Difference between revisions of "Mediawiki installation notes"
From Supercomputación y Cálculo Científico UIS
| Line 1: | Line 1: | ||
| − | + | __NOTOC__ | |
| + | <div class="thumbnail img-thumbnail">http://wiki.sc3.uis.edu.co/images/a/a8/Logo_sc33.png</div> | ||
| + | <p><div class="btn btn-primary"><i class="fa fa-long-arrow-left"></i> [[Administración del SC3]]</div></p> | ||
| − | Basic configuration (taken form internet and edited): | + | <div class="col-md-14"> |
| + | <div class="panel panel-darker-white-border"> | ||
| + | <div class="panel-heading"> | ||
| + | <h3 class="panel-title">Installation notes </h3> | ||
| + | </div> | ||
| + | <div class="panel-body"> | ||
| + | <p> | ||
| + | Basic configuration (taken form internet and edited): | ||
| − | {{File|/var/www/mediawiki-folder/|<pre><nowiki> | + | {{File|/var/www/mediawiki-folder/|<pre><nowiki> |
| − | # LDAP | + | # LDAP |
| − | require_once 'extensions/LdapAuthentication/LdapAuthentication.php'; | + | require_once 'extensions/LdapAuthentication/LdapAuthentication.php'; |
| − | require_once 'includes/AuthPlugin.php'; | + | require_once 'includes/AuthPlugin.php'; |
| − | $wgAuth = new LdapAuthenticationPlugin(); | + | $wgAuth = new LdapAuthenticationPlugin(); |
| − | $wgLDAPDomainNames = array( | + | $wgLDAPDomainNames = array( |
| − | + | 'GridUIS', | |
| − | ); | + | ); |
| − | $wgLDAPServerNames = array( | + | $wgLDAPServerNames = array( |
| − | + | 'GridUIS' => '192.168.66.5', | |
| − | ); | + | ); |
| − | $wgLDAPUseLocal = false; | + | $wgLDAPUseLocal = false; |
| − | $wgLDAPEncryptionType = array( | + | $wgLDAPEncryptionType = array( |
| − | + | 'GridUIS' => 'clear', | |
| − | ); | + | ); |
| − | $wgLDAPPort = array( | + | $wgLDAPPort = array( |
| − | + | 'GridUIS' => 389, | |
| − | ); | + | ); |
| − | $wgLDAPProxyAgent = array( | + | $wgLDAPProxyAgent = array( |
| − | + | 'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co', | |
| − | ); | + | ); |
| − | $wgLDAPProxyAgentPassword = array( | + | $wgLDAPProxyAgentPassword = array( |
| − | + | 'GridUIS' => 'griduis2o14sant', | |
| − | ); | + | ); |
| − | $wgLDAPSearchAttributes = array( | + | $wgLDAPSearchAttributes = array( |
| − | + | 'GridUIS' => 'uid' | |
| − | ); | + | ); |
| − | $wgLDAPBaseDNs = array( | + | $wgLDAPBaseDNs = array( |
| − | + | 'GridUIS' => 'dc=uis,dc=edu,dc=co', | |
| − | ); | + | ); |
| − | # To pull e-mail address from LDAP | + | # To pull e-mail address from LDAP |
| − | $wgLDAPPreferences = array( | + | $wgLDAPPreferences = array( |
| − | + | 'GridUIS' => array( 'email' => 'mail') | |
| − | ); | + | ); |
| − | # Group based restriction | + | # Group based restriction |
| − | $wgLDAPGroupUseFullDN = array( "openldap_example_com"=>false ); | + | $wgLDAPGroupUseFullDN = array( "openldap_example_com"=>false ); |
| − | $wgLDAPGroupObjectclass = array( "openldap_example_com"=>"posixgroup" ); | + | $wgLDAPGroupObjectclass = array( "openldap_example_com"=>"posixgroup" ); |
| − | $wgLDAPGroupAttribute = array( "openldap_example_com"=>"memberuid" ); | + | $wgLDAPGroupAttribute = array( "openldap_example_com"=>"memberuid" ); |
| − | $wgLDAPGroupSearchNestedGroups = array( "openldap_example_com"=>false ); | + | $wgLDAPGroupSearchNestedGroups = array( "openldap_example_com"=>false ); |
| − | $wgLDAPGroupNameAttribute = array( "openldap_example_com"=>"cn" ); | + | $wgLDAPGroupNameAttribute = array( "openldap_example_com"=>"cn" ); |
