Skip to content
/ mitlib-wp-network Public
forked from jspellman814/wordpress-composer-managed

WordPress boilerplate with Composer, easier configuration, and an improved folder structure

roots.io/bedrock/

License

MIT license
0 stars 11 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

MITLibraries/mitlib-wp-network

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1,227 Commits
.circleci
.circleci
 
 
.github
.github
 
 
config
config
 
 
devops
devops
 
 
docs
docs
 
 
private/scripts
private/scripts
 
 
scripts/composer
scripts/composer
 
 
upstream-configuration
upstream-configuration
 
 
web
web
 
 
.codeclimate.yml
.codeclimate.yml
 
 
.editorconfig
.editorconfig
 
 
.env.example
.env.example
 
 
.env.pantheon
.env.pantheon
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.lando.yml
.lando.yml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CODEOWNERS
CODEOWNERS
 
 
LICENSE.md
LICENSE.md
 
 
README-internal.md
README-internal.md
 
 
README.md
README.md
 
 
composer.json
composer.json
 
 
composer.lock
composer.lock
 
 
pantheon.upstream.yml
pantheon.upstream.yml
 
 
phpcs.security.xml
phpcs.security.xml
 
 
phpcs.xml
phpcs.xml
 
 
wp-cli.yml
wp-cli.yml
 
 

Repository files navigation

MIT Libraries WordPress Network

Pantheon template

Early Access

This application was created using Pantheon's Composer-enabled WordPress template. After creation, the application is owned and developed by the staff of the MIT Libraries.

Developing this application

Prerequisites

To contribute to this application, please make sure your local environment includes the following:

  • Terminus for managing Pantheon infrastructure from the command line.
  • Composer for managing third-party plugins and themes within WordPress, and tooling outside of WordPress.
  • Lando for running a local copy of this application.

WebOps workflow

Beyond the production instance of the Libraries' website, we maintain a number of separate instances for various purposes. These are described in general terms here; for a current list of instances, and links to each, please consult the Pantheon dashboard or Terminus CLI.

In general, this application is developed and managed using Pantheon's WebOps Workflow, which involves a progression between three tiers in a pipeline: Dev, Test, and Live.

Beyond these three tiers, we can create additional instances using either the Terminus CLI or Pantheon's web-based dashboard. While many of these instances will be short-lived in order to develop specific features, there is one long-running touchstone instance for management of our Touchstone integration.

Instructions for how to create, manage, and remote these instances can be found below.

Branch names

Pantheon imposes restrictions on branch names, including a length limit and some reserved words. The easiest convention is to name your branch after its Jira ticket, which sets up the following relationships:

Resource Value
Ticket ENGX-201
Git branch engx-201
Multidev URL https://engx-201-mitlib-wp-network.pantheonsite.io/

Git remotes

Contributing to this project involves working with two separate git servers:

  • We use this Github repository for pull requests, to facilitate code review.

  • We push code to Pantheon's git server in order to set up review applications (known as Multidev environments in Pantheon's vocabulary), and push code to the dev->test->live pipeline. Feature branches get deployed to Multidev environments, while the master branch gets deployed to the Dev environment for subsequent promotion to the Test and Live environments.

Common workflows

While many of the processes for contributing to this application are similar to other projects (see the Workflows section of our developer documentation for more information), there are some app-specific steps that need to be followed.

Creating a new Multidev environment

Terminus is the tool used to manage Pantheon infrastructure.

  • Push the branch to Pantheon's git server:

    git push pantheon engx-201

    You can find the git address to use for the pantheon remote on the application dashboard within Pantheon.

  • Create a Multidev environment that corresponds with that branch, based on the current Dev environment:

    terminus multidev:create mitlib-wp-network.dev engx-201

The new engx-201 Multidev environment will be available at https://engx-201-mitlib-wp-network.pantheonsite.io/, but it will have no contents. See the next section for copying database and file content between environments.

More information about Multidev, and tools to manage them, can be found at:

Deleting a Multidev environment

This section TBD

Copying web content between environments

This workflow gets followed when initially setting up a new Multidev environment, as well as when pushing content up or down the Dev -> Test -> Live pipeline.

  • Copy a site's database and user-contributed files using the env:clone-content command:

    terminus env:clone-content mitlib-wp-network.dev engx-201

  • Update database values to match the target environment using the search-replace command in the WP CLI:

    terminus remote:wp mitlib-wp-network.engx-201 -- search-replace \
  dev-mitlib-wp-network.pantheonsite.io engx-201-mitlib-wp-network.pantheonsite.io \
  --url=dev-mitlib-wp-network.pantheonsite.io \
  --network

Managing third-party plugins and themes

Composer is PHP's tool for dependency management, and can be used to install and manage third-party libraries like WordPress plugins and themes. For example, to add the Hello Dolly plugin you would use a command like:

composer require wpackagist-plugin/hello-dolly

Checking for available updates, and then applying them, is handled similarly:

composer outdated
composer update wpackagist-plugin/hello-dolly

Please note: If the resulting diff from a Composer workflow goes beyond composer.json and composer.lock, please double-check what is being changed. It is likely that something unexpected has happened; proceed with caution.

