Kategorien
Blog Software

Setting up a WordPress staging system with docker

I wanted a WordPress staging system to play around with new plugins, new WordPress versions, and PHP versions.

The primary goals of my mini-project were:

  • Have a staging system for WordPress available for testing new WordPress versions and Plugins
  • Enhance the Performance of the actual WordPress Blog

How can we do it?

Here is a network diagram of the current system setup.

OK, the ideas were quite clear. Now we need a migration plan. And this looks like that:

  1. Install Raspian on the RPi5 SSD, with the Raspberry Pi imager
  2. Install docker and Portainer on the RPi5, based on the Heise description
  3. Install the following docker containers via „docker compose“
    1. Nginx Reverse Proxy
    2. Maria DB for WordPress Staging 
    3. WordPress Staging
    4. Maria DB for WordPress Production
    5. WordPress Production
    6. (Setting up Home Assistant also as a docker container is not a good idea as we lose the functionality of Add-Ons)
  4. With the current live system I’m doing a regular backup via Updraft, so let’s import these backups into the two WordPress instances
  5. At the DNS provider define the new subdomains and route them also to the Dynamic DNS provider
  6. Configure the NPM (Nginx Proxy Manager) with these domains and define the forwarding to the different instances
    1. Setup SSL via Let’s encrypt 
    2. Add also the local Home Assistant server/Port as the target
  7. Reconfigure the port forwarding of the router to the NPM
  8. Shutdown the old RPi4

So, let’s dive a little bit deeper into the different steps.

Configure the new RPi5 hardware and software

OK, let’s get the first new hardware, which means the new high-performance RPi5.

It took some time to be available on the market and the announced performance numbers looked promising.

As the power supply is quite strong I attached directly a SSD drive to the USB3 port.

So no need anymore for a USB hub!

Installing the latest Rasbian operating system on the SSD was pretty easy using the Raspian Imager.

I also configured the SSH access for it, of course.

So, how are we going further?

Install docker on the RPi5

As I wanted to run a WordPress life system and a WordPress staging system in my local network, I thought it would be a good idea to go with:

  • Docker to run multiple images/containers
  • Nginx Reverse Proxy to manage/route the traffic to/from these containers to the outside world

Install the docker containers

  • Setup a docker network manually
docker network create dockerwp 
  • Create a directory for wp_prod, wp_staging, nginx
  • Define a file for common parameters used as anonymized volumes in the docker containers
  • Create docker-compose.yml for the Nginx Proxy
services:
  app:
    image: 'jc21/nginx-proxy-manager:latest'
    container_name: nginx-proxy
    restart: unless-stopped
    ports:
      # These ports are in format <host-port>:<container-port>
      - '80:80' # Public HTTP Port
      - '443:443' # Public HTTPS Port
      - '81:81' # Admin Web Port
      # Add any other Stream port you want to expose
      # - '21:21' # FTP

    # Uncomment the next line if you uncomment anything in the section
    # environment:
      # Uncomment this if you want to change the location of
      # the SQLite DB file within the container
      # DB_SQLITE_FILE: "/data/database.sqlite"

      # Uncomment this if IPv6 is not enabled on your host
      # DISABLE_IPV6: 'true'

    volumes:
      - ./data:/data
      - ./letsencrypt:/etc/letsencrypt

networks:
  dockerwp:
    external: true
  • Create docker-compose.yml for the MariaDB and the WordPress container (one for the staging and one for the production system)
services:
  mysqldb0:
    image: mariadb:11.3.2
    container_name: prod_db
    environment:
      MARIADB_ROOT_PASSWORD: "secret"
      MARIADB_DATABASE: "wordpress"
      MARIADB_USER: "wordpress"
      MARIADB_PASSWORD: "secret"
    volumes:
      - 'mysqldb0:/var/lib/mysql'
    restart: always
    networks:
      -  mysqldb0


  wordpress0:
    image: wordpress:6.5.3
    container_name: prod_wp
    environment:
      WORDPRESS_DB_HOST: "mysqldb0"
      WORDPRESS_DB_USER: "wordpress"
      WORDPRESS_DB_PASSWORD: "secret"
      WORDPRESS_DB_NAME: "wordpress"
      WORDPRESS_CONFIG_EXTRA: |
        define('AUTOMATIC_UPDATER_DISABLED', true);

   volumes:
      - 'wordpress0:/var/www/html/wp-content'
      - '../uploads.ini:/usr/local/etc/php/conf.d/uploads.ini'
    restart: always
    ports:
      - "8001:80"
    depends_on:
      - mysqldb0
    networks:
      - mysqldb0
      - dockerwp

volumes:
  mysqldb0:
  wordpress0:

networks:
  mysqldb0:
    internal: true
  dockerwp:
    external: true

Setup the WordPress content

As I backed up the WordPress blog site with updraft, we are restoring the backup to the new WordPress staging and WordPress production system, respectively.

Configure the Sub-Domains

Go to your DNS provider and configure the new Sub-domains with a CNAME entry.

If you have a dynamic IP address, route the Sub-Domain entries to the same Dynamic DNS entry of your DynDNS Provider.

Configure the NPM

Define the target of the routing for all the Sub-Domains, e.g. the Ports of your WordPress containers.

Let the Sub-Domain for the Home Assistant point to the separate HA RPi3.

Add the SSL certificates from Let’s Encrypt.

Additional configuration for the Home Assistant

We must add the following configuration steps to make the Home Assistant run with an external Sub Domain, based on ademalidurmus.

