Update documentation

Author: valentinab25

CHANGELOG.md

@@ -1,5 +1,10 @@
 # Changelog
 
+## 2022-03-09 (7.2-1.0)
+
+- Upgrade to varnish 7.2
+- Remove unused scripts, as varnish is integrated with Rancher DNS and does not need them
+
 ## 2020-07-27 (4.1-6.5)
 
 - Add `BACKENDS_PURGE_LIST` variable #18

Readme.md

@@ -6,20 +6,20 @@ and reload.
 This image is generic, thus you can obviously re-use it within
 your non-related EEA projects.
 
- - Debian Stretch
- - Varnish **4.1.11**
- - Varnish agent 2 **4.1.4**
- - Varnish dashboard
+ - Alpine 3.15
+ - Varnish **7.2**
  - EXPOSE **6081 6085**
 
 ## Supported tags and respective Dockerfile links
 
-  - `:latest` [*Dockerfile*](https://github.com/eea/eea.docker.varnish/blob/master/varnish/Dockerfile) (Debian Stretch, Varnish 4.1)
+  - `:latest` [*Dockerfile*](https://github.com/eea/eea.docker.varnish/blob/7.x/Dockerfile) (Debian Stretch, Varnish 7.2)
 
 ### Stable and immutable tags
 
-  - `:4.1-6.4` [*Dockerfile*](https://github.com/eea/eea.docker.varnish/tree/4.1-6.4/varnish/Dockerfile) - Varnish: **4.1.11** Release: **6.4
-  - `:4.1-6.5` [*Dockerfile*](https://github.com/eea/eea.docker.varnish/tree/4.1-6.5/varnish/Dockerfile) - Varnish: **4.1.11** Release: **6.5
+  - `:4.1-6.5` [*Dockerfile*](https://github.com/eea/eea.docker.varnish/tree/4.1-6.5/varnish/Dockerfile) - Varnish: **4.1.11** Release: **6.5**
+  - `:7.2-1.0` [*Dockerfile*](https://github.com/eea/eea.docker.varnish/tree/7.2-1.0/Dockerfile) - Varnish: **7.2** Release: **1.0**
+
+
 
 See [older versions](https://github.com/eea/eea.docker.varnish/releases)
 
@@ -41,57 +41,20 @@ See [older versions](https://github.com/eea/eea.docker.varnish/releases)
 1. Install [Docker](https://www.docker.com/).
 
 
+## Variables
+
+* `VARNISH_HTTP_PORT` - varnish port
+* `VARNISH_HTTPS_PORT` - varnish ssl port
+* `VARNISH_SIZE` - varnish cache size
+* `AUTOKILL_CRON` - Varnish re-create crontab, will force a recreation of the container. Uses UTC time, format is linux crontab - for example -  `0 2 * * *` is 02:00 UTC each day" 
+* `VARNISH_CFG_CONTENT` - Multiline variable that will be written in the `default.vcl` file
+
+
 ## Usage
 
-### Run with Docker Compose
-
-Here is a basic example of a `docker-compose.yml` file using the `eeacms/varnish` docker image:
-
-    version: "2"
-    services:
-      varnish:
-        image: eeacms/varnish
-        ports:
-        - "80:6081"
-        - "6085:6085"
-        depends_on:
-        - anon
-        - auth
-        - download
-        environment:
-          BACKENDS: "anon auth download"
-          BACKENDS_PORT: "8080"
-          DNS_ENABLED: "true"
-          BACKENDS_PROBE_INTERVAL: "3s"
-          BACKENDS_PROBE_TIMEOUT: "1s"
-          BACKENDS_PROBE_WINDOW: "3"
-          BACKENDS_PROBE_THRESHOLD: "2"
-          DASHBOARD_USER: "admin"
-          DASHBOARD_PASSWORD: "admin"
-          DASHBOARD_SERVERS: "varnish"
-          DASHBOARD_DNS_ENABLED: "true"
-      anon:
-        image: eeacms/hello
-        environment:
-          PORT: "8080"
-      auth:
-        image: eeacms/hello
-        environment:
-          PORT: "8080"
-      download:
-        image: eeacms/hello
-        environment:
-          PORT: "8080"
-
-
-The application can be scaled to use more server instances as backends, with `docker-compose scale`:
-
-    $ docker-compose up -d
-    $ docker-compose scale anon=4 auth=2 varnish=2
-
-An example of a more complex application using the `eeacms/varnish` with `docker-compose`
-image is [EEA WWW](https://github.com/eea/eea.docker.www).
+### Using `VARNISH_CFG_CONTENT`
 
+See [docker-compose.yml](https://github.com/eea/eea.docker.varnish/blob/7.x/docker-compose.yml).
 
 ### Extend the image with a custom varnish.vcl file
 
@@ -107,91 +70,35 @@ and then run
 
     $ docker build -t varnish-custom /path/to/Dockerfile
 
-### Support for specifying probe request headers
+## How to add docker environment variables in varnish.vcl
 
-Two environment variables support defining specific probe request headers.
-The primary warning / tricky part is around the delimiter used for separating
-the individual headers. Below is an example:
+1. Choose relevant variable name, starting with `VARNISH_` - eg. `VARNISH_EXAMPLE`
 
-    BACKENDS_PROBE_REQUEST: 'GET / HTTP/1.1|Host: example.com|Connection: close|User-Agent: Varnish Health Probe'
-    BACKENDS_PROBE_REQUEST_DELIMITER: '|'
+2. Add default value in Dockerfile 
 
-The above will result in the probe being specified using the probe.request attribute
-and will replace the default probe.url attribute completely.
-The important point, of course, is that you need to pick an appropriate delimiter
-that is not contained within any headers that you wish to pass.
+      ENV VARNISH_EXAMPLE="GET"
 
-The hostname of the current backend being probed can be specify using the `%(hostname)s` placeholder:
+3. Add variable in `<>` in varnish.vcl
 
-    BACKENDS_PROBE_REQUEST: 'GET / HTTP/1.1|Host: %(hostname)s|Connection: close|User-Agent: Varnish Health Probe'
-    BACKENDS_PROBE_REQUEST_DELIMITER: '|'
+      set req.http.X-Varnish-Routed = "<VARNISH_EXAMPLE>";
 
-### Change and reload configuration without restarting the container
+4. Add description in `Readme.md`
 
-If the configuration directory is mounted as a volume, you can modify
-it from outside the container. In order for the modifications
-to be loaded by the varnish daemon, you have to run the `reload` command,
-as following:
+### Rancher integration
 
-    $ docker exec <container-name-or-id> reload
+Use `dynamic.director` to integrate varnish in rancher DNS - if a backend containers are changed, it knows to get the latest list of IPs automatically.
 
-The command will load the new configuration, compile it, and if compilation
-succeeds replace the old one with it. If compilation of the new configuration
-fails, the varnish daemon will continue to use the old configuration.
-Keep in mind that the only way to restore a previous configuration is to
-restore the configuration files and then reload them.
+      new cluster = dynamic.director(port = "<VARNISH_BACKEND_PORT>", ttl = <VARNISH_DNS_TTL>);
 
-### Support for stripping cookies for better caching
-By default, if any cookies are present, the cache is bypassed. This section describes
-new support for configuration of various cookie-based cache options. Configuration is
-enabled with the COOKIES environment variable. If set, additional code
-is executed that builds a cookie_config.vcl file containing additions to
-the generated default.vcl file. The following cookie options are currently supported.
 
-1. Whitelist of cookies - Allows stripping all but a small list of cookies
-2. (Future) Remove cookies for listed static file types, so caching works
+### Example:
 
-#### Whitelist of cookies
-With this option you provide a regular expression describing those cookies that should
-be passed through to the backend. All cookies not described by the expression will be
-stripped from the headers. Here is an example.
-```
-COOKIES=true
-COOKIES_WHITELIST=(SESS[a-z0-9]+|SSESS[a-z0-9]+|NO_CACHE)
-```
+You can use plone-varnish as an example of usage. 
 
