Update libraries
command: ldconfig
when: not oci_file.stat.exists
---
# file: roles/php/tasks/oci-7.3.yml
- debug: msg="OCI8 for PHP 7.3 not implemented yet"
---
# file: roles/php/tasks/oci-7.4.yml
#
# https://gist.github.com/Yukibashiri/cebaeaccbe531665a5704b1b34a3498e
- name: Check OCI Requirement
stat:
path: /usr/lib/php/20190902/oci8.so
register: oci_file
- block:
- name: Enable OCI for PHP
copy:
content: extension={{ item }}.so
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- oci8
- name: Remove possible components in /tmp
file:
path: /tmp/{{ item }}
state: absent
with_items:
- instantclient_18_5
- oracle_x64_18_5_0_0_0_oci8_so_php_7
- name: Make available Oracle InstantClient
command: scp -r {{ repository }}{{ item }} /tmp/
become: no
with_items:
- instantclient_18_5
- oracle_x64_18_5_0_0_0_oci8_so_php_7_4
- name: Remove /opt/oracle/instantclient_18_5
file:
path: /opt/oracle/instantclient_18_5
state: absent
- name: Ensure directory /opt/oracle
file:
path: /opt/oracle
state: directory
- name: Move Oracle InstantClient to /opt/oracle
command: mv /tmp/instantclient_18_5 /opt/oracle/instantclient_18_5
- name: Move oci8 to /usr/lib/php
command: mv /tmp/oracle_x64_18_5_0_0_0_oci8_so_php_7_4 /usr/lib/php/20190902/oci8.so
- name: Change ownership for Oracle InstantClient
file:
path: '{{ item }}'
owner: root
group: root
recurse: yes
follow: no
with_items:
- /opt/oracle/instantclient_18_5
- name: Ensure log directories
file:
path: /opt/oracle/instantclient_18_5/log/diag/clients
owner: www-data
group: root
state: directory
mode: 0775
follow: no
- name: Set permissions in log directories
file:
path: /opt/oracle/instantclient_18_5/log
owner: www-data
group: root
mode: 0775
recurse: yes
follow: no
- name: Create symlinks
file:
src: /opt/oracle/instantclient_18_5/{{ item }}.so.18.1
dest: /opt/oracle/instantclient_18_5/{{ item }}.so
state: link
with_items:
- libclntsh
- libocci
- name: Configure libraries
template:
src: etc-ld-oracle
dest: /etc/ld.so.conf.d/oracle-instantclient.conf
owner: root
group: root
mode: 0644
- name: Update libraries
command: ldconfig
when: not oci_file.stat.exists
---
# file: roles/php/tasks/oci8.yml
#
# @see OCI8 Install: https://help.ubuntu.com/community/PHPOracle
# Better:
# @see PDO_OCI Install: https://drupal.org/comment/5572626#comment-5572626
- name: "PHP | OCI | Enable OCI for PHP"
copy:
content='extension={{ item }}.so'
dest=/etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner=root
group=root
mode=0644
with_items:
- oci8
- pdo_oci
- name: "PHP | OCI | Remove possible components in /tmp"
command: rm -Rf /tmp/{{ item }}
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so
- oracle_x64_11_2_0_3_0_pdo_oci_so
- name: "PHP | OCI | Make available Oracle InstantClient"
command: scp -r {{ repository }}{{ item }} /tmp/
become: no
with_items:
- instantclient_11_2
- oracle_x64_11_2_0_3_0_oci8_so
- oracle_x64_11_2_0_3_0_pdo_oci_so
- name: "PHP | OCI | Remove /usr/local/lib/instantclient_11_2"
command: rm -Rf /usr/local/lib/instantclient_11_2
- name: "PHP | OCI | Move Oracle InstantClient to /usr/local/lib"
command: mv /tmp/instantclient_11_2 /usr/local/lib/
- name: "PHP | OCI | Move oci8 to /usr/lib/php5"
command: mv /tmp/oracle_x64_11_2_0_3_0_oci8_so /usr/lib/php5/20090626/oci8.so
- name: "PHP | OCI | Move pdo_oci to /usr/lib/php5"
command: mv /tmp/oracle_x64_11_2_0_3_0_pdo_oci_so /usr/lib/php5/20090626/pdo_oci.so
- name: "PHP | OCI | Change ownership for Oracle InstantClient"
file:
path="{{ item }}"
owner="root"
group="root"
recurse=yes
with_items:
- /usr/local/lib/instantclient_11_2
- /usr/lib/php5/20090626/oci8.so
- /usr/lib/php5/20090626/pdo_oci.so
- name: "PHP | OCI | Make available libclntsh.so"
file:
src=/usr/local/lib/instantclient_11_2/libclntsh.so.11.1
dest=/usr/local/lib/instantclient_11_2/libclntsh.so
state=link
---
# file: roles/php/tasks/php.yml
- name: "PHP | Apt Repository"
- name: Apt Repository
apt_repository:
repo='{{ item }}'
state='present'
mode=644
repo: '{{ item }}'
state: present
mode: 0644
with_items: '{{ php_repositories }}'
- name: "PHP | Install required packages."
