Bearbeiten von „Server/Mattermost“

== Installation ==

==== Installation Mattermost ====

----
; Installation vom Dienst (Server) Mattermost:
Installieren vom Paket ''[[freshports:www/mattermost-server|mattermost-server]]''
: <code>pkg ins -y mattermost-server</code>
<pre></pre>
<pre>
===> Creating groups.
Creating group 'mattermost' with gid '889'.
===> Creating users
Creating user 'mattermost' with uid '889'.
</pre>
<pre>
===> Creating groups.
Using existing group 'mattermost'.
===> Creating users
Using existing user 'mattermost'.
</pre>
<pre></pre>
<!--
<pre>
Message from ca_root_nss-3.40:

********************************* WARNING *********************************

FreeBSD does not, and can not warrant that the certification authorities
whose certificates are included in this package have in any way been
audited for trustworthiness or RFC 3647 compliance.

Assessment and verification of trust is the complete responsibility of the
system administrator.

*********************************** NOTE **********************************

This package installs symlinks to support root certificates discovery by
default for software that uses OpenSSL.

This enables SSL Certificate Verification by client software without manual
intervention.

If you prefer to do this manually, replace the following symlinks with
either an empty file or your site-local certificate bundle.

  * /etc/ssl/cert.pem
  * /usr/local/etc/ssl/cert.pem
  * /usr/local/openssl/cert.pem

***************************************************************************
</pre>
!-->
(optionales) Begutachten vom Verzeichnis vom Dienst ''mattermost''
: <code>ls /usr/local/www/mattermost</code>
<pre>
client		fonts		i18n		templates
</pre>
Aktivieren vom Dienst ''mattermost'' (für jeden Neustart)
: <code>sysrc mattermostd_enable=YES</code>
<pre>
mattermostd_enable:  -> YES
</pre>
Starten vom Dienst ''mattermost''
: <code>service mattermostd start</code>
<pre>
Starting mattermostd.
</pre>
Anzeigen (lassen) vom Status vom Dienst ''mattermost''
: <code>service mattermostd status</code>
<pre>
mattermostd is not running.
</pre>
----
: <code>cp /usr/local/etc/mattermost/config.json.sample /usr/local/etc/mattermost/config.json</code>
: <code>less /usr/local/etc/mattermost/config.json.sample /usr/local/etc/mattermost/config.json</code>
<pre></pre>
<pre>
    "SqlSettings": {
        "DriverName": "mysql",
        "DataSource": "mmuser:mostest@tcp(dockerhost:3306)/mattermost_test?charset=utf8mb4,utf8&readTimeout=30s&writeTimeout=30s",
        "DataSourceReplicas": [],
        "DataSourceSearchReplicas": [],
        "MaxIdleConns": 20,
        "MaxOpenConns": 300,
        "Trace": false,
        "AtRestEncryptKey": "",
        "QueryTimeout": 30
    },
</pre>
<pre></pre>

==== Installation Datenbank ====

----
; Installation vom Dienst Datenbank:
: Mattermost benennt (aktuell (2018-11-24)) als mögliche Programme als Dienst Datenbank (zum lokalen selbst Betreiben)
:* MySQL
:** 5.6
:** 5.7
:** 8
:* PostgreSQL
:** 9.4+
: Wie bevorzugen PostgreSQL und die aktuellste Version ist die Version 10.
Installieren vom Paket ''[[freshports:databases/postgresql10-server|postgresql10-server]]''
: <code>pkg ins -y postgresql10-server</code>
<pre></pre>
<pre>
===> Creating groups.
Creating group 'postgres' with gid '770'.
===> Creating users
Creating user 'postgres' with uid '770'.

  =========== BACKUP YOUR DATA! =============
  As always, backup your data before
  upgrading. If the upgrade leads to a higher
  minor revision (e.g. 8.3.x -> 8.4), a dump
  and restore of all databases is
  required. This is *NOT* done by the port!
  ===========================================
</pre>
<!--
<pre>
Message from perl5-5.26.2:

The /usr/bin/perl symlink has been removed starting with Perl 5.20.
For shebangs, you should either use:

#!/usr/local/bin/perl

or

#!/usr/bin/env perl

The first one will only work if you have a /usr/local/bin/perl,
the second will work as long as perl is in PATH.
Message from postgresql10-client-10.5:

The PostgreSQL port has a collection of "side orders":

postgresql-docs
  For all of the html documentation

p5-Pg
  A perl5 API for client access to PostgreSQL databases.

postgresql-tcltk 
  If you want tcl/tk client support.

postgresql-jdbc
  For Java JDBC support.

postgresql-odbc
  For client access from unix applications using ODBC as access
  method. Not needed to access unix PostgreSQL servers from Win32
  using ODBC. See below.

ruby-postgres, py-psycopg2
  For client access to PostgreSQL databases using the ruby & python
  languages.

postgresql-plperl, postgresql-pltcl & postgresql-plruby
  For using perl5, tcl & ruby as procedural languages.

postgresql-contrib
  Lots of contributed utilities, postgresql functions and
  datatypes. There you find pg_standby, pgcrypto and many other cool
  things.

etc...
</pre>
!-->
<pre>
Message from postgresql10-server-10.5:

For procedural languages and postgresql functions, please note that
you might have to update them when updating the server.

If you have many tables and many clients running, consider raising
kern.maxfiles using sysctl(8), or reconfigure your kernel
appropriately.

The port is set up to use autovacuum for new databases, but you might
also want to vacuum and perhaps backup your database regularly. There
is a periodic script, /usr/local/etc/periodic/daily/502.pgsql, that
you may find useful. You can use it to backup and perform vacuum on all
databases nightly. Per default, it performs `vacuum analyze'. See the
script for instructions. For autovacuum settings, please review
~pgsql/data/postgresql.conf.

If you plan to access your PostgreSQL server using ODBC, please
consider running the SQL script /usr/local/share/postgresql/odbc.sql
to get the functions required for ODBC compliance.

Please note that if you use the rc script,
/usr/local/etc/rc.d/postgresql, to initialize the database, unicode
(UTF-8) will be used to store character data by default.  Set
postgresql_initdb_flags or use login.conf settings described below to
alter this behaviour. See the start rc script for more info.

To set limits, environment stuff like locale and collation and other
things, you can set up a class in /etc/login.conf before initializing
the database. Add something similar to this to /etc/login.conf:
---
postgres:\
	:lang=en_US.UTF-8:\
	:setenv=LC_COLLATE=C:\
	:tc=default:
---
and run `cap_mkdb /etc/login.conf'.
Then add 'postgresql_class="postgres"' to /etc/rc.conf.

======================================================================

To initialize the database, run

  /usr/local/etc/rc.d/postgresql initdb

You can then start PostgreSQL by running:

  /usr/local/etc/rc.d/postgresql start

For postmaster settings, see ~pgsql/data/postgresql.conf

NB. FreeBSD's PostgreSQL port logs to syslog by default
    See ~pgsql/data/postgresql.conf for more info

NB. If you're not using a checksumming filesystem like ZFS, you might
    wish to enable data checksumming. It can only be enabled during
    the initdb phase, by adding the "--data-checksums" flag to
    the postgres_initdb_flags rcvar.  Check the initdb(1) manpage
    for more info and make sure you understand the performance
    implications.

======================================================================

To run PostgreSQL at startup, add
'postgresql_enable="YES"' to /etc/rc.conf
</pre>
Installieren vom Paket ''[[freshports:databases/postgresql10-contrib|postgresql10-contrib]]''
: <code>pkg ins -y postgresql10-contrib</code>
<pre></pre>
<pre>
Message from postgresql10-contrib-10.5:

The PostgreSQL contrib utilities have been installed. Please see
/usr/local/share/doc/postgresql/contrib/README
for more information.
</pre>
Aktivieren vom Dienst ''postgresql'' (für jeden Neustart)
: <code>sysrc postgresql_enable=YES</code>
<pre>
postgresql_enable:  -> YES
</pre>
Starten vom Dienst ''postgresql''
: <code>service postgresql initdb</code>
<pre>
The files belonging to this database system will be owned by user "postgres".
This user must also own the server process.

The database cluster will be initialized with locale "C".
The default text search configuration will be set to "english".

Data page checksums are disabled.

creating directory /var/db/postgres/data10 ... ok
creating subdirectories ... ok
selecting default max_connections ... 100
selecting default shared_buffers ... 128MB
selecting dynamic shared memory implementation ... posix
creating configuration files ... ok
running bootstrap script ... ok
performing post-bootstrap initialization ... ok
syncing data to disk ... ok

WARNING: enabling "trust" authentication for local connections
You can change this by editing pg_hba.conf or using the option -A, or
--auth-local and --auth-host, the next time you run initdb.

