npm - carta-controller - Versions diffs - 5.0.0-beta.1 → 5.0.0-beta.1c - Mend

carta-controller 5.0.0-beta.1 → 5.0.0-beta.1c

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

package/config/example_config.json +4 -4
package/config/example_nginx.conf.stub +5 -8
package/config/example_sudoers_conf.stub +1 -1
package/docs/requirements.txt +1 -0
package/docs/src/conf.py +1 -0
package/docs/src/configuration.rst +11 -5
package/docs/src/index.rst +10 -10
package/docs/src/installation.rst +180 -8
package/docs/src/introduction.rst +2 -2
package/docs/src/step_by_step.rst +576 -0
package/package.json +2 -2
package/docs/src/almalinux8_instructions.rst +0 -281
package/docs/src/ubuntu_focal_instructions.rst +0 -127

package/docs/src/almalinux8_instructions.rst DELETED Viewed

@@ -1,281 +0,0 @@
-.. _almalinux8_instructions:
-Step-by-step instructions for AlmaLinux 8
-=========================================
-.. note::
-    These instructions should also work for RHEL 8 and Rocky Linux 8. Some changes may be necessary for RHEL 7 / CentOS 7.
-1. Install Node.js
-~~~~~~~~~~~~~~~~~~
-The CARTA controller uses `Node.js <https://nodejs.org/>`_, which can easily be installed from the AlmaLinux 8 AppStream repository. We recommend using the `latest LTS version <https://github.com/nodejs/release#release-schedule>`_. The oldest version known to work with the controller is v16. Here we install v20, as well as the ``npm`` package manager.
-.. code-block:: shell
-    # Install Node.js v20:
-    sudo dnf module enable nodejs:20
-    sudo dnf install -y nodejs npm
-    # Check it is installed and working:
-    node --version
-    npm --version
-2. Install MongoDB
-~~~~~~~~~~~~~~~~~~
-The CARTA controller uses `MongoDB <https://www.mongodb.com/>`_ to store user preferences, etc.. MongoDB is not available through the default AlmaLinux 8 repositories, but we can add a custom repository to install it more easily.
-.. code-block:: shell
-    # Create a custom MongoDB repo file:
-    sudo cat <<EOT >> /etc/yum.repos.d/mongodb-org.repo
-    [mongodb-org-4.4]
-    name=MongoDB Repository
-    baseurl=https://repo.mongodb.org/yum/redhat/$releasever/mongodb-org/4.4/x86_64/
-    gpgcheck=1
-    enabled=1
-    gpgkey=https://www.mongodb.org/static/pgp/server-4.4.asc
-    EOT
-    # Install MongoDB:
-    sudo dnf update
-    sudo dnf install -y mongodb-org
-    # Start and enable MongoDB to run on startup:
-    sudo systemctl start mongod
-    sudo systemctl enable mongod
-    # Check that it is working
-    sudo systemctl status mongod
-.. note::
-    On RHEL7/CentOS7, MongoDB v14 can be installed as follows:
-    .. code-block:: shell
-        curl -fsSL https://rpm.nodesource.com/setup_14.x | bash - && yum install -y nodejs
-3. Install the CARTA controller
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-The easiest way to install the CARTA controller is using ``npm``.
-.. code-block:: shell
-    sudo dnf install -y python3 make gcc-c++
-    sudo npm install -g --unsafe-perm carta-controller
-.. note::
-    If you would like to install the latest **beta** release of CARTA, please install the ``beta`` tag of the controller instead:
-    .. code-block:: shell
-        sudo npm install -g --unsafe-perm carta-controller@beta
-.. note::
-    The CARTA controller executable will be installed at ``/usr/local/lib/node_modules/carta-controller``.
-    The CARTA frontend will be installed at ``/usr/local/lib/node_modules/carta-controller/node_modules/carta-frontend/build``.
-.. note::
-    Do not pass the ``--unsafe-perm`` flag to ``npm`` if using a local install.
-.. note::
