Alpine newbie developer: gitea
gitea is now available from repositories: https://pkgs.alpinelinux.org/packages?name=gitea currently at 2020 still remains in edge brand but this guide does work either if are or not in main.
Clarifications
1. Gitea was created by a group of users and contributors of the self-hosted Git service Gogs. in fact gitea is gogs with steroids! so then It is a fork of Gogs and is written in Go.
2. This guide is for real deploy not for docker deploys.. dockers does not need to setup packages and filesystems configs, for that you must use always docker related configurations.
3. If even though docker always uses Alpine linux as images, and the software is alpine packages, it still has nothing to do with using alpine specific commands.
4. Git is the version control system (VCS) software behind gitea perse, so must be installed first. But repositories on server are not same as in clients.. server repositories are bare repositories.
Pre Requirements
This document will guide noob users, for professional case please visit Production_git_server:_gitea page.
- CVS command line
- Git almost 1.9.4 as minimun
- Database:
- MariaDB/MySQL
- PostgreSQL
- SQLite
- TiDB tidbAUR (experimental, not recommended)
Installation
This guide does work either if are or not in main or edge the gitea package:, take note, do not install any more from edge.. so in fact all gitea dependencies must be listed and installed before gitea and edge brand are activated, so the following process will guide and show you how to do that:
1. first gain root privileges or access ssh to your alpine server 2. added and update normal repositories 3. install git from normal stable repositories 4. alternate edge repositories 5. install gitea from edge repository 6. restore normal repository
cat > /etc/apk/repositories << EOF; $(echo) http://dl-cdn.alpinelinux.org/alpine/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/main http://dl-cdn.alpinelinux.org/alpine/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/community EOF apk update apk add bash git git-lfs gnupg gnupg1 cat >> /etc/apk/repositories << EOF; $(echo) http://dl-cdn.alpinelinux.org/alpine/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/main http://dl-cdn.alpinelinux.org/alpine/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/community http://dl-cdn.alpinelinux.org/alpine/edge/main http://dl-cdn.alpinelinux.org/alpine/edge/community EOF apk update apk add gitea cat > /etc/apk/repositories << EOF; $(echo) http://dl-cdn.alpinelinux.org/alpine/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/main http://dl-cdn.alpinelinux.org/alpine/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/community EOF apk update
Take in consideration that the user gitea or a gitea system user must be in the system.
Setting the hostname
A hostname is a unique name created to identify a machine on a network, configured in /etc/hostname.
To change the computer's hostname edit the /etc/hostname
file or execute the following command
(make sure to replace myhostname
with your desired hostname):
# echo "myhostname" > /etc/hostname
You should also add the hostname to your hosts file (/etc/hosts
):
127.0.0.1 localhost localhost.localdomain 127.0.1.1 myhostname myhostname.localdomain ::1 localhost localhost.localdomain
Network configuration
There are three types of internet connections: wired (Ethernet), wireless (WiFi) and PPTP (modems). This section will focus only on wired connections, for wireless configuration read the Connecting to a wireless access point article.
This section will help to update and configure your network interfaces, please plug your network cable in and then go to the console and run the DNS and interfaces configuration scripts.
cat > /etc/network/interfaces << EOF auto lo iface lo inet loopback EOF setup-interfaces -a echo -e "\n" | setup-dns 8.8.8.8 rc-service networking restart
Default root configurations
The root user are the god of the Linux Alpine system, run only the most deep in task, and must not be used as normal user neither for common task. For common users the last section of this page document will show you all the needs.
When Alpine Linux is first installed by default it comes with the user root with no password set so the first step after boot into alpine fresh install are set a password to the user root, if during install was run setup-alpine to change root password, that will be already set and can be changed with those setup steps described here. More info in the Setting users wiki page.
cat > /root/.cshrc << EOF unsetenv DISPLAY || true HISTCONTROL=ignoreboth EOF cp /root/.cshrc /root/.profile echo "secret_new_root_password" | chpasswd
Of course you must changed "secret_new_root_password" by a proper password provided by you.
