I launched the docker compose by docker compose up --build -d, but I got error with http//<my_ip>:8443/ could anyone help with this please?

docker-compose up
Creating mysql ... done
Creating wordpress ... done
Creating nginx ... error

ERROR: for nginx Cannot start service nginx: OCI runtime create failed: container_linux.go:348: starting container process caused "process_linux.go:402: container init caused "rootfs_linux.go:58: mounting \"/home/ronald/wordpress-nginx-docker/nginx/default.conf\" to rootfs \"/var/lib/docker/overlay2/4b4fca93f43c32cf4c1a1efd29697fdc6ed112fd2e0fa2d1a6b8f1397fa91cb6/merged\" at \"/var/lib/docker/overlay2/4b4fca93f43c32cf4c1a1efd29697fdc6ed112fd2e0fa2d1a6b8f1397fa91cb6/merged/etc/nginx/conf.d/default.conf\" caused \"not a directory\""": unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type

ERROR: for nginx Cannot start service nginx: OCI runtime create failed: container_linux.go:348: starting container process caused "process_linux.go:402: container init caused "rootfs_linux.go:58: mounting \"/home/ronald/wordpress-nginx-docker/nginx/default.conf\" to rootfs \"/var/lib/docker/overlay2/4b4fca93f43c32cf4c1a1efd29697fdc6ed112fd2e0fa2d1a6b8f1397fa91cb6/merged\" at \"/var/lib/docker/overlay2/4b4fca93f43c32cf4c1a1efd29697fdc6ed112fd2e0fa2d1a6b8f1397fa91cb6/merged/etc/nginx/conf.d/default.conf\" caused \"not a directory\""": unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type
ERROR: Encountered errors while bringing up the project.

I am not aware of any wrong doing. Just followed the Readme.

I've been playing around with this for about 15 minutes now, looks nice. I just skimmed through the README and started testing things. I fucked up about 5 minutes in and I couldn't get WP running without recloning the repo. I did it again soon enough, but this time I noticed the stop-everything-and-remove.sh script, and I ran it.

Do you really want to stop and remove EVERYTHING?

I've just installed a new machine, and I transferred some docker volumes on it, that I haven't used, yet. When I ran the script, I noticed it pruned unused volumes, literally ALL of them. If restoring them wouldn't take about 5 seconds, I would've had a minor heart attack.

I know it says EVERYTHING but I didn't expect it to wipe every volume I have. This is literally the first thing I'm running on docker on this new machine 😂

I probably should've checked what the script does before actually running it but it's late and I might've had a few drinks.

Maybe you could add a few more words to the warning, like "literally every volume that isn't used by a container"?

After changed the port to 443 in nginx/default.conf and docker-compose.yml, https://127.0.0.1 become not unreachable and http://127.0.0.1 still redirect to https://127.0.0.1:8443. Why is that?
Anywhere else I missed updating?

server {
    listen 80;
    listen [::]:80;
    server_name $host;
    location / {
        # update port as needed for host mapped https
        rewrite ^ https://127.0.0.1:443$request_uri? permanent;
    }
}

  nginx:
    # default ports 80, 443 - expose mapping as needed to host
    image: nginx:1
    container_name: wp-nginx
    env_file:
      - .env
    restart: unless-stopped
    networks:
      - wordpress
    depends_on:
      - wordpress
    ports:
      - "80:80"    # http
      - "443:443"   # https
    volumes:
      - ${WORDPRESS_LOCAL_HOME}:/var/www/html
      - ${NGINX_CONF}:/etc/nginx/conf.d/default.conf
      - ${NGINX_SSL_CERTS}:/etc/ssl:ro
      - ${NGINX_LOGS}:/var/log/nginx

Doesn't matter what I try some how I cant set parameter for upload_max_filesize i trie docekr-composer file tried into the config folder ... nothing works out

I'm having a problem, my Wordpress site cannot connect to itself when using cron jobs. I'm using the plugin WP Crontrol to test it, and the post call to my own site doesn't work. I get this error:

cURL error 7: Failed to connect to 127.0.0.1 port 80: Connection refused

And the same error occurs with port 447 when I'm using SSL (self-signed).

I found this solution and it worked the first time I tried it, but later I deleted my containers, re deployed them and I can't get it working again, I guess i'm editing the host file incorrectly (inside the nginx container), I don't understand what does that solution do exactly and how it should be applied.