 ### Upgrade
 
     $ docker pull eeacms/varnish
 
-## Supported environment variables ##
-
-
-As varnish has close to no purpose by itself, this image should be used
-in combination with others with [Docker Compose](https://docs.docker.com/compose/).
-The varnish daemon can be configured by modifying the following environment variables:
-
-* `CACHE_SIZE` Size of the RAM cache storage (default `2G`)
-* `ADDRESS_PORT` HTTP listen address and port (default `:6081`)
-* `ADMIN_PORT` HTTP admin address and port (e.g. `:6082`)
-* `BACKENDS` A list of `host[:port]` pairs separated by space
-  (e.g. `BACKENDS="127.0.0.1 74.125.140.103:8080"`)
-* `BACKENDS_PORT` Default port to be used for backends (defalut `80`)
-* `BACKENDS_PROBE_ENABLED` Enable backend probe (default `True`)
-* `BACKENDS_PROBE_URL` Backend probe URL (default `/`)
-* `BACKENDS_PROBE_TIMEOUT` Backend probe timeout (defalut `1s`)
-* `BACKENDS_PROBE_INTERVAL` Backend probe interval (defalut `1s`)
-* `BACKENDS_PROBE_WINDOW` Backend probe window (defalut `3`)
-* `BACKENDS_PROBE_THRESHOLD` Backend probe threshold (defalut `2`)
-* `BACKENDS_SAINT_MODE` Register backends using [saintmode module](https://github.com/varnish/varnish-modules/blob/master/docs/saintmode.rst)
-* `BACKENDS_PROBE_REQUEST` Backend probe request header list (default empty)
-* `BACKENDS_PROBE_REQUEST_DELIMITER` Backend probe request headers delimiter (default `|`)
-* `BACKENDS_PURGE_LIST` Backend ip/ip range ';' separated list to use in the purge acl, defaults to `localhost;172.17.0.0/16;10.42.0.0/16`
-* `COOKIES` Enables cookie configuration
-* `COOKIES_WHITELIST` A regular expression describing cookies that are passed through, all others are stripped
-* `AUTOKILL_CRON` Has to be used with healtchecks enabled on varnish ports, it will kill the varnish cache process ( which exposes the ports ) keeping the container running, uses Linux Crontab format `[Minute] [hour] [Day_of_the_Month] [Month_of_the_Year] [Day_of_the_Week]`, UTC time
-* `VARNISH_SINGLE_CLUSTER`
-* `VARNISH_CLUSTER`
 
 ## Copyright and license
 

docker-compose.yml

@@ -1,37 +1,23 @@
 version: "2"
 services:
   varnish:
-    image: eeacms/varnish
+    image: eeacms/varnish:7
     ports:
-    - "80:6081"
-    - "6085:6085"
+    - "8080:8080"
+    - "8443:8443"
     depends_on:
-    - anon
-    - auth
-    - download
+    - hello
     environment:
-      COOKIES: "true"
-      COOKIES_WHITELIST: "(SESS[a-z0-9]+|SSESS[a-z0-9]+|NO_CACHE)"
-      BACKENDS: "anon auth download"
-      BACKENDS_PORT: "8080"
-      DNS_ENABLED: "true"
-      BACKENDS_PROBE_INTERVAL: "3s"
-      BACKENDS_PROBE_TIMEOUT: "1s"
-      BACKENDS_PROBE_WINDOW: "3"
-      BACKENDS_PROBE_THRESHOLD: "2"
-      DASHBOARD_USER: "admin"
-      DASHBOARD_PASSWORD: "admin"
-      DASHBOARD_SERVERS: "varnish"
-      DASHBOARD_DNS_ENABLED: "true"
-  anon:
+      VARNISH_HTTP_PORT: 8080
+      VARNISH_CFG_CONTENT: |-
+        vcl 4.1;
+
+        backend default {
+            .host = "hello";
+            .port = "80";
+        }
+  
+  hello:
     image: eeacms/hello
     environment:
-      PORT: "8080"
-  auth:
-    image: eeacms/hello
-    environment:
-      PORT: "8080"
-  download:
-    image: eeacms/hello
-    environment:
-      PORT: "8080"
+      PORT: "80"