feat(shopware): migrate to single Shopware base image and split services (web/worker/scheduler/init)

• Introduce init container and runtime-ready Dockerfile (Alpine) installing php83-gd/intl/pdo_mysql • Disable composer scripts in builder and ignore build-time ext reqs • New docker-compose template (web/worker/scheduler/opensearch) + persistent volumes • Use TRUSTED_PROXIES env; fix APP_URL formatting; set OPENSEARCH_HOST=opensearch • Replace SHOPWARE_PHP_CONTAINER refs with SHOPWARE_WEB_CONTAINER in tasks • Render and copy init.sh via volumes path • Remove old nginx/php split and legacy DB env task • Fix svc-db-postgres var: database_type now uses entity_name https://chatgpt.com/share/6907fc58-7c28-800f-a993-c207f28859c9
2025-11-06 21:28:02 +00:00 · 2025-11-03 01:51:38 +01:00
parent d6f3618d70
commit f5efbce205
15 changed files with 293 additions and 104 deletions
--- a/roles/web-app-shopware/tasks/01_database.yml
+++ b/roles/web-app-shopware/tasks/01_database.yml
@@ -1,10 +0,0 @@
---
- name: Flush handlers to ensure containers are up before rendering .env
-  meta: flush_handlers
-
- name: Render .env for Shopware
-  template:
-    src:  "templates/env.j2"
-    dest: "{{ docker_compose.directories.instance }}/.env"
-    mode: "0640"
-  notify: docker compose up
--- a/roles/web-app-shopware/tasks/01_setup.yml
+++ b/roles/web-app-shopware/tasks/01_setup.yml
--- a/roles/web-app-shopware/tasks/02_cleanup.yml
+++ b/roles/web-app-shopware/tasks/02_cleanup.yml
--- a/roles/web-app-shopware/tasks/cleanup/ldap.yml
+++ b/roles/web-app-shopware/tasks/cleanup/ldap.yml
@@ -1,6 +1,6 @@
 - name: "Deactivate/uninstall LDAP plugin if present"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      cd {{ SHOPWARE_ROOT }}
      php bin/console plugin:deactivate INFX_LDAP_PLUGIN || true
      php bin/console plugin:uninstall INFX_LDAP_PLUGIN --keep-user-data || true
--- a/roles/web-app-shopware/tasks/cleanup/oidc.yml
+++ b/roles/web-app-shopware/tasks/cleanup/oidc.yml
@@ -1,6 +1,6 @@
 - name: "Deactivate/uninstall OIDC plugin if present"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      cd {{ SHOPWARE_ROOT }}
      php bin/console plugin:deactivate INFX_OIDC_PLUGIN || true
      php bin/console plugin:uninstall INFX_OIDC_PLUGIN --keep-user-data || true
--- a/roles/web-app-shopware/tasks/main.yml
+++ b/roles/web-app-shopware/tasks/main.yml
@@ -2,6 +2,19 @@
 - name: "Load docker, DB and proxy for {{ application_id }}"
  include_role:
    name: sys-stk-full-stateful
+  vars:
+    docker_compose_flush_handlers: false
+
+- name: "Deploy {{ SHOPWARE_INIT_HOST }}"
+  template:
+    src:  init.sh.j2
+    dest: "{{ SHOPWARE_INIT_HOST }}"
+  notify:
+    - docker compose up
+    - docker compose build
+
+- name: "Flush docker compose handlers"
+  meta: flush_handlers

 - name: Wait for Shopware HTTP endpoint
  wait_for:
@@ -10,39 +23,9 @@
    delay: 5
    timeout: 300

- name: Render environment and DB settings
-  include_tasks: 01_database.yml
-
- name: "Run Shopware install / migrations"
-  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
-      set -e
-      cd {{ SHOPWARE_ROOT }}
-      php bin/console system:install --basic-setup --create-database --force
-      php bin/console database:migrate --all
-      php bin/console database:migrate-destructive --all
-      php bin/console cache:clear
-    '
-  args:
-    chdir: "{{ docker_compose.directories.instance }}"
-  register: migrate
-  changed_when: migrate.rc == 0
-
- name: "Create initial admin user (idempotent)"
-  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
-      set -e
-      cd {{ SHOPWARE_ROOT }}
-      php bin/console user:create "{{ users.administrator.username }}" \
-        --admin --password="{{ users.administrator.password }}" \
-        --firstName="Admin" --lastName="User" --email="{{ users.administrator.email }}" || true
-    '
-  args:
-    chdir: "{{ docker_compose.directories.instance }}"
-
 - name: "Warm up caches and index"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      cd {{ SHOPWARE_ROOT }}
      php bin/console messenger:consume --time-limit=60 --limit=100 || true
      php bin/console dal:refresh:index || true
@@ -52,20 +35,8 @@
    chdir: "{{ docker_compose.directories.instance }}"

 - name: Execute setup routines (OIDC/LDAP)
-  include_tasks: 02_setup.yml
+  include_tasks: 01_setup.yml

 - name: Execute cleanup routines
-  include_tasks: 03_cleanup.yml
+  include_tasks: 02_cleanup.yml
  when: MODE_CLEANUP
-
- name: Register DNS records for Shopware domain(s)
-  include_role:
-    name: sys-dns-cloudflare-records
-  vars:
-    cloudflare_records:
-      - zone:     "{{ domains | get_domain(application_id) | to_zone }}"
-        type:     A
-        name:     "{{ domains | get_domain(application_id) }}"
-        content:  "{{ networks.internet.ip4 }}"
-        proxied:  true
-  when: DNS_PROVIDER == 'cloudflare'
--- a/roles/web-app-shopware/tasks/setup/ldap.yml
+++ b/roles/web-app-shopware/tasks/setup/ldap.yml
@@ -1,7 +1,7 @@
 # Replace INFX_LDAP_PLUGIN with the actual plugin name you use
 - name: "Install LDAP admin plugin & activate"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      set -e
      cd {{ SHOPWARE_ROOT }}
      php bin/console plugin:refresh
@@ -13,7 +13,7 @@

 - name: "Configure LDAP connection"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      set -e
      cd {{ SHOPWARE_ROOT }}
      php bin/console system:config:set "InfxLdap.config.host"     "{{ LDAP.SERVER.DOMAIN }}"
--- a/roles/web-app-shopware/tasks/setup/oidc.yml
+++ b/roles/web-app-shopware/tasks/setup/oidc.yml
@@ -1,7 +1,7 @@
 # Replace INFX_OIDC_PLUGIN with the actual plugin name (Composer or local)
 - name: "Install OIDC plugin & activate"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      set -e
      cd {{ SHOPWARE_ROOT }}
      php bin/console plugin:refresh
@@ -13,7 +13,7 @@

 - name: "Configure OIDC via system:config"
  shell: |
-    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_PHP_CONTAINER }} bash -lc '
+    docker exec -i --user {{ SHOPWARE_USER }} {{ SHOPWARE_WEB_CONTAINER }} bash -lc '
      set -e
      cd {{ SHOPWARE_ROOT }}
      php bin/console system:config:set "InfxOidc.config.clientId"        "{{ OIDC.CLIENT.ID }}"