Merge tag 'v0.9.7' into stable

Release v0.9.7
author: ArthurHoaro <arthur@hoa.ro> 2018-07-28 11:07:55 +0200
committer: ArthurHoaro <arthur@hoa.ro> 2018-07-28 11:07:55 +0200
commit: 83faedadff76c5bdca036f39f13943f63b27e164 (patch)
tree: 6f44cede16ec6a60f10b9699e211e0818f06d2c8 /doc/md/docker
parent: 1d9eb22a3df85b67fe6652c0876cd7382c2fb525 (diff)
parent: 658988f3aeba7a5a938783249ccf2765251e5597 (diff)
download: Shaarli-83faedadff76c5bdca036f39f13943f63b27e164.tar.gz
Shaarli-83faedadff76c5bdca036f39f13943f63b27e164.tar.zst
Shaarli-83faedadff76c5bdca036f39f13943f63b27e164.zip
4 files changed, 374 insertions, 0 deletions
diff --git a/doc/md/docker/docker-101.md b/doc/md/docker/docker-101.md
new file mode 100644
index 00000000..a9c00b85
--- /dev/null
+++ b/doc/md/docker/docker-101.md
@@ -0,0 +1,140 @@
+## Basics
+Install [Docker](https://www.docker.com/), by following the instructions relevant
+to your OS / distribution, and start the service.
+### Search an image on [DockerHub](https://hub.docker.com/)
+```bash
+$ docker search debian
+NAME            DESCRIPTION                                     STARS   OFFICIAL   AUTOMATED
+ubuntu          Ubuntu is a Debian-based Linux operating s...   2065    [OK]
+debian          Debian is a Linux distribution that's comp...   603     [OK]
+google/debian                                                   47                 [OK]
+```
+### Show available tags for a repository
+```bash
+$ curl https://index.docker.io/v1/repositories/debian/tags | python -m json.tool
+% Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
+Dload  Upload   Total   Spent    Left  Speed
+100  1283    0  1283    0     0    433      0 --:--:--  0:00:02 --:--:--   433
+```
+Sample output:
+```json
+[
+    {
+        "layer": "85a02782",
+        "name": "stretch"
+    },
+    {
+        "layer": "59abecbc",
+        "name": "testing"
+    },
+    {
+        "layer": "bf0fd686",
+        "name": "unstable"
+    },
+    {
+        "layer": "60c52dbe",
+        "name": "wheezy"
+    },
+    {
+        "layer": "c5b806fe",
+        "name": "wheezy-backports"
+    }
+]
+```
+### Pull an image from DockerHub
+```bash
+$ docker pull repository[:tag]
+$ docker pull debian:wheezy
+wheezy: Pulling from debian
+4c8cbfd2973e: Pull complete
+60c52dbe9d91: Pull complete
+Digest: sha256:c584131da2ac1948aa3e66468a4424b6aea2f33acba7cec0b631bdb56254c4fe
+Status: Downloaded newer image for debian:wheezy
+```
+Docker re-uses layers already downloaded. In other words if you have images based on Alpine or some Ubuntu version for example, those can share disk space.
+### Start a container
+A container is an instance created from an image, that can be run and that keeps running until its main process exits. Or until the user stops the container. 
+The simplest way to start a container from image is ``docker run``. It also pulls the image for you if it is not locally available. For more advanced use, refer to ``docker create``.
+Stopped containers are not destroyed, unless you specify ``--rm``. To view all created, running and stopped containers, enter:
+```bash
+$ docker ps -a
+```
+Some containers may be designed or configured to be restarted, others are not. Also remember both network ports and volumes of a container are created on start, and not editable later.
+### Access a running container
+A running container is accessible using ``docker exec``, or ``docker copy``. You can use ``exec`` to start a root shell in the Shaarli container:
+```bash
+$ docker exec -ti <container-name-or-id> bash
+```
+Note the names and ID's of containers are listed in ``docker ps``. You can even type only one or two letters of the ID, given they are unique.
+Access can also be through one or more network ports, or disk volumes. Both are specified on and fixed on ``docker create`` or ``run``.
