104Drupal - amagerard/Docker GitHub Wiki

Docker/Home

RedHat/Docker.

1- Docker 2- Firewall 3- Portainer 4- Drupal 5- Joomla
6-Wordpress 7-Xwiki 8- Mediawiki
Casaos Zimaos

4. Drupal.

Drupal is a Content Management System.
It is possible to create, manage and easily modify a website.

This procedure is based on this example.

Docker server ip :192.168.60.55/24
Your username: teacher
Your home directory:/home/teacher

4.1 Create Network and Volumes with Portainer.

Open Portainer for create network and volumes.
http://192.168.60.55:9000

Click on Environments Local.

4.1.1 Each Drupal instance has its container.

  • cnt_dpl_wb_number.
  • cnt_dpl_db_number.
    Containers will be created from the docker compose command line.

4.1.2 Each Drupal instance has its network.

  • net_dpl_number.
    Create net_dpl_1.
Select Networks.  
Add network.  
Name : net_dpl_1  
Add Driver options:  
Name : com.docker.network.bridge.name   value : net_dpl_1  
Create the network.

Name: com.docker.network.bridge.name value : net_dpl_1 is not specified, docker will give it a name as br-XXXX.

4.1.3 Each Drupal instance has its volume.

  • vol_dpl_wb_number
  • vol_dpl_db_number
    Create these volumes.
Select Volumes.  
Add volume.  
Name: vol_dpl_wb_1  
Create the volume.  
Add the volume.  
Name: vol_dpl_db_1  
Create the volume.

4.1.4 Information.

Command lines to create the netwok and volumes without portainer.
docker network create --opt com.docker.network.bridge.name=net_dpl_1 net_dpl_1
docker volume create vol_dpl_wb_1
docker volume create vol_dpl_db_1

4.2 Give permissions to www-dock and mysql-dock for volumes.

chown -R www-dock:www-dock /var/lib/docker/volumes/vol_dpl_wb_1
chown -R mysql-dock:mysql-dock /var/lib/docker/volumes/vol_dpl_db_1

4.3 Install Drupal with a yaml script.

logging with your username.
mkdir /home/teacher/drupal
vi /home/teacher/drupal/instance_drupal_1.yaml

# 2025, January  
# replace number  by 1 or 2 or ... until 9  
# example n = 1  
# port published wb = 8081  
# port published db = 33771  
# ip = 192.168.60.55  
# you must create network net_dpl_1    from portainer before installing drupal.  
# you must create volume vol_dpl_wb_1  from portainer before installing drupal.  
# you must create volume vol_dpl_db_1  from portainer before installing drupal.  
#  
# Be careful with the tab, the indentation is 4 characters.  
#  
name: drupal_1  ## change  n of drupal_n  
services:  
    drupal:  
        cpu_shares: 90  
        command: []  
        container_name: cnt_dpl_wb_1  ## change   n  of cnt_dpl_wb_n  
        depends_on:  
            drupaldb:  
                condition: service_started  
                restart: true  
                required: true  
        deploy:  
            resources:  
                limits:  
                    memory: 2048M  
        environment:  
            - DRUPAL_DB_HOST=cnt_dpl_db_1  ## change  n of cnt_dpl_db_n  
            - DRUPAL_DB_PASSWORD=password  ## Change password if you want  
        hostname: cnt_dpl_wb_1  ## change  n of cnt_dpl_wb_n  
        image: drupal:latest  
        links:  
            - drupaldb:mariadb  
        ports:  
            - target: 80  
              published: '8081'  ## change n of published : 808n  
              protocol: tcp  
        restart: always  
        volumes:  
            - /var/lib/docker/volumes/vol_dpl_wb_1/_data:/var/www/html #  create volume from portainer and change  n of vol_dpl_wb_n  
        user: 2001:2001  ## www-dock (uid:gid) 
        devices: []  
        cap_add: []  
        network_mode: net_dpl_1  # create with portainer, change n of net_dpl_n  
        privileged: false  
    drupaldb:  
        cpu_shares: 90  
        command: []  
        container_name: cnt_dpl_db_1  ## change   n  of cnt_dpl_db_n  
        deploy:  
            resources:  
                limits:  
                    memory: 2048M  
        environment:  
            - MYSQL_ROOT_PASSWORD=password  # it is the same password DRUPAL_DB_PASSWORD  
        hostname: cnt_dpl_db_1 ## change  n of cnt_dpl_db_n  
        image: mariadb:latest  
        ports:  
            - target: 3306  
              published: '33771'  ## change  n of  3377n  
              protocol: tcp  
        restart: always  
        volumes:  
            - /var/lib/docker/volumes/vol_dpl_db_1/_data:/var/lib/mysql   ## create volume from portainer and change  n of vol_dpl_db_n  
        user: 2002:2002  ## mysql-dock (uid:gid)
        devices: []  
        cap_add: []  
        network_mode: net_dpl_1 # create network  from portainer and change  n of net_dpl_1  
        privileged: false

