Passwork: erinevus redaktsioonide vahel

Allikas: Imre kasutab arvutit
Mine navigeerimisribaleMine otsikasti
(Uus lehekülg: '===Sissejuhatus=== TODO ===Tööpõhimõte=== ===Paigaldamine=== ===Kasutamine=== ===Kasulikud lisamaterjalid=== * TODO')
 
 
(ei näidata sama kasutaja 31 vahepealset redaktsiooni)
2. rida: 2. rida:
   
 
TODO
  
TODO
  +
  +
Olulised veebikohad
  +
  +
* https://passwork.pro/ - põhiveebikoht
  +
* https://portal.passwork.pro/ - saab tarkvara kopeerida eeldusel, et on ostetud vms passwork kasutamise voli
  +
* https://docs.passwork.pro/ - dokumentatsioon
  +
  +
===Tarkvara ost===
  +
  +
Isanda veebikoht paistab selline
  +
  +
[[Fail:20250511-passwork-01.png|1000px]]
  +
  +
kus
  +
  +
* API key - seda sõne väärtust küsitakse paigaldamise käigus, st tundub, et selle alusel kopeeritakse repost tarkvara
  +
* License key - see fail tuleb üles laadida üks kord esimesel lahenduse käivitamisel
  +
* Passwork - Choose version - saab alla laadida tarkvara meelepärase versiooni .zip arhiivi
  +
  +
Väited
  +
  +
* tundub, et tehniliselt on sama litsentsi võimalik kasutada nö kõrvutistes paigaldistes (kuna on toetatud offline kasutamine)
   
 
===Tööpõhimõte===
  
===Tööpõhimõte===
  +
  +
passwork lahendust saab kasutada mitmel viisil kohepeal paigaldades
  +
  +
* passwork paigaldus - docker konteiner põhiselt
  +
* passwork paigaldus - tava-operatsiooni põhiselt
  +
* passwork paigaldus ilma internetii ühtendamata arvutis
  +
* passwork paigaldus internetti ühendutud arvutis
  +
  +
Käesolevas tekstis tegeledakse sellise kombinatsiooniga
  +
  +
* docker põhine
  +
* arvutil on ühendus internetiga
  +
  +
===Ettevalmistamine===
  +
  +
Nt selline Docker CE tarkvara põhinev Ubuntu 24.04 dockerhost sobib kasutamiseks
  +
  +
<pre>
  +
duser@pwrk-01:/srv/passwork$ df -t ext4 -T -h
  +
Filesystem Type Size Used Avail Use% Mounted on
  +
/dev/mapper/system-root ext4 14G 2.8G 11G 21% /
  +
/dev/mapper/vg_data-var_lib_docker ext4 5.9G 2.1G 3.5G 38% /var/lib/docker
  +
/dev/mapper/vg_data-srv ext4 5.9G 4.2G 1.4G 76% /srv
  +
</pre>
   
