Skip to content

Production deployment

One of the nice properties of X is that it runs anywhere, i.e. it works both behind traditional web server setups as well as in a stand-alone environment. This makes it easy to get started with existing web application stacks, yet it provides even more awesome features with its built-in web server.

Traditional stacks

No matter what existing PHP stack you're using, X runs anywhere. This means that if you've already used PHP before, X will just work.

  • nginx or Caddy with PHP-FPM
  • Apache with PHP-FPM, mod_fcgid, mod_cgi or mod_php
  • Any other web server using FastCGI to talk to PHP-FPM
  • Linux, Mac and Windows operating systems (LAMP, MAMP, WAMP)

We've got you covered!

PHP development web server

For example, if you've followed the quickstart guide, you can run this using PHP's built-in development web server for testing purposes like this:

$ php -S 0.0.0.0:8080 public/index.php

In order to check your web application responds as expected, you can use your favorite web browser or command-line tool:

$ curl http://localhost:8080/
Hello wörld!

nginx

nginx is a high performance web server, load balancer and reverse proxy. In particular, its high performance and versatility makes it one of the most popular web servers. It is used everywhere from the smallest projects to the biggest enterprises.

X supports nginx out of the box. If you've used nginx before to run any PHP application, using nginx with X is as simple as dropping the project files in the right directory. Accordingly, this guide assumes you want to process a number of dynamic routes through X and optionally include some public assets (such as style sheets and images).

ℹ️ PHP-FPM or reverse proxy?

This section assumes you want to use nginx with PHP-FPM which is a very common, traditional web stack. If you want to get the most out of X, you may also want to look into using the built-in web server with an nginx reverse proxy.

Assuming you've followed the quickstart guide, all you need to do is to point the nginx' root ("docroot") to the public/ directory of your project. On top of this, you'll need to instruct nginx to process any dynamic requests through X. This can be achieved by using an nginx configuration with the following contents:

server {
    root /home/alice/projects/acme/public;
    index index.php index.html;

    location / {
        try_files $uri $uri/ /index.php$is_args$args;
    }

    # Optional: handle Apache config with Framework X if it exists in `public/`
    error_page 403 = /index.php;
    location ~ \.htaccess$ {
        deny all;
    }

    location ~ \.php$ {
        fastcgi_pass localhost:9000;
        fastcgi_split_path_info ^(.+\.php)(/.+)$;
        include fastcgi_params;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    }
}

ℹ️ New to nginx?

A complete nginx configuration is out of scope for this guide, so we assume you already have nginx and PHP with PHP-FPM up and running. In this example, we're assuming PHP-FPM is already up and running and listens on localhost:9000, consult your search engine of choice for basic install instructions. Once this is set up, the above guide should be everything you need to then use X.

We recommend using the above nginx configuration as a starting point if you're unsure. In this basic form, it instructs nginx to rewrite any requests for files that do not exist to your public/index.php which then processes any requests by checking your registered routes.

Once done, you can check your web application responds as expected. Use your favorite web browser or command-line tool:

$ curl http://localhost/
Hello wörld!

Caddy

Caddy is an extensible, cross-platform, open-source web server written in Go. Many projects use Caddy because of its ease of use in configuration, and its headlining feature, Automatic HTTPS, which provisions TLS certificates for your sites and keeps them renewed.

X supports Caddy out of the box. If you've used Caddy before to run any PHP application, using Caddy with X is as simple as dropping the project files in the right directory. Accordingly, this guide assumes you want to process a number of dynamic routes through X and optionally include some public assets (such as style sheets and images).

ℹ️ PHP-FPM or reverse proxy?

This section assumes you want to use Caddy with PHP-FPM which is a very common, traditional web stack. If you want to get the most out of X, you may also want to look into using the built-in web server with Caddy's reverse proxy.

Assuming you've followed the quickstart guide, all you need to do is to point Caddy's root directive to the public/ directory of your project. On top of this, you'll need to instruct Caddy to process any dynamic requests through X. This can be achieved by using an Caddyfile configuration with the following contents:

example.com {
    root * /var/www/html/public
    encode gzip
    php_fastcgi localhost:9000
    file_server
}

Caddy's php_fastcgi directive is ready out-of-the-box to serve modern PHP sites. This will also automatically provision a TLS certificate for your domain (e.g. example.com – replace it with your own domain) on startup, assuming your DNS is properly configured to point to your server, and your server is publicly accessible on ports 80 and 443.

