SP/web2py/scripts/setup-web2py-nginx-uwsgi-on-centos.sh

355 lines
8.9 KiB
Bash
Raw Permalink Normal View History

2018-10-25 15:33:07 +00:00
#!/bin/bash
# -------------------------------------------------------------------
# Description : Installation and basic configuration of web2py,
# uWSGI, andNGINX.
# in CentOS 5.x GNU/Linux
# Usage : Copy the script in /home/username and run it as root,
# you may need to allow execution (chmod +x)
#
# WARNING: This script was modified to install compiled
# versions of Python and other packages that may be
# available at your Centos package repository.
# This change was made in order to get the latest
# stable libraries available for avoiding compatibility
#
# A bug was reported for the 2.7.3 version of python
# here http://bugs.python.org/issue14572
# in case you choose to change to VERSION=2.7
# (see below) mind that the automatic patch applied
# could not work for your environment. By default,
# Python 2.6 is installed.
#
# It was originally posted in this web2py-users group
# thread: https://groups.google.com/forum/?fromgroups#
# !topic/web2py/O4c4Jfr18tM
#
# There are lots of subtleties of ownership, and one
# has to take care when installing python 2.6 not to
# stop the systems python2.4 from working.
#
# NOTE: The only thing that should need changing for
# each installation is the $BASEARCH (base
# architecture)
# of the machine. This is determined by doing uname -i.
# This is needed for the nginx installation.
#
# File : setup-web2py-nginx-uwsgi-on-centos.sh
# Author : Peter Hutchinson
# Modified by : Alan Etkin
# Email : spametki@gmail.com
# Copyright : web2py
# Date : 2013-01-28
# Disclaimers : This script is provided "as is", without warranty of
# any kind.
# Licence : BSD
# -------------------------------------------------------------------
# Retrieve base architecture
BASEARCH=$(uname -i)
# Get Web2py Admin Password
echo -e "Enter a password for web2py admin app: \c "
read PW
echo 'Install development tools (it should take a while)'
yum install gcc gdbm-devel readline-devel ncurses-devel zlib-devel \
bzip2-devel sqlite-devel db4-devel openssl-devel tk-devel bluez-libs-devel
#=================================
# You can change Python and uWSGI options
# to fit your deployment needs.
# Python options
PREFIX=2.6
VERSION=2.6.8
# uWSGI options
version=uwsgi-1.2.4
echo "Install python $PREFIX without overwriting python 2.4 (no, really, this will take a while too)"
mkdir ~/src
chmod 777 ~/src
cd ~/src
wget http://www.python.org/ftp/python/$VERSION/Python-$VERSION.tgz
tar xvfz Python-$VERSION.tgz
cd Python-$VERSION
if [ "$VERSION" == "2.7.3" ]; then
echo "Applying patch for sqlite3 bug from post http://bugs.python.org/msg161076"
curl -sk https://raw.github.com/gist/2727063/ | patch -p1
fi
./configure --prefix=/opt/python$PREFIX --with-threads --enable-shared
make
#The altinstall ensures that python2.4 is left okay
make altinstall
echo "/opt/python$PREFIX/lib">/etc/ld.so.conf.d/opt-python$PREFIX.conf
ldconfig
#create alias so that python 2.x can be run with 'python2.x'
alias -p python$PREFIX="/opt/python$/bin/python$PREFIX"
ln -s /opt/python$PREFIX/bin/python$PREFIX /usr/bin/python$PREFIX
echo 'Install uwsgi' $version
cd ~
curl -O http://projects.unbit.it/downloads/$version.tar.gz
tar zxvf $version.tar.gz
mkdir /opt/uwsgi-python
cp -R ./$version/* /opt/uwsgi-python
cd /opt/uwsgi-python
echo "build using python $PREFIX"
python$PREFIX uwsgiconfig.py --build
useradd uwsgi
echo "Create and own uwsgi log"
# Note this log will need emptying from time to time
touch /var/log/uwsgi.log
chown uwsgi /var/log/uwsgi.log
echo "Install web2py"
cd /opt
mkdir ./web-apps
cd ./web-apps
curl -O http://www.web2py.com/examples/static/web2py_src.zip
unzip web2py_src.zip
mv web2py/handlers/wsgihandler.py web2py/wsgihandler.py
echo "Set the ownership for web2py application to uwsgi"
chown -R uwsgi /opt/web-apps/web2py
cd /opt/web-apps/web2py
chmod -R u+rwx ./applications
echo "Now creating the admin password and creating the scaffolding app package"
sudo -u uwsgi python$PREFIX -c "from gluon.main import save_password;from gluon import widget;save_password('$PW',443);widget.console()"
echo "Now install nginx"
cd /etc/yum.repos.d
echo "[nginx]">nginx.repo
echo "baseurl=http://nginx.org/packages/centos/5/$BASEARCH/">>nginx.repo
echo "gpgcheck=0">>nginx.repo
echo "enabled=1">>nginx.repo
yum install nginx
echo "We don't want the defaults, so remove them"
cd /etc/nginx/conf.d
mv default.conf default.conf.o
mv example_ssl.conf example_ssl.conf.o
echo "
The following configuration files are also needed
The options for uwsgi are in the following file.
Other options could be included.
"
echo "uwsgi_for_nginx.conf"
echo "
[uwsgi]
uuid=uwsgi
pythonpath = /opt/web-apps/web2py
module = wsgihandler
socket=127.0.0.1:9001
harakiri 60
harakiri-verbose
enable-threads
daemonize = /var/log/uwsgi.log
" > /opt/uwsgi-python/uwsgi_for_nginx.conf
chmod 755 /opt/uwsgi-python/uwsgi_for_nginx.conf
echo "
The next configuration file is for nginx, and goes in /etc/nginx/conf.d
It serves the static directory of applications directly. I have not set up
ssl because I access web2py admin by using ssh tunneling and the web2py rocket server.
It should be straightforward to set up the ssl server however.
"
echo "web2py.conf"
echo '
server {
listen 80;
server_name $hostname;
location ~* /(\w+)/static(?:/_[\d]+\.[\d]+\.[\d]+)?/(.*)$ {
alias /opt/web-apps/web2py/applications/$1/static/$2;
expires max;
}
location / {
uwsgi_pass 127.0.0.1:9001;
include uwsgi_params;
}
}
server {
listen 443;
server_name $hostname;
ssl on;
ssl_certificate /etc/nginx/ssl/web2py.cert;
ssl_certificate_key /etc/nginx/ssl/web2py.key;
location / {
uwsgi_pass 127.0.0.1:9001;
include uwsgi_params;
uwsgi_param UWSGI_SCHEME $scheme;
}
location ~* /(\w+)/static(?:/_[\d]+\.[\d]+\.[\d]+)?/(.*)$ {
alias /opt/web-apps/web2py/applications/$1/static/$2;
expires max;
}
}
' > /etc/nginx/conf.d/web2py.conf
echo "Auto-signed ssl certs"
mkdir /etc/nginx/ssl
echo "creating a self signed certificate"
echo "=================================="
openssl genrsa 1024 > /etc/nginx/ssl/web2py.key
chmod 400 /etc/nginx/ssl/web2py.key
openssl req -new -x509 -nodes -sha1 -days 365 -key /etc/nginx/ssl/web2py.key > /etc/nginx/ssl/web2py.cert
openssl x509 -noout -fingerprint -text < /etc/nginx/ssl/web2py.cert > /etc/nginx/ssl/web2py.info
echo "uwsgi as service"
echo '
#!/bin/bash
# uwsgi - Use uwsgi to run python and wsgi web apps.
#
# chkconfig: - 85 15
# description: Use uwsgi to run python and wsgi web apps.
# processname: uwsgi
# author: Roman Vasilyev
# Source function library.
. /etc/rc.d/init.d/functions
###########################
PATH=/opt/uwsgi-python:/sbin:/bin:/usr/sbin:/usr/bin
PYTHONPATH=/home/www-data/web2py
MODULE=wsgihandler
PROG=/opt/uwsgi-python/uwsgi
OWNER=uwsgi
NAME=uwsgi
DESC=uwsgi
DAEMON_OPTS="-s 127.0.0.1:9001 -M 4 -t 30 -A 4 -p 16 -b 32768 -d \
/var/log/$NAME.log --pidfile /var/run/$NAME.pid --uid $OWNER \
--ini-paste /opt/uwsgi-python/uwsgi_for_nginx.conf"
##############################
[ -f /etc/sysconfig/uwsgi ] && . /etc/sysconfig/uwsgi
lockfile=/var/lock/subsys/uwsgi
start () {
echo -n "Starting $DESC: "
daemon $PROG $DAEMON_OPTS
retval=$?
echo
[ $retval -eq 0 ] && touch $lockfile
return $retval
}
stop () {
echo -n "Stopping $DESC: "
killproc $PROG
retval=$?
echo
[ $retval -eq 0 ] && rm -f $lockfile
return $retval
}
reload () {
echo "Reloading $NAME"
killproc $PROG -HUP
RETVAL=$?
echo
}
restart () {
stop
start
}
rh_status () {
status $PROG
}
rh_status_q() {
rh_status >/dev/null 2>&1
}
case "$1" in
start)
rh_status_q && exit 0
$1
;;
stop)
rh_status_q || exit 0
$1
;;
restart|force-reload)
$1
;;
reload)
rh_status_q || exit 7
$1
;;
status)
rh_status
;;
*)
echo "Usage: $0 {start|stop|restart|reload|force-reload|status}" >&2
exit 2
;;
esac
exit 0
' > /etc/init.d/uwsgi
chmod 755 /etc/init.d/uwsgi
chkconfig --add uwsgi
chkconfig uwsgi on
echo "
You can test it with
service uwsgi start
and stop it similarly.
Nginx has automatically been set up as a service
if you want to start it run
service nginx start
You should find the web2py welcome app will be displayed at your web address.
As they are both services, they should automatically start on a system reboot.
If you already had a server running, such as apache, you would need to stop
that and turn its service off before running nginx.
"
echo "Turning off apache service"
service httpd stop
chkconfig httpd off
cd ~
echo "
Installation complete. You might want to restart your server running
reboot
as superuser
"