 
===Paigaldamine===
  
===Paigaldamine===
  +
  +
passwork lahenduse paigaldamine võiks toimuda nt selliselt
  +
  +
<pre>
  +
duser@pwrk-01:~# su - duser
  +
  +
duser@pwrk-01:~$ cd /srv/passwork
  +
duser@pwrk-01:/srv/passwork$
  +
  +
duser@pwrk-01:/srv/passwork$ wget https://repos.passwork.pro/repository/docker/passwork_compose_install.sh
  +
  +
duser@pwrk-01:/srv/passwork$ chmod +x passwork_compose_install.sh
  +
duser@pwrk-01:/srv/passwork$ ./passwork_compose_install.sh
  +
  +
duser@pwrk-01:/srv/passwork$ ./passwork_compose_install.sh
  +
Portal Passwork is available from your host. Online mode.
  +
Docker version is 18.06 or higher
  +
Docker Compose plugin is installed
  +
User is either root or in the docker group
  +
Checking if system is using supported package manager
  +
Using apt-get to install packages
  +
All required packages are already installed
  +
Enter Portal API key: T16Ifdq10RXhaYlOlzFm1ZcPxcP4v4fMSDlvK3zSmeMzD1aRBSO4Y....
  +
  +
Valid Portal API key entered: T16Ifdq10RXhaYlOlzFm1ZcPxcP4v4fMSDlvK3zSmeMzD1aRBSO4Y....
  +
Portal API key is correct
  +
% Total % Received % Xferd Average Speed Time Time Time Current
  +
Dload Upload Total Spent Left Speed
  +
100 64054 100 64054 0 0 247k 0 --:--:-- --:--:-- --:--:-- 247k
  +
Files downloaded and unpacked successfully
  +
.env file created successfully
  +
Running update: ./update.sh
  +
Downloading version 070002...
  +
% Total % Received % Xferd Average Speed Time Time Time Current
  +
Dload Upload Total Spent Left Speed
  +
100 22.4M 100 22.4M 0 0 9787k 0 0:00:02 0:00:02 --:--:-- 9785k
  +
Verified OK
  +
Successfully checked signature for Passwork archive
  +
time="2025-05-11T16:46:41Z" level=warning msg="The \"UID\" variable is not set. Defaulting to a blank string."
  +
time="2025-05-11T16:46:41Z" level=warning msg="The \"DB_RUN_FLAGS\" variable is not set. Defaulting to a blank string."
  +
No previous version is installed or version is below 070000. Code has been obtained, no need to restart services during initial install.
  +
Already copied
  +
=== INSTALLED ===
  +
time="2025-05-11T16:46:41Z" level=warning msg="The \"DB_RUN_FLAGS\" variable is not set. Defaulting to a blank string."
  +
time="2025-05-11T16:46:41Z" level=warning msg="The \"UID\" variable is not set. Defaulting to a blank string."
  +
Network passwork_passwork Creating
  +
Network passwork_passwork Created
  +
Container passwork_cron Creating
  +
Container passwork_db Creating
  +
Container passwork_php Creating
  +
Container passwork_php Created
  +
Container passwork_nginx Creating
  +
Container passwork_db Created
  +
Container passwork_cron Created
  +
Container passwork_nginx Created
  +
Container passwork_postfix Creating
  +
Container passwork_postfix Created
  +
Container passwork_php Starting
  +
Container passwork_cron Starting
  +
Container passwork_db Starting
  +
Container passwork_db Started
  +
Container passwork_cron Started
  +
Container passwork_php Started
  +
Container passwork_nginx Starting
  +
Container passwork_nginx Started
  +
Container passwork_postfix Starting
  +
Container passwork_postfix Started
  +
Started successfully
  +
Please check running containers
  +
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
  +
c13dcc5f926d passwork/docker-postfix "/entrypoint.sh post…" 1 second ago Up Less than a second 25/tcp passwork_postfix
  +
c86ecb29c606 passwork/docker-nginx "/entrypoint.sh ngin…" 1 second ago Up Less than a second 0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp passwork_nginx
  +
395b835b2853 passwork/docker-php8.3 "/entrypoint.sh tini…" 1 second ago Up Less than a second passwork_cron
  +
d20b50f94e42 passwork/docker-psmdb6 "/entrypoint.sh mong…" 1 second ago Up Less than a second 27017/tcp passwork_db
  +
51053237c894 passwork/docker-php8.3 "/entrypoint.sh php-…" 1 second ago Up Less than a second passwork_php
  +
</pre>
  +
  +
Tulemusena on kopeeritud sellised tõmmised
  +
  +
<pre>
  +
duser@pwrk-01:/srv/passwork$ docker image ls
  +
REPOSITORY TAG IMAGE ID CREATED SIZE
  +
passwork/docker-nginx latest ad5af3d7b172 3 days ago 195MB
  +
passwork/docker-php8.3 latest 90f5ff5ecfa1 12 days ago 563MB
  +
passwork/docker-postfix latest cd30c223cfc1 4 weeks ago 150MB
  +
passwork/docker-psmdb6 latest b055d5d4f764 2 months ago 831MB
  +
</pre>
  +
  +
Tulemusena on moodustatud selline võrk
  +
  +
<pre>
  +
duser@pwrk-01:/srv/passwork$ docker network ls
  +
NETWORK ID NAME DRIVER SCOPE
  +
c294d961e9b9 bridge bridge local
  +
ef6c4241d0ae host host local
  +
0652ad4a8546 none null local
  +
e1d94f16ffcf passwork_passwork bridge local
  +
</pre>
  +
  +
Tulemusena on tekitatud selline volume
  +
  +
<pre>
  +
duser@pwrk-01:/srv/passwork$ docker volume ls
  +
DRIVER VOLUME NAME
  +
local passwork_db_data
  +
</pre>
  +
  +
Paigaldise lähtestamine, konteinerite kustamine
  +
  +
<pre>
  +
duser@pwrk-01:/srv/passwork$ docker compose down
  +
WARN[0000] The "UID" variable is not set. Defaulting to a blank string.
  +
WARN[0000] The "DB_RUN_FLAGS" variable is not set. Defaulting to a blank string.
  +
[+] Running 6/6
  +
✔ Container passwork_db Removed 0.1s
  +
✔ Container passwork_cron Removed 0.5s
  +
✔ Container passwork_postfix Removed 0.1s
  +
✔ Container passwork_nginx Removed 0.1s
  +
✔ Container passwork_php Removed 0.1s
  +
✔ Network passwork_passwork Removed
  +
</pre>
  +
  +
Named volume kustutamine
  +
  +
<pre>
  +
duser@pwrk-01:/srv/passwork$ docker volume rm passwork_db_data
  +
passwork_db_data
  +
</pre>
  +
  +
Failisüsteemi osa kustutamine
  +
  +
<pre>
  +
root@pwrk-01:/srv/passwork# rm -rf .env .env.example *
  +
root@pwrk-01:/srv/passwork# find -ls
  +
12 4 drwxr-xr-x 2 duser duser 4096 May 11 17:02 .
  +
</pre>
  +
  +
===Esmakordne käivitamine===
  +
  +
Peale paigaldamist suundudes brauseriga teenuse url peale paistab selline pilt, valida keel, nt English
  +
  +
[[Fail:20250511-passwork-02.png|1000px]]
  +
  +
seejärel paistab selline pilt, esitada kontakt andmebaasiga (MongoDB)
  +
  +
[[Fail:20250511-passwork-03.png|1000px]]
  +
  +
seejärel esitada litsents faili üles laadimise kujul
  +
  +
[[Fail:20250511-passwork-04.png|1000px]]
  +
  +
seejärel kirjeldada esimene kasutaja, admin jms privileegidega
  +
  +
[[Fail:20250511-passwork-05.png|1000px]]
  +
  +
Lõpuks, peale sisselogimist paitsab selline pilt
  +
  +
[[Fail:20250511-passwork-06.png|1000px]]
  +
  +
===https:// seadistsamine===
  +
  +
TODO
  +
  +
===Kasutajate haldamine===
  +
  +
* Invite
  +
  +
===2FA kasutamine===
  +
  +
TODO
  +
  +
===Kasutajate keskhaldus - LDAP kataloog===
  +
  +
  +
Väärtused
  +
  +
* Server - ldap://192.168.10.125
  +
* Service account -> Distinguished name (DN) - Administrator@dn.moraal.ee
  +
* Service account -> Password - parool
  +
* Service account -> Attribute name for login - samaccountname
  +
  +
ning pressida 'Test' - ootus on vastus 'Successfully logged in'.
  +
  +
Seejärel liikuda lahtri 'DN for finding users in AD/LDAP' juurde ja sisestada
  +
  +
dc=sise,dc=moraal,dc=ee
  +
  +
ja presside 'Refresh users', ootus on näha paneelis 'LDAP users' midagi sellist, '0/47 created'. Pressides View users näeb kataloogi sisu.
  +
  +
===smtp teenusega integratsioon===
  +
  +
smtp integratsiooni kasutatakse
  +
  +
* invite jaoks
  +
  +
smtp andmete kirjeldamiseks sobib liikuda
  +
  +
System settings -> Email service - Mailer config
  +
  +
ning kasutada nt selliseid väärtusi
  +
  +
* Sender's email - passwork@auul.pri.ee
  +
* TODO
   
