Mirrors/bsd-apps
1
0
Fork 0
mirror of https://github.com/tschettervictor/bsd-apps.git synced 2026-01-02 18:58:17 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
e54242d5ef0ae02235ec7b1c47469cf07fb334cd
bsd-apps/wordpress/README.md
tschettervictor 638b647d38 Update README.md - reinstall tested and working
2024-10-14 18:06:20 -06:00

73 lines
2.5 KiB
Markdown
Raw Blame History

# Wordpress
https://wordpress.org
### Command to fetch script
```
fetch https://raw.githubusercontent.com/tschettervictor/bsd-apps/main/wordpress/wordpress-install.sh
```
Don't forget to
```
chmod +x wordpress-install.sh
```
## Notes
- this scirpt generates some cookie tokens, but uses base64 to do it. If you want super secure tokens, see https://api.wordpress.org/secret-key/1.1/salt/ and add them to `/usr/local/www/wordpress/wp-config.sh`
- I do not use worpress, but this script gets you to where you can visit the site, post, log in etc...
- I welcome PRs and help with additinal hardening/security
## Variables
These are the variables that are available to change along with their defaults and a description of what they do. Other variables should be left at default unless you have a good reason to change them.
HOST_NAME
- sets the hostname to use for the webserver
- must be set to your FQDN ie: my.domain.com
MARIADB_VERSION
- mariadb version to use (currently defaults to 106)
PHP_VERSION
- php version to use (currently defaults to 83)
### Cerificate Configuration
Caddy is a webserver that can do automatic TLS and HTTPS for you. You should enable one AND ONLY ONE of the following 4 CERT configurations to tell the script how you want Caddy to work. Unless you are going to put you installation behind a reverse proxy, you should not ever choose NO_CERT.
NO_CERT
- no certificate, http access only
STANDALONE_CERT
- fully working cert, must own a domain, and have ports 80 and 443 forwarded to your jail
SELFSIGNED_CERT
- generates a self-signed cert for use with https
DNS_CERT
- DNS validated cert, https access
- must be used together with CERT_EMAIL DNS_TOKEN and DNS_PLUGIN
- must own a domain that allows DNS validation
- will generate a DNS validated cert
DNS_PLUGIN
- set this to a supported DNS plugin, see caddy docs for details
- only used with DNS_CERT
DNS_TOKEN
- must have "Zone / Zone / Read" and "Zone / DNS / Edit" permissions on the domain you are using with Caddy
- only used with DNS_CERT
CERT_EMAIL
- your email to receive cert expiry
- used with DNS_CERT and STANDALONE_CERT
If you do use any type of certificate with a domain, Caddy will obtain a staging certificate to not excede rate limits. Once you have confirmed things are working, run the script at `/root/remove-staging.sh` to acquire a valid certificate.
All of the above variables should be changed to fit your environment.
## Mount points (should be mounted outside the jail)
- `/var/db/mysql` - database directory
- `/usr/local/www/wordpress` - web directory
## Jail Properties
- none
Reference in New Issue View Git Blame Copy Permalink