[baikal]
; this has to be matching the upstream php-handler in nginx.conf
listen = /run/php-fpm/baikal.sock
;listen = 127.0.0.1:9000
listen.allowed_clients = 127.0.0.1
listen.owner = http
listen.group = http
listen.mode = 0660

; security can be enhanced by adding nologin users to the system and run the pools with different users or groups
; therefore the ownership / permissions for the files served by the webserver would have to be changed
; then user = (and group = if needed) in for the pool have to be changed to the new user / group name
; be careful with using implemented commands, it would have to be used with the new user (instead of http)
; listen.owner and listen.group have to be the user specified and running nginx (http)
user = http
group = http

pm = ondemand
pm.max_children = 5

env[PATH] = /usr/local/bin:/usr/bin:/bin

php_admin_value[open_basedir] = ${open_basedir}:/var/lib/baikal:/usr/share/webapps/baikal/Specific

; done in general.ini
;security.limit_extensions = .php .html .htm

; done in general.ini
;php_admin_value[date.timezone] = Europe/Berlin

; extensions
; mariadb / mysql
php_admin_value[extension] = pdo_mysql
;php_admin_value[extension] = mysqli