- name: Install required packages.
apt:
pkg={{ item }}
state=installed
with_items: '{{ php_packages }}'
pkg: '{{ php_packages }}'
state: present
force: yes
notify:
- "Apache | Restart Apache"
- Restart Apache
- name: "PHP | Ensure Apache config directory"
- name: Hold em all
shell: dpkg --get-selections | grep ^sed s/install/hold/g | sudo dpkg --set-selections
when: php_hold_version
- name: Install PECL packages
shell: pecl install --soft imagick-3.3.0
when: php_version_main|default(7) != 7
ignore_errors: yes
# NOTE: If oauth is already installed and we install a new PHP 7 version then this fails and we need --force as well
- name: Install PECL packages
shell: pecl install --soft --force oauth
when: php_version_main|default(7) == 7
ignore_errors: yes
- name: Ensure Apache config directory
file:
dest=/etc/{{ php_base_dir }}/apache2
state=directory
owner=root
group=root
mode=0755
dest: /etc/{{ php_base_dir }}/apache2
state: directory
owner: root
group: root
mode: 0755
- name: "PHP | Configuration file, php.ini"
- name: Configuration file, php.ini
template:
src=etc-php5-apache2-php.ini
dest=/etc/{{ php_base_dir }}/apache2/php.ini
owner=root
group=root
mode=0644
src: etc-php5-apache2-php.ini
dest: /etc/{{ php_base_dir }}/apache2/php.ini
owner: root
group: root
mode: 0644
notify:
- "Apache | Restart Apache"
- Restart Apache
- include: php53.yml
- name: Import php53
import_tasks: php53.yml
when: php_version|default('5.5') == '5.3'
- name: "PHP | Configuration file, fcgid.conf"
- name: Configuration file, fcgid.conf
template:
src=fcgid.conf
dest=/etc/apache2/mods-available/fcgid.conf
owner=root
group=root
mode=0644
src: fcgid.conf
dest: /etc/apache2/mods-available/fcgid.conf
owner: root
group: root
mode: 0644
notify:
- "Apache | Restart Apache"
- Restart Apache
- name: "PHP | Cache configuration file, opcache.ini"
- name: Configuration files
template:
src=etc-php5-conf-d-opcache.ini
dest=/etc/{{ php_base_dir }}/{{ php_conf_dir }}/opcache.ini
owner=root
group=root
mode=0644
src: etc-php5-conf-d-{{ item }}.ini
dest: /etc/{{ php_base_dir }}/{{ php_conf_dir }}/{{ item }}.ini
owner: root
group: root
mode: 0644
with_items:
- apcu
- opcache
notify:
- "Apache | Restart Apache"
- Restart Apache
- name: "PHP | Create extra directory for browscap"
- name: Create extra directory for browscap
file:
dest=/etc/{{ php_base_dir }}/apache2/extra
state=directory
owner=root
group=root
dest: /etc/{{ php_base_dir }}/apache2/extra
state: directory
owner: root
group: root
when: php_browscap
- name: "PHP | browscap.ini"
- name: browscap.ini
copy:
src=browscap.ini
dest=/etc/{{ php_base_dir }}/apache2/extra/browscap.ini
owner=root
group=root
src: browscap.ini
dest: /etc/{{ php_base_dir }}/apache2/extra/browscap.ini
owner: root
group: root
when: php_browscap
notify:
- "Apache | Restart Apache"
- name: "PHP | Enable PHP modules"
shell: php5enmod {{ item }}
with_items:
- mcrypt
- imap
- imagick
when: php_version|default('5.5') != '7' and php_conf_dir == 'mods-available'
notify:
- "Apache | Restart Apache"
- Restart Apache
- name: "PHP | Create htdocs directory for apc status"
- name: Create htdocs directory for apc status
file:
dest=/var/www/apc
state=directory
owner=www-data
group=www-data
dest: /var/www/apc
state: directory
