local-it
/
docs
0
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

chore: cleanup installation docs
continuous-integration/drone/push Build is passing Details

This commit is contained in:
Philipp Rothmann 2022-12-14 12:29:57 +01:00
parent 81419bc64e
commit 1732a785af
6 changed files with 86 additions and 90 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
docs/installation/authentik.md
View File

@ -5,14 +5,14 @@ title: Single-Sign-On Provider
# Single-Sign-On Provider # Single-Sign-On Provider
[Authentik](https://goauthentik.io) ist unser Single-Sign-On (SSO) Provider und Identity Management. [Authentik](https://goauthentik.io) ist unser Single-Sign-On (SSO) Provider und Identity Management.
Alle Apps die per SSO angebunden werden sollen, müssen später in der Administrationsoberfläche konfiguriert werden. Alle Apps die per SSO angebunden werden sollen, müssen später in der Administrationsoberfläche konfiguriert werden.
``` ```
abra app new authentik abra app new authentik
abra app config <app_name> abra app config <app_name>
abra app secret insert <app_name> email_pass v1 <password> abra app secret insert <app_name> email_pass v1 <password>
abra app secret generate -a <app_name> abra app secret generate -a <app_name>
abra app deploy <app_name> abra app deploy <app_name>
abra app cmd <app_name> app set_admin_pass abra app cmd <app_name> app set_admin_pass
``` ```
@ -24,7 +24,7 @@ Platziere die Dateien `flow_background.jpg`, `icon_left_brand.svg` und `icon.png
Füge folgende Zeile zur Konfiguration hinzu: Füge folgende Zeile zur Konfiguration hinzu:
``` ```
abra app config <app_name> abra app config <app_name>
COPY_ASSETS="flow_background.jpg|app:/web/dist/assets/images/ icon_left_brand.svg|app:/web/dist/assets/icons/ icon.png|app:/web/dist/assets/icons/" COPY_ASSETS="flow_background.jpg|app:/web/dist/assets/images/ icon_left_brand.svg|app:/web/dist/assets/icons/ icon.png|app:/web/dist/assets/icons/"
``` ```
@ -37,7 +37,7 @@ abra app cmd -l <app_name> customize ./<assets>
Inkrementiere die Secret Versionen Inkrementiere die Secret Versionen
``` ```
abra app config <app_name> abra app config <app_name>
SECRET_SECRET_KEY_VERSION=v2 SECRET_SECRET_KEY_VERSION=v2
SECRET_DB_PASSWORD_VERSION=V2 SECRET_DB_PASSWORD_VERSION=V2
SECRET_ADMIN_TOKEN_VERSION=v2 SECRET_ADMIN_TOKEN_VERSION=v2

17
docs/installation/bigbluebutton.md
View File

@ -1,14 +1,14 @@
bbb BigBlueButton
=== =============
# Big Blue Button # Big Blue Button
https://github.com/bigbluebutton/docker/ https://github.com/bigbluebutton/docker/
### Nextcloud Konfiguration anpassen: ### Nextcloud Konfiguration anpassen:
``` ```
abra app config <nextcloud_domain> abra app config <nextcloud_domain>
BBB_URL=https://talk.example.org/bigbluebutton/ BBB_URL=https://talk.example.org/bigbluebutton/
abra app secret insert <nextcloud_domain> bbb_secret v1 <bbb_secret> abra app secret insert <nextcloud_domain> bbb_secret v1 <bbb_secret>
abra app cmd <nextcloud_domain> app install_bbb abra app cmd <nextcloud_domain> app install_bbb
@ -24,10 +24,6 @@ im .env noch: `SIP_IP_ALLOWLIST`, `WELCOME_FOOTER`
### Networking ### Networking
talk.local-it.org
https://docs.bigbluebutton.org/admin/configure-firewall.html https://docs.bigbluebutton.org/admin/configure-firewall.html
### docker setup ### docker setup
@ -42,6 +38,9 @@ changing smth:
vim .env vim .env
./scripts/generate-compose ./scripts/generate-compose
docker-compose up -d docker-compose up -d
``` ```
### Bandbreiten Rechner
https://bbb-hilfe.de/bandbreitenrechner-fuer-bigbluebutton/

100
docs/installation/nextcloud.md
View File

@ -1,39 +1,53 @@
# Nextcloud # Nextcloud
im authentik:
openid-provider anlegen
app anlegen
redirect uri: https://cloud.example.org/apps/sociallogin/custom_oidc/authentik
``` ```
abra app new nextcloud abra app new nextcloud
abra app secret generate -a <servername_nextcloud> abra config cloud.example.org
abra app config <servername_nextcloud> abra deploy cloud.example.org
abra app deploy <servername_nextcloud>
``` ```
Die Installation von Nextcloud kann eine Weile dauern. Der status kann so überprüft werden: Die Installation von Nextcloud kann eine Weile dauern. Der status kann so überprüft werden:
`abra app run --user www-data servername_cloud app /var/www/html/occ status` `abra app run --user www-data cloud.example.org app /var/www/html/occ status`
