stackoom
  简体   繁体   中英

Change user/group for PHP-FPM (Docker)

 原文  2020-11-30 16:24:31       php/ docker/ docker-compose/ bitnami

Question

I ran docker php-fpm container with the following config

  php-fpm:
    tty: true
    image: bitnami/php-fpm:latest
    volumes:
      - ./www:/www

php-fpm is running as daemon:daemon. How to properly change user/group for the container? For example, run it as www:www...

2 answers

solution1
 1  2020-11-30 18:03:19

Build this into your Docker image. In your Dockerfile:

FROM bitnami/php-fpm:latest # (Debian-based)

# Create the non-root runtime user.  It does not need a
# specific uid, shell, home directory, or other settings.
RUN adduser --system --no-create-home --group www

# Copy the files in as root, so they don't accidentally get
# overwritten at runtime
# (The base image sets WORKDIR /app)
COPY www ./

# Then set the runtime user
USER www

# The base image provides a useful CMD; leave it as is

(Some of the details around the base image's WORKDIR and CMD come from looking up the bitnami/php-fpm image on Docker Hub , and in turn following the link to the image's Dockerfile .)

Then your docker-compose.yml file just needs to specify the details to use this Dockerfile. You do not need volumes: ; the code is already built into the image.

version: '3.8'
services:
  php-fpm:
    build: .
    # ports: ['9000:9000']
    # no volumes:

In practice it usually doesn't matter much what specific user ID a container process is running as, just so long as it isn't (or, depending on your needs, is) the special root user (with user ID 0). There shouldn't be a difference between the container process running as daemon vs. www . Conversely, looking at the bitnami/php-fpm Dockerfile, it isn't obvious to me that anything would cause the container to not run as root.

solution2
 0  2022-08-25 10:53:58

Instead of creating a Dockerfile, I have created a common.conf file:

user=www-data
group=www-data
listen.owner=www-data
listen.group=www-data

in docker-compose.yml:

php:
  image: bitnami/php-fpm:8.0 # or any other
  ...
  volumes:
    # path to common.conf may differ if using a different image
    - ./path-to/common.conf:/opt/bitnami/php/etc/common.conf:ro

To check the user, I have a index.php:

<?php
echo exec('whoami');

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question what user is php-fpm running in docker or without docker? nginx and php-fpm in Docker Docker for nginx and php-fpm NginX and Php-Fpm on docker Docker nginx and php-fpm Changing group of php-fpm Change to pm = static on php-fpm docker image Connecting PHP-FPM with Nginx in Docker Compose Docker Compose: Nginx and PHP-FPM not working Docker + Apache + PHP-FPM static content
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM