docman2/doc/install.html

<h1>Installation instructions</h1>

<ol>
<li>You will need <a href="http://www.apache.org/">Apache</a> web server
    (it should work with version 1.3 or 2.0, but it's not tested on 2.0)
    and <a href="http://www.php.net/">php</a> version 4.x installed and
    configured for docman to work.
    <small><a href="faq.html#php3">related FAQ question</a></small>
<li>Get latest version of Document Manager from
        <a href="http://www.rot13.org/~dpavlin/docman2.html">
        http://www.rot13.org/~dpavlin/docman2.html</a>

<li>Go to installation directory (which <b>shouldn't be</b> under your web
   server's DocumentRoot) and untar distribution
   <pre>
        cd /home/httpd
        tar xvfz docman-2*.tar.gz
   </pre>
   If you decide to install docman in some other directory, change
   <tt>$gblIncDir</tt> to that directory in <a href="#realm">
   <tt>realm/http_virtual_host.conf</tt></a>!

<li>Go to directory which you want to have under Document Manager control
   (this directory also shouldn't be accessible from your web server tree)
   <pre>
        cd /home/httpd/repository
   </pre>
   chmod that directory so that web server can write in it.
   <pre>
        chown nobody /home/httpd/repository
   </pre>
<li>Make a symlink from that directory to file which will be directory index
   <pre>
        ln -s /home/httpd/docman2/docman.php \
              /home/httpd/http_virtual_host/index.php
   </pre>

<a name="docman.css">
<li> <i>optional, performance</i>
   Make a symlink from docman.css file to your web-exported directory
   <pre>
        ln -s /home/httpd/docman2/html/docman.css \
              /home/httpd/http_virtual_host/docman.css
   </pre>

<a name="docman_conf">
<li>Copy docman <a href="upgrade.html#docman_conf">master configuration</a>
   file to <tt>/etc/docman.conf</tt>. If you
   want, you can change location of that file on top of <tt>docman.php</tt>
   but that will break automatic cvs update
   <small>(see <a href="upgrade.html#cvs">upgrade via CVS</a>)</small>
   <pre>
        cp /home/httpd/docman2/docman.conf /etc/docman.conf
   </pre>
   You can also enter values for <tt>$fsRealmDir</tt> (normally
   set to <tt>$gblIncDir/realm</tt>) there (and to some location
   which is not your docman installation).

<a name="realm">
<li>Go into docman's <tt>realm</tt> directory and copy template configuration
   into your <tt>http_virtual_host.conf</tt>
   <pre>
        cp /home/httpd/docman2/realm/localhost.conf.dist \
           /home/httpd/docman2/realm/http_virtual_host.conf
   </pre>
   More about <a href="new_directory_layout.html#realm">realms</a> can
   be found elsewhere in documentation.

   <br><b>Be sure to change</b> <tt>$gblRepositoryDir</tt> in
   <tt>realm/http_virtual_host.conf</tt> to match your repository
   directory (the one with user files and writable by web server).

<li>Make Apache Virtual Host configuration for hostname <i>http_virtual_host</i>
    to point to <tt>/home/httpd/http_virtual_host</tt>.

    <br>How to do that is beyond scope of this document. Please examine
    <a href="http://www.apache.org">Apache documentation</a>.

   <br>If you don't want to use virtual hosts for docman installation, your
   realm will be called the same as ServerName.

   <br>Add new DirectoryIndex entry to your Apache configuration file. If you
   are using virtual hosts, add it there. If your
   Apache has config files in <tt>/etc/httpd/conf/httpd.conf</tt> find a line
   like
   <pre>
        DirectoryIndex index.html index.htm
   </pre>
   and add <tt>index.php</tt> at the end.
   <pre>
        DirectoryIndex index.html index.htm index.php
   </pre>

<li><i>if you don't want to users in SQL database</i>
   Go to you web server <tt>http://http_virtual_host/</tt> and you should get
   authorization request. If you want to add <i>anonymous</i> access (without
   login and password) skip to <a href="#truestee">trustee</a> section.

   <br>Edit <tt>realm/http_virtual_host/.htusers</tt> file to add users.
   You can do that by calling <tt>adduser.pl</tt> script with name of
   your htusers file like this:
   <pre>
        $ cd /home/httpd/docman2
        $ ./adduser.pl realm/http_virtual_host.conf
   </pre>
   If you press just <i>enter</i> for password or enter <tt>auth_pop3</tt>
   docman will use e-mail address to connect to pop3 server and check
   password on it. For that e-mail address must be in following form:
   <tt>pop3login@pop3server.mydomain</tt>

   <br>E-mail addresses are also used for notification of changes in
   repository, so if your pop3 account is not a valid e-mail address that
   won't work for you.
   <br>However, one of planned enhancements is e-mail notification to
   addresses which are not from htusers file, so watch out.