Success. You can now start the database server using:

    /usr/local/bin/pg_ctl -D /var/db/postgres/data10 -l logfile start

</pre>
: <code>service postgresql start</code>
<pre>
yyyy-mm-dd HH:MM:SS.123 UTC [12345] LOG:  could not create IPv6 socket for address "::1": Protocol not supported
yyyy-mm-dd HH:MM:SS.123 UTC [12345] LOG:  listening on IPv4 address "127.0.0.1", port 5432
yyyy-mm-dd HH:MM:SS.123 UTC [12345] LOG:  listening on Unix socket "/tmp/.s.PGSQL.5432"
yyyy-mm-dd HH:MM:SS.123 UTC [12345] LOG:  ending log output to stderr
yyyy-mm-dd HH:MM:SS.123 UTC [12345] HINT:  Future log output will go to log destination "syslog".
</pre>
: <code>service postgresql status</code>
<pre>
pg_ctl: server is running (PID: 12345)
/usr/local/bin/postgres "-D" "/var/db/postgres/data10"
</pre>

==== Erstellung Datenbank ====

; Erstellung der Datenbank für den Dienst ''mattermost:

----

: <code>su postgres</code>

: <code>cat ~/data10/postgresql.conf</code>

----

: <code>psql</code>

----
: <code>CREATE DATABASE mattermostuserdatabase;</code>
<pre>
CREATE DATABASE
</pre>
: <code>CREATE USER mattermostuser WITH PASSWORD 'mattermostuserdatabasepassword';</code>
<pre>
CREATE ROLE
</pre>
: <code>GRANT ALL PRIVILEGES ON DATABASE mattermostuserdatabase to mattermostuser;</code>
<pre>
GRANT
</pre>
: <code>\q</code>

----

: <code>$EDITOR /usr/local/etc/mattermost/config.json</code>
<pre></pre>
<pre>
    "SqlSettings": {

</pre>
<pre></pre>
<pre>
        "DriverName": "postgres",
        "DataSource": "postgres://mattermostuser:mattermostuserdatabasepassword@127.0.0.1:5432/mattermostuserdatabase?sslmode=disable&connect_timeout=10",
</pre>
<pre></pre>

: <code>service mattermostd restart</code>

: <code>fetch http://localhost:8065 && cat localhost:8065 && rm localhost:8065</code>
<pre>
localhost:8065                                100% of 3242  B   49 MBps 00m00s
<!DOCTYPE html> <html lang=en> <head> 
</pre>
<pre></pre>
<pre>
</body> </html>
</pre>

==== Installation Webserver ====

----
: <code>pkg ins -y nginx</code>
<pre></pre>
<pre>
===> Creating groups.
Using existing group 'www'.
===> Creating users
Using existing user 'www'.
</pre>
<pre></pre>
<pre>
Message from nginx-1.14.1,2:

===================================================================
Recent version of the NGINX introduces dynamic modules support.  In
FreeBSD ports tree this feature was enabled by default with the DSO
knob.  Several vendor's and third-party modules have been converted
to dynamic modules.  Unset the DSO knob builds an NGINX without
dynamic modules support.

To load a module at runtime, include the new `load_module'
directive in the main context, specifying the path to the shared
object file for the module, enclosed in quotation marks.  When you
reload the configuration or restart NGINX, the module is loaded in.
It is possible to specify a path relative to the source directory,
or a full path, please see
https://www.nginx.com/blog/dynamic-modules-nginx-1-9-11/ and
http://nginx.org/en/docs/ngx_core_module.html#load_module for
details.