+You can view the console output of the main container process too:
+```bash
+$ docker logs -f <container-name-or-id>
+```
+### Docker disk use
+Trying out different images can fill some gigabytes of disk quickly. Besides images, the docker volumes usually take up most disk space.
+If you care only about trying out docker and not about what is running or saved, the following commands should help you out quickly if you run low on disk space:
+```bash
+$ docker rmi -f $(docker images -aq) # remove or mark all images for disposal
+$ docker volume rm $(docker volume ls -q) # remove all volumes
+```
+### Systemd config
+Systemd is the process manager of choice on Debian-based distributions. Once you have a ``docker`` service installed, you can use the following steps to set up Shaarli to run on system start.
+```bash
+systemctl enable /etc/systemd/system/docker.shaarli.service
+systemctl start docker.shaarli
+systemctl status docker.*
+journalctl -f # inspect system log if needed
+```
+You will need sudo or a root terminal to perform some or all of the steps above. Here are the contents for the service file:
+```
+[Unit]
+Description=Shaarli Bookmark Manager Container
+After=docker.service
+Requires=docker.service
+[Service]
+Restart=always
+# Put any environment you want in an included file, like $host- or $domainname in this example
+EnvironmentFile=/etc/sysconfig/box-environment
+# It's just an example..
+ExecStart=/usr/bin/docker run \
+  -p 28010:80 \
+  --name ${hostname}-shaarli \
+  --hostname shaarli.${domainname} \
+  -v /srv/docker-volumes-local/shaarli-data:/var/www/shaarli/data:rw \
+  -v /etc/localtime:/etc/localtime:ro \
+  shaarli/shaarli:latest
+ExecStop=/usr/bin/docker rm -f ${hostname}-shaarli
+[Install]
+WantedBy=multi-user.target
+```
diff --git a/doc/md/docker/resources.md b/doc/md/docker/resources.md
new file mode 100644
index 00000000..082d4a46
--- /dev/null
+++ b/doc/md/docker/resources.md
@@ -0,0 +1,19 @@
+### Docker
+- [Interactive Docker training portal](https://www.katacoda.com/courses/docker/) on [Katakoda](https://www.katacoda.com/)
+- [Where are Docker images stored?](http://blog.thoward37.me/articles/where-are-docker-images-stored/)
+- [Dockerfile reference](https://docs.docker.com/reference/builder/)
+- [Dockerfile best practices](https://docs.docker.com/articles/dockerfile_best-practices/)
+- [Volumes](https://docs.docker.com/userguide/dockervolumes/)
+### DockerHub
+- [Repositories](https://docs.docker.com/userguide/dockerrepos/)
+- [Teams and organizations](https://docs.docker.com/docker-hub/orgs/)
+- [GitHub automated build](https://docs.docker.com/docker-hub/github/)
+### Service management
+- [Using supervisord](https://docs.docker.com/articles/using_supervisord/)
+- [Nginx in the foreground](http://nginx.org/en/docs/ngx_core_module.html#daemon)
+- [supervisord](http://supervisord.org/)
diff --git a/doc/md/docker/reverse-proxy-configuration.md b/doc/md/docker/reverse-proxy-configuration.md
new file mode 100644
index 00000000..6066140e
--- /dev/null
+++ b/doc/md/docker/reverse-proxy-configuration.md
@@ -0,0 +1,120 @@
+## Foreword
+This guide assumes that:
+- Shaarli runs in a Docker container
+- The host's `10080` port is mapped to the container's `80` port
+- Shaarli's Fully Qualified Domain Name (FQDN) is `shaarli.domain.tld`
+- HTTP traffic is redirected to HTTPS
+## Apache
+- [Apache 2.4 documentation](https://httpd.apache.org/docs/2.4/)
+    - [mod_proxy](https://httpd.apache.org/docs/2.4/mod/mod_proxy.html)
+    - [Reverse Proxy Request Headers](https://httpd.apache.org/docs/2.4/mod/mod_proxy.html#x-headers)
+The following HTTP headers are set by using the `ProxyPass` directive:
+- `X-Forwarded-For`
+- `X-Forwarded-Host`
+- `X-Forwarded-Server`
+```apache
+<VirtualHost *:80>
+    ServerName shaarli.domain.tld
+    Redirect permanent / https://shaarli.domain.tld
+</VirtualHost>
+<VirtualHost *:443>
+    ServerName shaarli.domain.tld
+    SSLEngine on
+    SSLCertificateFile    /path/to/cert
+    SSLCertificateKeyFile /path/to/certkey
+    LogLevel warn
+    ErrorLog  /var/log/apache2/shaarli-error.log
+    CustomLog /var/log/apache2/shaarli-access.log combined
+    RequestHeader set X-Forwarded-Proto "https"
+    ProxyPass        / http://127.0.0.1:10080/
+    ProxyPassReverse / http://127.0.0.1:10080/
+</VirtualHost>
+```
+## HAProxy
+- [HAProxy documentation](https://cbonte.github.io/haproxy-dconv/)
+```conf
+global
+    [...]
