====== Information ======
* WordPress
* [[information:realm_of_espionage|Realm of Espionage]]
* https://blog.realmofespionage.xyz
===== Prerequisites =====
* [[linux:distros:server:ubuntu_server|Ubuntu Server]]
* [[servers:linux:nginx_php_php-fpm|nginx + PHP + PHP-FPM]]
* [[servers:linux:nginx:lets_encrypt|Certbot (Let's Encrypt)]]
* [[servers:linux:mariadb|MariaDB]]
====== Dependencies ======
* https://wordpress.org/about/requirements/
* https://make.wordpress.org/hosting/handbook/server-environment/#php-extensions
sudo apt install php-curl php-imagick php-intl php-mbstring php-mysql php-xml php-zip php-bcmath
====== Download Source ======
* https://github.com/WordPress/WordPress/commits/master/
sudo git clone --branch 'master' --depth '1' --recurse-submodules 'https://github.com/WordPress/WordPress.git' '/var/www/blog' && sudo chown -R 'www-data':'www-data' '/var/www/blog' && sudo chmod -R '0755' '/var/www/blog'
====== Database ======
sudo mariadb
CREATE DATABASE wordpress;
CREATE USER 'wordpress'@'localhost' IDENTIFIED BY 'x';
GRANT ALL PRIVILEGES ON wordpress.* to 'wordpress'@'localhost';
FLUSH PRIVILEGES;EXIT;
====== nginx + PHP-FPM Configuration ======
===== PHP-FPM Socket =====
sudo -e '/etc/php/8.4/fpm/pool.d/blog.conf' && sudo systemctl restart 'php8.4-fpm'
[blog]
; User/Group
user = "www-data"
group = "www-data"
; Socket
listen = "/run/php/blog.sock"
listen.owner = "www-data"
listen.group = "www-data"
listen.mode = "0662"
; Process Management
pm = "ondemand"
pm.max_children = "4"
pm.process_idle_timeout = "30"
; Logging
php_value[log_errors] = "0"
php_value[error_reporting] = "~E_ALL"
; General
php_value[date.timezone] = "America/New_York"
; End
===== FastCGI =====
sudo -e '/etc/nginx/snippets/blog.conf'
location '~' '\.(php|phar)(/.*)?$' {
fastcgi_split_path_info '^(.+\.(?:php|phar))(/.*)$';
fastcgi_intercept_errors 'on';
fastcgi_index 'index.php';
include 'fastcgi_params';
fastcgi_param 'SCRIPT_FILENAME' '$document_root$fastcgi_script_name';
fastcgi_param 'PATH_INFO' '$fastcgi_path_info';
fastcgi_param 'HTTPS' 'on';
fastcgi_pass 'unix:/run/php/blog.sock';
}
# End
===== Server Block ======
sudo -e '/etc/nginx/sites-available/blog.conf'
server {
listen '443' 'ssl';
http2 'on';
server_name 'blog.realmofespionage.xyz';
root '/var/www/blog';
index 'index.php';
include '/etc/nginx/snippets/blog.conf';
include '/etc/nginx/snippets/headers.conf';
client_max_body_size '10M';
# access_log '/var/log/nginx/blog-access.log';
# error_log '/var/log/nginx/blog-error.log';
location '/' {
try_files '$uri' '$uri/' '/index.php?$args';
}
rewrite '/wp-admin$' '$scheme://$host$uri/' 'permanent';
}
# End
sudo ln -s -f '/etc/nginx/sites-available/blog.conf' '/etc/nginx/sites-enabled/blog.conf' && sudo systemctl reload 'nginx'
====== Initial Setup ======
* https://blog.realmofespionage.xyz
====== Settings ======
* Date Format: Y/m/d
===== wp-config.php =====
* https://github.com/WordPress/WordPress/blob/master/wp-config-sample.php
* https://developer.wordpress.org/advanced-administration/wordpress/wp-config/
* :!: Change ''DB_PASSWORD''
sudo -u 'www-data' -e '/var/www/blog/wp-config.php'
====== Scripts ======
===== Git Fix =====
* :!: Set email for ''user.email''
sudo mkdir -p '/etc/nginx/scripts/blog' && sudo -e '/etc/nginx/scripts/blog/git-fix.sh' && sudo chmod '0500' '/etc/nginx/scripts/blog/git-fix.sh' && sudo chown 'www-data':'www-data' '/etc/nginx/scripts/blog/git-fix.sh'
#!/bin/bash
'/usr/bin/rm' -Rf '/tmp/blog'
'/usr/bin/mkdir' -p '/tmp/blog'
'/usr/bin/cp' -Rf '/var/www/blog/wp-content/uploads' '/var/www/blog/wp-config.php' '/tmp/blog'
'/usr/bin/rm' -Rf '/var/www/blog/.git'
'/usr/bin/git' -C '/var/www/blog' init --initial-branch='master'
'/usr/bin/git' -C '/var/www/blog' add '.'
