Nginx support for Capistrano 3.x, with sudo password prompt
Add this line to your application's Gemfile:
gem 'capistrano3-nginx', '~> 3.0.4'
And then execute:
$ bundle
Or install it yourself as:
$ gem install capistrano3-nginx
Require in Capfile
to use the default task:
require 'capistrano/nginx'
install_plugin Capistrano::Nginx
Make sure pty is enabled in deploy.rb
set :pty, true
Make sure server has sudo role
server 'example.com',
user: 'with_sudo_access',
roles: %w{sudo}
You will get the following tasks
cap -T | grep "cap nginx"
cap nginx:start # Start nginx service
cap nginx:stop # Stop nginx service
cap nginx:reload # Reload nginx service
cap nginx:restart # Restart nginx service
cap nginx:site:add # Creates the site configuration and upload it to the available folder
cap nginx:site:disable # Disables the site removing the symbolic link located in the enabled folder
cap nginx:site:enable # Enables the site creating a symbolic link into the enabled folder
cap nginx:site:remove # Removes the site removing the configuration file from the available folder
cap nginx:gzip_static # Compress all js and css files in :nginx_static_dir with gzip
cap nginx:configtest # Configtest nginx service
Configurable options (copy into deploy.rb), shown here with examples:
# Server name for nginx, space separated values
# No default value
set :nginx_domains, "foo.bar.com foo.other.com"
# Redirected domains, all these will have a permanent redirect to the first of :nginx_domains
# No default value
set :nginx_redirected_domains, "bar.com other.com"
# Sudo usage can be enables on task and/or path level.
# If sudo is enabled for a specific task (i.e. 'nginx:site:add') every
# command in that task will be run using sudo priviliges.
# If sudo is enables for a specific path (i.e. :nginx_sites_enabled_dir)
# only command manipulating that directory will be run using sudo privileges.
# Note: When options overlap, sudo is used if either option permits it.
#
# Everything is run as sudo per default.
# set :nginx_sudo_paths, [:nginx_log_path, :nginx_sites_enabled_dir, :nginx_sites_available_dir]
# set :nginx_sudo_tasks, ['nginx:start', 'nginx:stop', 'nginx:restart', 'nginx:reload', 'nginx:configtest', 'nginx:site:add', 'nginx:site:disable', 'nginx:site:enable', 'nginx:site:remove' ]
# nginx service script
# Defaults to using the 'service' convinience script.
# You might prefer using the init.d instead depending on sudo privilages.
# default value: "service nginx"
set :nginx_service_path, "/etc/init.d/nginx"
# Roles the deploy nginx site on,
# default value: :sudo
set :nginx_roles, :sudo
# Path, where nginx log file will be stored
# set it nil if don't want to override log path
# default value: "#{shared_path}/log"
set :nginx_log_path, nil
# Path where to look for static files
# default value: "public"
set :nginx_static_dir, "my_static_folder"
# Path where nginx available site are stored
# default value: "/etc/nginx/sites-available"
set :nginx_sites_available_dir, "/opt/nginx/sites-available"
# Name of file stored in site-enabled/available
# default value: "#{fetch :application}"
set :nginx_application_name, "#{fetch :application}-#{fetch :stage}"
# Path where nginx enabled site are stored
# default value: "/etc/nginx/sites-enabled"
set :nginx_sites_enabled_dir, "/opt/nginx/sites-enabled"
# Path to look for custom config template
# `:default` will use the bundled nginx template
# default value: :default
set :nginx_template, "#{stage_config_path}/#{fetch :stage}/nginx.conf.erb"
# Use SSL on port 443 to serve on https. Every request to por 80
# will be rewritten to 443
# default value: false
set :nginx_use_ssl, false
# Name of SSL certificate file
# default value: "#{application}.crt"
set :nginx_ssl_certificate, 'my-domain.crt'
# SSL certificate file path
# default value: "/etc/ssl/certs"
set :nginx_ssl_certificate_path, "#{shared_path}/ssl/certs"
# Name of SSL certificate private key
# default value: "#{application}.key"
set :nginx_ssl_certificate_key, 'my-domain.key'
# SSL certificate private key path
# default value: "/etc/ssl/private"
set :nginx_ssl_certificate_key_path, "#{shared_path}/ssl/private"
# You can set a timeout value in seconds
# nginx's default is 30 seconds
set :nginx_read_timeout, 30
# Whether you want to server an application through a proxy pass
# default value: true
set :app_server, true
# Socket file that nginx will use as upstream to serve the application
# Note: Socket upstream has priority over host:port upstreams
# no default value
set :app_server_socket, "#{shared_path}/sockets/unicorn-#{fetch :application}.sock"
# The host that nginx will use as upstream to server the application
# default value: 127.0.0.1
set :app_server_host, "127.0.0.1"
# The port the application server is running on
# no default value
set :app_server_port, 8080
Thansk for the inspiration on several nginx recipes out there