From 1732a785af6f7b55394699adecae9649dc03a4af Mon Sep 17 00:00:00 2001 From: Philipp Rothmann Date: Wed, 14 Dec 2022 12:29:57 +0100 Subject: [PATCH] chore: cleanup installation docs --- docs/installation/authentik.md | 10 +-- docs/installation/bigbluebutton.md | 17 +++-- docs/installation/nextcloud.md | 100 +++++++++++++++++------------ docs/installation/wekan.md | 16 ++++- docs/releases/.pages | 3 - docs/releases/v0.1.md | 30 --------- 6 files changed, 86 insertions(+), 90 deletions(-) delete mode 100644 docs/releases/.pages delete mode 100644 docs/releases/v0.1.md diff --git a/docs/installation/authentik.md b/docs/installation/authentik.md index c89ea3d..cf91660 100644 --- a/docs/installation/authentik.md +++ b/docs/installation/authentik.md @@ -5,14 +5,14 @@ title: Single-Sign-On Provider # Single-Sign-On Provider [Authentik](https://goauthentik.io) ist unser Single-Sign-On (SSO) Provider und Identity Management. -Alle Apps die per SSO angebunden werden sollen, müssen später in der Administrationsoberfläche konfiguriert werden. +Alle Apps die per SSO angebunden werden sollen, müssen später in der Administrationsoberfläche konfiguriert werden. ``` abra app new authentik -abra app config +abra app config abra app secret insert email_pass v1 abra app secret generate -a -abra app deploy +abra app deploy abra app cmd app set_admin_pass ``` @@ -24,7 +24,7 @@ Platziere die Dateien `flow_background.jpg`, `icon_left_brand.svg` und `icon.png Füge folgende Zeile zur Konfiguration hinzu: ``` -abra app config +abra app config COPY_ASSETS="flow_background.jpg|app:/web/dist/assets/images/ icon_left_brand.svg|app:/web/dist/assets/icons/ icon.png|app:/web/dist/assets/icons/" ``` @@ -37,7 +37,7 @@ abra app cmd -l customize ./ Inkrementiere die Secret Versionen ``` -abra app config +abra app config SECRET_SECRET_KEY_VERSION=v2 SECRET_DB_PASSWORD_VERSION=V2 SECRET_ADMIN_TOKEN_VERSION=v2 diff --git a/docs/installation/bigbluebutton.md b/docs/installation/bigbluebutton.md index ab25f21..4348b7c 100644 --- a/docs/installation/bigbluebutton.md +++ b/docs/installation/bigbluebutton.md @@ -1,14 +1,14 @@ -bbb -=== +BigBlueButton +============= # Big Blue Button https://github.com/bigbluebutton/docker/ -### Nextcloud Konfiguration anpassen: +### Nextcloud Konfiguration anpassen: ``` -abra app config +abra app config BBB_URL=https://talk.example.org/bigbluebutton/ abra app secret insert bbb_secret v1 abra app cmd app install_bbb @@ -24,10 +24,6 @@ im .env noch: `SIP_IP_ALLOWLIST`, `WELCOME_FOOTER` ### Networking -talk.local-it.org - - - https://docs.bigbluebutton.org/admin/configure-firewall.html ### docker setup @@ -42,6 +38,9 @@ changing smth: vim .env ./scripts/generate-compose docker-compose up -d - ``` + +### Bandbreiten Rechner + +https://bbb-hilfe.de/bandbreitenrechner-fuer-bigbluebutton/ diff --git a/docs/installation/nextcloud.md b/docs/installation/nextcloud.md index b7db01a..cc8c906 100644 --- a/docs/installation/nextcloud.md +++ b/docs/installation/nextcloud.md @@ -1,39 +1,53 @@ - # Nextcloud -im authentik: - openid-provider anlegen - app anlegen - redirect uri: https://cloud.example.org/apps/sociallogin/custom_oidc/authentik - - ``` abra app new nextcloud -abra app secret generate -a -abra app config -abra app deploy +abra config cloud.example.org +abra deploy cloud.example.org ``` -Die Installation von Nextcloud kann eine Weile dauern. Der status kann so überprüft werden: -`abra app run --user www-data servername_cloud app /var/www/html/occ status` - +Die Installation von Nextcloud kann eine Weile dauern. Der status kann so überprüft werden: +`abra app run --user www-data cloud.example.org app /var/www/html/occ status` + #### Installation von Nextcloud Apps: + ``` -abra app config +abra app command cloud.example.org app install_apps calendar sociallogin onlyoffice +``` + +#### Dashboard deaktivieren: + +`abra app run --user www-data cloud.example.org app /var/www/html/occ app:disable dashboard` + +#### BBB Integration + +https://github.com/sualko/cloud_bbb/ + +``` +abra app command cloud.example.org app install_bbb https://bbb.example.org/bigbluebutton/ +``` + +#### Installation von Nextcloud Apps: + +``` +abra app config cloud.example.org APPS="calendar sociallogin onlyoffice" -abra app cmd app install_apps +abra app cmd cloud.example.org app install_apps ``` -#### Dashboard deaktivieren: -`abra app cmd app run_occ "'app:disable dashboard'"` - +#### Dashboard deaktivieren: +`abra app cmd cloud.example.org app run_occ "'app:disable dashboard'"` #### Nextcloud [Social Login SSO](https://github.com/zorn-v/nextcloud-social-login/tree/54ff473bca76bae891fbcd0d6f0fa6a937e6c1ab) konfigurieren -TODO: urls anpassen +im authentik: +openid-provider anlegen +app anlegen +redirect uri: https://cloud.example.org/apps/sociallogin/custom_oidc/authentik + ``` -abra app run --user www-data servername_cloud app /var/www/html/occ config:app:set sociallogin custom_providers --value=' +abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin custom_providers --value=' { "custom_oidc": [ { @@ -58,9 +72,9 @@ abra app run --user www-data servername_cloud app /var/www/html/occ config:app:s }' -abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:app:set sociallogin update_profile_on_login --value 1 -abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:app:set sociallogin auto_create_groups --value 1 -abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:app:set sociallogin hide_default_login --value 1 +abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin update_profile_on_login --value 1 +abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin auto_create_groups --value 1 +abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin hide_default_login --value 1 All Possbile Values: 'disable_registration', @@ -76,15 +90,16 @@ All Possbile Values: 'hide_default_login', -abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:system:set allow_user_to_change_display_name --value=false -abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:system:set lost_password_link --value=disabled -abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:system:set social_login_auto_redirect --value=true +abra app run --user www-data cloud.example.org app /var/www/html/occ config:system:set allow_user_to_change_display_name --value=false +abra app run --user www-data cloud.example.org app /var/www/html/occ config:system:set lost_password_link --value=disabled +abra app run --user www-data cloud.example.org app /var/www/html/occ config:system:set social_login_auto_redirect --value=true ``` -Konfiguration überprüfen +Konfiguration überprüfen + ``` -abra app run --user www-data servername_cloud bash +abra app run --user www-data cloud.example.org bash cat config/config.php ``` @@ -92,45 +107,47 @@ cat config/config.php In Authentik: -* Customisation -> Property Mappings - * Create -> Scope Mapping +- Customisation -> Property Mappings + - Create -> Scope Mapping -Scope-Name: "nextcloud" +Scope-Name: "nextcloud" Expression: `return { "nextcloud_groups": [{"gid": group.name, "displayName": group.name} for group in request.user.ak_groups.all()], }` -* Providers -> nextcloud - * Advanced Protocol Settings - * Scopes +- Providers -> nextcloud + - Advanced Protocol Settings + - Scopes Scopes auswählen: "authentik default OAuth Mapping: OpenID {email, openid, profile}" , nextcloud - ## Backup ### Nextcloud von einem Backup wiederherstellen Offizieller [Nextcloud-Guide](https://docs.nextcloud.com/server/latest/admin_manual/maintenance/restore.html) - Wartungs-Modus aktivieren + ``` abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:mode --on ``` Wiederherstellen von Dateien + ``` -restic restore --include /backups/yksflip-cloud_app -t restored latest +restic restore --include /backups/yksflip-cloud_app -t restored latest docker cp -a r/backups/yksflip-cloud_app/* $(docker ps -q -f name=cloud_app):/ ``` Sicher stellen dass File-Permissions und Ownership stimmen: + ``` docker exec -it $(docker ps -q -f name=cloud_app) bash -$ ls -la +$ ls -la $ chown -R www-data:www-data data config custom_apps ``` Datenbank wiederherstellen + ``` restic restore --include /backups/yksflip-cloud_db -t r latest @@ -148,18 +165,17 @@ $ mysql -u root -p"$(cat /run/secrets/db_root_password)" nextcloud < /tmp/backup /usr/bin/pg_restore -c -U nextcloud -d nextcloud < /tmp/backup/dump.sql ``` - git +git Wartungs-Modus aktivieren ``` -abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:data-fingerprint +abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:data-fingerprint abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:mode --on ``` - Falls nötig kann auch ein repair gestartet werden: + ``` abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:repair ``` - diff --git a/docs/installation/wekan.md b/docs/installation/wekan.md index 2aa2fff..a531135 100644 --- a/docs/installation/wekan.md +++ b/docs/installation/wekan.md @@ -16,7 +16,7 @@ im authentik: geheminis: secret von abra redirect uris: https://board.example.org/_oauth/oidc app anlegen - + Login Button umbenennen: User -> Administration -> Layout -> Benutzerdefinierter Text der OIDC-Schaltfläche @@ -54,4 +54,18 @@ docker cp wekan_db_1:dump/wekan-2021-12-03.archiv . docker context use new-server docker cp wekan-2021-12-03.archiv lit-board_db.1.yzvn5bhlr4vpval2kytazhgwr:/tmp/ docker exec lit-board_db.1 bash -c "mongorestore --drop --verbose --archive=/tmp/wekan.archive" +``` + + +# + +https://www.mongodb.com/developer/products/mongodb/cheat-sheet/ + + +make user admin +``` +mongo +use wekan +db.users.find({"username": "philipp"}) +db.users.update({"_id": "JwMP7y8QJyEd6r9F4"}, {$set: {"isAdmin" : true}) ``` \ No newline at end of file diff --git a/docs/releases/.pages b/docs/releases/.pages deleted file mode 100644 index ed2330a..0000000 --- a/docs/releases/.pages +++ /dev/null @@ -1,3 +0,0 @@ -nav: - - Next: - - v0.1.md \ No newline at end of file diff --git a/docs/releases/v0.1.md b/docs/releases/v0.1.md deleted file mode 100644 index 3941632..0000000 --- a/docs/releases/v0.1.md +++ /dev/null @@ -1,30 +0,0 @@ ---- -status: draft ---- - -## v0.1 - -### Allgemein - -* Liste mit kollaborativen Tools gibt es [hier](./../tools/) - -### Wekan - -* Update auf v6.31 -* Vor dem Schließen Dialog für ungespeicherte Änderungen von Kartenbeschreibungen anzeigen [#4598](https://github.com/wekan/wekan/pull/4598) -* Verbesserungen der openid-connect Anbindung für SSO -[#4379](https://github.com/wekan/wekan/pull/4379) -[#4392](https://github.com/wekan/wekan/pull/4392) -[#4404](https://github.com/wekan/wekan/pull/4404) -[#4588](https://github.com/wekan/wekan/pull/4588) -* Labels können per Shortcut zugewiesen werden [#4377](https://github.com/wekan/wekan/pull/4377) - -### Nextcloud - -* Update auf v24.03 -* Verbesserung der Automatisierten Installation und Konfiguration - -### Authentik - -* Update auf v. -*