| − | $wgLDAPRequiredGroups = array( "openldap_example_com"=>array("cn=ldapwiki,ou=groups,dc=example,dc=com")); | + | $wgLDAPRequiredGroups = array( "openldap_example_com"=>array("cn=ldapwiki,ou=groups,dc=example,dc=com")); |
| − | $wgLDAPLowerCaseUsername = array( | + | $wgLDAPLowerCaseUsername = array( |
| − | + | 'openldap_example_com' => true, | |
| − | ); | + | ); |
| − | </nowiki></pre>}} | + | </nowiki></pre>}} |
| − | LDAP Setup: | + | LDAP Setup: |
| − | {{File|/var/www/mediawiki-folder/|<pre><nowiki> | + | {{File|/var/www/mediawiki-folder/|<pre><nowiki> |
| − | // Nombre del dominio | + | // Nombre del dominio |
| − | $wgLDAPDomainNames = array( | + | $wgLDAPDomainNames = array( |
| − | + | 'GridUIS', | |
| − | ); | + | ); |
| − | // FQDN del dominio | + | // FQDN del dominio |
| − | $wgLDAPServerNames = array( | + | $wgLDAPServerNames = array( |
| − | + | 'GridUIS' => '192.168.66.5', | |
| − | ); | + | ); |
| − | // Combinar con la base de datos local, dice que ponerlo en falso | + | // Combinar con la base de datos local, dice que ponerlo en falso |
| − | $wgLDAPUseLocal = false; | + | $wgLDAPUseLocal = false; |
| − | // Tipo de encriptamiento | + | // Tipo de encriptamiento |
| − | $wgLDAPEncryptionType = array( | + | $wgLDAPEncryptionType = array( |
| − | //'testADdomain' => 'tls', Deshabilitado por el moemnto | + | //'testADdomain' => 'tls', Deshabilitado por el moemnto |
| − | + | 'GridUIS' => 'clear', | |
| − | ); | + | ); |
| − | // Usuario y contraseña usada para acceso de proxyagent | + | // Usuario y contraseña usada para acceso de proxyagent |
| − | // Usar usuario restringido, no el administrador | + | // Usar usuario restringido, no el administrador |
| − | $wgLDAPProxyAgent = array( | + | $wgLDAPProxyAgent = array( |
| − | + | 'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co', | |
| − | ); | + | ); |
| − | $wgLDAPProxyAgentPassword = array( | + | $wgLDAPProxyAgentPassword = array( |
| − | + | 'GridUIS' => 'griduis2o14sant', | |
| − | ); | + | ); |
| − | // Filtro de busqueda | + | // Filtro de busqueda |
| − | // These options are only needed if you want to search for users to bind with them. In otherwords, | + | // These options are only needed if you want to search for users to bind with them. In otherwords, |
| − | // if you cannot do direct binds based upon $wgLDAPSearchStrings, then you'll need these two options. | + | // if you cannot do direct binds based upon $wgLDAPSearchStrings, then you'll need these two options. |
| − | // If you need a proxyagent to search, remember to set $wgLDAPProxyAgent, and $wgLDAPProxyAgentPassword. | + | // If you need a proxyagent to search, remember to set $wgLDAPProxyAgent, and $wgLDAPProxyAgentPassword. |
| − | // Anonymous searching is supported. To do an anonymous search, use SearchAttibutes and don't set a Proxy | + | // Anonymous searching is supported. To do an anonymous search, use SearchAttibutes and don't set a Proxy |
| − | // agent for the domain required. | + | // agent for the domain required. |
| − | $wgLDAPSearchAttributes = array( | + | $wgLDAPSearchAttributes = array( |
| − | + | 'GridUIS' => 'uid' | |
| − | ); | + | ); |
| − | // DN Base | + | // DN Base |
| − | // Base DNs. Group and User base DNs will be used if available; if they are not defined, the search | + | // Base DNs. Group and User base DNs will be used if available; if they are not defined, the search |
| − | // will default to $wgLDAPBaseDNs | + | // will default to $wgLDAPBaseDNs |
| − | $wgLDAPBaseDNs = array( | + | $wgLDAPBaseDNs = array( |
