Anchor CMS:n asentaminen Fedora 26 LAMP VPS:ään

Edellytykset

Vaihe 1: Lisää Sudo-käyttäjä

Vaihe 2: Päivitä Fedora 26 -järjestelmä

Vaihe 3: Asenna Apache Web Server

Vaihe 4: Avaa Web-palomuuriportit

Vaihe 5: Poista SELinux käytöstä

Vaihe 6: Asenna PHP 7.1

Vaihe 7: Asenna MariaDB (MySQL) -palvelin

Vaihe 8: Luo tietokanta Anchor CMS:lle

Vaihe 9: Asenna Anchor CMS Files

Vaihe 10: Asenna ja suorita Composer

Vaihe 11: Suorita Anchor CMS -asennus loppuun

Anchor CMS on erittäin yksinkertainen ja erittäin kevyt, ilmainen ja avoimen lähdekoodin sisällönhallintajärjestelmän (CMS) blogimoottori, joka tukee sisällön muokkaamista Markdown- tai HTML-muodossa ja on täysin i18n-yhteensopiva heti käyttöönoton jälkeen. Teemojen luominen ja muokkaaminen on yhtä helppoa kuin yksinkertaisten PHP:n ja HTML/CSS:n kirjoittaminen, joten uusia mallikieliä ei tarvitse opetella. Anchor CMS painaa vain 250 kilotavua (pakattu), joten se on täydellinen ratkaisu web-kehittäjille ja bloggaajille, jotka ovat kyllästyneet bloatware-ohjelmiin ja haluavat vain yksinkertaisen ja minimalistisen blogikoneen, joka tekee työnsä ilman ylimääräisiä komplikaatioita.

Tässä opetusohjelmassa asennamme Anchor CMS:n Fedora 26 LAMP VPS:ään käyttämällä Apache-verkkopalvelinta, PHP 7.1:tä ja MariaDB-tietokantaa.

Edellytykset

• Puhdas Vultr Fedora 26 -palvelinilmentymä SSH-yhteydellä

Vaihe 1: Lisää Sudo-käyttäjä

We will start by adding a new sudo user.

First, log into your server as root:

ssh root@YOUR_VULTR_IP_ADDRESS

Add a new user called user1 (or your preferred username):

useradd user1

Next, set the password for the user1 user:

passwd user1

When prompted, enter a secure and memorable password.

Now check the /etc/sudoers file to make sure that the sudoers group is enabled:

visudo

Look for a section like this:

%wheel        ALL=(ALL)       ALL

Make sure it is uncommented. This line tells us that users who are members of the wheel group can use the sudo command to gain root privileges.

Once you have edited the file, you can save and exit by pressing Esc and then entering :wq to "write" and "quit" the file.

Next we need to add user1 to the wheel group:

usermod -aG wheel user1

We can verify the user1 group membership and check that the usermod command worked with the groups command:

groups user1

Now use the su command to switch to the new sudo user user1 account:

su - user1

The command prompt will update to indicate that you are now logged into the user1 account. You can verify this with the whoami command:

whoami

Now restart the sshd service so that you can login via ssh with the new non-root sudo user account you have just created:

sudo systemctl restart sshd

Exit the user1 account:

exit

Exit the root account (which will disconnect your ssh session):

exit

You can now ssh into the server instance from your local host using the new non-root sudo user user1 account:

ssh user1@YOUR_VULTR_IP_ADDRESS

If you want to execute sudo without having to type a password every time, then open the /etc/sudoers file again, using visudo:

sudo visudo

Edit the section for the wheel group so that it looks like this:

%wheel        ALL=(ALL)       NOPASSWD: ALL

Please note: Disabling the password requirement for the sudo user is not a recommended practice, but it is included here as it can make server configuration much more convenient and less frustrating, especially during longer systems administration sessions. If you are concerned about the security implications, you can always revert the configuration change to the original after you finish your administration tasks.

Whenever you want to log into the root user account from within the sudo user account, you can use one of the following commands:

sudo -i
sudo su -

Voit poistua roottilistä ja palata takaisin sudokäyttäjätilillesi milloin tahansa kirjoittamalla seuraavan:

exit

Vaihe 2: Päivitä Fedora 26 -järjestelmä

Ennen kuin asennamme paketteja Fedora-palvelinesiintymään, päivitämme järjestelmän.

