【发布时间】:2022-01-02 16:57:51
【问题描述】:
我来这里是因为我有一个与 Jenkins 和 Docker 相关的问题。
我目前的目标是通过 Jenkins 构建和部署我的 Laravel 应用程序。我正在使用一个集成了所有元素的 dockerfile 来使我的应用程序正常工作。 此外,我使用 Traefik 作为反向代理通过 HTTPS 访问我的应用程序,并使用 Nginx 作为服务器。 (通过 conf.d)
为了在 Jenkins 上运行一切,我使用了一个 jenkinsfile,它使用了我自己的 gitlab 上的资源
当前的问题是,当我启动 docker-compose 时,我得到了一个 502 Bad Gateway。 但是,我可以在我的远程服务器上运行该应用程序。 (VPS)
Conf.d
server {
listen 80;
index index.php index.html;
error_log /var/log/nginx/error.log;
access_log /var/log/nginx/access.log;
root /var/www;
location ~ \.php$ {
try_files $uri =404;
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass app:9000;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param PATH_INFO $fastcgi_path_info;
}
location / {
try_files $uri $uri/ /index.php?$query_string;
gzip_static on;
} }
Dockerfile
FROM php:7.4-fpm
# Arguments defined in docker-compose.yml
ARG user
ARG uid
# Install system dependencies
RUN apt-get update && apt-get install -y \
git \
curl \
libpng-dev \
libonig-dev \
libxml2-dev \
libzip-dev \
zip \
unzip
# Clear cache
RUN apt-get clean && rm -rf /var/lib/apt/lists/*
# Install PHP extensions
RUN docker-php-ext-install pdo_mysql mbstring exif pcntl bcmath gd zip
# Get latest Composer
COPY --from=composer:latest /usr/bin/composer /usr/bin/composer
# Create system user to run Composer and Artisan Commands
RUN useradd -G www-data,root -u $uid -d /home/$user $user
RUN mkdir -p /home/$user/.composer && \
chown -R $user:$user /home/$user
# Set working directory
WORKDIR /var/www
COPY . .
RUN composer update
RUN composer install --no-interaction --optimize-autoloader --no-dev
RUN chown -R $user:$user /var/www
USER $user
EXPOSE 9000
Jenkinsfile
stage('Build & up for DEV env') {
when {
expression {env.GIT_BRANCH == 'origin/develop'}
}
steps {
script{
sh "docker-compose -f docker-compose.yml build up -d --build"
}
}
}
docker-compose.yml
version: "3.7"
services:
app:
build:
args:
user: test
uid: 1000
context: ./
dockerfile: Dockerfile
image: val/board:lts
container_name: val-app
restart: unless-stopped
working_dir: /var/www
networks:
- fdcks
- ftboard
volumes:
- static-content:/var/www
db:
image: mariadb:10.6.4
container_name: fatboard-db
restart: unless-stopped
environment:
MYSQL_DATABASE: ${DB_DATABASE}
MYSQL_ROOT_PASSWORD: ${DB_PASSWORD}
MYSQL_PASSWORD: ${DB_PASSWORD}
MYSQL_USER: ${DB_USERNAME}
SERVICE_TAGS: dev
SERVICE_NAME: mysql
volumes:
- ./docker-compose/mysql:/docker-entrypoint-initdb.d
labels:
- traefik.enable=false
networks:
- ftboard
- fdcks
nginx:
image: nginx:alpine
container_name: fatboard-nginx
restart: unless-stopped
labels:
- "traefik.enable=true"
- "traefik.http.routers.nginx.rule=Host(`dev-ftboar.XXXXXXXX.com`)"
- "traefik.http.routers.nginx-secure.entrypoints=https"
- "traefik.http.routers.nginx.entrypoints=websecure"
- "traefik.http.routers.nginx.tls.certresolver=myresolver"
- "traefik.docker.network=furiousducks"
volumes:
- static-content:/var/www
- ./nginx:/etc/nginx/conf.d/
ports:
- 8098:8098
networks:
- ftboard
- fdcks
networks:
fdcks:
external: true
ftboard:
volumes:
static-content:
所以我使用远程服务器上的 Traefik,它与我在 Jenkins 上使用的 docker-compose 具有相同的网络。
Traefik
version: "3.3"
services:
traefik:
image: "traefik:latest"
command:
- "--log.level=DEBUG"
- "--api.dashboard=true"
- "--api=true"
- "--metrics.prometheus=true"
- "--metrics.prometheus.buckets=0.1,0.3,1.2,5.0"
- "--providers.docker.exposedbydefault=false"
- "--providers.docker.network=furiousducks"
- "--entrypoints.web.address=:80"
- "--entrypoints.websecure.address=:443"
- "--entrypoints.web.http.redirections.entryPoint.to=websecure"
- "--entrypoints.web.http.redirections.entryPoint.scheme=https"
- "--certificatesresolvers.myresolver.acme.dnschallenge=true"
- "--certificatesresolvers.myresolver.acme.dnschallenge.provider=ovh"
#- "--certificatesresolvers.myresolver.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"
- "--certificatesresolvers.myresolver.acme.email=XXXXXXXX@gmail.com"
- "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
ports:
- "88:80"
- "443:443"
- "8084:8084"
labels:
- "traefik.enable=true"
- "traefik.http.routers.api.rule=Host(`traefik.XXXXXXXXXX.com`)"
- "traefik.http.routers.api.entrypoints=websecure"
- "traefik.http.routers.api.tls.certresolver=myresolver"
- "traefik.http.routers.api.service=api@internal"
- "traefik.docker.network=furiousducks"
environment:
- "OVH_ENDPOINT=XXXXXXXXXXXXX"
- "OVH_APPLICATION_KEY=XXXXXXXXXXXXXXX"
- "OVH_APPLICATION_SECRET=XXXXXXXXXXXXXX"
- "OVH_CONSUMER_KEY=XXXXXXXXXXXXXXXX"
volumes:
- "./letsencrypt:/letsencrypt"
- "/var/run/docker.sock:/var/run/docker.sock:ro"
networks:
- fdcks
我在论坛上通过建议的解决方案进行了一百多个测试,没有任何效果...如果您有想法,我很感兴趣。
提前谢谢你!
编辑: 我没有从远程服务器上的 traefik 提供网络。这是和我的 docker-compose.yml 一样的配置
networks:
fdcks:
external: true
【问题讨论】:
标签: docker nginx jenkins docker-compose traefik