Also, I cannot edit files from the theme/plugin editor, It says that the site couldn't connect and I should upload the files using SFTP. Again, the site cannot connect to itself.

I'm using the default compose.yml, no changes applied.

Please be advised that these lines on logging in the proposed configuration should be removed/changed:

logging

access_log /var/log/nginx/wordpress.access.log;
error_log /var/log/nginx/wordpress.error.log;

Let me explain the reasons behind.
a) it overrides the default logging format of dockerized nginx which means "$http_x_forwarded_for" is not logged
b) give the false impression that log files are saved to disk when in fact they are just sent to docker due to the way the nginx container is set up

Proposal: remove these lines or add at least the word main to the accesslog line:
access_log /var/log/nginx/wordpress.access.log main;

Thanks for creating this, very useful!

Just a quick question, I assume I should be running letsencrypt-renew.sh? Maybe should be added to the README.

Hey!

I've used your setup and it was working great.

Don't know why when I tried setting it up on other computers some assets weren't being server properly.

Any asset files inside plugins/themes folder isn't being loaded, the network tab shows a 404 error, seems like it never finds the file referenced. I checked in the wp container and all files are there.

This is what the wordpress.error.log file looks like:

2023/02/06 14:58:56 [error] 28#28: *2 directory index of "/var/www/html/" is forbidden, client: 172.19.0.1, server: hostname request: "GET / HTTP/2.0", host: "hostname:8443"

I think it's probably an issue with the nginx server not "finding" those files. Could anyone help me with that?

nginx: [warn] the "ssl" directive is deprecated, use the "listen ... ssl" directive instead in /etc/nginx/conf.d/wordpress_ssl.conf:21

#ssl       on;

seems to resolve it

Hi,

Cheers for making this, just wondering is there any way I can generate the chain.pem when I am doing selfsigned? Basically I have setup a host record for my.dev and self-signed that url, which has made fullchan.pem and privatekey.pem however nginx is failing to start because it's expecting chain.pem

docker-compose

• Update compose definition to use php7.3-fpm image (ref: https://github.com/docker-library/wordpress/tree/master/php7.3/fpm)

Update docs to include

• expand README to use table of contents
• TL;DR section
• http based example that just runs from docker-compose up [-d]
• deployed example of Let's Encrypt workflow using DigitalOcean droplet

Hello,

At the execution of letsencrypt-init.shI have this error:

   Domain: MY_DOMAIN
   Type:   unauthorized
   Detail: Invalid response from
   http://MY_DOMAIN/.well-known/acme-challenge/ofzV3Ho4o2jQmwdsaJ9XAeVyl9bufnXaGrrC2sB3VSs:
   "<html>\r\n<head><title>404 Not
   Found</title></head>\r\n<body>\r\n<center><h1>404 Not
   Found</h1></center>\r\n<hr><center>nginx/1.15.7</ce"

   To fix these errors, please make sure that your domain name was
   DNS A/AAAA record(s) for that domain
   contain (s) the right IP address.

The ip address of my server is well associated with my name of domain, I access very well in http.

Hi, this is going to sound silly but how do I configure nginx to listen to listen to multiple WordPress containers?

I just want to serve wordpress1:443 and wordpress2:443 over a single IP, but different ports. Will then use haproxy from a different server to point to ip:wordpress1port and ip:wordpress2port. I've tried creating an additional wordpress2_ssl.conf but it's showing the wordpress1 instance.

Thanks!

Edit: Seems like traefik is a solution for this. I'll look into that instead.

Did everything as it is described in the readme (for HTTP at 127.0.0.1), all containers are running fine, but I get a 502 as soon as I load the host-url via browser.

There are a few issues mentioned in the web like https://stackoverflow.com/questions/47429540/nginx-502-bad-gateway-within-docker-stack but none of the suggestions helped so far.

Any idea to solve that issue?

