QuartzMap/docs/source/install.rst

272 lines
6.4 KiB
ReStructuredText
Raw Normal View History

2024-03-16 23:13:33 +00:00
Install
2024-03-25 11:03:42 +00:00
=======
2024-03-16 23:13:33 +00:00
2024-03-26 18:19:16 +00:00
Installation on Ubuntu 22
2024-03-25 12:50:04 +00:00
--------------------------------
Follow below to customize your installation.
2024-03-16 23:14:42 +00:00
2024-03-25 11:17:22 +00:00
Install PostgreSQL with PostGIS
------------------------------------------
QuartzMap requires PostgreSQL with PostGIS.
If you do not already have it installed, install it now.
.. code-block:: bash
2024-03-26 16:56:55 +00:00
apt -y install postgresql postgresql-contrib postgis
2024-03-25 11:17:22 +00:00
2024-03-25 11:26:38 +00:00
Install Prerequisties
------------------------------------------
2024-03-25 11:17:22 +00:00
2024-03-25 11:26:38 +00:00
.. code-block:: bash
apt-get -y install apache2 libapache2-mod-php php-{pgsql,zip,gd,simplexml} proftpd libapache2-mod-fcgid postfix python3-certbot-apache
2024-03-25 11:34:10 +00:00
2024-03-25 11:26:38 +00:00
Create the PostGIS Database
--------------------------------
.. code-block:: sql
CREATE USER quartz with password 'SuperSecret';
CREATE DATABASE quartz with OWNER quartz;
2024-03-25 11:34:10 +00:00
Create the Database Objects
2024-03-25 11:26:38 +00:00
--------------------------------
.. code-block:: sql
2024-03-26 17:38:41 +00:00
CREATE TYPE public.userlevel AS ENUM ('Admin', 'User');
CREATE TABLE public.user ( id SERIAL PRIMARY KEY,
name character varying(250),
email character varying(250),
password character varying(255),
ftp_user character varying(250),
accesslevel public.userlevel,
owner_id integer NOT NULL REFERENCES public.user(id),
UNIQUE(email)
);
CREATE TABLE public.access_groups ( id SERIAL PRIMARY KEY,
name character varying(255) NOT NULL,
owner_id integer NOT NULL REFERENCES public.user(id)
);
CREATE TABLE public.user_access ( id SERIAL PRIMARY KEY,
user_id integer NOT NULL REFERENCES public.user(id),
access_group_id integer NOT NULL REFERENCES public.access_groups(id),
UNIQUE(user_id, access_group_id)
);
2024-03-25 11:26:38 +00:00
2024-03-26 17:41:58 +00:00
CREATE TABLE public.map ( id SERIAL PRIMARY KEY,
name character varying(50) NOT NULL,
description character varying(50) NOT NULL,
is_public BOOLEAN DEFAULT false,
owner_id integer NOT NULL REFERENCES public.user(id)
);
CREATE TABLE public.map_access ( id SERIAL PRIMARY KEY,
map_id integer NOT NULL REFERENCES public.map(id),
access_group_id integer NOT NULL REFERENCES public.access_groups(id),
UNIQUE(map_id, access_group_id)
);
CREATE TABLE public.permalink ( id SERIAL PRIMARY KEY,
description character varying(255),
query character varying(255),
map_id integer NOT NULL REFERENCES public.map(id),
created TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
expires TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP + interval '1 hour',
visits integer NOT NULL DEFAULT 0,
visits_limit integer NOT NULL DEFAULT 1,
hash character varying(36) NOT NULL,
owner_id integer NOT NULL REFERENCES public.user(id)
);
CREATE TABLE public.signup ( id SERIAL PRIMARY KEY,
name character varying(250),
email character varying(250),
password character varying(250),
verify character varying(250),
UNIQUE(email)
);
2024-03-25 11:26:38 +00:00
2024-03-25 11:34:10 +00:00
2024-03-26 18:06:40 +00:00
Install QGIS Server
-----------------------------
2024-03-26 18:19:16 +00:00
To advertise WMS, WFS, and WTMS, install QGIS server.