Installation.
docker compose -f /home/teacher/drupal/instance_drupal_1.yaml up
Crtl+C to stop.

Information.
If you want to change your drupal instance in 2,
edit this file and replace _1 by _2.
Then replace the port 8081 by 8082
and 33771 by 33772.

4.4 Attach volumes with containers.

On portainer, by default the volumes are marked Unused.
This is a problem for drupal.

Launch Portainer.
http://192.168.60.55:9000

Click on Environments Local.

Select Container cnt_dpl_db_1.
Click on cnt_dpl_db_1.
Click Duplicate/Edit.
Advanced container settings.
Click on Volumes.
Volumes mapping.
Choose container /var/lib/mysql.
Click on Volume.
Select a Volume.
Choose vol_dpl_db_1 - local.
Click on Deploy the container.
Click on Replace.

Select Container cnt_dpl_wb_1.
Click on cnt_dpl_wb_1.
Click Duplicate/Edit.
Advanced container settings.
Click on Volumes.
Volumes mapping.
Choose container /var/www/html.
Click on Volume.
Select a Volume.
Choose vol_dpl_wb_1 - local.
Click on Deploy the container.
Click on Replace.

4.5 Give permissions to www-dock for volumes.

I don't know why Portainer creates the files with root permissions.
This is not really a solution but it solves my problem.
chown -R www-dock:www-dock /var/lib/docker/volumes/vol_dpl_wb_1

4.6 Open Drupal.

4.6.1 Firewall.

Find your interface for network net_dpl_1.
The gateway is displayed in Portainer Networks.
Example:
The net_dpl_1 gateway is 172.18.0.1/16.
Network interface is net_dpl_1.

ifconfig

net_dpl_1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500  
        inet 172.18.0.1  netmask 255.255.0.0  broadcast 172.18.255.255  
        ether 02:42:6a:71:3d:51  txqueuelen 0  (Ethernet)  
        RX packets 10742  bytes 23229052 (22.1 MiB)  
        RX errors 0  dropped 0  overruns 0  frame 0  
        TX packets 12571  bytes 5854522 (5.5 MiB)  
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

Add rules on firewall.
iptables -t nat -A POSTROUTING ! -o net_dpl_1 -s 172.18.0.0/16 -j MASQUERADE
ufw route allow in on net_dpl_1 out on eth0 to any from any
ufw allow in from any to any port 8081

The postrouting iptable rule disappears after restarting the server.
The solution is to add the rule in crontab.
Add postrouting iptable in /opt/docker/postrouting_sh.
vi /opt/docker/postrouting_sh

iptables -t nat -A POSTROUTING ! -o net_dpl_1  -s 172.18.0.0/16 -j MASQUERADE

Don't forget to delete line if you no longer use this iptable rule.

Information.
To delete an iptable postrouting rule without reboot.
Postrouting line number.
iptables --list -v --line-numbers -t nat
Remove rule ( 1 is the line number).
iptables -t nat -D POSTROUTING 1

4.6.2 First access Drupal.

http://192.168.60.55:8081.

Select language : English
Save and continue.
Standard.
Save and continue.
Database type : MySQL,MariadB
Database name : cnt_dpl_db_1
Database username : root
Database password: password
Host: 172.18.0.1
The ip host is the network net_dpl_1 gateway.
The gateway is displayed in Portainer Networks.
Port number: 33771
Save and continue.

Site name: mybeautifulweb
Site email addres: as you want
Username: as you want
Password: as you want
Confirm password: as you want
Save and continue.

Drupal is ready.