Best regards

@Behinam - migrating your issue to it's own issue thread (will remove from other thread that is reserved for internal documentation)

Hello
when i run i get this error:

wordpress | MySQL Connection Error: (2002) Connection refused
wordpress |
wordpress | Warning: mysqli::__construct(): (HY000/2002): Connection refused in Standard input code on line 22

my yml file

`version: '2'
services:
nginx:
image: nginx:latest
container_name: nginx
ports:
- '80:80'
- '443:443'
volumes:
- ./nginx:/etc/nginx/conf.d
- ./logs/nginx:/var/log/nginx
- ./wordpress:/var/www/html
- ./certs:/etc/letsencrypt
- ./certs-data:/data/letsencrypt
links:
- wordpress
restart: always

mysql:
image: mariadb
container_name: mysql
ports:
- '3306:3306'
volumes:
- ./mysql:/var/lib/mysql
environment:
- MYSQL_ROOT_PASSWORD=123456789
restart: always

wordpress:
image: wordpress:php7.2-fpm
container_name: wordpress
volumes:
- ./wordpress:/var/www/html
environment:
- WORDPRESS_DB_NAME=wordpress
- WORDPRESS_TABLE_PREFIX=wp_
- WORDPRESS_DB_HOST=mysql
- WORDPRESS_DB_USER=uwp
- WORDPRESS_DB_PASSWORD=123456
links:
- mysql
restart: always`

How can i increase post_max_size and upload_max_filesize? thanks

Would it be possible to add phpmyadmin to docker-compose ?

Hello,

I have a problem with my wordpress, sometimes there are some 502 bad gateway, access.log :

X.X.X.X - - [25/Jan/2019:22:49:05 +0000] "POST /wp-json/alids/v1/extension HTTP/1.1" 200 66 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 OPR/57.0.3098.116"
X.X.X.X  - - [25/Jan/2019:22:49:07 +0000] "POST /wp-json/alids/v1/extension HTTP/1.1" 502 559 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 OPR/57.0.3098.116

In the error.log :

2019/01/25 22:49:07 [error] 6#6: *102 recv() failed (104: Connection reset by peer) while reading response header from upstream, client: 10.255.0.2, server: 178.0.0.1 (hide), request: "POST /wp-json/alids/v1/extension HTTP/1.1", upstream: "fastcgi://10.0.39.2:9000", host: "178.0.0.1 (hide)"

I also noticed that on the fpm logs, /usr/local/sbin/php-fpm :

[25-Jan-2019 22:44:40] NOTICE: Failed implicitly binding to ::, retrying with 0.0.0.0
[25-Jan-2019 22:44:40] ERROR: unable to bind listening socket for address '9000': Address in use (98)
[25-Jan-2019 22:44:40] ERROR: FPM initialization failed

Can you please help me ?

Wordpress version: wordpress:php7.2-fpm-alpine

Reserved for documentation

I am using only AAAA in my dns. when I try to generate the certificates it fails.
here the log:
Waiting for verification...
Challenge failed for domain www.xxxx.net
http-01 challenge for www.xxxx.net
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:

• The following errors were reported by the server:

  Domain: www.xxxx.net
  Type: dns

hey there, if i try to upload an plugin zip file i run into the following message: 413 Request Entity Too Large

Can someone please help?

thank you very much

Hi there,

I have been using your project for a Wordpress site I have and it is amazing, thanks so much!

However, when it comes to renew my certificates, I get an unauthorized error. I think the file never gets created and so then the acme challenge gets a 404 response.

Here you can see the script I'm launching for testing purposes (dry-run):

docker run -t --rm -v /docker/sa-wp-nginx-docker/data/certs:/etc/letsencrypt -v /docker/sa-wp-nginx-docker/data/certs-data:/data/letsencrypt certbot/certbot renew --dry-run --webroot --webroot-path=/data/letsencrypt

And the output:

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/staging.mydomain.es.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for staging.mydomain.es
Using the webroot path /data/letsencrypt for all unmatched domains.
Waiting for verification...
Challenge failed for domain staging.mydomain.es
http-01 challenge for staging.mydomain.es
Cleaning up challenges
Attempting to renew cert (staging.mydomain.es) from /etc/letsencrypt/renewal/staging.mydomain.es.conf produced an unexpected error: Some challenges have failed.. Skipping.
All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/staging.mydomain.es/fullchain.pem (failure)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
** DRY RUN: simulating 'certbot renew' close to cert expiry
**          (The test certificates below have not been saved.)