<li> <i>alternative your users are in SQL database</i>
   Change <tt>$gblUsers</tt>
   in <tt>realm/http_virtual_host.conf</tt> to
   <tt>$gblUsers = "htusers_sql";</tt>

   <p><i>Since I will convert all code to use PEAR, you again have to
   download php-dbi classes, because they are not included with docman
   anymore. This feature is not tested in version 2.0. Look out!</i></p>

   <br>Download php-dbi class from 
   <a href="http://pil.dk/downloads/dbi.tar.gz">
   http://pil.dk/downloads/dbi.tar.gz</a> and
   untar it in docman's directory
   <pre>
        cd /home/httpd/docman2
        tar xvfz dbi.tar.gz
   </pre>
   Construct SQL query which returns login, full name, password and
   email from your tables(s). If you don't have some of that data, replace
   them with literal strings.
   <blockquote> 
        e.g. If your table is called <tt>my_users</tt> with columns <tt>who</tt>
        in which is login and column <tt>pw</tt> in which is plain text
        password you can use following query to get requested format:
        <br><tt>select who,'Auth user',pw,'nobody@com' from my_users</tt>
   </blockquote>

   Enter that SQL query under <tt>$dbi_sql</tt> in
   <tt>realm/http_virtual_host.conf</tt>.

   <br>Construct <tt>$dbi</tt> in <tt>realm/http_virtual_host.conf</tt>
   in following format:
   <pre>
        $dbi = "driver:database:user:password"
   </pre>

   Field <i>driver</i> can be: <tt>pgsql</tt>, <tt>mysql</tt>, <tt>oracle</tt>
   or <tt>odbc</tt> (or other if supported by current php-dbi), <i>database</i>
   is name of database in which are your users and <i>user</i>/<i>password</i>
   are credentials for user which connects to database.

<li> <i>alternative if you want to authorize users based on IP numbers,
   client DNS names of HTTP Referrer header (URL from which they accessed
   docman site)</i>
   <br>Put <tt>$gblUsers = "htusers_header";</tt> in
   <tt>realm/http_virtual_host.conf</tt> and use
   following form in your <tt>realm/http_virtual_host.htusers</tt> file:
   <pre>
   REMOTE_ADDR=10.0.0.3:Full name:auth_header:e-mail@foo.bar
   remote_hostname=myworkstation:Full name:auth_header:e-mail@foo.bar
   http_referer=test.foo.bar:Full name:auth_header:e-mail@foo.bar
   </pre>
   Please note that you <b>have to</b> put <tt>auth_header</tt> in password
   field and valid options in login field.
   <br>Valid options for left side of equation (=) in login field are:
   <tt>remote_addr</tt>, <tt>remote_hostname</tt> or <tt>http_referer</tt>.
   Valid filed for right side are respective parameters for that option.

<li> <i>if you want some combination of above auth methods</i>
   <br>Put in <tt>realm/http_virtual_host.conf</tt>:
   <br><tt>$gblUsers = "htusers_union"</tt><br>
   and uncomment which htusers auth modules you want to use and in which
   order. It's enough for just one module to return success and user will
   be allowed to login (so you can first check http_referer and then
   htusers file if you want to).

<a name="#trustee">
<li> <i>optional, but highly recommended</i>
   Trustees are ACL implementation in docman. It's documented in
   <a href="trustee.html">separate document</a>, and you should use it if your
   users shouldn't have same right to all files under docman control, or
   if you want to enable <i>anonymous</i> access to repository.

<li> <i>optional</i> You can create file named <tt>.info.inc</tt> in
   <tt>/home/httpd/repository</tt> directory for some kind of 
   <acronym title="message of the day">motd</acronym>
   file. You can use html mark-up in it also!

<li> if you want to <b>upload files which are bigger than 2Mb</b> increase
   <tt>upload_max_filesize</tt> to more than 2Mb in <tt>php.ini</tt>.
   If you still get errors on files bigger than 8Mb increase
   <tt>post_max_size</tt> also.

<li> <i>optional</i> Think about configuring your backup software so that
   <tt>/home/httpd</tt> is backup ed automatically.

<li> <i>optional</i> You can use document manager behind secure http
        server (<tt>https</tt>) simply by installing it. For information take a
        look at <a href="http://www.modssl.org">http://www.modssl.org</a>
        if you are using Apache 1.x or examine configuration options
        for Apache 2.x.

<a name="gblSeparateAdminMessages">
<li> <i>optional, after you are sure that configuration if correct</i>
        You can separate administrative messages from errors which are
        reported to users using 
        <tt>$gblSeparateAdminMessages = 1</tt>
        in <tt>realm/http_virtual_host.conf</tt>. Error messages for you
        will go to Apache Error log, and (if you also setup
        <tt>$gblMailAdminMessages = 1</tt> to ServerAdmin from
        <tt>apache.conf</tt>).

