PeerTube/support/doc/production.md

269 lines
7.3 KiB
Markdown
Raw Normal View History

2018-01-12 11:07:41 -06:00
# Production guide
2018-01-29 04:23:38 -06:00
* [Installation](#installation)
* [Upgrade](#upgrade)
2018-01-29 04:23:38 -06:00
2018-01-12 11:07:41 -06:00
## Installation
**Please don't install PeerTube for production on a small device behind a low bandwidth connection (example: a Raspberry PI behind your ADSL link) because it could slow down the fediverse.**
2018-02-09 06:38:19 -06:00
2018-01-12 11:07:41 -06:00
### Dependencies
Follow the steps of the [dependencies guide](dependencies.md).
### PeerTube user
Create a `peertube` user with `/var/www/peertube` home:
2018-01-12 11:07:41 -06:00
2018-01-12 11:55:45 -06:00
```
$ sudo useradd -m -d /var/www/peertube -s /bin/bash -p peertube peertube
```
Set its password:
```
$ sudo passwd peertube
2018-01-12 11:07:41 -06:00
```
**On FreeBSD**
```
$ sudo pw useradd -n peertube -d /var/www/peertube -s /usr/local/bin/bash -m
$ sudo passwd peertube
```
or use `adduser` to create it interactively.
2018-01-12 11:07:41 -06:00
### Database
Create the production database and a peertube user inside PostgreSQL:
2018-01-12 11:07:41 -06:00
2018-01-12 11:55:45 -06:00
```
$ sudo -u postgres createuser -P peertube
$ sudo -u postgres createdb -O peertube peertube_prod
2018-01-12 11:07:41 -06:00
```
### Prepare PeerTube directory
2018-01-12 11:07:41 -06:00
Fetch the latest tagged version of Peertube
```
$ VERSION=$(curl -s https://api.github.com/repos/chocobozzz/peertube/releases/latest | grep tag_name | cut -d '"' -f 4) && echo "Latest Peertube version is $VERSION"
```
Open the peertube directory, create a few required directories
```
$ cd /var/www/peertube && sudo -u peertube mkdir config storage versions && cd versions
```
Download the latest version of the Peertube client, unzip it and remove the zip
2018-01-12 11:55:45 -06:00
```
$ sudo -u peertube wget -q "https://github.com/Chocobozzz/PeerTube/releases/download/${VERSION}/peertube-${VERSION}.zip"
$ sudo -u peertube unzip peertube-${VERSION}.zip && sudo -u peertube rm peertube-${VERSION}.zip
```
Install Peertube. If you're using CentOS7, do not forget to activate the devtoolset-6 software collection:
```
$ scl enable devtool-6 bash
```
And after that, follow the step as usual. Do not forget to exit the environment after installing Peertube.
```
$ cd ../ && sudo -u peertube ln -s versions/peertube-${VERSION} ./peertube-latest
$ cd ./peertube-latest && sudo -H -u peertube yarn install --production --pure-lockfile
2018-01-12 11:07:41 -06:00
```
### PeerTube configuration
Copy example configuration:
2018-01-12 11:55:45 -06:00
```
$ cd /var/www/peertube && sudo -u peertube cp peertube-latest/config/production.yaml.example config/production.yaml
2018-01-12 11:07:41 -06:00
```
Then edit the `config/production.yaml` file according to your webserver
configuration.
2018-01-12 11:07:41 -06:00
**PeerTube does not support webserver host change**. Keep in mind your domain name is definitive after your first PeerTube start.
2018-01-12 11:07:41 -06:00
### Webserver
We only provide official configuration files for Nginx.
2018-01-12 11:07:41 -06:00
Copy the nginx configuration template:
2018-01-12 11:55:45 -06:00
```
$ sudo cp /var/www/peertube/peertube-latest/support/nginx/peertube /etc/nginx/sites-available/peertube
2018-01-12 11:07:41 -06:00
```
2018-01-18 10:44:13 -06:00
Then modify the webserver configuration file. Please pay attention to the `alias` keys of the static locations.
It should correspond to the paths of your storage directories (set in the configuration file inside the `storage` key).
2018-01-12 11:07:41 -06:00
2018-01-12 11:55:45 -06:00
```
2018-01-12 11:07:41 -06:00
$ sudo vim /etc/nginx/sites-available/peertube
```
2018-02-16 04:04:12 -06:00
Activate the configuration file:
```
$ sudo ln -s /etc/nginx/sites-available/peertube /etc/nginx/sites-enabled/peertube
```
To generate the certificate for your domain as required to make https work you can use [Let's Encrypt](https://letsencrypt.org/):
```
$ sudo systemctl stop nginx
2018-03-01 09:12:00 -06:00
$ sudo vim /etc/nginx/sites-available/peertube # Comment ssl_certificate and ssl_certificate_key lines
2018-02-16 04:04:12 -06:00
$ sudo certbot --authenticator standalone --installer nginx --post-hook "systemctl start nginx"
2018-03-01 09:12:00 -06:00
$ sudo vim /etc/nginx/sites-available/peertube # Uncomment ssl_certificate and ssl_certificate_key lines
$ sudo systemctl reload nginx
```
Remember your certificate will expire in 90 days, and thus needs renewal.
2018-01-12 11:07:41 -06:00
2018-02-16 04:04:12 -06:00
Now you have the certificates you can reload nginx:
2018-01-12 11:07:41 -06:00
2018-01-12 11:55:45 -06:00
```
2018-01-12 11:07:41 -06:00
$ sudo systemctl reload nginx
```
**FreeBSD**
On FreeBSD you can use [Dehydrated](https://dehydrated.io/) `security/dehydrated` for [Let's Encrypt](https://letsencrypt.org/)
```
$ sudo pkg install dehydrated
```
2018-03-20 02:28:20 -05:00
### systemd
2018-01-12 11:07:41 -06:00
2018-03-20 02:28:20 -05:00
If your OS uses systemd, copy the configuration template:
2018-01-12 11:07:41 -06:00
2018-01-12 11:55:45 -06:00
```
$ sudo cp /var/www/peertube/peertube-latest/support/systemd/peertube.service /etc/systemd/system/
2018-01-12 11:07:41 -06:00
```
Update the service file:
2018-01-12 11:55:45 -06:00
```
$ sudo vim /etc/systemd/system/peertube.service
2018-01-12 11:07:41 -06:00
```
Tell systemd to reload its config:
2018-01-12 11:55:45 -06:00
```
$ sudo systemctl daemon-reload
2018-01-12 11:07:41 -06:00
```
2018-01-15 04:10:46 -06:00
If you want to start PeerTube on boot:
```
2018-01-17 04:47:45 -06:00
$ sudo systemctl enable peertube
2018-01-15 04:10:46 -06:00
```
2018-03-20 02:28:20 -05:00
Run:
2018-01-12 11:07:41 -06:00
2018-01-12 11:55:45 -06:00
```
$ sudo systemctl start peertube
$ sudo journalctl -feu peertube
2018-01-12 11:07:41 -06:00
```
2018-03-19 16:48:15 -05:00
### FreeBSD
2018-03-20 02:28:20 -05:00
If you're using FreeBSD, copy the startup script and update rc.conf:
2018-03-19 16:48:15 -05:00
```
$ sudo cp /var/www/peertube/peertube-latest/support/freebsd/peertube /usr/local/etc/rc.d/
$ sudo chmod +x /usr/local/etc/rc.d/peertube
$ sudo echo peertube_enable="YES" >> /etc/rc.conf
```
2018-03-20 02:28:20 -05:00
Run:
2018-03-19 16:48:15 -05:00
```
$ sudo service peertube start
```
2018-01-12 11:07:41 -06:00
### Administrator
The administrator password is automatically generated and can be found in the
logs. You can set another password with:
2018-01-12 11:55:45 -06:00
```
$ cd /var/www/peertube/peertube-latest && NODE_CONFIG_DIR=/var/www/peertube/config NODE_ENV=production npm run reset-password -- -u root
2018-01-12 11:07:41 -06:00
```
2018-03-15 08:31:08 -05:00
Now you can subscribe to the mailing list for PeerTube administrators: https://framalistes.org/sympa/subscribe/peertube-admin
2018-01-12 11:07:41 -06:00
## Upgrade
2018-02-14 04:09:02 -06:00
#### Auto (minor versions only)
2018-03-29 07:27:55 -05:00
The password it asks is PeerTube's database user password.
