Setup:Installation Guide/Docker: Difference between revisions

No edit summary
Tag: 2017 source edit
No edit summary
Tag: 2017 source edit
Line 3: Line 3:
|header=Migration from 4.4
|header=Migration from 4.4
|text=With BlueSpice 4.5 there were important changes to the container portfolio:
|text=With BlueSpice 4.5 there were important changes to the container portfolio:
# There are no "all-in-one" containers anymore. Neither for FREE, not for PRO and FARM editions
# There are no "all-in-one" containers anymore. Neither for FREE, nor for PRO and FARM editions
# The "distributed-services" setup for PRO and FARM edition has been reworked
# The "distributed-services" setup for PRO and FARM edition has completely been reworked
 
If you are upgrading from one of the above-mentioned setups, please refer to the [[{{FULLPAGENAME}}/Migration_4.4 to 4.5|migration guide]]
If you are upgrading from one of the above-mentioned setups, please refer to the [[{{FULLPAGENAME}}/Migration_4.4 to 4.5|migration guide]]
|icon=yes
|icon=yes
Line 13: Line 12:


===Overview===
===Overview===
Since version 4.5, BlueSpice MediaWiki can be easily installed using a stack of Docker containers. It is build in a modular way to allow different types of setups.
Since version 4.5, BlueSpice MediaWiki can be easily installed using a stack of Docker container images. Everything is build in a modular way to allow different types of setups.


The most common cases are
The most common cases are
Line 37: Line 36:
|bash-script
|bash-script
|false
|false
|Wrapper for general start-up of needed Containers
|Wrapper for general start-up of needed containers
|-
|-
|<code>bluespice-prepare</code>
|<code>bluespice-prepare</code>
Line 47: Line 46:
|service-script
|service-script
|false
|false
|Porper handling of the Containers on reboot
|Proper handling of the containers on reboot
|-
|-
|<code>docker-compose.main.yml</code>
|<code>docker-compose.main.yml</code>
|yml
|yml
|true
|true
|Main application services/ run by bluespice-deploy
|Main application services/ run by <code>bluespice-deploy</code>
|-
|-
|<code>docker-compose.persistent-data-services.yml</code>
|<code>docker-compose.persistent-data-services.yml</code>
|yml
|yml
|true
|false
|Database and Search/ run by bluespice-deploy
|Database and search/ run by <code>bluespice-deploy</code>
|-
|-
|<code>docker-compose.stateless-services.yml</code>
|<code>docker-compose.stateless-services.yml</code>
|yml
|yml
|false, but strongly recommended for full functionality
|true
|PDF-Renderer/Cache/Formula/Diagram-Service
|PDF-Renderer/Cache/Formula/Diagram-Service
|-
|-
|<code>docker-compose.proxy.yml</code>
|<code>docker-compose.proxy.yml</code>
|yml
|yml
|false but recommended
|false, but recommended
|Proxy Service
|Proxy Service
|-
|-
Line 77: Line 76:
|yml
|yml
|false
|false
|Additional Proxy for Kerberos-Authenication
|Additional proxy for Kerberos based authenication
|}
|}


Line 164: Line 163:


Please restart containers after changing/adding SSL files.
Please restart containers after changing/adding SSL files.
====Kerberos proxy====
TBD

Revision as of 19:15, 4 October 2024

Migration from 4.4With BlueSpice 4.5 there were important changes to the container portfolio:
  1. There are no "all-in-one" containers anymore. Neither for FREE, nor for PRO and FARM editions
  2. The "distributed-services" setup for PRO and FARM edition has completely been reworked

If you are upgrading from one of the above-mentioned setups, please refer to the migration guide


Overview

Since version 4.5, BlueSpice MediaWiki can be easily installed using a stack of Docker container images. Everything is build in a modular way to allow different types of setups.