| − | + | 'GridUIS' => 'dc=uis,dc=edu,dc=co' | |
| − | ); | + | ); |
| − | // No crear una cuenta para usuario si la cuenta existe en LDAP pero no en mediawiki | + | // No crear una cuenta para usuario si la cuenta existe en LDAP pero no en mediawiki |
| − | // Default: false. | + | // Default: false. |
| − | $wgLDAPDisableAutoCreate = array( | + | $wgLDAPDisableAutoCreate = array( |
| − | + | 'GridUIS' => true | |
| − | ); | + | ); |
| − | </nowiki></pre>}} | + | </nowiki></pre>}} |
| − | Last version: | + | Last version: |
| − | {{File|/var/www/mediawiki-folder/|<pre><nowiki> | + | {{File|/var/www/mediawiki-folder/|<pre><nowiki> |
| − | # LDAP | + | # LDAP |
| − | require_once "$IP/extensions/LdapAuthentication/LdapAuthentication.php"; | + | require_once "$IP/extensions/LdapAuthentication/LdapAuthentication.php"; |
| − | $wgAuth = new LdapAuthenticationPlugin(); | + | $wgAuth = new LdapAuthenticationPlugin(); |
| − | $wgLDAPDomainNames = array("GridUIS"); | + | $wgLDAPDomainNames = array("GridUIS"); |
| − | $wgLDAPServerNames = array("GridUIS" => "192.168.66.5"); | + | $wgLDAPServerNames = array("GridUIS" => "192.168.66.5"); |
| − | $wgLDAPUseLocal = true; | + | $wgLDAPUseLocal = true; |
| − | $wgLDAPEncryptionType = array("GridUIS" => "clear"); | + | $wgLDAPEncryptionType = array("GridUIS" => "clear"); |
| − | # $wgLDAPPort = array('GridUIS' => 389); | + | # $wgLDAPPort = array('GridUIS' => 389); |
| − | $wgLDAPProxyAgent = array("GridUIS" => "cn=nss,ou=admin,dc=uis,dc=edu,dc=co"); | + | $wgLDAPProxyAgent = array("GridUIS" => "cn=nss,ou=admin,dc=uis,dc=edu,dc=co"); |
| − | $wgLDAPProxyAgentPassword = array("GridUIS" => "griduis2o14sant"); | + | $wgLDAPProxyAgentPassword = array("GridUIS" => "griduis2o14sant"); |
| − | $wgLDAPSearchAttributes = array("GridUIS" => "uid"); | + | $wgLDAPSearchAttributes = array("GridUIS" => "uid"); |
| − | $wgLDAPBaseDNs = array("GridUIS" => "dc=uis,dc=edu,dc=co"); | + | $wgLDAPBaseDNs = array("GridUIS" => "dc=uis,dc=edu,dc=co"); |
| − | # To pull e-mail address from LDAP | + | # To pull e-mail address from LDAP |
| − | $wgLDAPPreferences = array("GridUIS" => array( "email" => "mail")); | + | $wgLDAPPreferences = array("GridUIS" => array( "email" => "mail")); |
| − | $wgLDAPDebug = 3; | + | $wgLDAPDebug = 3; |
| − | //$wgLDAPDebug = 4; //for debugging LDAP | + | //$wgLDAPDebug = 4; //for debugging LDAP |
| − | $wgDebugLogGroups["ldap"] = "$IP/extensions/LdapAuthentication/perrito.log" ; | + | $wgDebugLogGroups["ldap"] = "$IP/extensions/LdapAuthentication/perrito.log" ; |
| − | # aparte | + | # aparte |
| − | $wgShowExceptionDetails = true; //for debugging MediaWiki | + | $wgShowExceptionDetails = true; //for debugging MediaWiki |
| − | $wgDebugLogFile = "/var/log/mediawiki/debug-{$wgDBname}.log"; | + | $wgDebugLogFile = "/var/log/mediawiki/debug-{$wgDBname}.log"; |
| − | </nowiki></pre>}} | + | </nowiki></pre>}} |
| + | |||
| + | |||
| + | </p> | ||
| + | </div> | ||
| + | </div> | ||
| + | </div> | ||
Revision as of 16:21, 9 April 2015
Installation notes
Basic configuration (taken form internet and edited):
File: /var/www/mediawiki-folder/
# LDAP
require_once 'extensions/LdapAuthentication/LdapAuthentication.php';
require_once 'includes/AuthPlugin.php';
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array(
'GridUIS',
);
$wgLDAPServerNames = array(
'GridUIS' => '192.168.66.5',
);
$wgLDAPUseLocal = false;
$wgLDAPEncryptionType = array(
'GridUIS' => 'clear',
);
$wgLDAPPort = array(
'GridUIS' => 389,