+defaults
+    [...]
+frontend http-in
+    bind :80
+        redirect scheme https code 301 if !{ ssl_fc }
+        bind :443 ssl crt /path/to/cert.pem
+        default_backend shaarli
+backend shaarli
+    mode http
+    option http-server-close
+    option forwardfor
+    reqadd X-Forwarded-Proto: https
+    server shaarli1 127.0.0.1:10080
+```
+## Nginx
+- [Nginx documentation](https://nginx.org/en/docs/)
+```nginx
+http {
+    [...]
+    index index.html index.php;
+    root        /home/john/web;
+    access_log  /var/log/nginx/access.log;
+    error_log   /var/log/nginx/error.log;
+        server {
+                listen       80;
+                server_name  shaarli.domain.tld;
+                return       301 https://shaarli.domain.tld$request_uri;
+        }
+        server {
+                listen       443 ssl http2;
+                server_name  shaarli.domain.tld;
+        ssl_certificate       /path/to/cert
+        ssl_certificate_key   /path/to/certkey
+                location / {
+                        proxy_set_header  X-Real-IP         $remote_addr;
+                        proxy_set_header  X-Forwarded-For   $proxy_add_x_forwarded_for;
+                        proxy_set_header  X-Forwarded-Proto $scheme;
+                        proxy_set_header  X-Forwarded-Host  $host;
+                        proxy_pass             http://localhost:10080/;
+                        proxy_set_header Host  $host;
+                        proxy_connect_timeout  30s;
+                        proxy_read_timeout     120s;
+                        access_log      /var/log/nginx/shaarli.access.log;
+                        error_log       /var/log/nginx/shaarli.error.log;
+                }
+        }
+}
+```
diff --git a/doc/md/docker/shaarli-images.md b/doc/md/docker/shaarli-images.md
new file mode 100644
index 00000000..12f7b5d1
--- /dev/null
+++ b/doc/md/docker/shaarli-images.md
@@ -0,0 +1,95 @@
+A brief guide on getting starting using docker is given in [Docker 101](docker-101.md).
+To learn more about user data and how to keep it across versions, please see [Upgrade and Migration](../Upgrade-and-migration.md).
+## Get and run a Shaarli image
+### DockerHub repository
+The images can be found in the [`shaarli/shaarli`](https://hub.docker.com/r/shaarli/shaarli/)
+repository.
+### Available image tags
+- `latest`: latest branch (tarball release)
+- `master`: master branch (tarball release)
+- `stable`: stable branch (tarball release)
+The `latest` and `master` images rely on:
+- [Alpine Linux](https://www.alpinelinux.org/)
+- [PHP7-FPM](http://php-fpm.org/)
+- [Nginx](http://nginx.org/)
+The `stable` image relies on:
+- [Debian 8 Jessie](https://hub.docker.com/_/debian/)
+- [PHP5-FPM](http://php-fpm.org/)
+- [Nginx](http://nginx.org/)
+Additional [Dockerfiles](https://github.com/shaarli/Shaarli/tree/master/docker) are provided for the `arm32v7` platform, relying on [Linuxserver.io Alpine armhf images](https://hub.docker.com/r/lsiobase/alpine.armhf/). These images must be built using [`docker build`](https://docs.docker.com/engine/reference/commandline/build/) on an `arm32v7` machine or using an emulator such as [qemu](https://resin.io/blog/building-arm-containers-on-any-x86-machine-even-dockerhub/).
