====== Information ======
* WordPress
* [[information:realm_of_espionage|Realm of Espionage]]
* https://blog.realmofespionage.xyz
===== Prerequisites =====
* [[linux:distros:server:opensuse_tumbleweed_server|openSUSE Tumbleweed (Server)]]
* [[servers:linux:nginx_php_php-fpm|nginx + PHP + PHP-FPM]]
* [[servers:linux:nginx:lets_encrypt|Certbot (Let's Encrypt)]]
* [[servers:linux:mariadb|MariaDB]]
====== Dependencies ======
* https://wordpress.org/about/requirements/
* https://make.wordpress.org/hosting/handbook/server-environment/#php-extensions
sudo zypper install php8-curl php8-exif php8-fileinfo php-gd php8-intl php8-mbstring php8-mysql php8-openssl php8-sodium php8-dom php8-xmlreader php8-zip php8-bcmath php8-iconv php8-zlib
====== Download Source ======
* https://github.com/WordPress/WordPress/commits/master/
sudo git clone --branch 'master' --depth '1' --recurse-submodules 'https://github.com/WordPress/WordPress.git' '/srv/www/blog' && sudo chown -R 'wwwrun':'www' '/srv/www/blog' && sudo chmod -R '0755' '/srv/www/blog'
====== Database ======
sudo mariadb
CREATE DATABASE wordpress;
CREATE USER 'wordpress'@'localhost' IDENTIFIED BY 'x';
GRANT ALL PRIVILEGES ON wordpress.* to 'wordpress'@'localhost';
FLUSH PRIVILEGES;
EXIT
====== nginx + PHP-FPM Configuration ======
===== PHP-FPM Socket =====
sudo -e '/etc/php8/fpm/php-fpm.d/blog.conf' && sudo systemctl restart 'php-fpm'
[blog]
; User/Group
user = "wwwrun"
group = "www"
; Socket
listen = "/run/php-fpm/blog.sock"
listen.owner = "wwwrun"
listen.group = "www"
listen.mode = "0662"
; Process Management
pm = "ondemand"
pm.max_children = "4"
pm.process_idle_timeout = "30"
; openSUSE php.ini Defaults
php_value[session.save_path] = "/var/lib/php8/sessions"
; General
php_value[log_errors] = "0"
php_value[error_reporting] = "~E_ALL"
php_value[date.timezone] = "America/New_York"
php_value[max_execution_time] = "200"
php_value[memory_limit] = "512M"
php_value[post_max_size] = "10M"
php_value[upload_max_filesize] = "10M"
php_value[max_file_uploads] = "100"
; End
===== FastCGI =====
* ''blog.sock''
sudo -e '/etc/nginx/default.d/blog.conf'
location ~ \.(php|phar)(/.*)?$ {
fastcgi_split_path_info ^(.+\.(?:php|phar))(/.*)$;
fastcgi_intercept_errors on;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_pass unix:/run/php-fpm/blog.sock;
}
# End
===== Server Block =====
sudo -e '/etc/nginx/vhosts.d/blog.conf' && sudo systemctl reload 'nginx'
server {
listen '443' 'ssl';
http2 'on';
server_name 'blog.realmofespionage.xyz';
root '/srv/www/blog';
index 'index.php';
include '/etc/nginx/default.d/blog.conf';
include '/etc/nginx/default.d/headers.conf';
client_max_body_size '10M';
# access_log /var/log/nginx/blog-access.log;
# error_log /var/log/nginx/blog-error.log;
location / {
try_files $uri $uri/ /index.php?$args;
}
rewrite /wp-admin$ $scheme://$host$uri/ permanent;
}
# End
====== Initial Setup ======
* https://blog.realmofespionage.xyz
====== Settings ======
* Date Format: Y/m/d
===== wp-config.php =====
sudo su 'wwwrun' -s '/bin/bash'
nano '/srv/www/blog/wp-config.php'
define( 'AUTOMATIC_UPDATER_DISABLED', true );
define( 'WP_DEBUG', false );
define( 'WP_DEBUG_DISPLAY', false );
/* End */
====== Services ======
===== Updater =====
==== Service ====
sudo -e '/etc/systemd/system/blog-up.service'
[Service]
User=wwwrun
Group=www
Type=oneshot
ExecStart='/usr/bin/git' -C '/srv/www/blog' pull origin 'master'
ExecStartPost='/usr/bin/sync'
# End
==== Timer ====
* Every day at ''02:00:00''
sudo -e '/etc/systemd/system/blog-up.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-up.timer' --now && sudo systemctl start 'blog-up' && sudo systemctl status 'blog-up' -l
[Unit]
Description=WordPress Git Updater
After=network-online.target
Wants=network-online.target
[Timer]
OnCalendar=*-*-* 02:00:00
Persistent=true
[Install]
WantedBy=timers.target
# End
===== Backup =====
==== Files ====
=== Service ===
mkdir -p ~/'backups' && sudo -e '/etc/systemd/system/blog-fb.service' && sudo sed -i 's/CHANGEME/'$USER'/g' '/etc/systemd/system/blog-fb.service'
[Service]
Type=oneshot
ExecStart='/usr/bin/bash' -c '"/usr/bin/tar" -czf "/home/CHANGEME/backups/wordpress-files-auto-"$$(date +%%Y-%%m-%%d)".tar.gz" -C "/srv/www" "blog"'
