Skip to content
/ php-fpm Public

Install and configure PHP-FPM with Ansible

License

CC-BY-SA-4.0 license
0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

stuvusIT/php-fpm

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

95 Commits
defaults
defaults
 
 
meta
meta
 
 
tasks
tasks
 
 
templates
templates
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

php-fpm

This is an Ansible role which sets up a php-fpm instance and configures the pools.

Requirements

Debian or Ubuntu

Role Variables

Name Required/Default Description
php_fpm_package_name php-fpm The name of the apt package to install, e.g. php8.0-fpm or php7.3-fpm.
php_fpm_disable_cron False Setting this to True removes the cron script to send emails for PHP warnings.
php_fpm_pools ✔️ List of php-fpm pools to define, see pools.
php_fpm_ini_values {PHP: {expose_php: 0}} Dict of php.ini values, see php.ini.
php_fpm_php_version auto determined PHP version (used to specify correct include paths).
php_fpm_pid /run/php-fpm.pid Path to PID file (/var is prepended for relative paths)
php_fpm_error_log log/php-fpm.log Path to PID file (/var is prepended for relative paths)
php_fpm_log_level notice Log level - possible values are alert, error, warning, notice, debug.
php_fpm_syslog_facility daemon Used to specify what type of program is logging the message.
php_fpm_syslog_ident php-fpm Prepended to every log message.
php_fpm_emergency_restart_threshold 0 If this number of child processes exit with SIGSEGV or SIGBUS within the time interval set by php_fpm_emergency_restart_interval then FPM will restart.
php_fpm_emergency_restart_interval 0 Interval of time used by emergency restart interval to determine when a graceful restart will be initiated.
php_fpm_process_control_timeout 0 Time limit for child processes to wait for a reaction on signals from master.
php_fpm_process_max 0 The maximum number of processes FPM will fork.
php_fpm_process_priority ✖️ Specify the nice priority to apply to the master process
php_fpm_daemonize True Whether to send FPM to background
php_fpm_rlimit_files 16400 Set open file descriptor rlimit for the master process.
php_fpm_rlimit_core 0 Set max core size rlimit for the master process.
php_fpm_events_mechanism ✖️ Specify the event mechanism FPM will use. The following is available: select, pool, epoll.
php_fpm_systemd_interval 10 Specify the interval (in seconds) between health report notification to systemd.

php.ini

php_fpm_php_ini_values is a dict containing the sections as keys. Each section is another dict containing the option value as key. Each option entry is a list containing the values to be written under that section and option. See the following example:

php_fpm_php_ini_values:
  SECTION NAME: # Name from the php.ini file section where the variable is supposed to live.
    OPTION NAME: # The actual variable name
      - value1 # The value/values that the option should have (Option values are treated as a list since Ansible can not differentiate between types.)
      - value2

To see all vars possible for php.ini see the php.ini page.

Pools

Each pool is specified by a dict in the php_fpm_pools list.

Name Required/Default Description
name ✔️ Name of the pool
listen ✔️ The address on which to accept FastCGI requests. Valid syntaxes are: 'ip.add.re.ss:port', 'port', '/path/to/unix/socket'.
user ✔️ Unix user running the FPM processes.
group ✖️ Unix group running the FPM processes.
pm ✔️ Choose how the process manager will control the number of child processes. Possible values are static, ondemand, dynamic.
pm_max_children ✖️ (if pm is static or dynamic) The number of child processes to be created when pm is set to static and the maximum number of child processes to be created when pm is set to dynamic.
listen_backlog {{ php_fpm_listen_backlog }} (-1) Maximum number of requests in the backlog.
allowed_clients {{ php_fpm_listen_allowed_clients }} ([any]) List client IP addresses allowed to connect.
listen_owner ✖️ Owner of the Unix socket, if one is used
listen_group ✖️ Group of the Unix socket, if one is used
listen_mode {{ php_fpm_listen_mode }} (0660) File mode of the Unix socket, if one is used
listen_acl_users ✖️ List of ACL user names. If used, listen_owner and listen_group are ignored.
listen_acl_groups ✖️ List of ACL group names. If used, listen_owner and listen_group are ignored.
pm_start_servers ✖️ Number of child processes created on startup
pm_min_spare_servers ✖️ Minimum number of idle server processes
pm_max_spare_servers ✔️ (if pm is dynamic) Maximum number of idle server processes
process_idle_timeout {{ php_fpm_pm_process_idle_timeout }} (10s) Number of seconds after which an idle process will be killed. Only used when pm is ondemand
pm_max_requests {{ php_fpm_pm_max_requests }} (0) The number of requests each child process should execute before respawning.
pm_status_path ✖️ The URI to view the FPM status page.
ping_path ✖️ The ping URI to call the monitoring page of FPM (must start with /).
ping_response {{ php_fpm_ping_response }} (pong) Set the response of a ping request. The response is formatted as text/plain with a 200 response code.
processes_priority ✖️ Specify the nice priority to apply to the worker process.
prefix ✖️ Specify prefix for path evaluation.
request_terminate_timeout {{ php_fpm_request_terminate_timeout }} (0) The timeout for serving a single request after which the worker process will be killed.
request_slowlog_timeout {{ php_fpm_request_slowlog_timeout }} (0) The timeout for serving a single request after which a PHP backtrace will be dumped to the slowlog file.
slowlog {{ php_fpm_slowlog }} (log/php-fpm.log.slow) The log file for slow requests.
rlimit_files ✖️ Set open file descriptor rlimit for child processes in this pool.
rlimit_core ✖️ Set max core size rlimit for child processes in this pool.
chroot ✖️ Chroot to this directory (absolute path) at the start.
chdir ✖️ Chdir to this directory (absolute path) at the start.
catch_workers_output {{ php_fpm_catch_workers_output }} (False) Redirect worker stdout and stderr into main error log.
clear_env {{ php_fpm_clear_env }} (True) Clear environment in FPM workers.
security_limit_extensions php_fpm_security_limit_extensions ([.php, .phar]) Limits the extensions of the main script FPM will allow to parse.
access_log ✖️ The access log file.
access_format {{ php_fpm_access_format }} (%R - %u %t \"%m %r\" %s) The access log format.
envs ✖️ Dict of environment variables to set.
php_flags ✖️ Dict of php.ini directives to set for this pool. The value of a directive should be a boolean.
php_admin_flags ✖️ Dict of php.ini directives to set for this pool. The value of a directive should be a boolean. Unlike php_flags, these values cannot be changed using ini_set().
php_values ✖️ Dict of PHP values to set.
php_admin_values ✖️ Dict of PHP values to set. Unlike php_values, these values cannot be changed using ini_set().

Only the PHP_INI_PERDIR and PHP_INI_ALL directives can be set using php_flags, php_admin_flags, php_values or php_admin_values.

Example

php_fpm_pools:
  - name: fpm-host
    listen: /path/to/unix/socket
    user: www-data
    pm: static
    pm_max_children: 20
    pm_start_servers: 20
    processes_priority: -19
    envs:
      TMP: /var/tmp
    php_admin_values:
      open_basedir: /var/www
php_fpm_php_ini_values:
  APC:
    apc.enabled:
      - 1
  PHP:
    extension:
      - php_mysqli
      - php_ldap
php_fpm_log_level: error

License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

Author Information

About

Install and configure PHP-FPM with Ansible

Topics

php ansible debian ubuntu ansible-role php-fpm fpm

Resources

Readme

License

CC-BY-SA-4.0 license
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 8

Languages