Difference between revisions of "Mediawiki installation notes"

From Supercomputación y Cálculo Científico UIS
Line 1: Line 1:
= Installation notes =
+
__NOTOC__
  
 +
<div class="thumbnail img-thumbnail">http://wiki.sc3.uis.edu.co/images/a/a8/Logo_sc33.png</div>
 +
<p><div class="btn btn-primary"><i class="fa  fa-long-arrow-left"></i> [[Administración del SC3]]</div></p>
  
Basic configuration (taken form internet and edited):
+
<div class="col-md-14">
 +
    <div class="panel panel-darker-white-border">
 +
        <div class="panel-heading">
 +
            <h3 class="panel-title">Installation notes </h3>
 +
        </div>
 +
        <div class="panel-body">
 +
            <p>
 +
            Basic configuration (taken form internet and edited):
  
{{File|/var/www/mediawiki-folder/|<pre><nowiki>
+
            {{File|/var/www/mediawiki-folder/|<pre><nowiki>
# LDAP
+
            # LDAP
require_once 'extensions/LdapAuthentication/LdapAuthentication.php';
+
            require_once 'extensions/LdapAuthentication/LdapAuthentication.php';
require_once 'includes/AuthPlugin.php';
+
            require_once 'includes/AuthPlugin.php';
$wgAuth = new LdapAuthenticationPlugin();
+
            $wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array(
+
            $wgLDAPDomainNames = array(
  'GridUIS',
+
              'GridUIS',
);
+
            );
$wgLDAPServerNames = array(
+
            $wgLDAPServerNames = array(
  'GridUIS' => '192.168.66.5',
+
              'GridUIS' => '192.168.66.5',
);
+
            );
$wgLDAPUseLocal = false;
+
            $wgLDAPUseLocal = false;
$wgLDAPEncryptionType = array(
+
            $wgLDAPEncryptionType = array(
  'GridUIS' => 'clear',
+
              'GridUIS' => 'clear',
);
+
            );
$wgLDAPPort = array(
+
            $wgLDAPPort = array(
  'GridUIS' => 389,
+
              'GridUIS' => 389,
);
+
            );
$wgLDAPProxyAgent = array(
+
            $wgLDAPProxyAgent = array(
  'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
+
              'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
);
+
            );
$wgLDAPProxyAgentPassword = array(
+
            $wgLDAPProxyAgentPassword = array(
  'GridUIS' => 'griduis2o14sant',
+
              'GridUIS' => 'griduis2o14sant',
);
+
            );
$wgLDAPSearchAttributes = array(
+
            $wgLDAPSearchAttributes = array(
  'GridUIS' => 'uid'
+
              'GridUIS' => 'uid'
);
+
            );
$wgLDAPBaseDNs = array(
+
            $wgLDAPBaseDNs = array(
  'GridUIS' => 'dc=uis,dc=edu,dc=co',
+
              'GridUIS' => 'dc=uis,dc=edu,dc=co',
);
+
            );
# To pull e-mail address from LDAP
+
            # To pull e-mail address from LDAP
$wgLDAPPreferences = array(
+
            $wgLDAPPreferences = array(
  'GridUIS' => array( 'email' => 'mail')
+
              'GridUIS' => array( 'email' => 'mail')
);
+
            );
# Group based restriction
+
            # Group based restriction
$wgLDAPGroupUseFullDN = array( "openldap_example_com"=>false );
+
            $wgLDAPGroupUseFullDN = array( "openldap_example_com"=>false );
$wgLDAPGroupObjectclass = array( "openldap_example_com"=>"posixgroup" );
+
            $wgLDAPGroupObjectclass = array( "openldap_example_com"=>"posixgroup" );
$wgLDAPGroupAttribute = array( "openldap_example_com"=>"memberuid" );
+
            $wgLDAPGroupAttribute = array( "openldap_example_com"=>"memberuid" );
$wgLDAPGroupSearchNestedGroups = array( "openldap_example_com"=>false );
+
            $wgLDAPGroupSearchNestedGroups = array( "openldap_example_com"=>false );
$wgLDAPGroupNameAttribute = array( "openldap_example_com"=>"cn" );
+
            $wgLDAPGroupNameAttribute = array( "openldap_example_com"=>"cn" );
$wgLDAPRequiredGroups = array( "openldap_example_com"=>array("cn=ldapwiki,ou=groups,dc=example,dc=com"));
+
            $wgLDAPRequiredGroups = array( "openldap_example_com"=>array("cn=ldapwiki,ou=groups,dc=example,dc=com"));
$wgLDAPLowerCaseUsername = array(
+
            $wgLDAPLowerCaseUsername = array(
  'openldap_example_com' => true,
+
              'openldap_example_com' => true,
);
+
            );
</nowiki></pre>}}
+
            </nowiki></pre>}}
  