1.) At the NPM, enter the following entry in the advanced config for the Home Assistant Host.

location / {
        proxy_pass              http://10.0.0.5:8123;
        proxy_set_header        Host            $host;
        proxy_redirect          http://         https://;
        proxy_set_header        Authorization   $http_authorization;
        proxy_pass_header       Authorization;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection “upgrade”;
 }

In the Home Assistant configuration.yml file add:

http:
  cors_allowed_origins:
    - https://public.domain.tld # my public domain
  use_x_forwarded_for: true
  trusted_proxies:
    - 10.0.0.3 # nginx proxy manager internal IP adress

At the „Home Assistant URL“ page enter:

Internet: [External Domain]
Local network: [Internal IP]:8123

Reconfigure the Port forwarding at your router

The Ports 80 for HTTP and 443 for HTTPS must now be reconfigured to forward the traffic from these two ports to the NPM.

Here is the network diagram of the new setup.

WordPress staging system with docker

Let’s now check our goals from the beginning. Did we reach them?

  • Have a staging system for WordPress available for testing new versions and Plugins: Available
  • Enhance Performance of the actual WordPress Blog: Super fast!
Kategorien
Blog

Pegelstände von Flüssen in Deutschland

Einen tollen Service zum Abrufen der Pegelstände von Flüssen in Deutschland gibt es über https://www.pegelonline.wsv.de/.

Hier ein Beispiel:

Oder mit mehreren Pegeln in einer Grafik:

Hier ein paar Videos, wie es am 01.06.2024 in Untertürkheim am Wehr aussah.

Kategorien
Blog Bücher

Neue Version meines Kochbuchs

Ich habe noch ein paar neue Rezepte dazugepackt und das Cover verschönert und eine neue Version meines Kochbuchs erstellt.

Die neuen Rezepte sind ein Kürbis-Risotto, ein Kürbis-Kartoffel Gericht und Kartoffel-Nudeln.

Der Druck-Service ist immer noch via epubli.

Ihr könnt es dort unter dem angegebenen Link bestellen.

Neue Version meines Kochbuchs
Kochbuch
Kategorien
Blog Instagram Software

Move to the Fediverse

I think, now it’s time to move to the Fediverse. Most of us know that all the proprietary, closed-profit applications are f***ed up.

They are feeding us content that we mostly don’t want, and their only purpose they have is, generating money for them. And for this purpose, they are using our data, that we are giving them voluntarily.

They are bombarding us with advertisements and locking us into their systems. This is the same for Facebook, Instagram, Twitter,…

Twitter crashing

And thanks to Elon Musk – a guy that I admire as a businessman, but hate for his racist opinions – who bought Twitter some time ago, triggered a lot of people – including me – to move to the Fediverse.

I think, Musk is very good at managing technical industry companies but will fail IMHO managing a social internet company.

The Fediverse is per definition focussing on non-profit and is interoperable between different applications.

Multiple changes happened recently which is why I think now it’s the right time to move.

WordPress supports the ActivityPub protocol

Now there is a new plugin for any self-hosted WordPress installation available supporting the ActivityPub protocol. As soon as you configure the plugin anybody in the Fediverse can follow either a specific author of your WordPress blog or the complete blog.

Move to the Fediverse

Pixelfed can import from Instagram

You can now import your posts from Instagram into Pixelfed, preserving all the content you have produced in the past.

Mastodon supports search

A quite new and long-awaited feature searching just for text in the toots is now available.

You wanna follow me?

To follow this blog here (and this author) please use @gerhardy2408 or the complete blog with @blog.gerhard-vogt.de

My Mastodon user is @gerhardy2408

My Pixelfed user is @gerhardy2408

More to read

https://gnulinux.ch/fediverse-serie-activitypub-bei-wordpress-einen-blog-in-ein-soziales-netzwerk-bringen

Kategorien
Blog

Tag des offenen Denkmals

Am diesjährigen Tag des offenen Denkmals waren wir bei drei Stationen.

Zuerst ging es zur Universität Hohenheim wo uns der emeritierte Professor Adolf Martin Steiner die Geschichte des einzigartigen Friedhofs der Universität näher brachte.

Er klärte uns darüber auf, wie der Begriff „Friedhof“ zustande kam, daß die Toten immer mit den Füßen zuerst auf den Gottesacker gebracht werden, und wie man sich vor Wiedergängern schützt.

Auch die verschiedensten Arten der Bestattung, mit den jeweiligen Kosten, hat er uns ausgiebigst erklärt.

Wenn er durch den Friedhof geht, kommen immer wieder Erinnerungen an die Toten hoch, und was er zusammen mit ihnen erlebt hat.

Erklärungen:

  • Friedhof kommt von Einfriedung
  • Damit der Tote nicht mehr zurück findet, wird sie/er mit den Füssen zuerst auf den Gottesacker gebracht
  • Wiedergänger (von den Toten wiederauferstandene) werden durch Absperren des Gatters daran gehindert, wieder ins Reich der Lebendigen zu kommen

Unser zweiter Stopp führte uns in das Heimatmuseum im alten Schloss. Alle Ausstellungen dort sind wirklich sehenswert.

Doch nach einiger Zeit schmerzte uns der Rücken durch das langsame gehen (dafür sind wir einfach nicht gemacht ;-)) und wir machten uns auf den Weg zu unserem dritten Denkmal an diesem Tag.

Das war die Villa Moser am Löwentor in dem Leipfriedschen Garten.

Tag des offenen Denkmals

Leider hat sich dort die Schokoladenstadt Stuttgart nicht mit Ruhm bekleckert. Durch die Kunst Installationen für die IGA ’93 wurde dem historischen Gebäude, das damals schon unter Denkmalschutz stand, aus meiner Sicht ein erheblicher Schaden zugefügt. Ich würde mich sehr freuen, wenn dort mehr Aktivitäten stattfinden würden, die die Zugänglichkeit zu dem Park und der Ruine verbessern.