All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/staging.mydomain.es/fullchain.pem (failure)
** DRY RUN: simulating 'certbot renew' close to cert expiry
**          (The test certificates above have not been saved.)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: staging.mydomain.es
   Type:   unauthorized
   Detail: Invalid response from
   https://staging.mydomain.es/.well-known/acme-challenge/AyxV-c2jeHKDWQlEfnzxTWSfkRXdt4GiPilSeF4xstM
   [2606:4700:30::681b:86fc]: "<!doctype html>\n<html
   lang=\"es\">\n<head>\n\t<meta charset=\"UTF-8\" />\n\t<meta
   name=\"viewport\" content=\"width=device-width, initial-sc"

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

I want to perform penetration testing against some plugins related to a security bug bounty program, and I need to force all network traffic to go through Burp suite proxy.

How do I do that?

I was asked to use Wordpress with multisite setup.
I know, that it needs to add to wp-config.php:

/* Multisite */
define( 'WP_ALLOW_MULTISITE', true );

However, how do I get the ssl certificates for these sites into the system?

There is a problem with ez-letsencrypt.
When I tried to run ez-letsencrypt,
it runs like this with ssl files
ssl_certificate /etc/letsencrypt/live/$le_hostname/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/$le_hostname/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/$le_hostname/chain.pem;

However, this project has ssl files on ssl folder. That doesn't make work well
Please help me!

Here is log detail:

mysql | 2021-06-09 09:31:51+00:00 [Note] [Entrypoint]: Switching to dedicated user 'mysql' mysql | 2021-06-09 09:31:51+00:00 [Note] [Entrypoint]: Entrypoint script for MariaDB Server 1:10.5.10+maria~focal started. mysql | 2021-06-09 09:31:51+00:00 [Note] [Entrypoint]: Initializing database files mysql | 2021-06-09 9:31:51 0 [ERROR] mysqld: File '/var/lib/mysql/aria_log_control' not found (Errcode: 13 "Permission denied") mysql | 2021-06-09 9:31:51 0 [ERROR] mysqld: Got error 'Can't open file' when trying to use aria control file '/var/lib/mysql/aria_log_control' mysql | 2021-06-09 9:31:51 0 [ERROR] Plugin 'Aria' init function returned error. mysql | 2021-06-09 9:31:51 0 [ERROR] Plugin 'Aria' registration as a STORAGE ENGINE failed. mysql | 2021-06-09 9:31:51 0 [ERROR] InnoDB: The innodb_system data file 'ibdata1' must be writable mysql | 2021-06-09 9:31:51 0 [ERROR] InnoDB: The innodb_system data file 'ibdata1' must be writable mysql | 2021-06-09 9:31:51 0 [ERROR] Plugin 'InnoDB' init function returned error. mysql | 2021-06-09 9:31:51 0 [ERROR] Plugin 'InnoDB' registration as a STORAGE ENGINE failed. mysql | 2021-06-09 9:31:51 0 [ERROR] Failed to initialize plugins. mysql | 2021-06-09 9:31:51 0 [ERROR] Aborting mysql | mysql | Installation of system tables failed! Examine the logs in mysql | /var/lib/mysql/ for more information. mysql | mysql | The problem could be conflicting information in an external mysql | my.cnf files. You can ignore these by doing: mysql | mysql | shell> /usr/bin/mysql_install_db --defaults-file=~/.my.cnf mysql | mysql | You can also try to start the mysqld daemon with: mysql | mysql | shell> /usr/sbin/mysqld --skip-grant-tables --general-log & mysql | mysql | and use the command line tool /usr/bin/mysql mysql | to connect to the mysql database and look at the grant tables: mysql | mysql | shell> /usr/bin/mysql -u root mysql mysql | mysql> show tables; mysql | mysql | Try 'mysqld --help' if you have problems with paths. Using mysql | --general-log gives you a log in /var/lib/mysql/ that may be helpful. mysql | mysql | The latest information about mysql_install_db is available at mysql | https://mariadb.com/kb/en/installing-system-tables-mysql_install_db mysql | You can find the latest source at https://downloads.mariadb.org and mysql | the maria-discuss email list at https://launchpad.net/~maria-discuss mysql | mysql | Please check all of the above before submitting a bug report mysql | at https://mariadb.org/jira mysql | mysql exited with code 1

wordpress:
image: wordpress:${WORDPRESS_VERSION:-php7.3-fpm}
container_name: wordpress
volumes:
- ./config/php.conf.ini:/usr/local/etc/php/conf.d/conf.ini

I want to edit the php.conf.Ini
can provide an example

thanks!