+### Download from DockerHub
+```bash
+$ docker pull shaarli/shaarli
+latest: Pulling from shaarli/shaarli
+32716d9fcddb: Pull complete
+84899d045435: Pull complete
+4b6ad7444763: Pull complete
+e0345ef7a3e0: Pull complete
+5c1dd344094f: Pull complete
+6422305a200b: Pull complete
+7d63f861dbef: Pull complete
+3eb97210645c: Pull complete
+869319d746ff: Already exists
+869319d746ff: Pulling fs layer
+902b87aaaec9: Already exists
+Digest: sha256:f836b4627b958b3f83f59c332f22f02fcd495ace3056f2be2c4912bd8704cc98
+Status: Downloaded newer image for shaarli/shaarli:latest
+```
+### Create and start a new container from the image
+```bash
+# map the host's :8000 port to the container's :80 port
+$ docker create -p 8000:80 shaarli/shaarli
+d40b7af693d678958adedfb88f87d6ea0237186c23de5c4102a55a8fcb499101
+# launch the container in the background
+$ docker start d40b7af693d678958adedfb88f87d6ea0237186c23de5c4102a55a8fcb499101
+d40b7af693d678958adedfb88f87d6ea0237186c23de5c4102a55a8fcb499101
+# list active containers
+$ docker ps
+CONTAINER ID  IMAGE            COMMAND               CREATED         STATUS        PORTS                 NAMES
+d40b7af693d6  shaarli/shaarli  /usr/bin/supervisor  15 seconds ago  Up 4 seconds  0.0.0.0:8000->80/tcp  backstabbing_galileo
+```
+### Stop and destroy a container
+```bash
+$ docker stop backstabbing_galileo  # those docker guys are really rude to physicists!
+backstabbing_galileo
+# check the container is stopped
+$ docker ps
+CONTAINER ID  IMAGE            COMMAND               CREATED         STATUS        PORTS                 NAMES
+# list ALL containers
+$ docker ps -a
+CONTAINER ID        IMAGE               COMMAND                CREATED             STATUS                      PORTS               NAMES
+d40b7af693d6        shaarli/shaarli     /usr/bin/supervisor   5 minutes ago       Exited (0) 48 seconds ago                       backstabbing_galileo
+# destroy the container
+$ docker rm backstabbing_galileo  # let's put an end to these barbarian practices
+backstabbing_galileo
+$ docker ps -a
+CONTAINER ID  IMAGE            COMMAND               CREATED         STATUS        PORTS                 NAMES
+```
+### Automatic builds
+Docker users can start a personal instance from an [autobuild image](https://hub.docker.com/r/shaarli/shaarli/). For example to start a temporary Shaarli at ``localhost:8000``, and keep session data (config, storage):
+```
+MY_SHAARLI_VOLUME=$(cd /path/to/shaarli/data/ && pwd -P)
+docker run -ti --rm \
+         -p 8000:80 \
+         -v $MY_SHAARLI_VOLUME:/var/www/shaarli/data \
+         shaarli/shaarli
+```
author	ArthurHoaro <arthur@hoa.ro>	2018-07-28 11:07:55 +0200
committer	ArthurHoaro <arthur@hoa.ro>	2018-07-28 11:07:55 +0200
commit	83faedadff76c5bdca036f39f13943f63b27e164 (patch)
tree	6f44cede16ec6a60f10b9699e211e0818f06d2c8 /doc/md/docker
parent	1d9eb22a3df85b67fe6652c0876cd7382c2fb525 (diff)
parent	658988f3aeba7a5a938783249ccf2765251e5597 (diff)
download	Shaarli-83faedadff76c5bdca036f39f13943f63b27e164.tar.gz Shaarli-83faedadff76c5bdca036f39f13943f63b27e164.tar.zst Shaarli-83faedadff76c5bdca036f39f13943f63b27e164.zip

diff --git a/doc/md/docker/docker-101.md b/doc/md/docker/docker-101.md new file mode 100644 index 00000000..a9c00b85 --- /dev/null +++ b/doc/md/docker/docker-101.md
@@ -0,0 +1,140 @@
	1	## Basics
	2	Install [Docker](https://www.docker.com/), by following the instructions relevant
	3	to your OS / distribution, and start the service.