-    On RHEL7/CentOS7 the CARTA controller package can not run with the default gcc version 4.8.5 (there would be an error due to ``node-linux-pam``).
-    A work around is to install a newer GCC version from source in order to get a newer ``libstdc++.so.6``, then add the location of the newer
-    ``libstdc++.so.6`` to the LD_LIBRARY_PATH. After that, the CARTA controller can run on RHEL7/CentOS7.
-4. Install the CARTA backend
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-The easiest way is to install the CARTA backend is from our `cartavis/carta Copr <https://copr.fedorainfracloud.org/coprs/cartavis/carta/>`_ repository.
-.. code-block:: shell
-    # Install the CARTA backend
-    sudo dnf -y install 'dnf-command(copr)'
-    sudo dnf -y copr enable cartavis/carta
-    sudo dnf -y install epel-release
-    sudo dnf -y install carta-backend
-    # Check that the backend can run and matches the major version number of the controller.
-    /usr/bin/carta_backend --version
-.. note::
-    The ``carta-backend`` package is updated with every stable CARTA release. If you would like to install the latest **beta** version of CARTA, or to receive beta release updates as well as stable release updates in the future, please install ``carta-backend-beta`` instead:
-    .. code-block:: shell
-        sudo dnf -y install carta-backend-beta
-    Make sure that you install the matching controller version (using the ``beta`` tag).
-    We currently install the beta version of ``carta_backend`` in a non-standard location:
-    .. code-block:: shell
-        /opt/carta-beta/bin/carta_backend --version
-5. Install Nginx
-~~~~~~~~~~~~~~~~
-The CARTA controller requires a webserver. Here we use `NGINX <https://www.nginx.com/>`_, but Apache should work too.
-.. code-block:: shell
-    # Install nginx:
-    sudo dnf install -y nginx
-    sudo systemctl start nginx
-    sudo systemctl enable nginx
-    sudo setsebool -P httpd_can_network_connect 1
-    sudo firewall-cmd --permanent --zone=public --add-service=http
-    sudo firewall-cmd --permanent --zone=public --add-service=https
-    sudo firewall-cmd --reload
-    # Set up the nginx configuration file using our sample configuration file linked below:
-    sudo cd /etc/nginx/conf.d/
-    sudo vi /etc/nginx/conf.d/carta.conf
-    sudo systemctl restart nginx
-    # Check it is running:
-    sudo systemctl status nginx
-A :ref:`sample configuration file<example_nginx>` is provided in the configuration section. This should be adapted to your server configuration.
-.. note::
-    If there are problems, you can debug with ``journactl -xe`` and by checking log files in ``/var/log/nginx/``.
-6. Create the 'carta' user and modify sudoers
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-For security, we recommend not to run the CARTA controller as the root user. Therefore we create a new user called ``carta``.
-We will assign the group ``carta-users`` to every user account and enable them to run ``/usr/bin/carta_backend`` and the script to close the CARTA backend, ``/usr/local/bin/carta-kill-script``, by adding a custom entry to the ``sudoers`` file.
-.. code-block:: shell
-    # Create the carta user:
-    sudo adduser carta
-    # Check everything is OK
-    id carta
-    # It should show 'uid=1000(carta) gid=1000(carta) groups=1000(carta)'
-    # So that log files can be written:
-    sudo mkdir -p /var/log/carta
-    sudo chown -R carta /var/log/carta
-    # Add the custom sudoers file entry using our sample linked below
-    sudo visudo -f /etc/sudoers.d/carta_controller
-An :ref:`example sudoers configuration<example_sudoers>` is provided in the configuration section.
-.. note::
