InstallationGuidelines/Linux/Server/ApachePostgresqlDebian8: install-eden-apache-postgis-debian8.sh

#!/bin/bash

# Script to turn a generic Jessie box into an Eden server
# with apache & PostgreSQL
# - tunes PostgreSQL for 512Mb RAM (e.g. Amazon Micro (free tier))
# - run pg1024 to tune for 1Gb RAM (e.g. Amazon Small or greater)

#configuration for specific installation - relevant for database cleaning script
database_name="sahana"
database_port="5432"
database_user="sahana"
database_password="sahana"

#versions of external libraries
reportlab_version="3.2.0"
Shapely_version="1.5.13"
xlrd_version="0.9.4"

#configuration of apache24 config files
extension='.conf'
use_proxy="false"
http_proxy_host="10.240.20.164"
http_proxy_port="8080"
https_proxy_host="10.240.20.164"
https_proxy_port="8080"

#apache confs
hostname=""
DOMAIN=""
hostname_error="sahana_error"
hostname_access="sahana_access"
GRANT=""

if [ $use_proxy == 'true' ]; then
    #set proxy env for wget from shell
    export http_proxy=http://$http_proxy_host:$http_proxy_port
    export https_proxy=http://$https_proxy_host:$https_proxy_port

    #for git access behind proxy
    git config --global http.proxy http://$http_proxy_host:$http_proxy_port
    git config --global https.proxy http://$https_proxy_host:$https_proxy_port
fi

#########
# Standard debian packages
#########
# Update debian system
apt-get update
apt-get -y upgrade
apt-get clean
# Install Admin Tools
apt-get -y install unzip psmisc mlocate telnet lrzsz vim elinks-lite rcconf htop sudo p7zip dos2unix curl
apt-get clean
# Git
apt-get -y install git-core
apt-get clean
# Email
apt-get -y install exim4-config exim4-daemon-light
apt-get clean

#########
# Python debian packages
#########
# Install Libraries
apt-get -y install libgeos-c1
# Install Python
#apt-get -y install python2.7
apt-get -y install python-dev
# 100 Mb of diskspace due to deps, so only if you want an advanced shell
#apt-get -y install ipython
apt-get clean
apt-get -y install python-lxml python-setuptools python-dateutil
apt-get clean
apt-get -y install python-serial
#apt-get -y install python-imaging python-reportlab
apt-get -y install python-imaging
apt-get -y install python-matplotlib
apt-get -y install python-requests
apt-get -y install python-xlwt
apt-get -y install build-essential
apt-get clean

#########
# External packages
#########
# Upgrade ReportLab for Percentage support
#apt-get remove -y python-reportlab
wget --no-check-certificate http://pypi.python.org/packages/source/r/reportlab/reportlab-$reportlab_version.tar.gz
tar zxvf reportlab-$reportlab_version.tar.gz
cd reportlab-$reportlab_version
python setup.py install
cd ..

# Upgrade Shapely for Simplify enhancements
#apt-get remove -y python-shapely
apt-get -y install libgeos-dev
wget --no-check-certificate http://pypi.python.org/packages/source/S/Shapely/Shapely-$Shapely_version.tar.gz
tar zxvf Shapely-$Shapely_version.tar.gz
cd Shapely-$Shapely_version
python setup.py install
cd ..

# Upgrade XLRD for XLS import support
#apt-get remove -y python-xlrd
wget --no-check-certificate http://pypi.python.org/packages/source/x/xlrd/xlrd-$xlrd_version.tar.gz
tar zxvf xlrd-$xlrd_version.tar.gz
cd xlrd-$xlrd_version
python setup.py install
cd ..

#########
# Web2Py
#########
apt-get -y install libodbc1
# Install Web2Py
# Add system user
adduser --system --disabled-password web2py
addgroup web2py
cd /home
# Delete old web2py version
rm web2py_src.zip
# Load actual web2py version
wget --no-check-certificate http://www.web2py.com/examples/static/web2py_src.zip
unzip web2py_src.zip
ln -s /home/web2py ~
cp -f /home/web2py/handlers/wsgihandler.py /home/web2py