Varmista, että olet kirjautunut palvelimelle ei-root-sudo-käyttäjällä ja suorita seuraava komento:

sudo dnf -y update

Vaihe 3: Asenna Apache Web Server

Asenna Apache-verkkopalvelin:

sudo dnf -y install httpd

Käytä sitten systemctlkomentoa käynnistääksesi ja salliaksesi Apachen suorittaa automaattisesti käynnistyksen yhteydessä:

sudo systemctl enable httpd
sudo systemctl start httpd

Tarkista Apache-määritystiedostosi varmistaaksesi, että DocumentRootohje osoittaa oikeaan hakemistoon:

sudo vi /etc/httpd/conf/httpd.conf

DocumentRootAsetusvalitsin näyttää tältä:

DocumentRoot "/var/www/html"

Now, let's make sure that the mod_rewrite Apache module is loaded. We can do this by searching the Apache base modules configuration file for the term "mod_rewrite".

Open the file:

sudo vi /etc/httpd/conf.modules.d/00-base.conf

Search for the term mod_rewrite.

If the mod_rewrite Apache module is loaded, you will find a configuration line looking like this:

LoadModule rewrite_module modules/mod_rewrite.so

If the above line starts with a semi-colon, you will need to remove the semi-colon to uncomment the line and load the module. This, of course, applies to any other required Apache modules too.

We now need to edit Apache's default configuration file so that mod_rewrite will work correctly with Anchor CMS.

Open the file:

sudo vi /etc/httpd/conf/httpd.conf

Then find the section that starts with <Directory "/var/www/html"> and change AllowOverride none to AllowOverride All. The end result (with all comments removed) will look something like this:

<Directory "/var/www/html">
    Options Indexes FollowSymLinks
    AllowOverride All
    Require all granted
</Directory>

Now save and close the Apache configuration file.

We will restart Apache at the end of this tutorial, but restarting Apache regularly during installation and configuration is certainly a good habit, so let's do it now:

sudo systemctl restart httpd

Step 4: Open Web Firewall Ports

We now need to open the default HTTP and HTTPS ports as they will be blocked by firewalld by default.

Open the firewall ports:

sudo firewall-cmd --permanent --add-port=80/tcp
sudo firewall-cmd --permanent --add-port=443/tcp

Reload the firewall to apply the changes:

sudo firewall-cmd --reload

You will see the word success displayed in your terminal after each successful firewall configuration command.

We can quickly verify that the Apache HTTP port is open by visiting the IP address or domain of the server instance in a browser:

http://YOUR_VULTR_IP_ADDRESS/

You will see the default Apache web page in your browser.

Step 5: Disable SELinux

SELinux stands for "Security Enhanced Linux". It is a security enhancement to Linux which allows users and administrators more control over access control. It is enabled by default in Fedora 26, but it is definitely not essential for server security as many Linux server distributions do not ship with it installed or enabled by default.

To avoid file permission problems with Anchor CMS later down the line, we are going to disable SELinux, for now. Open the SELinux configuration file with your favourite terminal editor:

sudo vi /etc/selinux/config

Change SELINUX=enforcing to SELINUX=disabled and then save the file.

To apply the configuration change, SELinux requires a server reboot, so you can either restart the server using the Vultr control panel or you can simply use the shutdown command:

sudo shutdown -r now

When the server reboots, your SSH session will get disconnected and you may see a message informing you about a 'broken pipe' or 'Connection closed by remote host'. This is nothing to worry about, simply wait for 20 seconds or so and then SSH back in again (with your own username and domain):

ssh user1@YOUR_DOMAIN

Or (with your own username and IP address):

ssh user1@YOUR_VULTR_IP_ADDRESS

Once you have logged back in, you should check the status of SELinux again with the sestatus command to make sure it is properly disabled:

sudo sestatus

You should see a message saying SELinux status: disabled. If you see a message saying SELinux status: enabled (or something similar) you will need to repeat the above steps and ensure that you properly restart your server.

Step 6: Install PHP 7.1

We can now install PHP 7.1 along with all of the necessary PHP modules required by Anchor CMS:

sudo dnf -y install php php-mysqlnd php-mbstring php-gd php-common php-pdo php-pecl-imagick php-xml php-zip

Step 7: Install MariaDB (MySQL) Server

Fedora 26 defaults to using MariaDB database server, which is an enhanced, fully open source, community developed, drop-in replacement for MySQL server.