########################################
'/usr/bin/git' -C '/var/www/blog' config 'user.email' 'espionage724@x'
########################################
'/usr/bin/git' -C '/var/www/blog' commit --message='x'
'/usr/bin/git' -C '/var/www/blog' remote add 'origin' 'https://github.com/WordPress/WordPress.git'
'/usr/bin/git' -C '/var/www/blog' pull --depth '1' --recurse-submodules 'origin' 'master' --rebase
'/usr/bin/git' -C '/var/www/blog' reset --hard 'origin/master'
'/usr/bin/git' -C '/var/www/blog' gc --aggressive --prune='all'
'/usr/bin/git' -C '/var/www/blog' fsck --full --strict
'/usr/bin/cp' -Rf '/tmp/blog/uploads' '/var/www/blog/wp-content'
'/usr/bin/cp' -f '/tmp/blog/wp-config.php' '/var/www/blog/wp-config.php'
'/usr/bin/rm' -Rf '/tmp/blog'
# End
sudo -u 'www-data' '/etc/nginx/scripts/blog/git-fix.sh'
====== Services ======
===== Updater =====
==== Service ====
sudo -e '/etc/systemd/system/blog-up.service'
[Service]
User=www-data
Group=www-data
Type=oneshot
WorkingDirectory=/var/www/blog
ExecStart='/usr/bin/git' -C '/var/www/blog' reset --hard
ExecStart='/usr/bin/git' -C '/var/www/blog' pull origin 'master' --rebase
ExecStartPost='/usr/bin/sync'
# End
==== Timer ====
* Daily ''02:00:00 AM''
sudo -e '/etc/systemd/system/blog-up.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-up.timer' --now && sudo systemctl start 'blog-up' && sudo systemctl status 'blog-up' -l
[Unit]
Description=WordPress Git Updater
After=network-online.target
Wants=network-online.target
[Timer]
OnCalendar=*-*-* 02:00:00
Persistent=true
[Install]
WantedBy=timers.target
# End
===== Backup =====
==== Files ====
=== Service ===
mkdir -p ~/'backups' && sudo -e '/etc/systemd/system/blog-fb.service' && sudo sed -i 's/CHANGEME/'$USER'/g' '/etc/systemd/system/blog-fb.service'
[Service]
Type=oneshot
WorkingDirectory=/var/www/blog
ExecStart='/usr/bin/bash' -c '"/usr/bin/tar" -czf "/home/CHANGEME/backups/wordpress-files-auto-"$$(date +%%Y-%%m-%%d)".tar.gz" -C "/var/www" "blog"'
ExecStartPost='/usr/bin/sync'
# End
=== Timer ===
* Monthly (3rd) ''02:15:00 AM''
sudo -e '/etc/systemd/system/blog-fb.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-fb.timer' --now
[Unit]
Description=WordPress Files Backup
[Timer]
OnCalendar=*-*-03 02:15:00
Persistent=true
[Install]
WantedBy=timers.target
# End
sudo systemctl start 'blog-fb' && sudo systemctl status 'blog-fb' -l
==== Database ====
=== Database Auth ===
sudo mkdir -p '/var/lib/mysql/auth' && sudo -e '/var/lib/mysql/auth/wordpress' && sudo chown 'mysql':'mysql' '/var/lib/mysql/auth/wordpress' && sudo chmod '0600' '/var/lib/mysql/auth/wordpress'
[mariadb-dump]
user=wordpress
password=x
# End
=== Service ===
mkdir -p ~/'backups' && sudo mkdir -p '/var/lib/mysql/tmp' && sudo -e '/etc/systemd/system/blog-db.service' && sudo sed -i 's/'CHANGEME'/'$USER'/g' '/etc/systemd/system/blog-db.service'
[Service]
Group=mysql
Type=oneshot
WorkingDirectory=/var/lib/mysql
ExecStart='/usr/bin/bash' -c '"/usr/bin/mariadb-dump" --defaults-extra-file="/var/lib/mysql/auth/wordpress" --single-transaction --quick "wordpress" -r "/home/CHANGEME/backups/wordpress-database-auto-"$$(date +%%Y-%%m-%%d)".sql"'
ExecStartPost='/usr/bin/sync'
# End
=== Timer ===
* Monthly (3rd) ''02:10:00 AM''
sudo -e '/etc/systemd/system/blog-db.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-db.timer' --now && sudo systemctl start 'blog-db' && sudo systemctl status 'blog-db' -l
[Unit]
Description=WordPress Database Backup
After=mariadb.service
[Timer]