	4
	5	### Search an image on [DockerHub](https://hub.docker.com/)
	6
	7	```bash
	8	$ docker search debian
	9
	10	NAME DESCRIPTION STARS OFFICIAL AUTOMATED
	11	ubuntu Ubuntu is a Debian-based Linux operating s... 2065 [OK]
	12	debian Debian is a Linux distribution that's comp... 603 [OK]
	13	google/debian 47 [OK]
	14	```
	15
	16	### Show available tags for a repository
	17	```bash
	18	$ curl https://index.docker.io/v1/repositories/debian/tags \| python -m json.tool
	19
	20	% Total % Received % Xferd Average Speed Time Time Time Current
	21	Dload Upload Total Spent Left Speed
	22	100 1283 0 1283 0 0 433 0 --:--:-- 0:00:02 --:--:-- 433
	23	```
	24
	25	Sample output:
	26	```json
	27	[
	28	{
	29	"layer": "85a02782",
	30	"name": "stretch"
	31	},
	32	{
	33	"layer": "59abecbc",
	34	"name": "testing"
	35	},
	36	{
	37	"layer": "bf0fd686",
	38	"name": "unstable"
	39	},
	40	{
	41	"layer": "60c52dbe",
	42	"name": "wheezy"
	43	},
	44	{
	45	"layer": "c5b806fe",
	46	"name": "wheezy-backports"
	47	}
	48	]
	49
	50	```
	51
	52	### Pull an image from DockerHub
	53	```bash
	54	$ docker pull repository[:tag]
	55
	56	$ docker pull debian:wheezy
	57	wheezy: Pulling from debian
	58	4c8cbfd2973e: Pull complete
	59	60c52dbe9d91: Pull complete
	60	Digest: sha256:c584131da2ac1948aa3e66468a4424b6aea2f33acba7cec0b631bdb56254c4fe
	61	Status: Downloaded newer image for debian:wheezy
	62	```
	63
	64	Docker re-uses layers already downloaded. In other words if you have images based on Alpine or some Ubuntu version for example, those can share disk space.
	65
	66	### Start a container
	67	A container is an instance created from an image, that can be run and that keeps running until its main process exits. Or until the user stops the container.
	68
	69	The simplest way to start a container from image is ``docker run``. It also pulls the image for you if it is not locally available. For more advanced use, refer to ``docker create``.
	70
	71	Stopped containers are not destroyed, unless you specify ``--rm``. To view all created, running and stopped containers, enter:
	72	```bash
	73	$ docker ps -a
	74	```
	75
	76	Some containers may be designed or configured to be restarted, others are not. Also remember both network ports and volumes of a container are created on start, and not editable later.
	77
	78	### Access a running container
	79	A running container is accessible using ``docker exec``, or ``docker copy``. You can use ``exec`` to start a root shell in the Shaarli container:
	80	```bash
	81	$ docker exec -ti <container-name-or-id> bash
	82	```
	83	Note the names and ID's of containers are listed in ``docker ps``. You can even type only one or two letters of the ID, given they are unique.
	84
	85	Access can also be through one or more network ports, or disk volumes. Both are specified on and fixed on ``docker create`` or ``run``.
	86
	87	You can view the console output of the main container process too:
	88	```bash
	89	$ docker logs -f <container-name-or-id>
	90	```
	91
	92	### Docker disk use
	93	Trying out different images can fill some gigabytes of disk quickly. Besides images, the docker volumes usually take up most disk space.