LDAP Setup:
+
            LDAP Setup:
  
{{File|/var/www/mediawiki-folder/|<pre><nowiki>
+
            {{File|/var/www/mediawiki-folder/|<pre><nowiki>
// Nombre del dominio
+
            // Nombre del dominio
$wgLDAPDomainNames = array(
+
            $wgLDAPDomainNames = array(
  'GridUIS',
+
              'GridUIS',
);
+
            );
  
// FQDN del dominio
+
            // FQDN del dominio
$wgLDAPServerNames = array(
+
            $wgLDAPServerNames = array(
  'GridUIS' => '192.168.66.5',
+
              'GridUIS' => '192.168.66.5',
);
+
            );
  
// Combinar con la base de datos local, dice que ponerlo en falso
+
            // Combinar con la base de datos local, dice que ponerlo en falso
$wgLDAPUseLocal = false;
+
            $wgLDAPUseLocal = false;
  
// Tipo de encriptamiento
+
            // Tipo de encriptamiento
$wgLDAPEncryptionType = array(
+
            $wgLDAPEncryptionType = array(
//'testADdomain' => 'tls', Deshabilitado por el moemnto
+
            //'testADdomain' => 'tls', Deshabilitado por el moemnto
  'GridUIS' => 'clear',
+
              'GridUIS' => 'clear',
);
+
            );
  
// Usuario y contraseña usada para acceso de proxyagent
+
            // Usuario y contraseña usada para acceso de proxyagent
// Usar usuario restringido, no el administrador
+
            // Usar usuario restringido, no el administrador
$wgLDAPProxyAgent = array(
+
            $wgLDAPProxyAgent = array(
  'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
+
              'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
);
+
            );
$wgLDAPProxyAgentPassword = array(
+
            $wgLDAPProxyAgentPassword = array(
  'GridUIS' => 'griduis2o14sant',
+
              'GridUIS' => 'griduis2o14sant',
);
+
            );
  
// Filtro de busqueda
+
            // Filtro de busqueda
// These options are only needed if you want to search for users to bind with them. In otherwords,
+
            // These options are only needed if you want to search for users to bind with them. In otherwords,
// if you cannot do direct binds based upon $wgLDAPSearchStrings, then you'll need these two options.
+
            // if you cannot do direct binds based upon $wgLDAPSearchStrings, then you'll need these two options.
// If you need a proxyagent to search, remember to set $wgLDAPProxyAgent, and $wgLDAPProxyAgentPassword.
+
            // If you need a proxyagent to search, remember to set $wgLDAPProxyAgent, and $wgLDAPProxyAgentPassword.
// Anonymous searching is supported. To do an anonymous search, use SearchAttibutes and don't set a Proxy
+
            // Anonymous searching is supported. To do an anonymous search, use SearchAttibutes and don't set a Proxy
// agent for the domain required.
+
            // agent for the domain required.
$wgLDAPSearchAttributes = array(
+
            $wgLDAPSearchAttributes = array(
  'GridUIS' => 'uid'
+
              'GridUIS' => 'uid'
);
+
            );
 
   
 
   
// DN Base
+
            // DN Base
// Base DNs. Group and User base DNs will be used if available; if they are not defined, the search
+
            // Base DNs. Group and User base DNs will be used if available; if they are not defined, the search
// will default to $wgLDAPBaseDNs
+
            // will default to $wgLDAPBaseDNs
$wgLDAPBaseDNs = array(
+
            $wgLDAPBaseDNs = array(
  'GridUIS' => 'dc=uis,dc=edu,dc=co'
+
              'GridUIS' => 'dc=uis,dc=edu,dc=co'
);
+
            );
  
// No crear una cuenta para usuario si la cuenta existe en LDAP pero no en mediawiki
+
            // No crear una cuenta para usuario si la cuenta existe en LDAP pero no en mediawiki
// Default: false.
+
            // Default: false.
$wgLDAPDisableAutoCreate = array(
+
            $wgLDAPDisableAutoCreate = array(
  'GridUIS' => true
+
              'GridUIS' => true
);
+
            );
</nowiki></pre>}}
+
            </nowiki></pre>}}
  