owner: www-data
group: www-data
- name: "PHP | Copy APC status php script"
- name: Copy APC status php script
copy:
src=apc.php
dest=/var/www/apc
owner=www-data
group=www-data
- name: "PHP | Check OCI Requirement"
shell: ls /usr/lib/php5/20090626/pdo_oci.so
register: oci_available
when: php_needs_oci8
ignore_errors: yes
changed_when: oci_available.stdout != '/usr/lib/php5/20090626/pdo_oci.so'
notify:
- "Apache | Restart Apache"
- include: oci.yml
when: repository is defined and php_needs_oci8 and oci_available.stdout != '/usr/lib/php5/20090626/pdo_oci.so'
- name: "PHP | Ensure ImageMagick config directory"
file:
dest=/etc/ImageMagick
state=directory
owner=root
group=root
mode=0755
- name: "PHP | ImageMagick Policy File"
src: apc.php
dest: /var/www/apc
owner: www-data
group: www-data
- name: Include oci version
include_tasks: oci-{{ php_version|default('5.5') }}.yml
when: repository is defined and php_needs_oci8
- name: Include mcrypt
include_tasks: mcrypt-7.2.yml
when: php_version|default('5.5') == '7.2' and php_needs_mcrypt
- name: Import msodbc
import_tasks: msodbc.yml
when: php_needs_msodbc
- block:
- name: Apache FPM Socket Configuration
template:
src: etc-apache2-conf-available-php-fpm
dest: /etc/apache2/{{ apache_conf_dir }}/php{{ php_version_main }}-fpm.conf
owner: root
group: root
mode: 0644
notify:
- Restart Apache
- name: Enable Apache PHP FPM Configuration
command: a2enconf php{{ php_version_main }}-fpm
args:
creates: /etc/apache2/conf-enabled/php{{ php_version_main }}-fpm{{ apache_conf_ext }}
notify:
- Restart Apache
when: php_fpm_socket
- name: FPM Default Pool Configuration
template:
src=etc-imagemagick-policy.xml
dest=/etc/ImageMagick/policy.xml
owner=root
group=root
mode=0644
src: php_pool.conf
dest: /etc/{{ php_base_dir }}/fpm/pool.d/default.conf
owner: root
group: root
mode: 0644
when: (php_version_main|default(7) == 7) and php_fpm and apache_server_default
notify:
- Restart PHP-FPM
- block:
- name: Set facts for PHP 7
set_fact:
phpLogRotatePrefix: '{{php_version|default("7.0")}}'
phpLibPrefix: ''
when: php_version_main|default(7) == 7
- name: Set facts for PHP 5
set_fact:
phpLogRotatePrefix: '5'
phpLibPrefix: '5'
when: php_version_main|default(7) != 7
- name: Install logrotate script
template:
src: etc-logrotate-php
dest: /etc/logrotate.d/php{{ phpLogRotatePrefix }}-fpm
owner: root
group: root
mode: 0644
notify:
- Initial Logrotate
- name: Adjust apache config for default site
lineinfile:
dest: /etc/apache2/sites-available/{{ apache_conf_default_prefix }}default{{ apache_conf_ext }}
regexp: '{{ item.regexp }}'
line: '{{ item.line }}'
backrefs: yes
with_items:
- regexp: 'ProxyPassMatch'
line: ' ProxyPassMatch ^/(.*\.php(/.*)?)$ fcgi://127.0.0.1:{{ php_fpm_port|default(9999) }}/var/www{{apache_server_default_root}}/$1'
- regexp: '<Proxy fcgi'
line: ' <Proxy fcgi://127.0.0.1:{{ php_fpm_port|default(9999) }}>'
when: apache_server_default
notify:
- Restart PHP-FPM
- Restart Apache
when: php_fpm
tags:
- logrotate
- name: Explicitly set PHP version for CLI
alternatives:
name: php
path: /usr/bin/php{{ php_version }}
......@@ -3,142 +3,161 @@
---
# file: roles/php/tasks/php53.yml
- name: "Ensure PHP53 config directory"
- name: Ensure PHP53 config directory
file:
dest='{{ item }}'
