Secure encryption of PHP applications with Docker Compose, Nginx and MariaDB

Secure encryption of PHP applications through Docker Compose, Nginx and MariaDB

In today’s digital age, data security is a very important issue. For many applications, protecting user data and sensitive information cannot be ignored. This article will introduce how to use Docker Compose, Nginx and MariaDB to implement secure encryption of PHP applications. At the same time, we will also provide some specific code examples to help readers understand better.

First of all, we need to understand the basic concepts of Docker Compose. Docker Compose is a tool for Docker that helps us define and manage multiple Docker containers by using YAML files. With Docker Compose, we can easily create and manage multiple containers to build a complete application.

In this example, we will use Docker Compose to create three containers: Nginx, PHP and MariaDB. Nginx is a powerful web server and reverse proxy server that can handle HTTP requests and forward them to the correct container. The PHP container will be used to run our PHP application. MariaDB is used to store and manage our database.

First, we need to create a Docker Compose YAML file. In this case we will call it docker-compose.yml. The following is a simple example:

version: '3'
services:
  nginx:
    image: nginx:latest
    ports:
      - "80:80"
    volumes:
      - ./nginx/conf.d:/etc/nginx/conf.d
    depends_on:
      - php
  php:
    image: php:7.4-fpm
    volumes:
      - ./php/www:/var/www/html
    depends_on:
      - db
  db:
    image: mariadb:latest
    environment:
      - MYSQL_ROOT_PASSWORD=mysecretpassword
    volumes:
      - db_data:/var/lib/mysql
volumes:
  db_data: {}

In this example, we define three services: nginx, php and db. nginxThe service uses the latest Nginx image and maps the container's port 80 to the host's port 80. At the same time, we mount the ./nginx/conf.d directory to the /etc/nginx/conf.d directory so that we can easily configure the Nginx server. The php service uses the PHP 7.4-fpm image and mounts the ./php/www directory to the /var/www/html directory. Finally, the db service uses the latest MariaDB image, and the Root password is set through the MYSQL_ROOT_PASSWORD environment variable. At the same time, we use a volume db_data to persist the database.

Next, we need to create an Nginx configuration file for our PHP application. Create a file named myapp.conf in the ./nginx/conf.d directory and add the following content:

server {
    listen 80;
    server_name myapp.com;
    root /var/www/html;
    index index.php index.html;

    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }

    location ~ .php$ {
        try_files $uri =404;
        fastcgi_split_path_info ^(.+.php)(/.+)$;
        fastcgi_pass php:9000;
        fastcgi_index index.php;
        include fastcgi_params;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    }
}

In this configuration file, we A virtual host named myapp.com is defined to associate port 80 with our PHP application. At the same time, we set the /var/www/html directory as the root directory and the index.php file as the default index file. In the location / section, we define that when the requested file does not exist, the request will be forwarded to the index.php file. The location ~ .php$ part is used to handle requests for .php files and forward them to port 9000 of the PHP container.

Finally, we need to create an index.php file for our PHP application and save it in the ./php/www directory:

<?php
echo "Hello, World!";
?>

This example is very simple, it just outputs "Hello, World!". You can write more complex PHP applications according to your needs.

Now, we can start our application by running the following command:

docker-compose up -d

After the startup is complete, you can start it by opening a browser and visiting http://localhost to view your application. You should be able to see "Hello, World!" being printed to the screen.

By using Docker Compose, Nginx and MariaDB, we successfully created a secure and encrypted PHP application. Nginx acts as a reverse proxy server and is able to handle HTTP requests and forward them to the correct container. The PHP container is the running environment of our application and is able to communicate with the Nginx container. MariaDB is used to store and manage our database.

In practical applications, we can further protect data security by using SSL certificates. We can configure an SSL certificate in the Nginx container to ensure that all HTTP requests are encrypted. At the same time, we can also use MariaDB's security mechanisms, such as access control and encrypted storage, to protect the data in the database.

To sum up, through Docker Compose, Nginx and MariaDB, we can easily create and manage secure and encrypted PHP applications. By using these tools and technologies, we can better protect the security of user data and sensitive information. We hope this article is helpful to readers and provides a practical reference for your applications.

The above is the detailed content of Secure encryption of PHP applications with Docker Compose, Nginx and MariaDB. For more information, please follow other related articles on the PHP Chinese website!