 
===Kasutamine===
  
===Kasutamine===
  +
  +
TODO
  +
  +
===Haldusprotseduurid===
  +
  +
* varundus ja taaste
  +
* export ja import
  +
  +
===Versiooni uuendmine===
  +
  +
TODO
   
 
===Kasulikud lisamaterjalid===
  
===Kasulikud lisamaterjalid===

Viimane redaktsioon: 11. mai 2025, kell 22:42

Sissejuhatus

TODO

Olulised veebikohad

Tarkvara ost

Isanda veebikoht paistab selline

20250511-passwork-01.png

kus

  • API key - seda sõne väärtust küsitakse paigaldamise käigus, st tundub, et selle alusel kopeeritakse repost tarkvara
  • License key - see fail tuleb üles laadida üks kord esimesel lahenduse käivitamisel
  • Passwork - Choose version - saab alla laadida tarkvara meelepärase versiooni .zip arhiivi

Väited

  • tundub, et tehniliselt on sama litsentsi võimalik kasutada nö kõrvutistes paigaldistes (kuna on toetatud offline kasutamine)

Tööpõhimõte

passwork lahendust saab kasutada mitmel viisil kohepeal paigaldades

  • passwork paigaldus - docker konteiner põhiselt
  • passwork paigaldus - tava-operatsiooni põhiselt
  • passwork paigaldus ilma internetii ühtendamata arvutis
  • passwork paigaldus internetti ühendutud arvutis