# Define the routes configuration
cat << EOF > "/home/web2py/routes.py"
#!/usr/bin/python
default_application = 'eden'
default_controller = 'default'
default_function = 'index'
routes_onerror = [
        ('eden/400', '!'),
        ('eden/401', '!'),
        ('eden/509', '!'),
        ('eden/*', '/eden/errors/index'),
        ('*/*', '/eden/errors/index'),
    ]
EOF

# Configure Matplotlib
mkdir /home/web2py/.matplotlib
chown web2py /home/web2py/.matplotlib
echo "os.environ['MPLCONFIGDIR'] = '/home/web2py/.matplotlib'" >> /home/web2py/wsgihandler.py
sed -i 's|TkAgg|Agg|' /etc/matplotlibrc

##############
# Sahana Eden
##############
# Install Sahana Eden
cd web2py
cd applications
# @ToDo: Stable branch
git clone git://github.com/flavour/eden.git
# Fix permissions
chown web2py ~web2py
chown web2py ~web2py/applications/admin/cache
chown web2py ~web2py/applications/admin/cron
chown web2py ~web2py/applications/admin/databases
chown web2py ~web2py/applications/admin/errors
chown web2py ~web2py/applications/admin/sessions
chown web2py ~web2py/applications/eden
chown web2py ~web2py/applications/eden/cache
chown web2py ~web2py/applications/eden/cron
mkdir -p ~web2py/applications/eden/databases
chown web2py ~web2py/applications/eden/databases
mkdir -p ~web2py/applications/eden/errors
chown web2py ~web2py/applications/eden/errors
chown web2py ~web2py/applications/eden/models
mkdir -p ~web2py/applications/eden/sessions
chown web2py ~web2py/applications/eden/sessions
chown web2py ~web2py/applications/eden/static/fonts
chown web2py ~web2py/applications/eden/static/img/markers
mkdir -p ~web2py/applications/eden/static/cache/chart
chown web2py -R ~web2py/applications/eden/static/cache
mkdir -p ~web2py/applications/eden/uploads/gis_cache
mkdir -p ~web2py/applications/eden/uploads/images
mkdir -p ~web2py/applications/eden/uploads/tracks
chown web2py ~web2py/applications/eden/uploads
chown web2py ~web2py/applications/eden/uploads/gis_cache
chown web2py ~web2py/applications/eden/uploads/images
chown web2py ~web2py/applications/eden/uploads/tracks
ln -s /home/web2py/applications/eden /home/web2py
ln -s /home/web2py/applications/eden ~

## Add Scheduler config
cat << EOF > "/home/web2py/run_scheduler.py"
#!/usr/bin/env python
# -*- coding: utf-8 -*-

import os
import sys

if '__file__' in globals():
    path = os.path.dirname(os.path.abspath(__file__))
    os.chdir(path)
else:
    path = os.getcwd() # Seems necessary for py2exe

sys.path = [path]+[p for p in sys.path if not p==path]

# import gluon.import_all ##### This should be uncommented for py2exe.py
import gluon.widget
from gluon.shell import run

# Start Web2py Scheduler -- Note the app name is hardcoded!
if __name__ == '__main__':
    run('eden',True,True,None,False,"from gluon import current; current._scheduler.loop()")
EOF

#########
# Apache2 configuration
#########
apt-get -y install libapache2-mod-wsgi
a2enmod rewrite
a2enmod deflate
a2enmod headers
a2enmod expires
# Enable Basic Authentication for WebServices
sed -i 's|</IfModule>|WSGIPassAuthorization On|' /etc/apache2/mods-enabled/wsgi.conf
echo "</IfModule>" >> /etc/apache2/mods-enabled/wsgi.conf
# Prevent Memory leaks from killing servers
sed -i 's|MaxRequestsPerChild   0|MaxRequestsPerChild 300|' /etc/apache2/apache2.conf
# Tune for smaller RAM setups
sed -i 's|MinSpareServers       5|MinSpareServers 3|' /etc/apache2/apache2.conf
sed -i 's|MaxSpareServers      10|MaxSpareServers 6|' /etc/apache2/apache2.conf
# Activate apache root - disabled as default since debian 8!
sed -i 's|Require all denied|#Require all denied|' /etc/apache2/apache2.conf
apache2ctl restart
# Holding Page for Maintenance windows
cat << EOF > "/var/www/maintenance.html"
<html><body><h1>Site Maintenance</h1>Please try again later...</body></html>
EOF

