cyberwizard/laravel-ftp-deployer

Run Laravel Artisan commands on remote servers via FTP and HTTP triggers (useful for hosting without SSH).

Maintainers

Package info

github.com/cyberwizard-dev/laravel-ftp-deployer

pkg:composer/cyberwizard/laravel-ftp-deployer

Statistics

Installs: 1

Dependents: 0

Suggesters: 0

Stars: 0

Open Issues: 0

Security

Advisories: 0

Aikido package health analysis

1.0.0 2026-05-14 10:38 UTC

Requires

  • php: >=8.1

Requires (Dev)

MIT 2d4762e8b08381f8355f06d8628b4e3deacf0a9a

  • Cyberwizard

This package is not auto-updated.

Last update: 2026-05-14 13:58:19 UTC

README

A professional tool for managing Laravel applications on restricted hosting environments by executing Artisan commands and synchronizing files via an FTP-to-HTTP bridge.

The Problem

Modern Laravel development relies heavily on the Artisan CLI for essential tasks such as database migrations, clearing caches, and managing maintenance mode. However, many shared hosting providers restrict server access to FTP/SFTP only, completely omitting SSH access.

This limitation creates a significant "deployment gap" where database syncing, maintenance control, and cache management become difficult and error-prone.

The Solution: ZIP + Manifest Workflow

This package provides a high-performance deployment strategy:

  1. Pre-Deployment Optimization: The script automatically runs php artisan optimize:clear locally to ensure no cached configuration paths are zipped and deployed to the remote server.
  2. Incremental Detection: The tool uses a local .deploy_manifest.json to track file content changes using MD5 hashes.
  3. Efficient Packaging: Only new or modified files (detected by hash mismatch) are added to a timestamped deploy_{timestamp}.zip archive.
  4. Atomic Upload: The single ZIP file is uploaded via FTP (much faster than thousands of small files).
  5. Remote Extraction & Permissions: A temporary PHP helper script is uploaded to extract the ZIP. It then automatically sets chmod 775 on the remote storage/ and bootstrap/cache/ directories to prevent permission errors.
  6. Cache Purging: The helper script manually deletes Laravel's bootstrap/cache files using native PHP. This prevents fatal "ReflectionException" errors that occur when Artisan tries to boot with a stale cache.
  7. Post-Extraction Tasks: While the app is in maintenance mode, it runs a sequence of Artisan commands (migrations, cache clearing, etc.).
  8. Auto-Cleanup: Both the ZIP and the helper script are deleted immediately after execution.

Installation

Install the package via Composer:

composer require cyberwizard/laravel-ftp-deployer

Configuration

Environment Variables

The tool automatically detects your credentials. It searches for a .env.prod file first (recommended for security), and falls back to .env if it's not found:

FTP_HOST=ftp.example.com
FTP_USERNAME=your-ftp-user
FTP_PASSWORD=your-ftp-password
FTP_PORT=21
FTP_ROOT=/path/to/laravel/root
APP_URL=https://example.com

Deployment Configuration (deploy.json)

The tool will automatically create a deploy.json file in your project root on its first run if it is missing. You should review this file to manage exclusions and remote Artisan commands:

{
    "_comment": "...",
    "exclude": { ... },
    "post_extraction_commands": [
        "config:cache",
        "migrate --force",
        "up"
    ],
    "custom_commands": {
        "cache-clear": [
            "optimize:clear"
        ],
        "db-reset": [
            "migrate"
        ],
        "optimize": [
            "optimize:clear",
            "optimize"
        ]
    }
}

Usage

CLI Commands

Help (Display usage and available commands):

vendor/bin/ftp-deploy help
# or
vendor/bin/ftp-deploy --help

Full Deployment (Code Sync + Post-Extraction Commands):

vendor/bin/ftp-deploy

Custom Command Set (Executes a specific group from custom_commands without syncing files):

vendor/bin/ftp-deploy db-reset

First-Time / Forced Sync:

vendor/bin/ftp-deploy --first-time

Note on First-Time Deployments: Using --first-time (or -f) aggressively bypasses your standard deploy.json exclusion rules. It forces the inclusion of the vendor and storage directories (ignoring only .git, node_modules, tests, and .env files). It follows symlinks and deletes your local .deploy_manifest.json to guarantee a 100% fresh hash state. This is highly recommended when deploying to a brand new, empty server.

Programmatic Usage

use Cyberwizard\LaravelFtpDeployer\RemoteExecutor;

$config = [
    'ftp_host' => '...',
    'ftp_user' => '...',
    'ftp_pass' => '...',
    'app_url'  => '...',
];

$executor = new RemoteExecutor($config);

// Run the full deployment workflow
$executor->deploy(isFirstTime: false);

Donations & Custom Projects

If you find this tool useful and would like to support its development, or if you need a custom deployment solution for your specific infrastructure, feel free to reach out:

Security

  • Ephemeral Scripts: Helper scripts use randomized filenames to prevent external discovery.
  • Instant Cleanup: Files are deleted the moment the HTTP request completes.
  • Maintenance Mode: The application is put into maintenance mode before extraction begins to ensure data integrity.

License

The MIT License (MIT).