	94
	95	If you care only about trying out docker and not about what is running or saved, the following commands should help you out quickly if you run low on disk space:
	96
	97	```bash
	98	$ docker rmi -f $(docker images -aq) # remove or mark all images for disposal
	99	$ docker volume rm $(docker volume ls -q) # remove all volumes
	100	```
	101
	102	### Systemd config
	103	Systemd is the process manager of choice on Debian-based distributions. Once you have a ``docker`` service installed, you can use the following steps to set up Shaarli to run on system start.
	104
	105	```bash
	106	systemctl enable /etc/systemd/system/docker.shaarli.service
	107	systemctl start docker.shaarli
	108	systemctl status docker.*
	109	journalctl -f # inspect system log if needed
	110	```
	111
	112	You will need sudo or a root terminal to perform some or all of the steps above. Here are the contents for the service file:
	113	```
	114	[Unit]
	115	Description=Shaarli Bookmark Manager Container
	116	After=docker.service
	117	Requires=docker.service
	118
	119
	120	[Service]
	121	Restart=always
	122
	123	# Put any environment you want in an included file, like $host- or $domainname in this example
	124	EnvironmentFile=/etc/sysconfig/box-environment
	125
	126	# It's just an example..
	127	ExecStart=/usr/bin/docker run \
	128	-p 28010:80 \
	129	--name ${hostname}-shaarli \
	130	--hostname shaarli.${domainname} \
	131	-v /srv/docker-volumes-local/shaarli-data:/var/www/shaarli/data:rw \
	132	-v /etc/localtime:/etc/localtime:ro \
	133	shaarli/shaarli:latest
	134
	135	ExecStop=/usr/bin/docker rm -f ${hostname}-shaarli
	136
	137
	138	[Install]
	139	WantedBy=multi-user.target
	140	```


diff --git a/doc/md/docker/resources.md b/doc/md/docker/resources.md new file mode 100644 index 00000000..082d4a46 --- /dev/null +++ b/doc/md/docker/resources.md
@@ -0,0 +1,19 @@
	1	### Docker
	2
	3	- [Interactive Docker training portal](https://www.katacoda.com/courses/docker/) on [Katakoda](https://www.katacoda.com/)
	4	- [Where are Docker images stored?](http://blog.thoward37.me/articles/where-are-docker-images-stored/)
	5	- [Dockerfile reference](https://docs.docker.com/reference/builder/)
	6	- [Dockerfile best practices](https://docs.docker.com/articles/dockerfile_best-practices/)
	7	- [Volumes](https://docs.docker.com/userguide/dockervolumes/)
	8
	9	### DockerHub
	10
	11	- [Repositories](https://docs.docker.com/userguide/dockerrepos/)
	12	- [Teams and organizations](https://docs.docker.com/docker-hub/orgs/)
	13	- [GitHub automated build](https://docs.docker.com/docker-hub/github/)
	14
	15	### Service management
	16
	17	- [Using supervisord](https://docs.docker.com/articles/using_supervisord/)
	18	- [Nginx in the foreground](http://nginx.org/en/docs/ngx_core_module.html#daemon)
	19	- [supervisord](http://supervisord.org/)


diff --git a/doc/md/docker/reverse-proxy-configuration.md b/doc/md/docker/reverse-proxy-configuration.md new file mode 100644 index 00000000..6066140e --- /dev/null +++ b/doc/md/docker/reverse-proxy-configuration.md
@@ -0,0 +1,120 @@
	1	## Foreword
	2
	3	This guide assumes that:
	4
	5	- Shaarli runs in a Docker container
	6	- The host's `10080` port is mapped to the container's `80` port
	7	- Shaarli's Fully Qualified Domain Name (FQDN) is `shaarli.domain.tld`