Last version:
+
            Last version:
  
{{File|/var/www/mediawiki-folder/|<pre><nowiki>
+
            {{File|/var/www/mediawiki-folder/|<pre><nowiki>
# LDAP
+
            # LDAP
require_once "$IP/extensions/LdapAuthentication/LdapAuthentication.php";
+
            require_once "$IP/extensions/LdapAuthentication/LdapAuthentication.php";
$wgAuth = new LdapAuthenticationPlugin();
+
            $wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array("GridUIS");
+
            $wgLDAPDomainNames = array("GridUIS");
$wgLDAPServerNames = array("GridUIS" => "192.168.66.5");
+
            $wgLDAPServerNames = array("GridUIS" => "192.168.66.5");
$wgLDAPUseLocal = true;
+
            $wgLDAPUseLocal = true;
$wgLDAPEncryptionType = array("GridUIS" => "clear");
+
            $wgLDAPEncryptionType = array("GridUIS" => "clear");
# $wgLDAPPort = array('GridUIS' => 389);
+
            # $wgLDAPPort = array('GridUIS' => 389);
$wgLDAPProxyAgent = array("GridUIS" => "cn=nss,ou=admin,dc=uis,dc=edu,dc=co");
+
            $wgLDAPProxyAgent = array("GridUIS" => "cn=nss,ou=admin,dc=uis,dc=edu,dc=co");
$wgLDAPProxyAgentPassword = array("GridUIS" => "griduis2o14sant");
+
            $wgLDAPProxyAgentPassword = array("GridUIS" => "griduis2o14sant");
$wgLDAPSearchAttributes = array("GridUIS" => "uid");
+
            $wgLDAPSearchAttributes = array("GridUIS" => "uid");
$wgLDAPBaseDNs = array("GridUIS" => "dc=uis,dc=edu,dc=co");
+
            $wgLDAPBaseDNs = array("GridUIS" => "dc=uis,dc=edu,dc=co");
# To pull e-mail address from LDAP
+
            # To pull e-mail address from LDAP
$wgLDAPPreferences = array("GridUIS" => array( "email" => "mail"));
+
            $wgLDAPPreferences = array("GridUIS" => array( "email" => "mail"));
$wgLDAPDebug = 3;
+
            $wgLDAPDebug = 3;
//$wgLDAPDebug = 4; //for debugging LDAP
+
            //$wgLDAPDebug = 4; //for debugging LDAP
$wgDebugLogGroups["ldap"] = "$IP/extensions/LdapAuthentication/perrito.log" ;
+
            $wgDebugLogGroups["ldap"] = "$IP/extensions/LdapAuthentication/perrito.log" ;
# aparte
+
            # aparte
$wgShowExceptionDetails = true; //for debugging MediaWiki
+
            $wgShowExceptionDetails = true; //for debugging MediaWiki
$wgDebugLogFile = "/var/log/mediawiki/debug-{$wgDBname}.log";
+
            $wgDebugLogFile = "/var/log/mediawiki/debug-{$wgDBname}.log";
</nowiki></pre>}}
+
            </nowiki></pre>}}
 +
 
 +
 
 +
            </p>
 +
        </div>
 +
    </div>
 +
</div>

Revision as of 11:21, 9 April 2015


Logo_sc33.png

Installation notes

Basic configuration (taken form internet and edited):

File: /var/www/mediawiki-folder/
            # LDAP
            require_once 'extensions/LdapAuthentication/LdapAuthentication.php';
            require_once 'includes/AuthPlugin.php';
            $wgAuth = new LdapAuthenticationPlugin();
            $wgLDAPDomainNames = array(
              'GridUIS',
            );
            $wgLDAPServerNames = array(
              'GridUIS' => '192.168.66.5',
            );
            $wgLDAPUseLocal = false;
            $wgLDAPEncryptionType = array(
              'GridUIS' => 'clear',
            );
            $wgLDAPPort = array(
              'GridUIS' => 389,
            );
            $wgLDAPProxyAgent = array(
              'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
            );
            $wgLDAPProxyAgentPassword = array(
              'GridUIS' => 'griduis2o14sant',
            );
            $wgLDAPSearchAttributes = array(
              'GridUIS' => 'uid'
            );
            $wgLDAPBaseDNs = array(
              'GridUIS' => 'dc=uis,dc=edu,dc=co',
            );
            # To pull e-mail address from LDAP
            $wgLDAPPreferences = array(
              'GridUIS' => array( 'email' => 'mail')
            );
            # Group based restriction
            $wgLDAPGroupUseFullDN = array( "openldap_example_com"=>false );
            $wgLDAPGroupObjectclass = array( "openldap_example_com"=>"posixgroup" );
            $wgLDAPGroupAttribute = array( "openldap_example_com"=>"memberuid" );
            $wgLDAPGroupSearchNestedGroups = array( "openldap_example_com"=>false );
            $wgLDAPGroupNameAttribute = array( "openldap_example_com"=>"cn" );
            $wgLDAPRequiredGroups = array( "openldap_example_com"=>array("cn=ldapwiki,ou=groups,dc=example,dc=com"));
            $wgLDAPLowerCaseUsername = array(
              'openldap_example_com' => true,
            );
            
