Bearbeiten von „StuRa Diskussion:Server/Website“
Zur Navigation springen
Zur Suche springen
Die Bearbeitung kann rückgängig gemacht werden. Bitte prüfe den Vergleich unten, um sicherzustellen, dass du dies tun möchtest, und veröffentliche dann unten deine Änderungen, um die Bearbeitung rückgängig zu machen.
Aktuelle Version | Dein Text | ||
Zeile 2.409: | Zeile 2.409: | ||
Im Übrigen war bei [http://www.stura.htw-dresden.de:8080/Plone/portal_css/manage_cssForm portal_css] ''ploneCustom.css'' (neben ''++resource++plone.app.jquerytools.overlays.css'') gar nicht angewählt und entgegen der Standardeinstellung bei ''CSS Media'' nicht mit ''all'', sondern nur ''screen'' versehen gewesen. Auch ''Caching allowed?'' war entgegen der Standardeinstellung nicht angewählt. | Im Übrigen war bei [http://www.stura.htw-dresden.de:8080/Plone/portal_css/manage_cssForm portal_css] ''ploneCustom.css'' (neben ''++resource++plone.app.jquerytools.overlays.css'') gar nicht angewählt und entgegen der Standardeinstellung bei ''CSS Media'' nicht mit ''all'', sondern nur ''screen'' versehen gewesen. Auch ''Caching allowed?'' war entgegen der Standardeinstellung nicht angewählt. | ||
== Buildout == | |||
Um Buildout in Turnkey-Linux auszuführen, muss man einen eigenen Nutzer verwenden: | |||
sudo -u plone_buildout bin/buildout | |||
== Installation Plone 6 == | |||
=== Installation Plone 6 Vorbereitung === | |||
==== Installation Plone 6 Umgebung ==== | |||
; Host: PCT (LXC on Proxmox) Debian stable (11) | |||
==== Installation Plone 6 Aktualisierung bestehender Pakete ==== | |||
: <code>apt update</code> | |||
: <code>apt -y upgrade</code> | |||
=== Installation Plone 6 backend === | |||
==== Installation Plone 6 backend Installation benötigter Pakete ==== | |||
https://training.plone.org/5/mastering-plone/installation.html#prerequisites | |||
: <code>apt -y install python3.9-dev python3.9-tk python3.9-venv build-essential libssl-dev libxml2-dev libxslt1-dev libbz2-dev libjpeg62-turbo-dev</code> | |||
: <code>apt -y install libreadline-dev wv poppler-utils</code> | |||
: <code>apt -y install git</code> | |||
: <s><code>apt -y install python3-pip</code></s> | |||
==== Installation Plone 6 backend pip ==== | |||
https://plone.org/download/releases/6.0.0a1 | |||
---- | |||
: <code>mkdir build-plone</code> | |||
: <code>cd build-plone/</code> | |||
{| | |||
|- | |||
! buildout style | |||
! pip style | |||
|- | |||
| | |||
: <code>nano buildout.cfg</code> | |||
<pre> | |||
[buildout] | |||
extends = https://dist.plone.org/release/6.0.0a1/versions.cfg | |||
parts = instance | |||
[instance] | |||
recipe = plone.recipe.zope2instance | |||
eggs = | |||
Plone | |||
plone.volto | |||
user = admin:admin | |||
zodb-temporary-storage = off | |||
</pre> | |||
: <s><code>chmod +x buildout.cfg</code></s> | |||
---- | |||
: <code>python3.9 -m venv .</code> | |||
: <code>bin/pip install -r https://dist.plone.org/release/6.0.0a1/requirements.txt</code> | |||
: <code>bin/buildout</code> | |||
---- | |||
: <code>bin/instance fg</code> | |||
| | |||
: <code>python3.9 -m venv .</code> | |||
: <code>bin/pip install -U pip setuptools wheel</code> | |||
: <code>bin/pip install Plone plone.volto -c https://dist.plone.org/release/6.0.0a1/constraints.txt --use-deprecated legacy-resolver</code> | |||
: <code>bin/mkwsgiinstance -u admin:admin -d .</code> | |||
: <code>bin/runwsgi -v etc/zope.ini</code> | |||
---- | |||
: <code>nano etc/zope.ini</code> | |||
<pre></pre> | |||
<pre> | |||
#host = 127.0.0.1 | |||
host = 0.0.0.0 | |||
</pre> | |||
<pre></pre> | |||
: <code>bin/runwsgi -v etc/zope.ini</code> | |||
|- | |||
|} | |||
=== Installation Plone 6 backend Nachbereitung === | |||
==== Installation Plone 6 backend Änderung vom Passwort bei Zope ==== | |||
Die standardmäßigen Zugangsdaten sind | |||
; Konto: admin | |||
; Passwort: admin | |||
. | |||
Bei | |||
: http://127.0.0.1:8080/acl_users/users/manage_users | |||
ist das (einzige) Konto ''admin'' zu finden. | |||
Bei | |||
: http://127.0.0.1:8080/acl_users/users/manage_users?user_id=admin&passwd=1 | |||
kann das Passwort geändert werden. | |||