The most common cases are

  1. "All-in-one" (with and without Let's Encrypt)
  2. Custom database and search service
  3. Custom load balancer / proxy

Step 1: Get the stack

Get "docker-compose" files from https://bluespice.com/de/download/

wget https://bluespice.com/filebase/docker-deployment-script \
    && unzip docker-deployment-script \
    && cd docker-deployment-script/compose

The directory contains the following files:

Filename Type Mandatory Comment
bluespice-deploy bash-script false Wrapper for general start-up of needed containers
bluespice-prepare bash-script false Prepare Folder and Permissions before first start also registers the service at the operating system
bluespice.service service-script false Proper handling of the containers on reboot
docker-compose.main.yml yml true Main application services/ run by bluespice-deploy
docker-compose.persistent-data-services.yml yml false Database and search/ run by bluespice-deploy
docker-compose.stateless-services.yml yml true PDF-Renderer/Cache/Formula/Diagram-Service
docker-compose.proxy.yml yml false, but recommended Proxy Service
docker-compose.proxy-letsencrypt.yml yml false Additional auto-renewal service for "Let's Encrypt" certificates
docker-compose.kerberos-proxy.yml yml false Additional proxy for Kerberos based authenication

For convenience, the bluespice-deploy script starts the first four yml files by default. This includes the main wiki application and also required backend services, like a database, search and application cache.

Additional services can be loaded by adding -f <filename> .

Example:

bluespice-deploy \
    -f docker-compose.proxy-letsencrypt.yml \
    up -d

This will start the stack with "Let's Encrypt" certificates.

Set up operating system service

Adding additional servicesexpand the ExecStart parameter in the /etc/systemd/system/bluespice.service

Example:

ExecStart=<WORKDIR>/bluespice-deploy -f docker-compose.proxy-letsencrypt.yml up -f -d --remove-orphans


Step 2: Set up environment variables

Create .env file according to existing or state-to-be installation.

Example:

DATADIR=/data/bluespice
VERSION=4.5
EDITION=pro
BACKUP_HOUR=04

WIKI_NAME=BlueSpice
WIKI_LANG=en
WIKI_PASSWORDSENDER=no-reply@wiki.company.local
WIKI_EMERGENCYCONTACT=no-reply@wiki.company.local
WIKI_HOST=wiki.company.local
WIKI_PORT=443
WIKI_PROTOCOL=https

DB_USER=bluespice
DB_PASS=...
DB_HOST=database
DB_NAME=bluespice
DB_PREFIX=

SMTP_HOST=mail.company.local
SMTP_PORT=25
SMTP_USER=...
SMTP_PASS=...
SMTP_ID_HOST=...

Step 3: Prepare data directories

Run bluespice-prepare script, helping you set up correct folder structure and permissions. Also installing a service for proper handling of the containers on reboots.

Step 4: Start the stack

Initial installationWhen starting the stack the first time, the wiki-task container will automatically perform the installation. It may take a couple of minutes for the process to set up the database and complete. Once it is finished, the password for the default Admin user can be found in $DATADIR/wiki/adminPasssword.

Use bluespice-deploy up -d to start the stack, once the .env file and the "data directories" are ready. Once all containers are shown as "ready" you can navigate to $WIKI_PROTOCOL://$WIKI_HOST:$WIKI_PORT (e.g. https://wiki.company.local) in your favorite web browser and start using the application.

Additional options

SSL certificates

For using Let's Encrypt Certificates just add docker-compose.proxy-letsencrypt.yml in your bluespice-deploy file.

Self-signed certificatesFor using self-signend Certificates please put <bluespice-wiki.com>.crt and <bluespice-wiki.com>.key with the exact name of your Wikis URL in ${VOLUMES_DIR}/nginx/certs


If activating SSL after first creation of wiki please change $wgServer in ${VOLUMES_DIR}/bluespice-data/LocalSettings.php

to https://bluespice-wiki.com

also link your certificate to the bluespice-container in your docker-compose.yml-File:

- ${VOLUMES_DIR}/nginx/certs/<FQDNofyourWiki>.crt:/usr/local/share/ca-certificates/<FQDNofyourWiki>.crt:ro

Please restart containers after changing/adding SSL files.

Kerberos proxy

TBD



To submit feedback about this documentation, visit our community forum.