-    The only safe way to modify sudoers is using ``visudo``. Any syntax errors from directly editing sudoers could make your system unusable.
-.. note::
-    The ``carta`` user should not be in the ``carta-users`` group. ``carta-users`` should only be assigned to the normal user accounts.
-.. note::
-    If you have installed the **beta** version of CARTA, please remember to change the path to the ``carta_backend`` executable in the sudoers file:
-    .. code-block:: bash
-        carta ALL=(%carta-users) NOPASSWD:SETENV: /opt/carta-beta/bin/carta_backend
-7. Set up the user authentication method
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-This is the most difficult step and depends on how you authenticate users at your institute. In this step-by-step guide we use PAM local authentication and a local user, ``bob``, on the server running the CARTA controller. The user ``bob`` needs to be part of the ``carta-users`` group.
-With PAM authentication, the ``carta`` user that runs the CARTA controller requires access to the ``/etc/shadow`` file in order to authenticate other users. We can enable this by creating a new group called ``shadow`` and assigning the ``/etc/shadow`` file to that group.
-.. note::
-    Only PAM with local authentication requires ``/etc/shadow`` access. PAM using LDAP, and Google OAuth, do not require ``/etc/shadow`` access.
-.. code-block:: shell
-    # Create the test user 'bob':
-    sudo useradd -G carta-users bob
-    sudo passwd bob
-    # A new group called 'shadow' needs to be assinged to the /etc/shadow file and user 'carta':
-    sudo groupadd shadow
-    sudo chgrp shadow /etc/shadow
-    sudo chmod g+r /etc/shadow
-    sudo usermod -a -G shadow carta
-    ls -l /etc/shadow
-    # It should show permissions as ----r-----. 1 root shadow
-    # It could be helpful to reboot the server at this point
-    sudo reboot
-8. Configure the CARTA controller
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-Create and fill in the ``config.json`` using our :ref:`sample configuration file<example_config>`.
-Also generate private/public keys as they are used by the CARTA controller to sign/verify/refresh access tokens.
-.. code-block:: shell
-    sudo mkdir /etc/carta
-    sudo chown -R carta /etc/carta
-    vi /etc/carta/config.json
-    # Generate private/public keys:
-    cd /etc/carta
-    sudo openssl genrsa -out carta_private.pem 4096
-    sudo openssl rsa -in carta_private.pem -outform PEM -pubout -out carta_public.pem
-Please check the `CARTA Configuration Schema <https://carta-controller.readthedocs.io/en/latest/schema.html#schema>`_ for all available options.
-9. Check everything is working
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-Here we switch to the ``carta`` user and test the CARTA controller with our test user ``bob``:
-.. code-block:: shell
-    su - carta
-    carta-controller -verbose -test bob
-If the test is successful, the CARTA controller should be ready to deploy.
-10. Start the CARTA controller
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-.. code-block:: shell
-    su - carta
-    carta-controller
-Now your users should be able to access your server's URL and log into CARTA.
-Optional: Set up the CARTA controller to run with pm2
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-`pm2 <https://pm2.keymetrics.io/>`_ is a very convenient tool to keep the CARTA controller service running in the background, and even start it up automatically after a reboot.
-.. code-block:: shell
-    sudo npm install -g pm2
-    su -carta
-    pm2 start carta-controller
-Please refer to the `pm2 documentation <https://pm2.keymetrics.io/docs/usage/startup/>`_ for detailed instructions.