Käesolevas tekstis tegeledakse sellise kombinatsiooniga

  • docker põhine
  • arvutil on ühendus internetiga

Ettevalmistamine

Nt selline Docker CE tarkvara põhinev Ubuntu 24.04 dockerhost sobib kasutamiseks 

duser@pwrk-01:/srv/passwork$ df -t ext4 -T -h
Filesystem                         Type  Size  Used Avail Use% Mounted on
/dev/mapper/system-root            ext4   14G  2.8G   11G  21% /
/dev/mapper/vg_data-var_lib_docker ext4  5.9G  2.1G  3.5G  38% /var/lib/docker
/dev/mapper/vg_data-srv            ext4  5.9G  4.2G  1.4G  76% /srv

Paigaldamine

passwork lahenduse paigaldamine võiks toimuda nt selliselt 

duser@pwrk-01:~# su - duser

duser@pwrk-01:~$ cd /srv/passwork
duser@pwrk-01:/srv/passwork$

duser@pwrk-01:/srv/passwork$ wget https://repos.passwork.pro/repository/docker/passwork_compose_install.sh

duser@pwrk-01:/srv/passwork$ chmod +x passwork_compose_install.sh 
duser@pwrk-01:/srv/passwork$ ./passwork_compose_install.sh

duser@pwrk-01:/srv/passwork$ ./passwork_compose_install.sh 
Portal Passwork is available from your host. Online mode.
Docker version is 18.06 or higher
Docker Compose plugin is installed
User is either root or in the docker group
Checking if system is using supported package manager
Using apt-get to install packages
All required packages are already installed
Enter Portal API key: T16Ifdq10RXhaYlOlzFm1ZcPxcP4v4fMSDlvK3zSmeMzD1aRBSO4Y....

Valid Portal API key entered: T16Ifdq10RXhaYlOlzFm1ZcPxcP4v4fMSDlvK3zSmeMzD1aRBSO4Y....
Portal API key is correct
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 64054  100 64054    0     0   247k      0 --:--:-- --:--:-- --:--:--  247k
Files downloaded and unpacked successfully
.env file created successfully
Running update: ./update.sh  
Downloading version 070002...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 22.4M  100 22.4M    0     0  9787k      0  0:00:02  0:00:02 --:--:-- 9785k
Verified OK
Successfully checked signature for Passwork archive
time="2025-05-11T16:46:41Z" level=warning msg="The \"UID\" variable is not set. Defaulting to a blank string."
time="2025-05-11T16:46:41Z" level=warning msg="The \"DB_RUN_FLAGS\" variable is not set. Defaulting to a blank string."
No previous version is installed or version is below 070000. Code has been obtained, no need to restart services during initial install.
Already copied
=== INSTALLED ===
time="2025-05-11T16:46:41Z" level=warning msg="The \"DB_RUN_FLAGS\" variable is not set. Defaulting to a blank string."
time="2025-05-11T16:46:41Z" level=warning msg="The \"UID\" variable is not set. Defaulting to a blank string."
 Network passwork_passwork  Creating
 Network passwork_passwork  Created
 Container passwork_cron  Creating
 Container passwork_db  Creating
 Container passwork_php  Creating
 Container passwork_php  Created
 Container passwork_nginx  Creating
 Container passwork_db  Created
 Container passwork_cron  Created
 Container passwork_nginx  Created
 Container passwork_postfix  Creating
 Container passwork_postfix  Created
 Container passwork_php  Starting
 Container passwork_cron  Starting
 Container passwork_db  Starting
 Container passwork_db  Started
 Container passwork_cron  Started
 Container passwork_php  Started
 Container passwork_nginx  Starting
 Container passwork_nginx  Started
 Container passwork_postfix  Starting
 Container passwork_postfix  Started
Started successfully
Please check running containers
CONTAINER ID   IMAGE                     COMMAND                  CREATED        STATUS                  PORTS                                      NAMES
c13dcc5f926d   passwork/docker-postfix   "/entrypoint.sh post…"   1 second ago   Up Less than a second   25/tcp                                     passwork_postfix
c86ecb29c606   passwork/docker-nginx     "/entrypoint.sh ngin…"   1 second ago   Up Less than a second   0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp   passwork_nginx
395b835b2853   passwork/docker-php8.3    "/entrypoint.sh tini…"   1 second ago   Up Less than a second                                              passwork_cron
d20b50f94e42   passwork/docker-psmdb6    "/entrypoint.sh mong…"   1 second ago   Up Less than a second   27017/tcp                                  passwork_db
51053237c894   passwork/docker-php8.3    "/entrypoint.sh php-…"   1 second ago   Up Less than a second                                              passwork_php