	8	- HTTP traffic is redirected to HTTPS
	9
	10	## Apache
	11
	12	- [Apache 2.4 documentation](https://httpd.apache.org/docs/2.4/)
	13	- [mod_proxy](https://httpd.apache.org/docs/2.4/mod/mod_proxy.html)
	14	- [Reverse Proxy Request Headers](https://httpd.apache.org/docs/2.4/mod/mod_proxy.html#x-headers)
	15
	16	The following HTTP headers are set by using the `ProxyPass` directive:
	17
	18	- `X-Forwarded-For`
	19	- `X-Forwarded-Host`
	20	- `X-Forwarded-Server`
	21
	22	```apache
	23	<VirtualHost *:80>
	24	ServerName shaarli.domain.tld
	25	Redirect permanent / https://shaarli.domain.tld
	26	</VirtualHost>
	27
	28	<VirtualHost *:443>
	29	ServerName shaarli.domain.tld
	30
	31	SSLEngine on
	32	SSLCertificateFile /path/to/cert
	33	SSLCertificateKeyFile /path/to/certkey
	34
	35	LogLevel warn
	36	ErrorLog /var/log/apache2/shaarli-error.log
	37	CustomLog /var/log/apache2/shaarli-access.log combined
	38
	39	RequestHeader set X-Forwarded-Proto "https"
	40
	41	ProxyPass / http://127.0.0.1:10080/
	42	ProxyPassReverse / http://127.0.0.1:10080/
	43	</VirtualHost>
	44	```
	45
	46
	47	## HAProxy
	48
	49	- [HAProxy documentation](https://cbonte.github.io/haproxy-dconv/)
	50
	51	```conf
	52	global
	53	[...]
	54
	55	defaults
	56	[...]
	57
	58	frontend http-in
	59	bind :80
	60	redirect scheme https code 301 if !{ ssl_fc }
	61
	62	bind :443 ssl crt /path/to/cert.pem
	63
	64	default_backend shaarli
	65
	66
	67	backend shaarli
	68	mode http
	69	option http-server-close
	70	option forwardfor
	71	reqadd X-Forwarded-Proto: https
	72
	73	server shaarli1 127.0.0.1:10080
	74	```
	75
	76
	77	## Nginx
	78
	79	- [Nginx documentation](https://nginx.org/en/docs/)
	80
	81	```nginx
	82	http {
	83	[...]
	84
	85	index index.html index.php;
	86
	87	root /home/john/web;
	88	access_log /var/log/nginx/access.log;
	89	error_log /var/log/nginx/error.log;
	90
	91	server {
	92	listen 80;
	93	server_name shaarli.domain.tld;
	94	return 301 https://shaarli.domain.tld$request_uri;
	95	}
	96
	97	server {
	98	listen 443 ssl http2;
	99	server_name shaarli.domain.tld;
	100
	101	ssl_certificate /path/to/cert
	102	ssl_certificate_key /path/to/certkey
	103
	104	location / {
	105	proxy_set_header X-Real-IP $remote_addr;
	106	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	107	proxy_set_header X-Forwarded-Proto $scheme;
	108	proxy_set_header X-Forwarded-Host $host;
	109
	110	proxy_pass http://localhost:10080/;
	111	proxy_set_header Host $host;
	112	proxy_connect_timeout 30s;
	113	proxy_read_timeout 120s;
	114
	115	access_log /var/log/nginx/shaarli.access.log;
	116	error_log /var/log/nginx/shaarli.error.log;
	117	}
	118	}
	119	}
	120	```


diff --git a/doc/md/docker/shaarli-images.md b/doc/md/docker/shaarli-images.md new file mode 100644 index 00000000..12f7b5d1 --- /dev/null +++ b/doc/md/docker/shaarli-images.md
@@ -0,0 +1,95 @@
	1	A brief guide on getting starting using docker is given in [Docker 101](docker-101.md).
	2	To learn more about user data and how to keep it across versions, please see [Upgrade and Migration](../Upgrade-and-migration.md).
	3
	4	## Get and run a Shaarli image
	5
	6	### DockerHub repository
	7	The images can be found in the [`shaarli/shaarli`](https://hub.docker.com/r/shaarli/shaarli/)
	8	repository.