#### Installation von Nextcloud Apps: #### Installation von Nextcloud Apps:
``` ```
abra app config <servername_nextcloud> abra app command cloud.example.org app install_apps calendar sociallogin onlyoffice
```
#### Dashboard deaktivieren:
`abra app run --user www-data cloud.example.org app /var/www/html/occ app:disable dashboard`
#### BBB Integration
https://github.com/sualko/cloud_bbb/
```
abra app command cloud.example.org app install_bbb https://bbb.example.org/bigbluebutton/ <secret-key>
```
#### Installation von Nextcloud Apps:
```
abra app config cloud.example.org
APPS="calendar sociallogin onlyoffice" APPS="calendar sociallogin onlyoffice"
abra app cmd <servername_nextcloud> app install_apps abra app cmd cloud.example.org app install_apps
``` ```
#### Dashboard deaktivieren: #### Dashboard deaktivieren:
`abra app cmd <servername_nextcloud> app run_occ "'app:disable dashboard'"`
`abra app cmd cloud.example.org app run_occ "'app:disable dashboard'"`
#### Nextcloud [Social Login SSO](https://github.com/zorn-v/nextcloud-social-login/tree/54ff473bca76bae891fbcd0d6f0fa6a937e6c1ab) konfigurieren #### Nextcloud [Social Login SSO](https://github.com/zorn-v/nextcloud-social-login/tree/54ff473bca76bae891fbcd0d6f0fa6a937e6c1ab) konfigurieren
TODO: urls anpassen im authentik:
openid-provider anlegen
app anlegen
redirect uri: https://cloud.example.org/apps/sociallogin/custom_oidc/authentik
``` ```
abra app run --user www-data servername_cloud app /var/www/html/occ config:app:set sociallogin custom_providers --value=' abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin custom_providers --value='
{ {
"custom_oidc": [ "custom_oidc": [
{ {
@ -58,9 +72,9 @@ abra app run --user www-data servername_cloud app /var/www/html/occ config:app:s
}' }'
abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:app:set sociallogin update_profile_on_login --value 1 abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin update_profile_on_login --value 1
abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:app:set sociallogin auto_create_groups --value 1 abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin auto_create_groups --value 1
abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:app:set sociallogin hide_default_login --value 1 abra app run --user www-data cloud.example.org app /var/www/html/occ config:app:set sociallogin hide_default_login --value 1
All Possbile Values: All Possbile Values:
'disable_registration', 'disable_registration',
@ -76,15 +90,16 @@ All Possbile Values:
'hide_default_login', 'hide_default_login',
abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:system:set allow_user_to_change_display_name --value=false abra app run --user www-data cloud.example.org app /var/www/html/occ config:system:set allow_user_to_change_display_name --value=false
abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:system:set lost_password_link --value=disabled abra app run --user www-data cloud.example.org app /var/www/html/occ config:system:set lost_password_link --value=disabled
abra app run --user www-data swe-hospiz-cloud app /var/www/html/occ config:system:set social_login_auto_redirect --value=true abra app run --user www-data cloud.example.org app /var/www/html/occ config:system:set social_login_auto_redirect --value=true
``` ```
Konfiguration überprüfen Konfiguration überprüfen
``` ```
abra app run --user www-data servername_cloud bash abra app run --user www-data cloud.example.org bash
cat config/config.php cat config/config.php
``` ```
@ -92,45 +107,47 @@ cat config/config.php
In Authentik: In Authentik:
* Customisation -> Property Mappings - Customisation -> Property Mappings
* Create -> Scope Mapping - Create -> Scope Mapping
Scope-Name: "nextcloud" Scope-Name: "nextcloud"
Expression: `return { "nextcloud_groups": [{"gid": group.name, "displayName": group.name} for group in request.user.ak_groups.all()], }` Expression: `return { "nextcloud_groups": [{"gid": group.name, "displayName": group.name} for group in request.user.ak_groups.all()], }`
* Providers -> nextcloud - Providers -> nextcloud
* Advanced Protocol Settings - Advanced Protocol Settings
* Scopes - Scopes
Scopes auswählen: "authentik default OAuth Mapping: OpenID {email, openid, profile}" , nextcloud Scopes auswählen: "authentik default OAuth Mapping: OpenID {email, openid, profile}" , nextcloud