ExecStartPost='/usr/bin/sync'
# End
=== Timer ===
* ''01'' day of every month at ''02:15:00''
sudo -e '/etc/systemd/system/blog-fb.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-fb.timer' --now
[Unit]
Description=WordPress Files Backup
[Timer]
OnCalendar=*-*-01 02:15:00
Persistent=true
[Install]
WantedBy=timers.target
# End
sudo systemctl start 'blog-fb' && sudo systemctl status 'blog-fb' -l
==== Database ====
=== Database Auth ===
sudo mkdir -p '/var/lib/mysql/auth' && sudo -e '/var/lib/mysql/auth/wordpress' && sudo chown 'mysql':'mysql' '/var/lib/mysql/auth/wordpress' && sudo chmod '0600' '/var/lib/mysql/auth/wordpress'
[mariadb-dump]
user=wordpress
password=x
# End
=== Service ===
mkdir -p ~/'backups' && sudo mkdir -p '/var/lib/mysql/tmp' && sudo -e '/etc/systemd/system/blog-db.service' && sudo sed -i 's/'CHANGEME'/'$USER'/g' '/etc/systemd/system/blog-db.service'
[Service]
Group=mysql
Type=oneshot
ExecStart='/usr/bin/bash' -c '"/usr/bin/mariadb-dump" --defaults-extra-file="/var/lib/mysql/auth/wordpress" --single-transaction --quick "wordpress" -r "/home/CHANGEME/backups/wordpress-database-auto-"$$(date +%%Y-%%m-%%d)".sql"'
ExecStartPost='/usr/bin/sync'
# End
=== Timer ===
* ''01'' day of every month at ''02:10:00''
sudo -e '/etc/systemd/system/blog-db.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-db.timer' --now && sudo systemctl start 'blog-db' && sudo systemctl status 'blog-db' -l
[Unit]
Description=WordPress Database Backup
After=mariadb.service
[Timer]
OnCalendar=*-*-01 02:10:00
Persistent=true
[Install]
WantedBy=timers.target
# End
===== Maintenance =====
==== Service ====
sudo -e '/etc/systemd/system/blog-m.service'
[Service]
User=wwwrun
Group=www
Type=oneshot
ExecStart='/usr/bin/git' -C '/srv/www/blog' reset --hard
ExecStart='/usr/bin/git' -C '/srv/www/blog' gc --aggressive --prune='all'
ExecStart='/usr/bin/git' -C '/srv/www/blog' fsck --full --strict
ExecStartPost='/usr/bin/sync'
# End
==== Timer ====
* ''01'' day of every month at ''02:30:00''
sudo -e '/etc/systemd/system/blog-m.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-m.timer' --now
[Unit]
Description=WordPress Maintenance
After=network-online.target
Wants=network-online.target
[Timer]
OnCalendar=*-*-01 02:30:00
Persistent=true
[Install]
WantedBy=timers.target
# End
sudo systemctl start 'blog-m' && sudo systemctl status 'blog-m' -l
====== Backup ======
===== Files =====
****
sudo tar -czf ~/'wordpress-files-manual-'$(date +%Y-%m-%d)'.tar.gz' -C '/srv/www' 'blog'
===== Database =====
****
sudo mariadb-dump --single-transaction --quick 'wordpress' -r ~/'wordpress-database-manual-'$(date +%Y-%m-%d)'.sql'
===== scp =====
scp espionage724@192.168.1.152:~/'wordpress-files-'*'.tar.gz' ~/'Downloads'
scp espionage724@192.168.1.152:~/'wordpress-database-'*'.sql' ~/'Downloads'
====== Restore ======
===== scp =====
scp ~/'Downloads/wordpress-files-'*'.tar.gz' espionage724@192.168.1.152:~
scp ~/'Downloads/wordpress'*'.sql' espionage724@192.168.1.152:~
===== Stop nginx =====
****
sudo systemctl stop 'nginx'
===== Remove Existing Files =====
****
ls ~/'wordpress-files-'*'.tar.gz' && sudo rm -Rf '/srv/www/blog'
===== Restore Files =====
****
sudo tar -xzf ~/'wordpress-files-'*'.tar.gz' -C '/srv/www' 'blog' && sudo chown -R 'wwwrun':'www' '/srv/www/blog' && sudo chmod -R '0755' '/srv/www/blog'
===== Restore Database =====
* [[#database|Initial set-up]]
sudo mariadb --execute='DROP DATABASE wordpress;'
sudo mariadb --execute='CREATE DATABASE wordpress;'
sudo mariadb 'wordpress' < ~/'wordpress'*'.sql'
===== dos2unix =====
****
find '/srv/www/blog' -type f -print0 | sudo xargs -0 dos2unix -- && sudo chown -R 'wwwrun':'www' '/srv/www/blog' && sudo chmod -R '0755' '/srv/www/blog'
===== Git Fix =====
sudo su 'wwwrun' -s '/bin/bash'
cd '/srv/www/blog'
rm -Rf '.git'
git init -b 'master'
git add '.'
git commit -m 'x'
exit
===== MySQL Connection =====
* Windows uses ''127.0.0.1''
sudo -e '/srv/www/blog/wp-config.php' && sudo chown -v 'wwwrun':'www' '/srv/www/blog/wp-config.php'
define( 'DB_HOST', 'localhost' );
===== Start nginx =====
****
sudo systemctl start 'nginx'
===== Clean-up =====
****
rm -fv ~/'wordpress-files-'*'.tar.gz' ~/'wordpress'*'.sql'