state='directory'
dest: '{{ item }}'
state: directory
with_items:
- '/etc/{{ php_base_dir }}/fpm/pool.d/'
- /etc/{{ php_base_dir }}/fpm/pool.d/
- name: "Check PHP 5.3 Requirement"
- name: Check PHP 5.3 Requirement
shell: php --version
register: php_version_available
changed_when: false
changed_when: no
- block:
- name: "Package Preferences"
template:
src='preferences/{{ item }}'
dest='/etc/apt/preferences.d/{{ item }}-pin'
owner='root'
group='root'
mode='644'
with_items:
- 'openssl'
- 'libssl'
- name: "Install Packages"
apt:
pkg={{ item }}
state=installed
with_items:
- 'build-essential'
- 'libfcgi-dev'
- 'libfcgi0ldbl'
- 'libjpeg62-dbg'
- 'libmcrypt-dev'
- 'libssl-dev'
- 'libc-client2007e'
- 'libc-client2007e-dev'
- 'libxml2-dev'
- 'libcurl4-openssl-dev'
- 'libpng-dev'
- 'libjpeg-progs'
- 'autoconf2.13'
- 'automake1.4'
- name: "Link Client Lib"
file:
src='/usr/lib/x86_64-linux-gnu/libc-client.a'
dest='/usr/lib/libc-client.a'
state='link'
force=yes
- name: "Make sure an empty directory /tmp/php53 exists"
file:
path='/tmp/php53'
state='{{ item }}'
with_items:
- absent
- directory
- name: "Download PHP 5.3"
get_url:
url='http://in1.php.net/distributions/php-5.3.29.tar.bz2'
dest='/tmp/php-5.3.29.tar.bz2'
- name: "Unpack PHP 5.3"
unarchive:
src='/tmp/php-5.3.29.tar.bz2'
dest='/tmp/php53'
copy=no
- name: "Compile PHP 5.3"
shell: "{{ item }} chdir=/tmp/php53/php-5.3.29"
with_items:
- ./configure --with-libdir=/lib/x86_64-linux-gnu --enable-fpm --enable-mbstring --enable-sockets --with-zlib --enable-zip --with-imap-ssl --with-imap --with-curl --with-mcrypt --with-gd --with-mysql --with-pdo-mysql --with-mysqli --with-gettext --with-jpeg-dir=/usr --with-png-dir=/usr --with-kerberos --with-openssl --disable-cgi
- make
- make install
- name: "Create PHP53 Start Script"
template:
src='etc-init-d-php53-fpm'
dest='/etc/init.d/php-fpm'
owner='root'
group='root'
mode='755'
- name: "Add PHP-FPM to Boot-List"
command: update-rc.d php-fpm defaults
when: '"PHP 5.3.29" not in php_version_available.stdout'
- name: "Copy PHP53 Libraries"
- name: Package Preferences
template:
src: preferences/{{ item }}
dest: /etc/apt/preferences.d/{{ item }}-pin
owner: root
group: root
mode: 0644
with_items:
- openssl
- libssl
- name: Install Packages
apt:
pkg: '{{ packages }}'
state: present
vars:
packages:
- autoconf2.13
- automake1.4
- build-essential
- libc-client2007e
- libc-client2007e-dev
- libfcgi-dev
- libfcgi0ldbl
- libfreetype6-dev
- libgif-dev
- libgif4
- libjpeg-progs
- libjpeg62-dbg
- libjpeg8
- libjpeg8-dev
- libmcrypt-dev
- libmysqlclient-dev
- libpcre++-dev
- libpcre3-dev
- libpng-dev
- libssl-dev
- libx11-dev
- libxau-dev
- libxcb1-dev
- libxdmcp-dev
- libxml2-dev
- libxml2-dev
- libxpm-dev
- x11proto-core-dev
- x11proto-input-dev
- x11proto-kb-dev
- xtrans-dev
- name: Link Client Lib
file:
src: /usr/lib/libc-client.a
dest: /usr/lib/x86_64-linux-gnu/libc-client.a
state: link
- name: Make sure an empty directory /tmp/php53 exists
file:
path: /tmp/php53
state: '{{ item }}'
with_items:
- absent
- directory
- name: Download PHP 5.3
get_url:
url: 'http://in1.php.net/distributions/php-5.3.29.tar.bz2'
dest: /tmp/php-5.3.29.tar.bz2
- name: Unpack PHP 5.3
unarchive:
src: /tmp/php-5.3.29.tar.bz2
dest: /tmp/php53
copy: no