Default path for the NGINX dynamic modules is

/usr/local/libexec/nginx.
===================================================================
</pre>
: <code>sysrc nginx_enable=YES</code>
: <code>service nginx start</code>

== Sonstiges ==

* [https://github.com/42wim/matterbridge matterbridge]

== Weblinks ==

* https://mattermost.org/
* https://mattermost.com/
** https://about.mattermost.com/
*** https://about.mattermost.com/features/
** https://docs.mattermost.com/
@@ Zeile 392: / Zeile 392: @@
 : <code>sysrc nginx_enable=YES</code>
 : <code>service nginx start</code>
-: <code>fetch http://localhost:80 && cat localhost:80 && rm localhost:80</code>
-==== Installation Certbot ====
-in Anlehnung an https://certbot.eff.org/lets-encrypt/freebsd-nginx
-----
-: <code>pkg ins -y py27-certbot</code>
-<pre></pre>
-<!--
-<pre>
-Message from python27-2.7.15:
-===========================================================================
-Note that some standard Python modules are provided as separate ports
-as they require additional dependencies. They are available as:
-bsddb           databases/py-bsddb
-gdbm            databases/py-gdbm
-sqlite3         databases/py-sqlite3
-tkinter         x11-toolkits/py-tkinter
-===========================================================================
-Message from py27-urllib3-1.22,1:
-Be careful, support of IPv6 is broken with PySocks 1.5.7.
-</pre>
-!-->
-<pre>
-Message from py27-certbot-0.27.1_1,1:
-===========================================================================
-This port installs the "standalone" client only, which does not use and
-is not the certbot-auto bootstrap/wrapper script.
-The simplest form of usage to obtain certificates is:
- # sudo certbot certonly --standalone -d <domain>, [domain2, ... domainN]>
-NOTE:
-The client requires the ability to bind on TCP port 80 or 443 (depending
-on the --preferred-challenges option used). If a server is running on that
-port, it will need to be temporarily stopped so that the standalone server
-can listen on that port to complete the challenge authentication process.
-For more information on the 'standalone' mode, see:
-  https://certbot.eff.org/docs/using.html#standalone
-The certbot plugins to support apache and nginx certificate installation
-will be made available in the following ports:
- * Apache plugin: security/py-certbot-apache
- * Nginx plugin: security/py-certbot-nginx
-===========================================================================
-</pre>
-: <code>pkg ins -y py27-certbot-nginx</code>
-<pre></pre>
-<!--
-<pre>
-Message from py27-pip-9.0.3:
-============================== !!!! WARNING !!!! ==========================
-pip MUST ONLY be used:
- * With the --user flag, OR
- * To install or manage Python packages in virtual environments
-Failure to follow this warning can and will result in an inconsistent
-system-wide Python environment (LOCALBASE/lib/pythonX.Y/site-packages) and
-cause errors.
-Avoid using pip as root unless you know what you're doing.
-============================== !!!! WARNING !!!! ==========================
-</pre>
-!-->
-==== Erstellung Zertifikat ====
-: <s><code>certbot certonly --standalone --test-cert --agree-tos -m cert@stura.htw-dresden.de -n -d domain.stura.htw-dresden.de</code></s>
-: <code>certbot certonly --standalone --agree-tos -m cert@stura.htw-dresden.de -n -d domain.stura.htw-dresden.de</code>
-<pre>
-Saving debug log to /var/log/letsencrypt/letsencrypt.log
-Plugins selected: Authenticator standalone, Installer None
-Obtaining a new certificate
-Performing the following challenges:
-http-01 challenge for domain.stura.htw-dresden.de
-Waiting for verification...
-Cleaning up challenges
-IMPORTANT NOTES:
- - Congratulations! Your certificate and chain have been saved at:
-   /usr/local/etc/letsencrypt/live/domain.stura.htw-dresden.de/fullchain.pem
-   Your key file has been saved at:
-   /usr/local/etc/letsencrypt/live/domain.stura.htw-dresden.de/privkey.pem
-   Your cert will expire on 2019-03-17. To obtain a new or tweaked
-   version of this certificate in the future, simply run certbot
-   again. To non-interactively renew *all* of your certificates, run
-   "certbot renew"
- - If you like Certbot, please consider supporting our work by:
-   Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
-   Donating to EFF:                    https://eff.org/donate-le
-</pre>
-==== Anpassung Webserver ====
-: <code>$EDITOR /usr/local/etc/nginx/nginx.conf</code>
-<pre></pre>
-<pre>
-</pre>
-<pre></pre>
-: <code>$EDITOR /usr/local/etc/nginx/nginx.conf</code>
-==== Anpassungen Mattermost ====
-* Mail-Adresse (die als absendende Adresse für Mails zur Einladung & Co verwendet wird)
-* Domain (die als Adresse für Verweise bei Mails zur Einladung & Co verwendet wird)
 == Sonstiges ==