Importable NixOS configuration for Caddy with SQL and PHP-FPM - easily deploy native Wordpress with Nix
This software is a single Nix / NixOS module that deploys Caddy with PHP-FPM under the www-data user, and a blank MariaDB SQL Server
The goal of this software was to streamline the deployment of Wordpress, Drupal, or any PHP-FPM compatible app instance, without needing to use full NixOS Wordpress services. This module lets you deploy the base server so that you can put any PHP-FPM application in the folder, define the hostname, and it should "just work"
This software has been tested with Wordpress, and it works as intended as long as the wordpress folder permissions are set correctly. This will allow you to import your existing Wordpress sites into your NixOS server with minimal wrestling with expressions. Note that although the config use's nixOS's immutability, the Wordpress base files need to be manually put in the directory that you specifiy in the NixOS file This is by design, as it lets you very easily and quickly switch from something like Ubuntu Server to NixOS for hosting your sites.
Note: I am not responsible for anything that you choose do with it, and this file is MIT Licensed - but if you find any bugs or issues feel free to open a ticket!
There are a number of ways you can add this to your NixOS / Nix server. Namely:
-
Copy & Paste the content of LCMP.nix into your configuration.nix
-
Import LCMP.nix into your Nix file directory (usually /etc/nixos) and add it to your list of imports like so:
imports = [ ./hardware-configuration.nix ./LCMP.nix # Other imported .nix files go here ];
Once you have the file imported as intended thru your preferred method, you will need to set the following values:
- Your Virtualhost URL - This is set as example.com inside of LCMP.nix but you will need to set it to your website or webapp's URL so Caddy can setup automatic SSL
- Your files directory - This is set as /var/www/example but you will need to set it to your website or webapps files folder. For wordpress, this would be the location of your wordpress install - the directory where your wp-config.php files and whatnot usually live.
Note, you can add as many virtualhosts as you'd like, by adding them to the caddy section. NixOS's official wiki has good instructions on that here
You will need to create whatever database you require for your webapp, you can do this as root with mysql -u root -p and then hit enter (make sure to set your mysql password for security)
You will also need to set your webapp folder's and file permissions appropiately depending on what it is (Wordpress, Drupal, etc), this is outside of the scope of this file but there are plenty of scripts online that handle this for your specific use case.
If the site you are hosting has a www subdomain, and also no subdomain (like google.com and www.google.com, for example), then making it work with this conf is easy. You would edit it as follows
For a single domain or subdomain you have this:
virtualHosts."example.com" = {
extraConfig = ''
root * /var/www/example
file_server
php_fastcgi unix/var/run/phpfpm/caddy.sock
'';
But if you want www.example.com to work as well, you simply need to copy the virtualhost and append www to the hostname like so:
virtualHosts."example.com" = {
extraConfig = ''
root * /var/www/example
file_server
php_fastcgi unix/var/run/phpfpm/caddy.sock
'';
virtualHosts."www.example.com" = {
extraConfig = ''
root * /var/www/example
file_server
php_fastcgi unix/var/run/phpfpm/caddy.sock
'';
Since they are both creating a PHP-fpm instance in this context, and they are both running independent virtualhosts that point to the same folder, you will have two SSL certs, a non-www cert, and a www cert. This will help prevent issues if you have any odd redirects to your server. Users can then access the www or non-www version of your site as normal.
If you are using Wordpress multisite bridging, also known as a "Wordpress Network" (If you are unsure, you are not using it) then there are special entries that need to be made to the file to permit the handling of the required redirects within the multisite bridge, since Caddy does not use .htaccess files. The specific line that needs to be added to your virtualhost is this:
uri path_regexp ^/[a-zA-Z0-9]+/wp- /wp-
That means, a site virtualhost in LCMP-on-Nix with Wordpress Multisite Networking setup would look something like this:
# Caddy Webserver with PHP-FPM
services.caddy = {
enable = true;
user = "www-data";
group = "www-data";
virtualHosts."test.com" = {
extraConfig = ''
root * /var/www/test
uri path_regexp ^/[a-zA-Z0-9]+/wp- /wp-
file_server
php_fastcgi unix/var/run/phpfpm/caddy.sock
'';
};
virtualHosts."www.test.com" = {
extraConfig = ''
root * /var/www/test
uri path_regexp ^/[a-zA-Z0-9]+/wp- /wp-
file_server
php_fastcgi unix/var/run/phpfpm/caddy.sock
'';
};
};
This allows for the full routing required in a standard Wordpress Multisite network.