==== Installation Plone 6 web server ==== | |||
===== Installation Plone 6 nginx ===== | |||
http://plone-6.test.domain.tld:8080/Plone | |||
---- | |||
: <code>apt -y install nginx</code> | |||
: <code>less /etc/nginx/sites-available/default</code> | |||
https://docs.plone.org/manage/deploying/front-end/nginx.html#minimal-nginx-front-end-configuration-for-plone-on-ubuntu-debian-linux | |||
: <code>nano /etc/nginx/sites-available/plone-6.test.domain.tld</code> | |||
<pre> | |||
add_header X-Frame-Options "SAMEORIGIN"; | |||
add_header Strict-Transport-Security "max-age=15768000; includeSubDomains"; | |||
add_header X-XSS-Protection "1; mode=block"; | |||
add_header X-Content-Type-Options "nosniff"; | |||
#add_header Content-Security-Policy "default-src 'self'; img-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'"; | |||
add_header Content-Security-Policy-Report-Only "default-src 'self'; img-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'"; | |||
upstream plone { | |||
server 127.0.0.1:8080; | |||
} | |||
server { | |||
listen 80; | |||
server_name plone-6.test.domain.tld; | |||
access_log /var/log/nginx/plone-6.test.domain.tld.access.log; | |||
error_log /var/log/nginx/plone-6.test.domain.tld.error.log; | |||
location / { | |||
proxy_pass http://plone/VirtualHostBase/http/plone-6.test.domain.tld:80/Plone/VirtualHostRoot/; | |||
} | |||
} | |||
</pre> | |||
: <code>ln -s /etc/nginx/sites-available/plone-6.test.domain.tld /etc/nginx/sites-enabled/plone-6.test.domain.tld</code> | |||
: <code>apt -y install certbot</code> | |||
: <code>apt -y install python3-certbot-nginx</code> | |||
: <code>certbot --nginx</code> | |||
: <code>nano /etc/nginx/sites-enabled/plone-6.test.domain.tld</code> | |||
<pre> | |||
add_header X-Frame-Options "SAMEORIGIN"; | |||
add_header Strict-Transport-Security "max-age=15768000; includeSubDomains"; | |||
add_header X-XSS-Protection "1; mode=block"; | |||
add_header X-Content-Type-Options "nosniff"; | |||
#add_header Content-Security-Policy "default-src 'self'; img-src *; style-src 'self' 'unsafe-inline'; script-src 'sel> | |||
add_header Content-Security-Policy-Report-Only "default-src 'self'; img-src *; style-src 'self' 'unsafe-inline'; scri> | |||
upstream plone { | |||
server 127.0.0.1:8080; | |||
} | |||
server { | |||
server_name plone-6.test.domain.tld; | |||
access_log /var/log/nginx/plone-6.test.domain.tld.access.log; | |||
error_log /var/log/nginx/plone-6.test.domain.tld.error.log; | |||
location / { | |||
# proxy_pass http://plone/VirtualHostBase/http/plone-6.test.domain.tld:80/Plone/VirtualHostRoot/; | |||
proxy_pass http://plone/VirtualHostBase/https/plone-6.test.domain.tld:443/Plone/VirtualHostRoot/; | |||
} | |||
listen 443 ssl; # managed by Certbot | |||
ssl_certificate /etc/letsencrypt/live/plone-6.test.domain.tld/fullchain.pem; # managed by Certbot | |||
ssl_certificate_key /etc/letsencrypt/live/plone-6.test.domain.tld/privkey.pem; # managed by Certbot | |||
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot | |||
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot | |||
} | |||
server { | |||
if ($host = plone-6.test.domain.tld) { | |||
return 301 https://$host$request_uri; | |||
} # managed by Certbot | |||
listen 80; | |||
server_name plone-6.test.domain.tld; | |||
return 404; # managed by Certbot | |||
} | |||
</pre> | |||
: <code>systemctl reload nginx</code> | |||
---- | |||
https://plone-6.test.domain.tld | |||
---- | |||
: <code>nano etc/zope.ini</code> | |||
<pre></pre> | |||
<pre> | |||
host = 127.0.0.1 | |||
####host = 0.0.0.0 | |||
</pre> | |||
<pre></pre> | |||
: <code>bin/runwsgi -v etc/zope.ini</code> | |||
<pre></pre> | |||
<pre> | |||
2021-13-42 01:23:45 INFO [Zope:42][MainThread] Ready to handle requests | |||
Starting server in PID 126997. | |||
2021-13-42 01:23:45 INFO [waitress:485][MainThread] Serving on http://127.0.0.1:8080 | |||
</pre> | |||
===== Installation Plone 6 Apache ===== | |||
==== Installation Plone 6 frontend ==== | |||
https://training.plone.org/5/mastering-plone/installation.html#installing-plone-frontend |