OnCalendar=*-*-03 02:10:00
Persistent=true
[Install]
WantedBy=timers.target
# End
===== Maintenance =====
==== Service ====
sudo -e '/etc/systemd/system/blog-m.service'
[Service]
User=www-data
Group=www-data
Type=oneshot
WorkingDirectory=/var/www/blog
ExecStart='/usr/bin/git' -C '/var/www/blog' gc --aggressive --prune='all'
ExecStart='/usr/bin/git' -C '/var/www/blog' fsck --full --strict
ExecStartPost='/usr/bin/sync'
# End
==== Timer ====
* Monthly (3rd) ''02:30:00 AM''
sudo -e '/etc/systemd/system/blog-m.timer' && sudo systemctl daemon-reload && sudo systemctl enable 'blog-m.timer' --now
[Unit]
Description=WordPress Maintenance
After=network-online.target
Wants=network-online.target
[Timer]
OnCalendar=*-*-03 02:30:00
Persistent=true
[Install]
WantedBy=timers.target
# End
sudo systemctl start 'blog-m' && sudo systemctl status 'blog-m' -l
====== Backup ======
===== Files =====
****
sudo tar -czf ~/'wordpress-files-manual-'$(date +%Y-%m-%d)'.tar.gz' -C '/var/www' 'blog'
===== Database =====
****
sudo mariadb-dump --single-transaction --quick 'wordpress' -r ~/'wordpress-database-manual-'$(date +%Y-%m-%d)'.sql'
===== scp =====
scp espionage724@192.168.1.152:~/'wordpress-files-'*'.tar.gz' ~/'Downloads'
scp espionage724@192.168.1.152:~/'wordpress-database-'*'.sql' ~/'Downloads'
====== Restore ======
===== scp =====
scp ~/'Downloads/wordpress-files-'*'.tar.gz' espionage724@192.168.1.152:~
scp ~/'Downloads/wordpress'*'.sql' espionage724@192.168.1.152:~
===== Stop nginx =====
****
sudo systemctl stop 'nginx'
==== Disable vhost ====
****
sudo rm '/etc/nginx/sites-enabled/blog.conf' && sudo systemctl reload 'nginx'
===== Remove Existing Files =====
****
ls ~/'wordpress-files-'*'.tar.gz' && sudo rm -Rf '/var/www/blog'
===== Restore Files =====
****
sudo tar -xzf ~/'wordpress-files-'*'.tar.gz' -C '/var/www' 'blog' && sudo chown -R 'www-data':'www-data' '/var/www/blog' && sudo chmod -R '0755' '/var/www/blog'
===== Restore Database =====
* [[#database|Initial set-up]]
sudo mariadb --execute='DROP DATABASE wordpress;'
sudo mariadb --execute='CREATE DATABASE wordpress;'
sudo mariadb 'wordpress' < ~/'wordpress'*'.sql'
===== Git Fix =====
==== Back-up Files ====
****
sudo rm -Rf '/tmp/www/blog' && mkdir -p '/tmp/www/blog' && sudo cp -Rf '/var/www/blog/wp-content/uploads' '/var/www/blog/wp-config.php' '/tmp/www/blog'
==== Git Fix ====
* :!: Set email for ''user.email''
sudo su 'www-data' -s '/bin/bash'
rm -Rf '/var/www/blog/.git'
git -C '/var/www/blog' init --initial-branch='master'
git -C '/var/www/blog' add '.'
git -C '/var/www/blog' config 'user.email' 'espionage724@x'
git -C '/var/www/blog' commit --message='x'
git -C '/var/www/blog' remote add 'origin' 'https://github.com/WordPress/WordPress.git'
git -C '/var/www/blog' pull --depth '1' --recurse-submodules 'origin' 'master' --rebase
git -C '/var/www/blog' reset --hard 'origin/master'
git -C '/var/www/blog' gc --aggressive --prune='all'
git -C '/var/www/blog' fsck --full --strict
exit
==== Restore Files ====
****
sudo -u 'www-data' cp -Rf '/tmp/www/blog/uploads' '/var/www/blog/wp-content' && sudo -u 'www-data' cp -f '/tmp/www/blog/wp-config.php' '/var/www/blog/wp-config.php' && sudo rm -Rf '/tmp/www/blog' && sync
===== MySQL Connection =====
* Windows uses ''127.0.0.1''
sudo -u 'www-data' -e '/var/www/blog/wp-config.php'
define( 'DB_HOST', 'localhost' );
===== Start nginx =====
****
sudo systemctl start 'nginx'
===== Clean-up =====
****
rm -fv ~/'wordpress-files-'*'.tar.gz' ~/'wordpress'*'.sql'