/etc/init.d/apache2 restart

# -----------------------------------------------------------------------------
# Further apache2 web server configuration
# -----------------------------------------------------------------------------
echo "Setting up Web server"
# Disable default site
rm -f /etc/apache2/sites-enabled/000-default.conf
# Define VirtualHost for production site
cat << EOF > "/etc/apache2/sites-available/production$extension"
<VirtualHost *:80>
  ServerName $hostname.$DOMAIN
  ServerAdmin webmaster@$DOMAIN
  DocumentRoot /home/web2py/applications
  WSGIScriptAlias / /home/web2py/wsgihandler.py
  ## Edit the process and the maximum-requests to reflect your RAM
  WSGIDaemonProcess web2py user=web2py group=web2py home=/home/web2py processes=4 maximum-requests=100
  RewriteEngine On
  # Stop GoogleBot from slowing us down
  RewriteRule .*robots\.txt$ /eden/static/robots.txt [L]
  # extract desired cookie value from multiple-cookie HTTP header
  #RewriteCond %{HTTP_COOKIE} registered=([^;]+)
  # check that cookie value is correct
  #RewriteCond %1 ^yes$
  #RewriteRule ^/$ /eden/ [R,L]
  #RewriteRule ^/$ /eden/static/index.html [R,L]
  RewriteCond %{REQUEST_URI}    !/phpmyadmin(.*)
  RewriteCond %{REQUEST_URI}    !/eden/(.*)
  RewriteRule /(.*) /eden/$1 [R]
  ### static files do not need WSGI
  <LocationMatch "^(/[\w_]*/static/.*)">
    Order Allow,Deny
    Allow from all
    SetOutputFilter DEFLATE
    BrowserMatch ^Mozilla/4 gzip-only-text/html
    BrowserMatch ^Mozilla/4\.0[678] no-gzip
    BrowserMatch \bMSIE !no-gzip !gzip-only-text/html
    SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png)$ no-gzip dont-vary
    Header append Vary User-Agent env=!dont-vary
    ExpiresActive On
    ExpiresByType text/html "access plus 1 day"
    ExpiresByType text/javascript "access plus 1 week"
    ExpiresByType text/css "access plus 2 weeks"
    ExpiresByType image/ico "access plus 1 month"
    ExpiresByType image/gif "access plus 1 month"
    ExpiresByType image/jpeg "access plus 1 month"
    ExpiresByType image/jpg "access plus 1 month"
    ExpiresByType image/png "access plus 1 month"
    ExpiresByType application/x-shockwave-flash "access plus 1 month"
  </LocationMatch>
  ### everything else goes over WSGI
  <Location "/">
    $GRANT
    WSGIProcessGroup web2py
  </Location>
  ErrorLog /var/log/apache2/$hostname_error.log
  LogLevel warn
  CustomLog /var/log/apache2/$hostname_access.log combined
</VirtualHost>
EOF

# Enable production site
a2ensite production
apache2ctl restart

# Define maintenance site
cat << EOF > "/etc/apache2/sites-available/maintenance$extension"
<VirtualHost *:80>
  ServerName $hostname.$DOMAIN
  ServerAdmin webmaster@$DOMAIN
  DocumentRoot /var/www
  RewriteEngine On
  RewriteRule ^/(.*) /maintenance.html
  <Location "/">
    $GRANT
  </Location>
  ErrorLog /var/log/apache2/maintenance_error.log
  LogLevel warn
  CustomLog /var/log/apache2/maintenance_access.log combined
</VirtualHost>
EOF

############
# PostgreSQL
############
apt-get update
apt-get -y install postgresql-9.4 python-psycopg2 postgresql-9.4-postgis ptop

# Tune PostgreSQL
cat << EOF >> "/etc/sysctl.conf"
## Increase Shared Memory available for PostgreSQL
# 512Mb
kernel.shmmax = 279134208
# 1024Mb (may need more)
#kernel.shmmax = 552992768
kernel.shmall = 2097152
EOF
sysctl -w kernel.shmmax=279134208 # For 512 MB RAM
#sysctl -w kernel.shmmax=552992768 # For 1024 MB RAM
sysctl -w kernel.shmall=2097152

sed -i 's|#track_counts = on|track_counts = on|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|#autovacuum = on|autovacuum = on|' /etc/postgresql/9.4/main/postgresql.conf
# 512Mb RAM:
sed -i 's|shared_buffers = 28MB|shared_buffers = 56MB|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|#effective_cache_size = 128MB|effective_cache_size = 256MB|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|#work_mem = 1MB|work_mem = 2MB|' /etc/postgresql/9.4/main/postgresql.conf
# If 1Gb+ RAM, activate post-install via pg1024 script

#####################
# Adopted management scripts from old cherokee installation
#####################
cat << EOF > "/usr/local/bin/maintenance"
#!/bin/sh
# Script to activate/deactivate the maintenance site
# Can provide the option 'off' to disable the maintenance site
if [ "\$1" != "off" ]; then
    # Stop the Scheduler
    killall python
    # Deactivate the Production Site
    a2dissite production
    # Activate the Maintenance Site
    a2ensite maintenance
else
    # Deactivate the Maintenance Site
    a2dissite maintenance
    # Activate the Production Site
    a2ensite production
    # Start the Scheduler
    cd ~web2py && sudo -H -u web2py nohup python web2py.py -K eden -Q >/dev/null 2>&1 &
fi
apache2ctl restart
EOF
chmod +x /usr/local/bin/maintenance
#####################
cat << EOF > "/usr/local/bin/backup"
#!/bin/sh
mkdir /var/backups/eden
chown postgres /var/backups/eden
NOW=\$(date +"%Y-%m-%d")
su -c - postgres "pg_dump -c sahana > /var/backups/eden/sahana-\$NOW.sql"
#su -c - postgres "pg_dump -Fc gis > /var/backups/eden/gis.dmp"
OLD=\$(date --date='7 day ago' +"%Y-%m-%d")
rm -f /var/backups/eden/sahana-\$OLD.sql
mkdir /var/backups/eden/uploads
tar -cf /var/backups/eden/uploads/uploadsprod-\$NOW.tar -C /home/web2py/applications/eden  ./uploads
bzip2 /var/backups/eden/uploads/uploadsprod-\$NOW.tar
rm -f /var/backups/eden/uploads/uploadsprod-\$OLD.tar.bz2
EOF
chmod +x /usr/local/bin/backup
#####################
cat << EOF > "/usr/local/bin/compile"
#!/bin/bash
/etc/init.d/apache2 stop
cd ~web2py
python web2py.py -S eden -M -R applications/eden/static/scripts/tools/compile.py
/etc/init.d/apache2 start
EOF
chmod +x /usr/local/bin/compile
#####################
cat << EOF > "/usr/local/bin/pull"
#!/bin/sh
/etc/init.d/apache2 stop
cd ~web2py/applications/eden
sed -i 's/settings.base.migrate = False/settings.base.migrate = True/g' models/000_config.py
git reset --hard HEAD
git pull
rm -rf compiled
cd ~web2py
sudo -H -u web2py python web2py.py -S eden -M -R applications/eden/static/scripts/tools/noop.py
cd ~web2py/applications/eden
sed -i 's/settings.base.migrate = True/settings.base.migrate = False/g' models/000_config.py
cd ~web2py
python web2py.py -S eden -M -R applications/eden/static/scripts/tools/compile.py
/etc/init.d/apache2 start
EOF
chmod +x /usr/local/bin/pull
#####################
cat << EOF > "/usr/local/bin/migrate"
#!/bin/sh
/etc/init.d/apache2 stop
cd ~web2py/applications/eden
sed -i 's/settings.base.migrate = False/settings.base.migrate = True/g' models/000_config.py
rm -rf compiled
cd ~web2py
sudo -H -u web2py python web2py.py -S eden -M -R applications/eden/static/scripts/tools/noop.py
cd ~web2py/applications/eden
sed -i 's/settings.base.migrate = True/settings.base.migrate = False/g' models/000_config.py
cd ~web2py
python web2py.py -S eden -M -R applications/eden/static/scripts/tools/compile.py
/etc/init.d/apache2 start
EOF
chmod +x /usr/local/bin/migrate
#####################
cat << EOF > "/usr/local/bin/revert"
#!/bin/sh
git reset --hard HEAD
EOF
chmod +x /usr/local/bin/revert
cat << EOF > "/usr/local/bin/w2p"
#!/bin/sh
cd ~web2py
python web2py.py -S eden -M
EOF
chmod +x /usr/local/bin/w2p
#####################
cat << EOF2 > "/usr/local/bin/clean"
#!/bin/sh
/etc/init.d/apache2 stop
cd ~web2py/applications/eden
rm -rf databases/*
rm -f errors/*
rm -rf sessions/*
rm -rf uploads/*
pkill -f "postgres: $database_user $database_name"
echo "SELECT pg_terminate_backend(pg_stat_activity.pid) FROM pg_stat_activity WHERE pg_stat_activity.datname = '$database_name';" > /tmp/delete_current_connections.sql
su - postgres -c "psql -q -p $database_port -f /tmp/delete_current_connections.sql"
su - postgres -c "dropdb -p $database_port $database_name"
echo "database dropped"
sed -i 's/settings.base.migrate = False/settings.base.migrate = True/g' models/000_config.py
sed -i 's/settings.base.prepopulate = 0/#settings.base.prepopulate = 0/g' models/000_config.py
rm -rf compiled
su - postgres -c "createdb -O $database_user -p $database_port -E UTF8 $database_name -T template0"
#su -c - postgres "createlang plpgsql -d sahana"
su - postgres -c "psql -q -p $database_port -d $database_name -f /usr/share/postgresql/9.4/contrib/postgis-2.1/postgis.sql"
su - postgres -c "psql -q -p $database_port -d $database_name -f /usr/share/postgresql/9.4/contrib/postgis-2.1/spatial_ref_sys.sql"
su - postgres -c "psql -q -p $database_port -d $database_name -c 'grant all on geometry_columns to $database_user;'"
#maybe new to postgis 2.x
su - postgres -c "psql -q -p $database_port -d $database_name -c 'grant all on geography_columns to $database_user;'"
su - postgres -c "psql -q -p $database_port -d $database_name -c 'grant all on spatial_ref_sys to $database_user;'"
su - postgres -c "psql -q -p $database_port -d $database_name -c 'ALTER DATABASE $database_name OWNER TO $database_user;'"
cd ~web2py
sudo -H -u web2py python web2py.py -S eden -M -R applications/eden/static/scripts/tools/noop.py
cd ~web2py/applications/eden
sed -i 's/settings.base.migrate = True/settings.base.migrate = False/g' models/000_config.py
sed -i 's/#settings.base.prepopulate = 0/settings.base.prepopulate = 0/g' models/000_config.py
cd ~web2py
python web2py.py -S eden -M -R applications/eden/static/scripts/tools/compile.py
/etc/init.d/apache2 start
#sudo -H -u web2py python web2py.py -S eden -M -R /home/data/import.py
EOF2
chmod +x /usr/local/bin/clean
#####################
cat << EOF > "/usr/local/bin/pg1024"
#!/bin/sh
sed -i 's|kernel.shmmax = 279134208|#kernel.shmmax = 279134208|' /etc/sysctl.conf
sed -i 's|#kernel.shmmax = 552992768|kernel.shmmax = 552992768|' /etc/sysctl.conf
sysctl -w kernel.shmmax=552992768
sed -i 's|shared_buffers = 56MB|shared_buffers = 160MB|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|effective_cache_size = 256MB|effective_cache_size = 512MB|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|work_mem = 2MB|work_mem = 4MB|' /etc/postgresql/9.4/main/postgresql.conf
/etc/init.d/postgresql restart
EOF
chmod +x /usr/local/bin/pg1024
#####################
cat << EOF > "/usr/local/bin/pg512"
#!/bin/sh
sed -i 's|#kernel.shmmax = 279134208|kernel.shmmax = 279134208|' /etc/sysctl.conf
sed -i 's|kernel.shmmax = 552992768|#kernel.shmmax = 552992768|' /etc/sysctl.conf
sysctl -w kernel.shmmax=279134208
sed -i 's|shared_buffers = 160MB|shared_buffers = 56MB|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|effective_cache_size = 512MB|effective_cache_size = 256MB|' /etc/postgresql/9.4/main/postgresql.conf
sed -i 's|work_mem = 4MB|work_mem = 2MB|' /etc/postgresql/9.4/main/postgresql.conf
/etc/init.d/postgresql restart
EOF
chmod +x /usr/local/bin/pg512
apt-get clean

# END