);
$wgLDAPProxyAgent = array(
'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
);
$wgLDAPProxyAgentPassword = array(
'GridUIS' => 'griduis2o14sant',
);
$wgLDAPSearchAttributes = array(
'GridUIS' => 'uid'
);
$wgLDAPBaseDNs = array(
'GridUIS' => 'dc=uis,dc=edu,dc=co',
);
# To pull e-mail address from LDAP
$wgLDAPPreferences = array(
'GridUIS' => array( 'email' => 'mail')
);
# Group based restriction
$wgLDAPGroupUseFullDN = array( "openldap_example_com"=>false );
$wgLDAPGroupObjectclass = array( "openldap_example_com"=>"posixgroup" );
$wgLDAPGroupAttribute = array( "openldap_example_com"=>"memberuid" );
$wgLDAPGroupSearchNestedGroups = array( "openldap_example_com"=>false );
$wgLDAPGroupNameAttribute = array( "openldap_example_com"=>"cn" );
$wgLDAPRequiredGroups = array( "openldap_example_com"=>array("cn=ldapwiki,ou=groups,dc=example,dc=com"));
$wgLDAPLowerCaseUsername = array(
'openldap_example_com' => true,
);
LDAP Setup:
File: /var/www/mediawiki-folder/
// Nombre del dominio
$wgLDAPDomainNames = array(
'GridUIS',
);
// FQDN del dominio
$wgLDAPServerNames = array(
'GridUIS' => '192.168.66.5',
);
// Combinar con la base de datos local, dice que ponerlo en falso
$wgLDAPUseLocal = false;
// Tipo de encriptamiento
$wgLDAPEncryptionType = array(
//'testADdomain' => 'tls', Deshabilitado por el moemnto
'GridUIS' => 'clear',
);
// Usuario y contraseña usada para acceso de proxyagent
// Usar usuario restringido, no el administrador
$wgLDAPProxyAgent = array(
'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
);
$wgLDAPProxyAgentPassword = array(
'GridUIS' => 'griduis2o14sant',
);
// Filtro de busqueda
// These options are only needed if you want to search for users to bind with them. In otherwords,
// if you cannot do direct binds based upon $wgLDAPSearchStrings, then you'll need these two options.
// If you need a proxyagent to search, remember to set $wgLDAPProxyAgent, and $wgLDAPProxyAgentPassword.
// Anonymous searching is supported. To do an anonymous search, use SearchAttibutes and don't set a Proxy
// agent for the domain required.
$wgLDAPSearchAttributes = array(
'GridUIS' => 'uid'
);
// DN Base
// Base DNs. Group and User base DNs will be used if available; if they are not defined, the search
// will default to $wgLDAPBaseDNs
$wgLDAPBaseDNs = array(
'GridUIS' => 'dc=uis,dc=edu,dc=co'
);
// No crear una cuenta para usuario si la cuenta existe en LDAP pero no en mediawiki
// Default: false.
$wgLDAPDisableAutoCreate = array(
'GridUIS' => true
);
Last version:
File: /var/www/mediawiki-folder/
# LDAP
require_once "$IP/extensions/LdapAuthentication/LdapAuthentication.php";
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array("GridUIS");
$wgLDAPServerNames = array("GridUIS" => "192.168.66.5");
$wgLDAPUseLocal = true;
$wgLDAPEncryptionType = array("GridUIS" => "clear");
# $wgLDAPPort = array('GridUIS' => 389);
$wgLDAPProxyAgent = array("GridUIS" => "cn=nss,ou=admin,dc=uis,dc=edu,dc=co");
$wgLDAPProxyAgentPassword = array("GridUIS" => "griduis2o14sant");
$wgLDAPSearchAttributes = array("GridUIS" => "uid");
$wgLDAPBaseDNs = array("GridUIS" => "dc=uis,dc=edu,dc=co");
# To pull e-mail address from LDAP
$wgLDAPPreferences = array("GridUIS" => array( "email" => "mail"));
$wgLDAPDebug = 3;
//$wgLDAPDebug = 4; //for debugging LDAP
$wgDebugLogGroups["ldap"] = "$IP/extensions/LdapAuthentication/perrito.log" ;
# aparte
$wgShowExceptionDetails = true; //for debugging MediaWiki
$wgDebugLogFile = "/var/log/mediawiki/debug-{$wgDBname}.log";