Please note: Our linting rules expect that you will manually exclude third party plugins in our phpcs.xml config. For example: <exclude-pattern>web/app/plugins/FOO</exclude-pattern>. We don't exclude all plugins as we want to ensure that our locally developed plugins follow our standards so by default scanning everything and turning off third party plugins manually is our practice

Adding or updating locally-written code

Locally-developed plugins and themes are, with rare exceptions, added directly to this repository.

  • Theme are installed into web/app/themes/.
  • Plugins are installed into web/app/plugins/.
  • Must-use plugins are installed into web/app/mu-plugins/.

The exception to the above involves packages that are used on multiple WordPress applications (not just multiple sites within this one network). These packages should be maintained in a separate Github repository, and loaded directly from that repo via Composer.

A word about coding standards

We rely on PHP CodeSniffer (PHPCS) to help us comply with the WordPress Coding Standards - particularly the security-focused guidelines. To run PHPCS locally:

phpcs

Some problems flagged may be fixable automatically by running:

phpcbf

As part of the pull request process, we run two checks.

Before dependencies are installed, we do a syntax-focused check of the codebase via:

composer syntax

Note: This syntax check is done before installing dependencies as it is a slow check and running it on code that is not under our control during a PR is not necessary.

After dependencies are checked out, we run a security-focused check of the codebase via:

composer security

Adding plugins from private repositories

In certain conditions, we need to add plugins which are not distributed via the WordPress plugin directory. In some of these cases, the plugin publisher will include documentation about how to deploy their plugin via Composer, in which case those instructions should be followed.

When there is no Composer-compliant means of deploying the plugin, however, we can still include those plugins by creating a private repository within our organization. The following process should be followed:

  1. Create a private repository within the MIT Libraries organization with the plugin code.
  2. If one does not already exist, create a minimal composer.json with the type value of wordpress-plugin. The package name should be mitlibraries/plugin-name, with the original plugin authors named. If a composer file already exists, so long as the type is set correctly no changes should be made - but future references to the plugin should use its existing package name.
  3. Create a release with the same version number that the plugin currently states in its base PHP file.
  4. Add this private repository to the WordPress team within the Libraries' organization.
  5. Add the private repository URL to the list of repositories within composer.json.
  6. Add the plugin itself via composer require mitlibraries/plugin-name.
  7. Add the plugin as an exclusion to the phpcs.xml file.

The intent behind the WordPress team and its structure are inherited from the Infrastructure group's use of an Automation team for their work. Details about this approach can be found on the Infra wiki.

Changing sites on the network

In order for multisite networks to function correctly on Pantheon in subdirectory mode, we need to maintain symlnks in the /web/ directory of this repository for each site. Without these symlinks, the sites themselves will be plagued with 404 errors due to missing site assets, while the site dashboards will be caught in a redirect loop.

Maintaining these symlinks involves two steps. For a hypothetical site like libraries.mit.edu/foobar/ you need to:

  1. Create a symlink in this repository from /web/foobar/ to /web/wp/.
  2. Exclude this symlink from being followed by PHPCS by adding <exclude-pattern>web/foobar</exclude-pattern> to phpcs.xml.

Running locally with Lando

  • lando start will get your local containers running.
  • lando pull will prompt for the environment on Pantheon from which to grab the database and files. (Our default workflow is to not prompt for copying code directly from Pantheon)
  • lando wp search-replace www-dev.libraries.mit.edu mitlib-wp-network.lndo.site --url=www-dev.libraries.mit.edu --network will cleanup the database to work with our local site name. Note: dev-mitlib... would change to match whichever multidev you pulled data from in the previous step. This assumes dev but if you chose engxhallo, the prefix would change to engxhallo-mitlib. If the command finishes saying it made 0 replacements, it's likely you ran a command for replacing that didn't match the multidev you pulled from.
  • Access the site at: https://mitlib-wp-network.lndo.site

You can completely start your local environment over with lando destroy - after which you should follow each step in the above process.

In some circumstances, you may need to specify port numbers as part of the site address. When this happens, include the port number for the SSL port in order to log into the WP admin interface. The port number should be included in the url parameter when using the WordPress CLI, and also included in the search-replace command after copying content between environments.

