Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Basic Steps
- -------------
- sudo /usr/bin/apt-key adv --keyserver pool.sks-keyservers.net --recv 1078ECD7
- echo "deb http://apt.arvados.org/ trusty main" | sudo tee /etc/apt/sources.list.d/arvados.list
- Unique Identifier
- ------------------
- tr -dc 0-9a-z </dev/urandom | head -c5; echo
- 1j91c
- Postgres
- ---------
- sudo apt-get install postgresql
- sudo -u postgres bash
- createuser --encrypted -R -S --pwprompt arvados_sso
- createdb arvados_sso_production -T template0 -E UTF8 -O arvados_sso
- createuser --encrypted -R -S --pwprompt arvados
- createdb arvados_production -T template0 -E UTF8 -O arvados
- ------------
- SSO
- sudo apt-get install \
- gawk g++ gcc make libc6-dev libreadline6-dev zlib1g-dev libssl-dev \
- libyaml-dev libsqlite3-dev sqlite3 autoconf libgdbm-dev \
- libncurses5-dev automake libtool bison pkg-config libffi-dev curl
- Ruby
- ----
- mkdir -p ~/src
- cd ~/src
- curl http://cache.ruby-lang.org/pub/ruby/2.1/ruby-2.1.7.tar.gz | tar xz
- cd ruby-2.1.7
- ./configure --disable-install-rdoc
- make
- sudo make install
- sudo -i gem install bundler
- sudo -u www-data RAILS_ENV=production bundle exec rails console
- NGINX
- ----------------------
- # Install our PGP key and add HTTPS support for APT
- sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 561F9B9CAC40B2F7
- sudo apt-get install -y apt-transport-https ca-certificates
- # Add our APT repository
- sudo sh -c 'echo deb https://oss-binaries.phusionpassenger.com/apt/passenger trusty main > /etc/apt/sources.list.d/passenger.list'
- sudo apt-get update
- # Install Passenger + Nginx
- sudo apt-get install -y nginx-extras passenger
- vi /etc/nginx/nginx.conf
- include /etc/nginx/passenger.conf;
- sudo service nginx restart
- sudo /usr/bin/passenger-config validate-install
- SSO installation
- -----------------
- sudo apt-get install arvados-sso-server
- /etc/arvados/sso/application.yml
- /etc/arvados/sso/database.yml
- /etc/arvados/sso/production.rb
- SSO secret: 39o9v4sesuvp4h3etznk34vbrmmp2cyp10hff197omyfobj55tz3eyje1wo0i7gbtqtnqfemdptq49
- Azure_sso_app_secret: "1aep6wdjiytqfkb9rm0784d8zizkvvfijdfdrz5bheup3agma6y1uqna470cg5q6z2w6mz2elv55r8"
- sudo dpkg-reconfigure arvados-sso-server
- cd /var/www/arvados-sso/current
- sudo -u www-data RAILS_ENV=production bundle exec rails console
- sso_app_secret: "3gve0puxzpu0u6rinmctlspo3p07a9tw7idtnax8gqwie2jx69h9cul22jj1fb6bf5zhgpa7zv1png"
- SSO
- server {
- listen 23.102.16.73:8900;
- server_name localhost-sso;
- root /var/www/arvados-sso/current/public;
- index index.html;
- passenger_enabled on;
- # If you're not using RVM, comment out the line below.
- passenger_ruby /usr/local/bin/ruby;
- }
- upstream sso {
- server 23.102.16.73:8900 fail_timeout=10s;
- }
- proxy_http_version 1.1;
- server {
- listen 23.102.16.73:443 ssl;
- server_name arvados-sso;
- ssl on;
- ssl_certificate /root/ssl/servet.crt;
- ssl_certificate_key /root/ssl/server.key;
- index index.html;
- location / {
- proxy_pass http://sso;
- proxy_redirect off;
- proxy_connect_timeout 90s;
- proxy_read_timeout 300s;
- proxy_set_header X-Forwarded-Proto https;
- proxy_set_header Host $http_host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- }
- }
- /etc/sysctl.conf
- http://stackoverflow.com/questions/3191509/nginx-error-99-cannot-assign-requested-address
- API
- -------------------------------
- sudo apt-get install bison build-essential libcurl4-openssl-dev git arvados-api-server
- server {
- listen 10.2.213.67:8000;
- server_name localhost-api;
- root /var/www/arvados-api/current/public;
- index index.html index.htm index.php;
- passenger_enabled on;
- # If you're using RVM, uncomment the line below.
- #passenger_ruby /usr/local/rvm/wrappers/default/ruby;
- # This value effectively limits the size of API objects users can
- # create, especially collections. If you change this, you should
- # also ensure the following settings match it:
- # * `client_max_body_size` in the server section below
- # * `client_max_body_size` in the Workbench Nginx configuration (twice)
- # * `max_request_size` in the API server's application.yml file
- client_max_body_size 128m;
- }
- upstream api {
- server 10.2.213.67:8000 fail_timeout=10s;
- }
- upstream websockets {
- # The address below must match the one specified in puma's -b option.
- server 10.2.213.67:8100 fail_timeout=10s;
- }
- secret_token: 1lofnocuylfam8qmqko730l25enxg3ithd1wtdvivxh5i852pxtm3gel3qysanqn6p1gyi7pkhcbce
- blob_signing_key: 3lwm5nwzwg9f2gn4zq4xnkncq1e8j6ulkcxe9j0esk5l7d19u9qhxarza01qaq3bugfjnn6ipe8tx0
- ---------------------------------------------------------------------------------------
- WorkBench
- ~$ sudo apt-get install bison build-essential graphviz git python-arvados-python-client arvados-workbench
- secret:
- 2p2ctupulat0up2b4wh82dvnujkuvjstx1fus6malebfhuuajrn380fyg6zc156snflajffjkbqhrz
- server {
- listen 10.2.213.67:9000;
- server_name localhost-workbench;
- root /var/www/arvados-workbench/current/public;
- index index.html index.htm index.php;
- passenger_enabled on;
- # If you're using RVM, uncomment the line below.
- #passenger_ruby /usr/local/rvm/wrappers/default/ruby;
- # `client_max_body_size` should match the corresponding setting in
- # the API server's Nginx configuration.
- client_max_body_size 128m;
- }
- upstream workbench {
- server 10.2.213.67:9000 fail_timeout=10s;
- }
- -------SSL---------------
- sudo mkdir /root/ssl
- sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /root/ssl/server.key -out /root/ssl/servet.crt
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement