search

beabee-communityrm / beabee-deploy

A self hosting guide for beabee
GNU Affero General Public License v3.0
4 stars 0 forks source link

readme

A guide to self-hosting beabee

Any questions? Raise an issue or email tech@beabee.io. We will do our best to help but we are a very small team so can't offer any formal support.

Please note that beabee is currently in the early stages of development, as such this setup is likely to change in the future. We will offer guidance where possible when we make significant changes, if you want to be kept informed please let us know you are self-hosting beabee at tech@beabee.io.

Basic setup

Server requirements:

You must also have a PostgreSQL server (>= 13) that is accessible to the server beabee is being installed on

1. Create a database

Run the following on your database server to create beabee's database and user role

CREATE USER "<user>" WITH PASSWORD '<password>';
CREATE DATABASE "<db>" WITH OWNER "<user>";
\c <db>
CREATE EXTENSION IF NOT EXISTS "uuid-ossp";
REVOKE ALL ON SCHEMA public FROM PUBLIC;
GRANT ALL ON SCHEMA public TO "<user>";

You can choose <user>, <password> and <db>, you will use the following connection string in beabee's configuration:

postgresql://<user>:<password>@<host>/<db>

2. Install beabee

Run the following as root.

cd <installation directory>

# Get the files (you need to fill in .env)
curl -O https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/docker-compose.yml
curl -O https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/update.sh
curl -o .env https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/.env.example
chmod 0600 .env
chmod 0700 update.sh

# Persistent location to store file uploads
mkdir -p data/uploads

# Install everything
./update.sh

# Do some initial configuration
docker-compose run --rm run node built/tools/configure

# Create a first user to login with
docker-compose run --rm run node built/tools/new-user

3. Optional: configure logging

Docker container logs are sent to syslog by default and assume a syslog daemon is running on the host server. We use rsyslog with a custom configuration to store each container's logs in a different file and logrotate to rotate the logs.

If you want this too, run the following as root.

curl -o /etc/rsyslog.d/30-docker.conf https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/rsyslog.conf
curl -o /etc/logrotate.d/docker https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/logrotate.conf

4. Updating

To update simply navigate to your beabee install and run the script

cd <installation directory>
./update.sh

Auto deployment setup

Run the following as root, replace <public key> with a deploy key.

NOTE: The deployment script deploy.sh assumes beabee instances are installed in /opt/beabee/<stage>/<name>

adduser --system --shell /bin/bash deploy

echo 'Defaults:deploy env_keep += "SSH_ORIGINAL_COMMAND"' > /etc/sudoers.d/deploy
echo 'deploy  ALL=(root) NOPASSWD: /opt/beabee/deploy.sh' >> /etc/sudoers.d/deploy

curl -o /opt/beabee/update.sh https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/update.sh
curl -o /opt/beabee/deploy.sh https://raw.githubusercontent.com/beabee-communityrm/beabee-deploy/main/deploy.sh
chmod 0755 /opt/beabee/deploy.sh /opt/beabee/update.sh

su deploy
mkdir /home/deploy/.ssh
echo -n 'command="sudo /opt/beabee/deploy.sh",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty' > /home/deploy/.ssh/authorized_keys
cat <public key> > /home/deploy/.ssh/authorized_keys

This creates a user deploy who can only run deploy.sh, you can use this to trigger a deploy (e.g. in a GitHub action)

ssh deploy@<server> <stage>

See https://github.com/beabee-communityrm/beabee/blob/master/.github/workflows/deploy.yml for an example