[dsfr] Squelette pour tests

2023-11-05 10:12:59 +01:00
parent 74505da148
commit 76889148a1
36 changed files with 5395 additions and 1939 deletions
--- a/docker/nginx/dev/conf.d/default.conf
+++ b/docker/nginx/dev/conf.d/default.conf
@@ -0,0 +1,3 @@
+upstream php-upstream {
+    server php:9000;
+}
--- a/docker/nginx/dev/nginx.conf
+++ b/docker/nginx/dev/nginx.conf
@@ -0,0 +1,45 @@
+user www-data;
+worker_processes 4;
+pid /run/nginx.pid;
+daemon off;
+
+events {
+  worker_connections  2048;
+  multi_accept on;
+  use epoll;
+}
+
+http {
+  server_tokens off;
+  sendfile off;
+  tcp_nopush on;
+  tcp_nodelay on;
+  keepalive_timeout 15;
+  types_hash_max_size 2048;
+  include /etc/nginx/mime.types;
+  default_type application/octet-stream;
+  access_log off;
+  error_log off;
+
+  include /etc/nginx/conf.d/*.conf;
+  include /etc/nginx/sites-enabled/*;
+  open_file_cache max=100;
+  client_max_body_size 500M;
+
+  gzip on;
+  gzip_disable "msie6";
+
+  gzip_vary on;
+  gzip_proxied any;
+  gzip_comp_level 6;
+  gzip_buffers 16 8k;
+  gzip_http_version 1.1;
+  gzip_min_length 256;
+  gzip_types text/plain text/css application/json application/x-javascript application/javascript text/xml application/xml application/xml+rss text/javascript application/vnd.ms-fontobject application/x-font-ttf font/opentype image/svg+xml image/x-icon;
+
+  fastcgi_buffers 16 16k;
+  fastcgi_buffer_size 32k;
+  rewrite_log on;
+
+}
+
--- a/docker/nginx/dev/sites/default
+++ b/docker/nginx/dev/sites/default
@@ -0,0 +1,67 @@
+server {
+    listen 80;
+
+    server_name localhost;
+    root /var/www/public;
+
+    include /etc/nginx/snippets/expires.conf;
+
+    location / {
+        try_files $uri @rewriteapp;
+    }
+
+    location @rewriteapp {
+        rewrite ^(.*)$ /index.php/$1 last;
+    }
+
+    location ~ ^/index\.php(/|$) {
+        fastcgi_pass php-upstream;
+        fastcgi_split_path_info ^(.+\.php)(/.*)$;
+        include fastcgi_params;
+        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+        fastcgi_param HTTPS off;
+    }
+
+    error_log /var/log/nginx/crm_error.log;
+    access_log /var/log/nginx/crm_access.log;
+
+}
+
+server {
+    listen 443 ssl;
+
+    ssl_certificate           /etc/ssl/certs/scc-crm.localhost+1.pem;
+    ssl_certificate_key       /etc/ssl/private/scc-crm.localhost+1-key.pem;
+    ssl_session_cache         shared:SSL:10m;
+    ssl_session_timeout       5m;
+    ssl_protocols             TLSv1 TLSv1.1 TLSv1.2;
+    ssl_ciphers               ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS;
+    ssl_prefer_server_ciphers on;
+
+    server_name localhost;
+    root /var/www/public;
+
+    include /etc/nginx/snippets/expires.conf;
+
+    location / {
+        try_files $uri @rewriteapp;
+    }
+
+    location @rewriteapp {
+        rewrite ^(.*)$ /index.php/$1 last;
+    }
+
+    location ~ ^/index\.php(/|$) {
+        fastcgi_pass php-upstream;
+        fastcgi_split_path_info ^(.+\.php)(/.*)$;
+        include fastcgi_params;
+        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+        fastcgi_param HTTPS on;
+    }
+
+    error_page 497 https://$host:$server_port/error.html;
+
+    error_log /var/log/nginx/crm_error.log;
+    access_log /var/log/nginx/crm_access.log;
+
+}
--- a/docker/nginx/dev/snippets/expires.conf
+++ b/docker/nginx/dev/snippets/expires.conf
@@ -0,0 +1,55 @@
+# Expire rules for static content
+
+# No default expire rule. This config mirrors that of apache as outlined in the
+# html5-boilerplate .htaccess file. However, nginx applies rules by location,
+# the apache rules are defined by type. A consequence of this difference is that
+# if you use no file extension in the url and serve html, with apache you get an
+# expire time of 0s, with nginx you'd get an expire header of one month in the
+# future (if the default expire rule is 1 month). Therefore, do not use a
+# default expire rule with nginx unless your site is completely static
+
+# cache.appcache, your document html and data
+location ~* \.(?:manifest|appcache|html?|json)$ {
+  expires -1;
+  access_log /var/log/nginx/static.log;
+}
+
+# Feed
+location ~* \.(?:rss|atom)$ {
+  expires 1h;
+  add_header Cache-Control "public";
+}
+
+# Media: images, icons, video, audio, HTC
+location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|ogg|ogv|webm|htc)$ {
+  expires 1M;
+  access_log off;
+  add_header Cache-Control "public";
+}
+
+# CSS and Javascript
+location ~ '^/css/compiled' {
+  expires 1y;
+  access_log off;
+  add_header Cache-Control "public";
+}
+
+location ~ '^/js/compiled' {
+  expires 1y;
+  access_log off;
+  add_header Cache-Control "public";
+}
+
+# Cross domain webfont access
+location ~* \.(ttf|ttc|otf|eot|woff|font.css)$ {
+  add_header "Access-Control-Allow-Origin" "*";
+
+  # Also, set cache rules for webfonts.
+  #
+  # See http://wiki.nginx.org/HttpCoreModule#location
+  # And https://github.com/h5bp/server-configs/issues/85
+  # And https://github.com/h5bp/server-configs/issues/86
+  expires 1M;
+  access_log off;
+  add_header Cache-Control "public";
+}