DHIS 2 installation and server maintenance tools
Contains scripts and documentation for installing and managing DHIS2 in production settings.
The traditional dhis2-tools ubuntu package. Only suitable for small installations where security and scalability are not paramount.
Next generation tools. Recommended for use in most settings. With an emphasis on security, monitoring and scaling.
See https://launchpad.net/~webupd8team/+archive/ubuntu/java
Currently DHIS 2 Tools install.sh script will fail with "package 'oracle-java8-installer' has no installation candidate"
Can we use other versions of Java?
The default ssl settings if you use dhis2-nginx need to be updated.
Question: should dhis2-nginx remain part of the package at all?
When running make for the manual pages on Ubuntu 16.04 the generated pages will have indents that should not be there. This will make the man pages look bad.
This is not a problem when building the package on 14.04 for the 16.04 distro.
The PPA version for 16.04 is not affected.
Problem with xsltproc and docbook-xsl on 16.04?
By default tools generate hibernate.properties. Need to upgrade support for dhis.conf, including database encryption target
recipe for phppgadmin
users generally want to maintain or have access to the database backend.
what I have done is allow apt-get install phppgadmin to do what it naturally does (install Apache2)
then set Apache2 to a 808x port, then proxy the apache instance via nginx, but warning there are all kinds of URL path problems that may result if users go beyond simple /foo directory proxy.
having this set up allows users to also add any other ubuntu native programs they might like, and, assuming the program is not in / but /foo URL space it should just work.
automate something like this into dhis2-pgadmin-install ??
default php.ini is poorly configured for phppgadmin. It needs to have timeouts and session transfer data size adjusted upwards for things to work.
For training scenarios, on one server, you may want to deploy more than one DHIS2 instance at the same time
currently the dhis2-deploy-war uses the SAME /tmp/dhis2.war filename. therefore if the deploy script is run more than once, the download will step on one another. fix the file name in /tmp so that it is unique.
keep the war file somewhere and before downloaded compare md5 keys. only download if necessary
When you issue dhis2-shutdown instancename followed by dhis2-startup instancename, the instance fails sometimes since the process is not removed.It shows that the pid XXXX process is still running.
The quick fix is to kill the process manually and then issue dhis2-startup again
Copyright notice under /usr/share/doc/dhis2-tools/copyright needs to be changed. It apears to have been copied from tomcat7-user
from #2
dhis2-instance-restore
allows for restoration of a full working DHIS2 instance file (created by dhis2-instance-backup) to be restored and turned on
allows for one-step re-deployment of instance.
optionally allow instance to be renamed on re-deployment
Installation via package manager
from #2
dhis2-remove-instance
cleans up user, data bases, /var/lib/dhis2/xx files, crontabs etc
the rm -rf of the dhis2-tools world
tools should support automatic support of java 8
Use case 1:
A dhis2-admin user wants to download the backup files located in /var/lib/dhis2/dhis/backups, or generate and download an ad-hoc db backup generated by the dhis () user.
Problem. Currently the dhis2-admins don't have access to files in the backups/ folder, so the only way right now is to use sudo. And ad-hoc backup can be taken using "sudo -u dhis pg_dump XXX", but this file must be written to a folder where the dhis user has access (not possible to write the backup to /home/), and the dhis2-admin user will not have access to that location.
from #2
dhis2-instance-backup
creates a FULL backup (database, tomcat files etc) for a running DHIS2 instance.
package this up into a tar.gz with meta data files, datetimestamp etc.
optional password encrypt file?
from: #2
dhis2-list-instances
similar to ps command
returns all instances, the tcp port they are running on, their running state have a flag in each directory letting dhis2-tools know if an instance is managed by dhis2-tools, or not. thereby allowing foreign, custom-configured instances to be installed.
There are problems with dhis2-instance-create when instance name contains dashes with postgreSQL 9.5. These are not properly escaped and script generates an error.
Bob,
Bob -reposting here on your suggestion from email:
I've made a laundry list of potential/suggested additions to the dhis2tools. I wonder your thoughts on these and if you have considered them before.
dhis2-list-instances
similar to ps command
returns all instances, the tcp port they are running on, their running state have a flag in each directory letting dhis2-tools know if an instance is managed by dhis2-tools, or not. thereby allowing foreign, custom-configured instances to be installed.
dhis2-remove-instance
cleans up user, data bases, /var/lib/dhis2/xx files, crontabs etc
the rm -rf of the dhis2-tools world
nginx auto config for instances
nginx http behaviour
dhis2-instance-backup
dhis2-instance-restore
dhis2-instance-rename
recipe for phppgadmin
Set up a consistent way to manage the http_proxy, https_proxy and ftp_proxy environment variables so that wget and git work properly
For training scenarios, on one server, you may want to deploy more than one DHIS2 instance at the same time
In order to allow dhis2-create-instance and dhis2-delete-instance to "work" %dhis2admin users are currently allowed to create and delete users and kill processes as root. This is unecessary privilege.
from #2
nginx http behaviour
install ssi module for nginx by default
install gz module for nginx by default
create a default index.html file for the HTTP requests
create a default directory in HTTP space for option splash screens welcome pages. e.g. see http://www.his.gov.sd
dhis2-instance-* scripts should maintain ssi snip for inclusion into the index.html listing all DHIS2 instances on the system with appropriate links (html to have named
tags for CSS)
(optionally) also make a link to the log files and allow the catalina.out for each instance to be quickly seen on the web (good for training, testing)
(optionally) allow a directory for static files (as emailed earlier) to have a consistent way to deal with the logos, images
W: dhis2-tools: binary-without-manpage usr/bin/dhis2-backup
W: dhis2-tools: binary-without-manpage usr/bin/dhis2-integrity
W: dhis2-tools: binary-without-manpage usr/bin/dhis2-nginx
W: dhis2-tools: binary-without-manpage usr/bin/dhis2-restoredb
https://unix.stackexchange.com/questions/319614/makepasswd-not-working-properly-in-debian-stretch
sudo apt-get install haveged seemed to solve the problem for me.
Set up a consistent way to manage the http_proxy, https_proxy and ftp_proxy environment variables so that wget and git work properly
implies fixing up install.sh
war file deployment script
We aren't doing anyone any favours by bundling the snakeoil certs on install: they are useless for production and https is unnecessary for dev/training, especially since browsers complain pretty loudly about fake certs.
If we need to bundle an HTTPS setup we could (optionally) include a setup for Let's encrypt which issues free 3 month certificates and comes with client software to enable pain free auto-renewal. This solution provides free and painless LEGIT certificates for the DHIS2 instance.
Of course, the cert needs to be configured for an actual domain, which makes the whole ordeal a bit more complicated... Maybe writing a short guide setup with dhis2/nginx would suffice?
from #2
dhis2-instance-rename
allows a DHIS2 instance to be renamed. changes the name of the associated user, database and web application location
tools need to be updated/tested to support 16.04
To suggestions to make dhis2-deploywar a bit safer:
Example:
dhis2-deploywar staging -l https://www.dhis2.org/download/releases/2.25/dhis.war
This would deploy the latest stable build, not 2.25 (because option is before instance). Note that for dhis2-restoredb instance name is expected to come first, before file name.
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google โค๏ธ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.