Install MariaDB database server:

sudo dnf -y install mariadb-server

Start and enable MariaDB server to execute automatically at boot time:

sudo systemctl enable mariadb
sudo systemctl start mariadb    

Secure your MariaDB server installation:

sudo mysql_secure_installation

The root password will be blank, so simply hit enter when prompted for the root password.

When prompted to create a MariaDB/MySQL root user, select "Y" (for yes) and then enter a secure root password. Simply answer "Y" to all of the other yes/no questions as the default suggestions are the most secure options.

Step 8: Create Database for Anchor CMS

Log into the MariaDB shell as the MariaDB root user by running the following command:

sudo mysql -u root -p

To access the MariaDB command prompt, simply enter the MariaDB root password when prompted.

Run the following queries to create a MariaDB database and database user for Anchor CMS:

CREATE DATABASE anchor_db CHARACTER SET utf8 COLLATE utf8_general_ci;
CREATE USER 'anchor_user'@'localhost' IDENTIFIED BY 'UltraSecurePassword';
GRANT ALL PRIVILEGES ON anchor_db.* TO 'anchor_user'@'localhost';
FLUSH PRIVILEGES;
EXIT;

You can replace the database name anchor_db and username anchor_user with something more to your liking, if you prefer. Also, make sure that you replace "UltraSecurePassword" with an actually secure password.

Step 9: Install Anchor CMS Files

Change your current working directory to the default web directory:

cd /var/www/html/

If you get an error message saying something like 'No such file or directory' then try the following command:

cd /var/www/ ; sudo mkdir html ; cd html

Your current working directory should now be: /var/www/html/. You can check this with the pwd (print working directory) command:

pwd

Now use wget to download the Anchor CMS installation package:

sudo wget https://github.com/anchorcms/anchor-cms/archive/0.12.3a.zip

Please note: You should definitely check for the most recent version by visiting the Anchor CMS download page.

List the current directory to check that you have successfully downloaded the file:

ls -la

Let's quickly install unzip so we can unzip the file:

sudo dnf -y install unzip

Now uncompress the zip archive:

sudo unzip 0.12.3a.zip

Move all of the installation files to the web root directory:

sudo mv anchor-cms-0.12.3a/* /var/www/html

Change ownership of the web files to avoid any permissions problems:

sudo chown -R apache:apache * ./

Restart Apache again:

sudo systemctl restart httpd

Step 10: Install and Run Composer

Anchor CMS requires us to use composer to download some plugins so we first need to install composer:

sudo dnf -y install composer

Now make sure you are in the webroot directory:

cd /var/www/html

Run composer using the apache user:

sudo -u apache composer install -d /var/www/html/

You should see some warning messages from composer about not being able to write to the cache, but don't worry too much about that as everything should still install just fine.

We're now ready to move on to the final step.

Step 11: Complete Anchor CMS Installation

It's time to visit the IP address of your server instance in your browser, or if you've already configured your Vultr DNS settings (and given it enough time to propagate) you can simply visit your domain instead.

To access the Anchor CMS installation page, enter your Vultr instance IP address into your browser address bar, followed by /index.php:

http://YOUR_VULTR_IP_ADDRESS/index.php

Most of the installation options are self explanatory, but here are a few pointers to help you along:

1. On the Anchor CMS landing page, simply click on the Run the installer button to start the installation process.

2. Select your Language and Timezone and click on the Next Step button.

3. On the Database Details page, enter the following database values:

   Database Host:          localhost
   Port:                   3306
   Username:               anchor_user
   Password:               UltraSecurePassword
   Database Name:          anchor_db
   Table Prefix:           anchor_
   Collation:              utf8_unicode_ci
   

   Click Next Step to continue.

4. On the Site metadata page, enter the following details:

   Site Name:              <your site name>
   Site Description:       <a site description>
   Site Path:              /
   

   Click Next Step to continue.

5. Next enter appropriate admin login details:

   Username:               admin   
   Email Address:          <admin email address>
   Password:               <admin password>
   

6. Click on the Complete button to finalize the installation.

You will see a bright green page with the message Install complete!.

To access the admin section simply click on the Visit your admin panel button and enter your username and password. If you aren't redirected to the admin login page, you can enter the admin address manually:

http://YOUR_VULTR_IP_ADDRESS/admin/panel

For security reasons, make sure you delete the /install/ directory from the webroot directory:

sudo rm -rf ./install/

You are now ready to start adding your content and configuring the look and feel of your site. Make sure you check out the Anchor CMS documentation for more information about how to build and configure your site.