```
2018-02-14 04:09:02 -06:00
$ cd /var/www/peertube/peertube-latest/scripts && sudo -u peertube ./upgrade.sh
$ sudo systemctl restart peertube && sudo journalctl -fu peertube
```
2018-02-14 04:09:02 -06:00
#### Manually
2018-01-26 03:50:05 -06:00
Make a SQL backup
```
$ SQL_BACKUP_PATH="backup/sql-peertube_prod-$(date -Im).bak" && \
cd /var/www/peertube && sudo -u peertube mkdir -p backup && \
sudo pg_dump -U peertube -W -h localhost -F c peertube_prod -f "$SQL_BACKUP_PATH"
```
2018-01-26 03:50:05 -06:00
Fetch the latest tagged version of Peertube:
2018-01-19 06:58:13 -06:00
```
2018-01-26 03:50:05 -06:00
$ VERSION=$(curl -s https://api.github.com/repos/chocobozzz/peertube/releases/latest | grep tag_name | cut -d '"' -f 4) && echo "Latest Peertube version is $VERSION"
2018-01-19 06:58:13 -06:00
```
2018-01-26 03:50:05 -06:00
Download the new version and unzip it:
2018-01-12 11:55:45 -06:00
```
2018-01-26 03:50:05 -06:00
$ cd /var/www/peertube/versions && \
sudo -u peertube wget -q "https://github.com/Chocobozzz/PeerTube/releases/download/${VERSION}/peertube-${VERSION}.zip" && \
2018-01-26 03:50:05 -06:00
sudo -u peertube unzip -o peertube-${VERSION}.zip && \
sudo -u peertube rm peertube-${VERSION}.zip
```
2018-01-29 04:58:07 -06:00
Install node dependencies:
2018-01-26 03:50:05 -06:00
```
2018-01-29 04:58:07 -06:00
$ cd /var/www/peertube/versions/peertube-${VERSION} && \
sudo -u peertube yarn install --production --pure-lockfile
2018-01-26 03:50:05 -06:00
```
2018-01-29 04:58:07 -06:00
Copy new configuration defaults values and update your configuration file:
2018-01-26 03:50:05 -06:00
2018-01-12 11:07:41 -06:00
```
2018-01-29 04:58:07 -06:00
$ sudo -u peertube cp /var/www/peertube/versions/peertube-${VERSION}/config/default.yaml /var/www/peertube/config/default.yaml
2018-02-14 04:09:02 -06:00
$ diff /var/www/peertube/versions/peertube-${VERSION}/config/production.yaml.example /var/www/peertube/config/production.yaml
2018-01-26 03:50:05 -06:00
```
2018-01-29 04:58:07 -06:00
Change the link to point to the latest version:
2018-01-26 03:50:05 -06:00
```
2018-01-29 04:58:07 -06:00
$ cd /var/www/peertube && \
sudo unlink ./peertube-latest && \
2018-01-29 04:58:07 -06:00
sudo -u peertube ln -s versions/peertube-${VERSION} ./peertube-latest
2018-01-26 03:50:05 -06:00
```
2018-01-29 04:58:07 -06:00
2018-01-26 03:50:05 -06:00
Restart PeerTube:
```
$ sudo systemctl restart peertube
```
### Things went wrong?
2018-01-26 03:50:05 -06:00
Change `peertube-latest` destination to the previous version and restore your SQL backup:
```
$ OLD_VERSION="v0.42.42" && SQL_BACKUP_PATH="backup/sql-peertube_prod-2018-01-19T10:18+01:00.bak" && \
cd /var/www/peertube && unlink ./peertube-latest && \
sudo -u peertube ln -s "versions/peertube-$OLD_VERSION" peertube-latest && \
2018-02-08 02:37:18 -06:00
pg_restore -U peertube -W -h localhost -c -d peertube_prod "$SQL_BACKUP_PATH"
sudo systemctl restart peertube
```