           LDAP Setup:
File: /var/www/mediawiki-folder/
            // Nombre del dominio
            $wgLDAPDomainNames = array(
              'GridUIS',
            );

            // FQDN del dominio
            $wgLDAPServerNames = array(
              'GridUIS' => '192.168.66.5',
            );

            // Combinar con la base de datos local, dice que ponerlo en falso
            $wgLDAPUseLocal = false;

            // Tipo de encriptamiento
            $wgLDAPEncryptionType = array(
            //'testADdomain' => 'tls', Deshabilitado por el moemnto
              'GridUIS' => 'clear',
            );

            // Usuario y contraseña usada para acceso de proxyagent
            // Usar usuario restringido, no el administrador
            $wgLDAPProxyAgent = array(
              'GridUIS' => 'cn=nss,ou=admin,dc=uis,dc=edu,dc=co',
            );
            $wgLDAPProxyAgentPassword = array(
              'GridUIS' => 'griduis2o14sant',
            );

            // Filtro de busqueda
            // These options are only needed if you want to search for users to bind with them. In otherwords,
            // if you cannot do direct binds based upon $wgLDAPSearchStrings, then you'll need these two options.
            // If you need a proxyagent to search, remember to set $wgLDAPProxyAgent, and $wgLDAPProxyAgentPassword.
            // Anonymous searching is supported. To do an anonymous search, use SearchAttibutes and don't set a Proxy
            // agent for the domain required.
            $wgLDAPSearchAttributes = array(
              'GridUIS' => 'uid'
            );
 
            // DN Base
            // Base DNs. Group and User base DNs will be used if available; if they are not defined, the search
            // will default to $wgLDAPBaseDNs
            $wgLDAPBaseDNs = array(
              'GridUIS' => 'dc=uis,dc=edu,dc=co'
            );

            // No crear una cuenta para usuario si la cuenta existe en LDAP pero no en mediawiki
            // Default: false.
            $wgLDAPDisableAutoCreate = array(
              'GridUIS' => true
            );
            
           Last version:
File: /var/www/mediawiki-folder/
            # LDAP
            require_once "$IP/extensions/LdapAuthentication/LdapAuthentication.php";
            $wgAuth = new LdapAuthenticationPlugin();
            $wgLDAPDomainNames = array("GridUIS");
            $wgLDAPServerNames = array("GridUIS" => "192.168.66.5");
            $wgLDAPUseLocal = true;
            $wgLDAPEncryptionType = array("GridUIS" => "clear");
            # $wgLDAPPort = array('GridUIS' => 389);
            $wgLDAPProxyAgent = array("GridUIS" => "cn=nss,ou=admin,dc=uis,dc=edu,dc=co");
            $wgLDAPProxyAgentPassword = array("GridUIS" => "griduis2o14sant");
            $wgLDAPSearchAttributes = array("GridUIS" => "uid");
            $wgLDAPBaseDNs = array("GridUIS" => "dc=uis,dc=edu,dc=co");
            # To pull e-mail address from LDAP
            $wgLDAPPreferences = array("GridUIS" => array( "email" => "mail"));
            $wgLDAPDebug = 3;
            //$wgLDAPDebug = 4; //for debugging LDAP
            $wgDebugLogGroups["ldap"] = "$IP/extensions/LdapAuthentication/perrito.log" ;
            # aparte
            $wgShowExceptionDetails = true; //for debugging MediaWiki
            $wgDebugLogFile = "/var/log/mediawiki/debug-{$wgDBname}.log";