2024-03-26 18:06:40 +00:00
.. code-block:: bash
RELEASE=$(lsb_release -cs)
wget --no-check-certificate --quiet -O /etc/apt/keyrings/qgis-archive-keyring.gpg https://download.qgis.org/downloads/qgis-archive-keyring.gpg
cat >>/etc/apt/sources.list.d/qgis.sources <<CAT_EOF
Types: deb deb-src
URIs: https://qgis.org/ubuntu
Suites: ${RELEASE}
Architectures: amd64
Components: main
Signed-By: /etc/apt/keyrings/qgis-archive-keyring.gpg
CAT_EOF
apt-get update -y || true
apt-get install -y qgis-server
if [ -d /etc/logrotate.d ]; then
cat >/etc/logrotate.d/qgisserver <<CAT_EOF
/var/log/qgisserver.log {
su www-data www-data
size 100M
notifempty
missingok
rotate 3
daily
compress
create 660 www-data www-data
}
CAT_EOF
fi
touch /var/log/qgisserver.log
chown www-data:www-data /var/log/qgisserver.log
2024-03-25 11:34:10 +00:00
Configure ProFTPD
----------------------------
2024-03-26 18:19:16 +00:00
Configure ProFTPD to jail users to FTP directories
2024-03-25 11:34:10 +00:00
.. code-block:: bash
sed -i.save '
s/#DefaultRoot~/DefaultRoot ~/
s/# RequireValidShelloff/RequireValidShell off/' /etc/proftpd/proftpd.conf
2024-03-26 18:19:16 +00:00
Restart ProFTPD for changes to take effect.
.. code-block:: bash
2024-03-25 11:34:10 +00:00
systemctl enable proftpd
systemctl restart proftpd
2024-03-26 16:51:51 +00:00
2024-03-25 11:34:10 +00:00
Configure Apache
2024-03-25 11:26:38 +00:00
----------------------------
2024-03-16 23:14:42 +00:00
2024-03-25 11:34:10 +00:00
.. code-block:: bash
a2enmod ssl headers expires fcgid cgi
2024-03-26 16:51:51 +00:00
2024-03-25 11:34:10 +00:00
cp installer/apache2.conf /etc/apache2/sites-available/default-ssl.conf
2024-03-26 16:51:51 +00:00
# Below is required for Certbot to provision SSL
2024-03-25 11:34:10 +00:00
for f in 000-default default-ssl; do
sed -i.save "s/#ServerName example.com/#ServerName ${HNAME}/" /etc/apache2/sites-available/${f}.conf
done
a2ensite 000-default default-ssl
systemctl reload apache2
2024-03-26 18:19:16 +00:00
Request certificate from Let's Encrypt:
2024-03-25 11:34:10 +00:00
certbot --apache --agree-tos --email hostmaster@${HNAME} --no-eff-email -d ${HNAME}
Create Data and Cache Directories
2024-03-26 18:19:16 +00:00
----------------------------
Set the DATA_DIR outside of public directories
2024-03-25 11:34:10 +00:00
.. code-block:: bash
mkdir -p "${APPS_DIR}"
mkdir -p "${CACHE_DIR}"
mkdir -p "${DATA_DIR}"
2024-03-26 16:51:51 +00:00
Grant Apache permissions
----------------------------
.. code-block:: bash
2024-03-25 11:34:10 +00:00
chown -R www-data:www-data "${APPS_DIR}"
chown -R www-data:www-data "${CACHE_DIR}"
chown -R www-data:www-data "${DATA_DIR}"
cp -r . /var/www/html/
chown -R www-data:www-data /var/www/html
rm -rf /var/www/html/installer
2024-03-26 18:19:16 +00:00
Restart Apache for changes to take effect
.. code-block:: bash
2024-03-25 11:34:10 +00:00
systemctl restart apache2
2024-03-26 16:51:51 +00:00
Create Groups and Permissions
----------------------------
.. code-block:: bash
2024-03-25 11:34:10 +00:00
# create group for all FTP users
groupadd qatusers
create_ftp_user
# install ftp user creation script
for f in update; do
cp installer/${f}_ftp_user.sh /usr/local/bin/
chown www-data:www-data /usr/local/bin/${f}_ftp_user.sh
chmod 0550 /usr/local/bin/${f}_ftp_user.sh
done
cat >/etc/sudoers.d/q2w <<CAT_EOF
www-data ALL = NOPASSWD: /usr/local/bin/update_ftp_user.sh
CAT_EOF
echo -e "postgres and other passwords are saved in /root/auth.txt file"
2024-03-26 16:51:51 +00:00
Create incl/const.php file
2024-03-25 11:34:10 +00:00
---------------------------------------
2024-03-26 18:19:16 +00:00
Copy the incl/const.php.dist file
2024-03-25 12:33:16 +00:00
.. code-block:: php
cat >admin/incl/const.php <<CAT_EOF
<?php
define("DB_HOST", "localhost");
define("DB_NAME", "${APP_DB}");
define("DB_USER", "${APP_DB}");
define("DB_PASS", "${APP_DB_PASS}");
define("DB_PORT", 5432);
define("DB_SCMA", 'public');
define("APPS_DIR", "${APPS_DIR}");
define("CACHE_DIR", "${CACHE_DIR}");
define("DATA_DIR", "${DATA_DIR}");
define("SUPER_ADMIN_ID", 1);
define("SESS_USR_KEY", 'q2w_user');
?>
CAT_EOF
2024-03-16 23:14:42 +00:00