ℹ️ New to Caddy?

A complete Caddyfile configuration is out of scope for this guide, so we assume you already have Caddy and PHP with PHP-FPM up and running. In this example, we're assuming PHP-FPM is already up and running and listens on localhost:9000, consult your search engine of choice for basic install instructions. Once this is set up, the above guide should be everything you need to then use X. We recommend using the above Caddy configuration as a starting point if you're unsure.

Once done, you can check your web application responds as expected. Use your favorite web browser or command-line tool:

$ curl https://example.com/
Hello wörld!

Apache

The Apache HTTP server (httpd) is one of the most popular web servers. In particular, it is a very common choice for hosts that run multiple web applications (such as shared hosting providers) due to its ease of use and support for dynamic configuration through .htaccess files.

X supports Apache out of the box. If you've used Apache before to run any PHP application, using Apache with X is as simple as dropping the project files in the right directory. Accordingly, this guide assumes you want to process a number of dynamic routes through X and optionally include some public assets (such as style sheets and images).

Assuming you've followed the quickstart guide, all you need to do is to point the Apache's DocumentRoot ("docroot") to the public/ directory of your project. On top of this, you'll need to instruct Apache to rewrite dynamic requests so they will be processed by X. Inside your public/ directory, create an .htaccess file (note the leading . which makes this a hidden file) with the following contents:

public/.htaccess
RewriteEngine On

RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule .* index.php

# Optional: handle `.htaccess` with Framework X instead of `403 Forbidden`
ErrorDocument 403 /%{REQUEST_URI}/../index.php

# This adds support for authorization header
SetEnvIf Authorization .+ HTTP_AUTHORIZATION=$0

ℹ️ New to mod_rewrite?

We recommend using the above .htaccess file as a starting point if you're unsure. In this basic form, it instructs Apache to rewrite any requests for files that do not exist to your public/index.php which then processes any requests by checking your registered routes. This requires the mod_rewrite Apache module, which should be enabled by default on most platforms. On Ubuntu- or Debian-based systems, you may enable it like this:

$ sudo a2enmod rewrite

Once done, your project directory should now look like this:

acme/
├── public/
│   ├── .htaccess
│   └── index.php
├── vendor/
├── composer.json
└── composer.lock

If you're not already running an Apache server, you can run your X project with Apache in a temporary Docker container like this:

$ docker run -it --rm -p 80:80 -v "$PWD":/srv php:8.3-apache sh -c "rmdir /var/www/html;ln -s /srv/public /var/www/html;ln -s /etc/apache2/mods-available/rewrite.load /etc/apache2/mods-enabled; apache2-foreground"

In order to check your web application responds as expected, you can use your favorite web browser or command-line tool:

$ curl http://localhost/
Hello wörld!

Built-in web server

But there's more! Framework X ships its own efficient web server implementation written in pure PHP. This uses an event-driven architecture to allow you to get the most out of Framework X. With the built-in web server, we provide a non-blocking implementation that can handle thousands of incoming connections and provide a much better user experience in high-load scenarios.

With no changes required, you can run the built-in web server with the exact same code base on the command line:

$ php public/index.php

Let's take a look and see this works just like before:

$ curl http://localhost:8080/
Hello wörld!

You may be wondering how fast a pure PHP web server implementation could possibly be. In fact, in benchmarks this setup outperforms any traditional PHP stack by orders of magnitude. The answer: Lightning fast!

Listen address

By default, X will listen on http://127.0.0.1:8080, i.e. you can connect to it on the local port 8080, but you can not connect to it from outside the system it's running on. This is a common approach when running this behind a reverse proxy such as nginx, HAproxy, etc. for TLS termination as discussed in the next chapter.

If you want to change the listen address, you can pass an IP and port combination through the X_LISTEN environment variable like this:

$ X_LISTEN=127.0.0.1:8081 php public/index.php

While not usually recommended (see nginx reverse proxy), you can also expose this to the public by using the special 0.0.0.0 IPv4 address or [::] IPv6 address like this:

$ X_LISTEN=0.0.0.0:8080 php public/index.php

ℹ️ Saving environment variables

For temporary testing purposes, you may explicitly export your environment variables on the command like above. As a more permanent solution, you may want to save your environment variables in your systemd configuration, Docker settings, load your variables from a dotenv file (.env) using a library such as vlucas/phpdotenv, or use an explicit Container configuration.

Memory limit

X is carefully designed to minimize memory usage. Depending on your application workload, it may need anywhere from a few kilobytes to a couple of megabytes per request. Once the request is completely handled, used memory will be freed again. Under load spikes, memory may temporarily increase to handle concurrent requests. PHP can handle this load just fine, but many default setups use a rather low memory limit that is more suited for single requests only.

Fatal error: Allowed memory size of 134217728 bytes exhausted […]

When using the built-in web server, we highly recommend increasing the memory limit to match your concurrency workload. On Ubuntu- or Debian-based systems, you may change your PHP configuration like this:

$ sudoedit /etc/php/8.3/cli/php.ini
/etc/php/8.3/cli/php.ini
- memory_limit = 128M
+ memory_limit = -1

Systemd

So far, we're manually executing the application server on the command line and everything works fine for testing purposes. Once we're going to push this to production, we should use service monitoring to make sure the server will automatically restart after system reboot or failure.

If we're using an Ubuntu- or Debian-based system, we can use the below instructions to configure systemd to manage our server process with just a few lines of configuration, which makes it super easy to run X in production.

ℹ️ Why systemd?

There's a large variety of different tools and options to use for service monitoring, depending on your particular needs. Among these is systemd, which is very wide-spread on Linux-based systems and in fact comes preinstalled with many of the large distributions. But we love choice. If you prefer different tools, you can adjust the following instructions to suit your needs.

First, start by creating a systemd unit file for our application. We can simply drop the following configuration template into the systemd configuration directory like this:

$ sudoedit /etc/systemd/system/acme.service
/etc/systemd/system/acme.service
[Unit]
Description=ACME server

[Service]
ExecStart=/usr/bin/php /home/alice/projects/acme/public/index.php
User=alice

[Install]
WantedBy=multi-user.target

In this example, we're assuming the system user alice has followed the quickstart example and has successfully installed everything in the /home/alice/projects/acme directory. Make sure to adjust the system user and paths to your application directory and PHP binary to suit your needs.

Once the new systemd unit file has been put in place, we need to activate the service unit once like this:

$ sudo systemctl enable acme.service

Finally, we need to instruct systemd to start our new unit:

$ sudo systemctl start acme.service

And that's it already! Systemd now monitors our application server and will automatically start, stop and restart the server application when needed. You can check the status at any time like this:

$ sudo systemctl status acme.service
● acme.service - ACME server
     Loaded: loaded (/etc/systemd/system/acme.service; enabled; vendor preset: enabled)
     Active: active (running)
[]

On top of this, you need to restart your service manually when the source code has been modified. In this case, simply execute the following command:

$ sudo systemctl restart acme.service

This should be enough to get you started with systemd. If you want to learn more about systemd, check out the official documentation.

nginx reverse proxy

If you're using the built-in web server, X will listen on http://127.0.0.1:8080 by default. Instead of using the X_LISTEN environment to change to a publicly accessible listen address, it's usually recommended to use a reverse proxy instead for production deployments.

By using nginx as a reverse proxy, we can leverage a high performance web server to handle static assets (such as style sheets and images) and proxy any requests to dynamic routes through X. On top of this, we can configure nginx to log requests, handle rate limits, and to provide HTTPS support (TLS/SSL termination).

Assuming you've followed the quickstart guide, all you need to do is to point the nginx' root ("docroot") to the public/ directory of your project. On top of this, you'll need to instruct nginx to process any dynamic requests through X. This can be achieved by using an nginx configuration with the following contents:

server {
    # Serve static files from `public/`, proxy dynamic requests to Framework X
    location / {
        location ~* \.php$ {
            try_files /dev/null @x;
        }
        root /home/alice/projects/acme/public;
        try_files $uri @x;
    }

    location @x {
        proxy_pass http://localhost:8080;
        proxy_set_header Host $host;
        proxy_set_header Connection "";
    }

    # Optional: handle Apache config with Framework X if it exists in `public/`
    location ~ \.htaccess$ {
        try_files /dev/null @x;
    }
}

server {
    # Proxy all requests to Framework X
    location / {
        proxy_pass http://localhost:8080;
        proxy_set_header Host $host;
        proxy_set_header Connection "";
    }
}

ℹ️ New to nginx?

A complete nginx configuration is out of scope for this guide, so we assume you already have nginx up and running. Unlike using nginx with PHP-FPM, this example does not require a PHP-FPM setup.

We recommend using the above nginx configuration as a starting point if you're unsure. In this basic form, it instructs nginx to rewrite any requests for files that do not exist to your public/index.php which then processes any requests by checking your registered routes.