package/docs/src/ubuntu_focal_instructions.rst DELETED Viewed

@@ -1,127 +0,0 @@
-.. _focal_instructions:
-Step-by-step instructions for Ubuntu 20.04.2 (Focal Fossa)
-==========================================================
-.. note::
-    These instructions can be used almost unchanged on Ubuntu 18.04 (Bionic Badger). We note differences where they occur.
-Dependencies
-------------
-Install the CARTA backend and other required packages
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-.. code-block:: shell
-    # Add CARTA PPA
-    sudo add-apt-repository ppa:cartavis-team/carta
-    sudo apt-get update
-    # Install the backend package with all dependencies
-    sudo apt-get install carta-backend
-    # Install additional packages
-    sudo apt-get install nginx g++ mongodb make curl
-.. note::
-    The ``carta-backend`` package is updated with every stable CARTA release. If you would like to install the latest **beta** version of CARTA, or to receive beta release updates as well as stable release updates in the future, please install the ``carta-backend-beta`` package instead:
-    .. code-block:: shell
-        sudo apt-get install install carta-backend-beta
-    These packages cannot be installed simultaneously, as they use the same install locations. If you install one, you will automatically be prompted to uninstall the other.
-    Make sure that you install the matching controller version (using the ``beta`` tag).
-Set up directories and permissions
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-Ensure that all users who should have access to CARTA belong to a group that identifies them (assumed here to be called ``carta-users``).
-.. code-block:: shell
-    # create a 'carta' user to run the controller
-    sudo adduser --system --home /var/lib/carta --shell=/bin/bash --group carta
-    # add 'carta' user to the shadow group (only required for PAM UNIX authentication)
-    sudo usermod -a -G shadow carta
-    # log directory owned by carta
-    sudo mkdir -p /var/log/carta
-    sudo chown carta: /var/log/carta
-    # config directory owned by carta
-    sudo mkdir -p /etc/carta
-    sudo chown carta: /etc/carta
-    # edit sudoers file to allow passwordless sudo execution of
-    # /usr/local/bin/carta-kill-script and /usr/bin/carta_backend
-    # by the carta user
-    sudo visudo -f /etc/sudoers.d/carta_controller
-An :ref:`example sudoers configuration<example_sudoers>` is provided in the configuration section.
-Configure nginx
-~~~~~~~~~~~~~~~
-A :ref:`sample configuration file<example_nginx>` is provided in the configuration section. This should be adapted to your server configuration. The relevant part of the config is for forwarding ``/`` to port 8000.
-Install CARTA controller
-------------------------
-.. note::
-    We recommend using the `latest LTS version <https://github.com/nodejs/release#release-schedule>`_ of NodeJS. The oldest version known to work with the controller is v16. In the example below we install the latest LTS version from the `NodeSource repo <https://github.com/nodesource/distributions>`_. Do not pass the ``--unsafe-perm`` flag to ``npm`` if using a local install.
-.. code-block:: shell
-    # Install the latest NodeJS LTS repo
-    curl -fsSL https://deb.nodesource.com/setup_lts.x | sudo -E bash -
-    # Install NodeJS, NPM and tools required to compile native addons
-    sudo apt-get install -y nodejs build-essential
-    # Install carta-controller (includes frontend config)
-    sudo npm install -g --unsafe-perm carta-controller
-    # Install PM2 node service
-    sudo npm install -g pm2
-    # Switch to carta user
-    sudo su - carta
-    # Generate private/public keys
-    cd /etc/carta
-    openssl genrsa -out carta_private.pem 4096
-    openssl rsa -in carta_private.pem -outform PEM -pubout -out carta_public.pem
-.. note::
-    If you would like to install the latest **beta** release of CARTA, please install the ``beta`` tag of the controller instead:
-    .. code-block:: shell
-        sudo npm install -g --unsafe-perm carta-controller@beta
-Configure controller
-~~~~~~~~~~~~~~~~~~~~
-Edit ``/etc/carta/config.json`` to customise the appearance of the dashboard and other options. A :ref:`sample configuration file<example_config>` is provided in the configuration section.
-Run controller
-~~~~~~~~~~~~~~
-This should be executed as the ``carta`` user.
-.. code-block:: shell
-    pm2 start carta-controller
-Create pm2 startup script
-~~~~~~~~~~~~~~~~~~~~~~~~~
-This service will start the controller automatically after a reboot. Please refer to the `pm2 documentation <https://pm2.keymetrics.io/docs/usage/startup/>`_ for detailed instructions. You should run ``pm2 startup`` as ``carta``, execute the generated command as a user with ``sudo`` access, and finally run ``pm2 save`` as ``carta`` to save the running controller process.