Tulemusena on kopeeritud sellised tõmmised 

duser@pwrk-01:/srv/passwork$ docker image ls
REPOSITORY                TAG       IMAGE ID       CREATED        SIZE
passwork/docker-nginx     latest    ad5af3d7b172   3 days ago     195MB
passwork/docker-php8.3    latest    90f5ff5ecfa1   12 days ago    563MB
passwork/docker-postfix   latest    cd30c223cfc1   4 weeks ago    150MB
passwork/docker-psmdb6    latest    b055d5d4f764   2 months ago   831MB

Tulemusena on moodustatud selline võrk 

duser@pwrk-01:/srv/passwork$ docker network ls
NETWORK ID     NAME                DRIVER    SCOPE
c294d961e9b9   bridge              bridge    local
ef6c4241d0ae   host                host      local
0652ad4a8546   none                null      local
e1d94f16ffcf   passwork_passwork   bridge    local

Tulemusena on tekitatud selline volume 

duser@pwrk-01:/srv/passwork$ docker volume ls
DRIVER    VOLUME NAME
local     passwork_db_data

Paigaldise lähtestamine, konteinerite kustamine 

duser@pwrk-01:/srv/passwork$ docker compose down
WARN[0000] The "UID" variable is not set. Defaulting to a blank string. 
WARN[0000] The "DB_RUN_FLAGS" variable is not set. Defaulting to a blank string. 
[+] Running 6/6
 ✔ Container passwork_db       Removed                                                                                                                                                           0.1s 
 ✔ Container passwork_cron     Removed                                                                                                                                                           0.5s 
 ✔ Container passwork_postfix  Removed                                                                                                                                                           0.1s 
 ✔ Container passwork_nginx    Removed                                                                                                                                                           0.1s 
 ✔ Container passwork_php      Removed                                                                                                                                                           0.1s 
 ✔ Network passwork_passwork   Removed

Named volume kustutamine 

duser@pwrk-01:/srv/passwork$ docker volume rm passwork_db_data
passwork_db_data

Failisüsteemi osa kustutamine 

root@pwrk-01:/srv/passwork# rm -rf .env .env.example *
root@pwrk-01:/srv/passwork# find -ls
       12      4 drwxr-xr-x   2 duser    duser        4096 May 11 17:02 .

Esmakordne käivitamine

Peale paigaldamist suundudes brauseriga teenuse url peale paistab selline pilt, valida keel, nt English

20250511-passwork-02.png

seejärel paistab selline pilt, esitada kontakt andmebaasiga (MongoDB)

20250511-passwork-03.png

seejärel esitada litsents faili üles laadimise kujul

20250511-passwork-04.png

seejärel kirjeldada esimene kasutaja, admin jms privileegidega

20250511-passwork-05.png

Lõpuks, peale sisselogimist paitsab selline pilt

20250511-passwork-06.png

https:// seadistsamine

TODO

Kasutajate haldamine

  • Invite

2FA kasutamine

TODO

Kasutajate keskhaldus - LDAP kataloog

Väärtused

  • Server - ldap://192.168.10.125
  • Service account -> Distinguished name (DN) - Administrator@dn.moraal.ee
  • Service account -> Password - parool
  • Service account -> Attribute name for login - samaccountname

ning pressida 'Test' - ootus on vastus 'Successfully logged in'.

Seejärel liikuda lahtri 'DN for finding users in AD/LDAP' juurde ja sisestada 

dc=sise,dc=moraal,dc=ee

ja presside 'Refresh users', ootus on näha paneelis 'LDAP users' midagi sellist, '0/47 created'. Pressides View users näeb kataloogi sisu.

smtp teenusega integratsioon

smtp integratsiooni kasutatakse

  • invite jaoks

smtp andmete kirjeldamiseks sobib liikuda 

System settings -> Email service - Mailer config

ning kasutada nt selliseid väärtusi

  • Sender's email - passwork@auul.pri.ee
  • TODO

Kasutamine

TODO

Haldusprotseduurid

  • varundus ja taaste
  • export ja import

Versiooni uuendmine

TODO

Kasulikud lisamaterjalid

  • TODO
Pärit leheküljelt "https://www.auul.pri.ee/wiki/index.php?title=Passwork&oldid=1777"