Once done, you can check your web application responds as expected. Use your favorite web browser or command-line tool:

$ curl http://localhost/
Hello wörld!

Caddy reverse proxy

If you're using the built-in web server, X will listen on http://127.0.0.1:8080 by default. Instead of using the X_LISTEN environment to change to a publicly accessible listen address, it's usually recommended to use a reverse proxy instead for production deployments.

By using Caddy as a reverse proxy, we can leverage a high performance web server to handle static assets (such as style sheets and images) and proxy any requests to dynamic routes through X. On top of this, we can configure Caddy to log requests, handle rate limits, and to provide HTTPS support (TLS termination).

Assuming you've followed the quickstart guide, all you need to do is to point the Caddy's root directive to the public/ directory of your project. On top of this, you'll need to instruct Caddy to process any dynamic requests through X. This can be achieved by using a Caddyfile configuration with the following contents:

example.com {
    root * /var/www/html/public;

    @static {
        file {path} {path}/
        not path *.php
    }
    handle @static {
        rewrite * {http.matchers.file.relative}
        file_server
    }

    handle {
        reverse_proxy localhost:8080
    }
}

ℹ️ New to Caddy?

A complete Caddy configuration is out of scope for this guide, so we assume you already have Caddy up and running. Unlike using Caddy with PHP-FPM, this example does not require a PHP-FPM setup.

We recommend using the above Caddyfile configuration as a starting point if you're unsure. In this basic form, it instructs Caddy to server any requests for files do exist, and proxy everything else to your X server, which processes any requests by checking your registered routes.

Once done, you can check your web application responds as expected. Use your favorite web browser or command-line tool:

$ curl https://example.com/
Hello wörld!

Docker containers

X supports running inside Docker containers out of the box. Thanks to the powerful combination of the built-in web server and Docker containers, your web application can be built and shipped anywhere with ease. No matter if you want to have a reproducible development environment or want to scale your production cloud, we've got you covered.

Assuming you've followed the quickstart guide, all you need to do is to build and run a Docker image of your project. This can be achieved by using a Dockerfile with the following contents:

Dockerfile
# syntax=docker/dockerfile:1
FROM php:8.3-cli

WORKDIR /app/
COPY public/ public/
COPY vendor/ vendor/

ENV X_LISTEN 0.0.0.0:8080
EXPOSE 8080

ENTRYPOINT php public/index.php
Dockerfile
# syntax=docker/dockerfile:1
FROM composer:2 AS build

WORKDIR /app/
COPY composer.json composer.lock ./
RUN composer install --no-dev --ignore-platform-reqs --optimize-autoloader

FROM php:8.3-alpine

# recommended: install optional extensions ext-ev and ext-sockets
RUN apk --no-cache add ${PHPIZE_DEPS} libev linux-headers \ 
    && pecl install ev \
    && docker-php-ext-enable ev \
    && docker-php-ext-install sockets \
    && apk del ${PHPIZE_DEPS} linux-headers \
    && echo "memory_limit = -1" >> "$PHP_INI_DIR/conf.d/acme.ini"

WORKDIR /app/
COPY public/ public/
# COPY src/ src/
COPY --from=build /app/vendor/ vendor/

ENV X_LISTEN 0.0.0.0:8080
EXPOSE 8080

USER nobody:nobody
ENTRYPOINT ["php", "public/index.php"]

Simply place the Dockerfile in your project directory like this:

acme/
├── public/
│   └── index.php
├── vendor/
├── composer.json
├── composer.lock
└── Dockerfile

As a next step, you need to build a Docker image for your project from the Dockerfile:

$ docker build -t acme .

Once the Docker image is built, you can run a Docker container from this image:

$ docker run -it --rm -p 8080:8080 acme

$ docker run -d -p 8080:8080 acme

Once running, you can check your web application responds as expected. Use your favorite web browser or command-line tool:

$ curl http://localhost:8080/
Hello wörld!

This should be enough to get you started with Docker.

ℹ️ Getting fancy with Docker

A complete Docker tutorial is out of scope for this guide, but here are some interesting pointers for you: If you want to share your application, you may push your Docker image to your image registry of choice (private or public). This allows you to pull and reuse your application image on any infrastructure. Speaking of scalable infrastructure, you may also use X in serverless environments and autoscale your application with your load, anywhere from zero to hundreds of servers and beyond. Endless options!