## Backup ## Backup
### Nextcloud von einem Backup wiederherstellen ### Nextcloud von einem Backup wiederherstellen
Offizieller [Nextcloud-Guide](https://docs.nextcloud.com/server/latest/admin_manual/maintenance/restore.html) Offizieller [Nextcloud-Guide](https://docs.nextcloud.com/server/latest/admin_manual/maintenance/restore.html)
Wartungs-Modus aktivieren Wartungs-Modus aktivieren
``` ```
abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:mode --on abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:mode --on
``` ```
Wiederherstellen von Dateien Wiederherstellen von Dateien
``` ```
restic restore --include /backups/yksflip-cloud_app -t restored latest restic restore --include /backups/yksflip-cloud_app -t restored latest
docker cp -a r/backups/yksflip-cloud_app/* $(docker ps -q -f name=cloud_app):/ docker cp -a r/backups/yksflip-cloud_app/* $(docker ps -q -f name=cloud_app):/
``` ```
Sicher stellen dass File-Permissions und Ownership stimmen: Sicher stellen dass File-Permissions und Ownership stimmen:
``` ```
docker exec -it $(docker ps -q -f name=cloud_app) bash docker exec -it $(docker ps -q -f name=cloud_app) bash
$ ls -la $ ls -la
$ chown -R www-data:www-data data config custom_apps $ chown -R www-data:www-data data config custom_apps
``` ```
Datenbank wiederherstellen Datenbank wiederherstellen
``` ```
restic restore --include /backups/yksflip-cloud_db -t r latest restic restore --include /backups/yksflip-cloud_db -t r latest
@ -148,18 +165,17 @@ $ mysql -u root -p"$(cat /run/secrets/db_root_password)" nextcloud < /tmp/backup
/usr/bin/pg_restore -c -U nextcloud -d nextcloud < /tmp/backup/dump.sql /usr/bin/pg_restore -c -U nextcloud -d nextcloud < /tmp/backup/dump.sql
``` ```
git git
Wartungs-Modus aktivieren Wartungs-Modus aktivieren
``` ```
abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:data-fingerprint abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:data-fingerprint
abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:mode --on abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:mode --on
``` ```
Falls nötig kann auch ein repair gestartet werden: Falls nötig kann auch ein repair gestartet werden:
``` ```
abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:repair abra app run --user www-data yksflip-cloud app /var/www/html/occ maintenance:repair
``` ```

16
docs/installation/wekan.md
View File

@ -16,7 +16,7 @@ im authentik:
geheminis: secret von abra geheminis: secret von abra
redirect uris: https://board.example.org/_oauth/oidc redirect uris: https://board.example.org/_oauth/oidc
app anlegen app anlegen
Login Button umbenennen: User -> Administration -> Layout -> Benutzerdefinierter Text der OIDC-Schaltfläche Login Button umbenennen: User -> Administration -> Layout -> Benutzerdefinierter Text der OIDC-Schaltfläche
@ -54,4 +54,18 @@ docker cp wekan_db_1:dump/wekan-2021-12-03.archiv .
docker context use new-server docker context use new-server
docker cp wekan-2021-12-03.archiv lit-board_db.1.yzvn5bhlr4vpval2kytazhgwr:/tmp/ docker cp wekan-2021-12-03.archiv lit-board_db.1.yzvn5bhlr4vpval2kytazhgwr:/tmp/
docker exec lit-board_db.1 bash -c "mongorestore --drop --verbose --archive=/tmp/wekan.archive" docker exec lit-board_db.1 bash -c "mongorestore --drop --verbose --archive=/tmp/wekan.archive"
```
#
https://www.mongodb.com/developer/products/mongodb/cheat-sheet/
make user admin
```
mongo
use wekan
db.users.find({"username": "philipp"})
db.users.update({"_id": "JwMP7y8QJyEd6r9F4"}, {$set: {"isAdmin" : true})
``` ```

3
docs/releases/.pages
View File

@ -1,3 +0,0 @@
nav:
- Next:
- v0.1.md

30
docs/releases/v0.1.md
View File

@ -1,30 +0,0 @@
---
status: draft
---
## v0.1
### Allgemein
* Liste mit kollaborativen Tools gibt es [hier](./../tools/)
### Wekan
* Update auf v6.31
* Vor dem Schließen Dialog für ungespeicherte Änderungen von Kartenbeschreibungen anzeigen [#4598](https://github.com/wekan/wekan/pull/4598)
* Verbesserungen der openid-connect Anbindung für SSO
[#4379](https://github.com/wekan/wekan/pull/4379)
[#4392](https://github.com/wekan/wekan/pull/4392)
[#4404](https://github.com/wekan/wekan/pull/4404)
[#4588](https://github.com/wekan/wekan/pull/4588)
* Labels können per Shortcut zugewiesen werden [#4377](https://github.com/wekan/wekan/pull/4377)
### Nextcloud
* Update auf v24.03
* Verbesserung der Automatisierten Installation und Konfiguration
### Authentik
* Update auf v.
*