Related resources

  • Bedrock is a modern WordPress stack that helps you get started with the best development tools and project structure.
  • Twelve-factor WordPress is a WordPress-specific edition of the Twelve-Factor App methodology, which informed the creation of Bedrock.
  • Composer is used for dependency management within the repository.
  • Terminus is used for CLI access to the Pantheon platform.
  • Enhanced security (separated web root and secure passwords with wp-password-bcrypt)

Environment variables and secrets

This application uses a variety of ways to manage environment variables and secrets. All of these values are available within our shared LastPass account.

Please note! There are two almost-identical Terminus plugins, which provide distinct workflows:

  • terminus secret (note the singular) is used for values that are used during build / deploy.
  • terminus secrets (note the plural) is used for values that are used by the WordPress application itself (after it has been deployed).

Build secrets

Information about our build-related secret values has been moved to a separate How-to article: How to manage secret values for automated builds and deploys

Application secrets

Managed with: Terminus Secrets plugin

Example: terminus secrets:list mitlib-wp-network.live

This tool allows us to populate secret values into the Pantheon filesystem, which are read into WordPress constants within /web/wp-config.php.

Please see the readme for that project for installation and usage instructions.

Required application secrets

  • WPMS_SMTP_PASS Password associated with the username in WPMS_SMTP_USER.
  • WPMS_SMTP_USER Username expected by the email server to send emails from WordPress. Associated with WPMS_SMTP_PASS.

Optional application secrets

  • SENTRY_DSN Unique identifier for this project within Sentry.
  • BLOCKED_IPS A space-separated list of IP addresses which should be blocked from getting a Wordpress response.

Environment variables

The phpdotenv library will load information from the .env, .env.local, and .env.pantheon files. The latter of these files is in version control, while .env and .env.local are ignored.

Information in these files is loaded into the $_ENV superglobal.

Bedrock makes use of an .env file to store environment variables. Pantheon takes care of many of these variabled in .env.pantheon. You may set your own environment variables in a new .env or environment variables that are local-only in .env.local using the .env.example as a guide. Wrap values that may contain non-alphanumeric characters with quotes, or they may be incorrectly parsed.

  • Database variables
    • DB_NAME - Database name
    • DB_USER - Database user
    • DB_PASSWORD - Database password
    • DB_HOST - Database host
    • Optionally, you can define DATABASE_URL for using a DSN instead of using the variables above (e.g. mysql://user:password@127.0.0.1:3306/db_name)
  • WP_ENV - Set to environment (development, staging, production)
  • WP_HOME - Full URL to WordPress home (https://example.com)
  • WP_SITEURL - Full URL to WordPress including subdirectory (https://example.com/wp)
  • AUTH_KEY, SECURE_AUTH_KEY, LOGGED_IN_KEY, NONCE_KEY, AUTH_SALT, SECURE_AUTH_SALT, LOGGED_IN_SALT, NONCE_SALT
  • COMPOSER_AUTH A JSON formatted object that has one entry for the user access token defined by the mitlib-wp-network-deploy account, for installing forked plugins and an entry for our Advanced Custom Fields Pro authentication. [see Shared-Prod-Pantheon folder in lastpass for values and additional context for auth.json and COMPOSER_AUTH] [NOTE: composer does not read from .env so locally these also need to be in auth.json and kept out of version control]
    • composer will read an auth.json file in a user home directory or the root directory of the application. If using the application root, please ensure it is gitignored. Our lastpass should contain a current working version of what to put in auth.json (and if you make changes to auth.json locally, consisider whether they should also change in lastpass or in the CI and Pantheon equivalent which is COMPOSER_AUTH!)

The sections below were included in the original Readme, and I'm not sure whether they are still useful in this context.

WordPress Config

The wp-config.php file is located in the web directory. As with other WordPress sites on Pantheon, much of this is taken care of for you in wp-config-pantheon.php. Application-level configuration takes place in config/application.php. This can be referenced as a guide to understand how the constants are set up and how the .env files work, but modifying this file may result in merge conflicts and is not recommended. Any configuration changes should be made to your wp-config.php file directly.

You can learn more about WordPress configuration with Bedrock in the Bedrock Configuration docs.

About

WordPress boilerplate with Composer, easier configuration, and an improved folder structure

roots.io/bedrock/

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases 72

v72 - Conditional config for UX tier, better documentation Latest
Sep 12, 2024
+ 71 releases

Languages

  • PHP 51.1%
  • CSS 14.4%
  • JavaScript 12.9%
  • SCSS 11.6%
  • HTML 6.7%
  • Shell 2.2%
  • Sass 1.1%