New users: common needed package to install
Packages and programs on alpine are described on Alpine_newbie: Packages overall info.
install basic tools
As explain in Alpine Linux:Overview, the system always will be minimalist, so if you expected a behavior like others linux those will be provided a minimal similitude to, runs:
apk add attr dialog dialog-doc bash bash-doc bash-completion grep grep-doc apk add util-linux util-linux-doc pciutils usbutils binutils findutils readline apk add man man-pages lsof lsof-doc less less-doc nano nano-doc curl curl-doc export PAGER=less
Users creation and defaults
Only root can manage users. Creating an account allows it to have it's own $HOME
directory and allows you to limit access to the configuration of the operating system for security reasons. So the following commands will first setup root environment login and then assing a new password:
cat > /root/.cshrc << EOF unsetenv DISPLAY || true HISTCONTROL=ignoreboth EOF cp /root/.cshrc /root/.profile echo "secret_new_root_password" | chpasswd
The remote management cannot be done with root directly by default, due ssh security, so we need to setup an remote connection account to made "su" once connected.
The most recommended it's having a access user here named "remote" and normal general usage user here named "general" for convenience, in the next commands we will setup a very hardened limited environment for any new user and created those two users:
mkdir -p /etc/skel/ cat > /etc/skel/.logout << EOF history -c /bin/rm -f /opt/remote/.mysql_history /bin/rm -f /opt/remote/.history /bin/rm -f /opt/remote/.bash_history EOF cat > /etc/skel/.cshrc << EOF set autologout = 30 set prompt = "$ " set history = 0 set ignoreeof EOF cp /etc/skel/.cshrc /etc/skel/.profile adduser -D --home /opt/remote --shell /bin/ash remote echo "secret_new_remote_user_password" | chpasswd adduser -D --shell /bin/bash general echo "secret_new_general_user_password" | chpasswd
Note that those users are created with minimal settings. Of course you must changed "secret_new_remote_user_password" by a proper password provided by you, also equaly with "secret_new_general_user_password" too.
Users management and system access
But this user will not have enough privileges for a desktop made purposes, Alpine comes with high security so administrator (the root account owner) must perform the management of that user. Take care, for a server made there's no similar procedure!
Management of users can be made with the default busybox, but there's some packages that makes the life easy of the admins, lest use the libuser package now from testing repository:
cat > /etc/apk/repositories << EOF http://mirror.math.princeton.edu/pub/alpinelinux/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/main http://mirror.math.princeton.edu/pub/alpinelinux/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/community http://mirror.math.princeton.edu/pub/alpinelinux/edge/testing/ EOF apk update apk add libuser cat > /etc/apk/repositories << EOF http://mirror.math.princeton.edu/pub/alpinelinux/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/main http://mirror.math.princeton.edu/pub/alpinelinux/v$(cat /etc/alpine-release | cut -d'.' -f1,2)/community EOF apk update touch /etc/login.defs touch /etc/default/useradd
Now we can changes some defaults and added to proper groups to access devices or perform connections so, those are the recommended groups where the user must have in:
for u in $(ls /home); do for g in disk lp floppy audio cdrom dialout video netdev games users; do addgroup $u $g; done;done
- disk:x:6:root,adm Only if need usage vith virtual machines and access to other partitions over new disks for
- lp:x:7:lp IF will need to use printing services and printers management
- floppy:x:11:root Backguard compatible group, use only if need access to external special devices
- audio:x:18: Need for audio listening and management of sound volumes as normal user
- cdrom:x:19: For access to disck writers and mounting DVD, BR or CD rom disk as normal user
- dialout:x:20:root Need for dial private connections and use of modems as normal users
- tape:x:26:root Need have into this if plan to use special devices for backup.. rarelly in no servers
- video:x:27:root For usage of cameras, mor thant one GPU special features, as normal user
- netdev:x:28: For network connections management as normal user
- kvm:x:34:kvm Only if as normal user will manage graphically virtual machines.. rarelly on no servers
- games:x:35: Need if you want to play games also specially need if will share score between users
- cdrw:x:80: To write RW-DVD, RW-BR or RW-CD disk on a disk writing device
- apache:x:81: Need if you will perfom development as normal user and want to publish locally on web server
- usb:x:85: Need to access to special usb devices, deprecated group
- users:x:100:games If you plan to used common files for all users, mandatory as desktop usage
Now we have libuser also can change default shell:
- If you want to change the current user's shell, log in as that user and then inside their terminal session execute::
lchsh
- If you want to change a different user's shell, run as administration or as root:
lchsh general
Where "general" was the name of a created user login in previous sections.
Continue to Desktop
Before you continue, you must have at least already done the previously described steps in the section New users: common needed package to install!
Previous required | What's next to read |
---|---|
Alpine newbie install manual | Alpine newbie desktops |
Tutorial series
Previous required | What's next to read |
---|---|
Alpine newbie install manual | Alpine newbie desktops |