	9
	10	### Available image tags
	11	- `latest`: latest branch (tarball release)
	12	- `master`: master branch (tarball release)
	13	- `stable`: stable branch (tarball release)
	14
	15	The `latest` and `master` images rely on:
	16
	17	- [Alpine Linux](https://www.alpinelinux.org/)
	18	- [PHP7-FPM](http://php-fpm.org/)
	19	- [Nginx](http://nginx.org/)
	20
	21	The `stable` image relies on:
	22
	23	- [Debian 8 Jessie](https://hub.docker.com/_/debian/)
	24	- [PHP5-FPM](http://php-fpm.org/)
	25	- [Nginx](http://nginx.org/)
	26
	27	Additional [Dockerfiles](https://github.com/shaarli/Shaarli/tree/master/docker) are provided for the `arm32v7` platform, relying on [Linuxserver.io Alpine armhf images](https://hub.docker.com/r/lsiobase/alpine.armhf/). These images must be built using [`docker build`](https://docs.docker.com/engine/reference/commandline/build/) on an `arm32v7` machine or using an emulator such as [qemu](https://resin.io/blog/building-arm-containers-on-any-x86-machine-even-dockerhub/).
	28
	29	### Download from DockerHub
	30	```bash
	31	$ docker pull shaarli/shaarli
	32	latest: Pulling from shaarli/shaarli
	33	32716d9fcddb: Pull complete
	34	84899d045435: Pull complete
	35	4b6ad7444763: Pull complete
	36	e0345ef7a3e0: Pull complete
	37	5c1dd344094f: Pull complete
	38	6422305a200b: Pull complete
	39	7d63f861dbef: Pull complete
	40	3eb97210645c: Pull complete
	41	869319d746ff: Already exists
	42	869319d746ff: Pulling fs layer
	43	902b87aaaec9: Already exists
	44	Digest: sha256:f836b4627b958b3f83f59c332f22f02fcd495ace3056f2be2c4912bd8704cc98
	45	Status: Downloaded newer image for shaarli/shaarli:latest
	46	```
	47
	48	### Create and start a new container from the image
	49	```bash
	50	# map the host's :8000 port to the container's :80 port
	51	$ docker create -p 8000:80 shaarli/shaarli
	52	d40b7af693d678958adedfb88f87d6ea0237186c23de5c4102a55a8fcb499101
	53
	54	# launch the container in the background
	55	$ docker start d40b7af693d678958adedfb88f87d6ea0237186c23de5c4102a55a8fcb499101
	56	d40b7af693d678958adedfb88f87d6ea0237186c23de5c4102a55a8fcb499101
	57
	58	# list active containers
	59	$ docker ps
	60	CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
	61	d40b7af693d6 shaarli/shaarli /usr/bin/supervisor 15 seconds ago Up 4 seconds 0.0.0.0:8000->80/tcp backstabbing_galileo
	62	```
	63
	64	### Stop and destroy a container
	65	```bash
	66	$ docker stop backstabbing_galileo # those docker guys are really rude to physicists!
	67	backstabbing_galileo
	68
	69	# check the container is stopped
	70	$ docker ps
	71	CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
	72
	73	# list ALL containers
	74	$ docker ps -a
	75	CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
	76	d40b7af693d6 shaarli/shaarli /usr/bin/supervisor 5 minutes ago Exited (0) 48 seconds ago backstabbing_galileo
	77
	78	# destroy the container
	79	$ docker rm backstabbing_galileo # let's put an end to these barbarian practices
	80	backstabbing_galileo
	81
	82	$ docker ps -a
	83	CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
	84	```
	85
	86	### Automatic builds
	87
	88	Docker users can start a personal instance from an [autobuild image](https://hub.docker.com/r/shaarli/shaarli/). For example to start a temporary Shaarli at ``localhost:8000``, and keep session data (config, storage):
	89	```
	90	MY_SHAARLI_VOLUME=$(cd /path/to/shaarli/data/ && pwd -P)
	91	docker run -ti --rm \
	92	-p 8000:80 \
	93	-v $MY_SHAARLI_VOLUME:/var/www/shaarli/data \
	94	shaarli/shaarli
	95	```