- name: Compile PHP 5.3
shell: '{{ item }}'
args:
chdir: /tmp/php53/php-5.3.29
with_items:
- ./configure --with-libdir=/lib/x86_64-linux-gnu --enable-fpm --enable-mbstring --enable-sockets --with-zlib --enable-zip --with-imap-ssl --with-imap --with-curl --with-mcrypt --with-gd --with-mysql --with-pdo-mysql --with-mysqli --with-gettext --with-jpeg-dir=/usr --with-png-dir=/usr --with-kerberos --with-openssl --disable-cgi
- make
- make install
- name: Create PHP53 Start Script
template:
src: etc-init-d-php53-fpm
dest: /etc/init.d/php-fpm
owner: root
group: root
mode: 0755
- name: Add PHP-FPM to Boot-List
command: update-rc.d php-fpm defaults
when: php_version_available and 'PHP 5.3.29' not in php_version_available.stdout
- name: Copy PHP53 Libraries
copy:
src='php53/libs/{{ item.file }}'
dest='{{ php53.libdir }}/{{ item.file }}'
owner='root'
group='root'
mode='644'
src: php53/libs/{{ item.file }}
dest: '{{ php53.libdir }}/{{ item.file }}'
owner: root
group: root
mode: 0644
with_items: '{{ php53.libraries }}'
- name: "Ensure PHP53 Library Links"
- name: Ensure PHP53 Library Links
file:
src='{{ php53.libdir }}/{{ item.file }}'
dest='{{ php53.libdir }}/{{ item.link }}'
state='link'
owner='root'
group='root'
mode='644'
src: '{{ php53.libdir }}/{{ item.file }}'
dest: '{{ php53.libdir }}/{{ item.link }}'
state: link
owner: root
group: root
mode: 0644
with_items: '{{ php53.libraries }}'
- name: "Ensure extra Library Links"
- name: Ensure extra Library Links
file:
src='{{ item.src }}'
dest='{{ php53.libdir }}/{{ item.link }}'
state='link'
owner='root'
group='root'
mode='644'
src: '{{ item.src }}'
dest: '{{ php53.libdir }}/{{ item.link }}'
state: link
owner: root
group: root
mode: 0644
with_items: '{{ php53.liblinks }}'
- name: "Copy PHP53 Modules"
- name: Copy PHP53 Modules
copy:
src='php53/{{ item }}.so'
dest='{{ php53.extdir }}/{{ item }}.so'
owner='root'
group='root'
mode='644'
src: php53/{{ item }}.so
dest: '{{ php53.extdir }}/{{ item }}.so'
owner: root
group: root
mode: 0644
with_items: '{{ php53.modules }}'
- name: "Create PHP53 INI Files"
- name: Create PHP53 INI Files
template:
src='etc-php5-apache2-php.ini'
dest='/etc/{{ php_base_dir }}/{{ item }}/php.ini'
owner='root'
group='root'
mode='644'
src: etc-php5-apache2-php.ini
dest: /etc/{{ php_base_dir }}/{{ item }}/php.ini
owner: root
group: root
mode: 0644
with_items:
- 'cgi53'
- 'cli53'
- 'fpm'
- cgi53
- cli53
- fpm
---
# file: roles/php/tasks/variables.yml
- block:
- name: Set default facts
set_fact:
phpFpmService: php5-fpm
- name: Set facts for PHP 5
set_fact:
phpFpmService: php-fpm
when: php_version_main|default(7) == 5
- name: Set facts for PHP 7
set_fact:
phpFpmService: php{{php_version|default("7.0")}}-fpm
when: php_version_main|default(7) == 7
tags:
- always
<IfModule mod_fastcgi.c>
AddHandler php{{ php_version_main }}-fcgi .php
Action php{{ php_version_main }}-fcgi /php{{ php_version_main }}-fcgi
Alias /php{{ php_version_main }}-fcgi /usr/lib/cgi-bin/php{{ php_version_main }}-fcgi
FastCgiExternalServer /usr/lib/cgi-bin/php{{ php_version_main }}-fcgi -socket /var/run/php{{ php_version_main }}-fpm.sock -pass-header Authorization
<Directory /usr/lib/cgi-bin>
Include /etc/apache2/{{ apache_conf_dir }}/global-deny.conf
</Directory>
</IfModule>