This repository demonstrates a production setup for Edlib 3 using Docker Compose. You should fork this and adapt it to your own needs.
- Docker
- Admin access on your computer or server
- Port 80 (tcp) and 443 (tcp/udp) available
-
Clone the git repository and navigate there.
-
Add to your
/etc/hostsorC:\Windows\System32\Drivers\etc\hosts127.0.0.1 ca.localhost 127.0.0.1 hub.localhostNote for WSL users: you must edit the hosts file belonging to Windows, not WSL.
(This step is not necessary when using real host names.)
-
Copy
.env.exampleto.envand edit it. At minimum, the following variables must be changed:CONTENTAUTHOR_APP_KEY: the cryptographic secret for Content AuthorCONTENTAUTHOR_LTI_SECRET: the OAuth consumer secret for Content AuthorHUB_APP_KEY: the cryptographic secret for the Hub
CONTENTAUTHOR_APP_KEYandHUB_APP_KEYmust each be 32-byte base64-encoded secrets, prefixed withbase64:. The following command can be used to generate an appropriate secret:echo "base64:$(openssl rand -base64 32)"
CONTENTAUTHOR_LTI_SECRETdoes not need special consideration, just type something random and long here.If you wish to change the host names, change the following:
CONTENTAUTHOR_HOSTHUB_HOST
-
Bring up the services.
docker compose up -d
This may take a long time. You can check the status with:
docker compose ps
-
Navigate to the
data/caddy/data/caddy/pki/authorities/localdirectory, and install the root certificate (root.crt) on your computer.On Windows, please follow these instructions.
On macOS, open the certificate in Keychain Access, then mark it as trusted for all purposes.
If successful, you will be able to visit https://hub.localhost and https://ca.localhost without warnings.
(This step is not necessary when using real host names.)
-
Open https://hub.localhost/, or your custom domain if applicable, in your browser.
docker compose exec hub php artisan edlib:create-admin-user [email protected]By default, self-signed certificates are generated for the Hub and Content Author.
To use real certificates, change the host names as described above. The web server will attempt to request real certificates for these from Let's Encrypt. The host names and the web server must be reachable over the public internet, or this won't work.
You accepted the certificate in the browser for the Hub, but did not install the actual root certificate on your computer. Install the actual root certificate and try again.
-
Delete the
datadirectory -
Delete the containers and their volumes (this removes all data)
docker compose down --volumes
-
Get the latest versions of the Docker images
docker compose pull
No. HTTPS is required due to considerations with cookies and increasing restrictions on whether web browsers will accept them or not. Additionally, there are a number of surprising changes in behaviour between HTTP and HTTPS sites. Therefore, Edlib and this example setup have been developed only with HTTPS in mind.
Since the automatic HTTPS setup isn't appropriate for reverse proxying, it is best to disable it, and expose the individual services for proxying.
In docker-compose.yml, remove the web service, then add ports sections to
the contentauthor-web and hub-web services:
services:
contentauthor-web:
# ...
+ ports:
+ - 127.0.0.1:8080:80
# ...
hub-web:
# ...
+ ports:
+ - 127.0.0.1:8081:80
# ...This exposes the Hub and Content Author services on 127.0.0.1:8080 and
127.0.0.1:8081, respectively.
Bugs can be reported on the Edlib issue tracker.