</ol>

<p><b>You are ready to go.</b></p>

<p>
More info see: <a href="new_directory_layout.html">New Directory Layout</a>,
<a href="upgrade.html">How to Upgrade from v1.x</a>,
<a href="performance.html">Performance tips</a> and
<a href="admin.html">Administration manual</a>
</p>
1	dpavlin	1.1	<h1>Installation instructions</h1>
2
3			<ol>
4			<li>You will need <a href="http://www.apache.org/">Apache</a> web server
5			(it should work with version 1.3 or 2.0, but it's not tested on 2.0)
6			and <a href="http://www.php.net/">php</a> version 4.x installed and
7			configured for docman to work.
8			<small><a href="faq.html#php3">related FAQ question</a></small>
9			<li>Get latest version of Document Manager from
10			<a href="http://www.rot13.org/~dpavlin/docman2.html">
11			http://www.rot13.org/~dpavlin/docman2.html</a>
12
13			<li>Go to installation directory (which <b>shouldn't be</b> under your web
14			server's DocumentRoot) and untar distribution
15			<pre>
16			cd /home/httpd
17			tar xvfz docman-2*.tar.gz
18			</pre>
19			If you decide to install docman in some other directory, change
20			<tt>$gblIncDir</tt> to that directory in <a href="#realm">
21			<tt>realm/http_virtual_host.conf</tt></a>!
22
23			<li>Go to directory which you want to have under Document Manager control
24	dpavlin	1.2	(this directory also shouldn't be accessible from your web server tree)
25	dpavlin	1.1	<pre>
26			cd /home/httpd/repository
27			</pre>
28			chmod that directory so that web server can write in it.
29			<pre>
30			chown nobody /home/httpd/repository
31			</pre>
32			<li>Make a symlink from that directory to file which will be directory index
33			<pre>
34			ln -s /home/httpd/docman2/docman.php \
35			/home/httpd/http_virtual_host/index.php
36			</pre>
37
38			<a name="docman.css">
39			<li> <i>optional, performance</i>
40			Make a symlink from docman.css file to your web-exported directory
41			<pre>
42			ln -s /home/httpd/docman2/html/docman.css \
43			/home/httpd/http_virtual_host/docman.css
44			</pre>
45
46			<a name="docman_conf">
47			<li>Copy docman <a href="upgrade.html#docman_conf">master configuration</a>
48			file to <tt>/etc/docman.conf</tt>. If you
49			want, you can change location of that file on top of <tt>docman.php</tt>
50			but that will break automatic cvs update
51			<small>(see <a href="upgrade.html#cvs">upgrade via CVS</a>)</small>
52			<pre>
53			cp /home/httpd/docman2/docman.conf /etc/docman.conf
54			</pre>
55			You can also enter values for <tt>$fsRealmDir</tt> (normally
56			set to <tt>$gblIncDir/realm</tt>) there (and to some location
57			which is not your docman installation).
58
59			<a name="realm">
60			<li>Go into docman's <tt>realm</tt> directory and copy template configuration
61			into your <tt>http_virtual_host.conf</tt>
62			<pre>
63			cp /home/httpd/docman2/realm/localhost.conf.dist \
64			/home/httpd/docman2/realm/http_virtual_host.conf
65			</pre>
66			More about <a href="new_directory_layout.html#realm">realms</a> can
67			be found elsewhere in documentation.
68
69			<br><b>Be sure to change</b> <tt>$gblRepositoryDir</tt> in
70			<tt>realm/http_virtual_host.conf</tt> to match your repository
71			directory (the one with user files and writable by web server).
72
73			<li>Make Apache Virtual Host configuration for hostname <i>http_virtual_host</i>
74			to point to <tt>/home/httpd/http_virtual_host</tt>.
75
76			<br>How to do that is beyond scope of this document. Please examine
77			<a href="http://www.apache.org">Apache documentation</a>.
78
79			<br>If you don't want to use virtual hosts for docman installation, your
80			realm will be called the same as ServerName.
81
82			<br>Add new DirectoryIndex entry to your Apache configuration file. If you
83			are using virtual hosts, add it there. If your
84			Apache has config files in <tt>/etc/httpd/conf/httpd.conf</tt> find a line
85			like
86			<pre>
87			DirectoryIndex index.html index.htm
88			</pre>
89			and add <tt>index.php</tt> at the end.
90			<pre>
91			DirectoryIndex index.html index.htm index.php
92			</pre>
93
94			<li><i>if you don't want to users in SQL database</i>
95			Go to you web server <tt>http://http_virtual_host/</tt> and you should get
96	dpavlin	1.2	authorization request. If you want to add <i>anonymous</i> access (without
97	dpavlin	1.1	login and password) skip to <a href="#truestee">trustee</a> section.
98
99			<br>Edit <tt>realm/http_virtual_host/.htusers</tt> file to add users.
100			You can do that by calling <tt>adduser.pl</tt> script with name of
101			your htusers file like this:
102			<pre>
103			$ cd /home/httpd/docman2
104			$ ./adduser.pl realm/http_virtual_host.conf
105			</pre>
106			If you press just <i>enter</i> for password or enter <tt>auth_pop3</tt>
107	dpavlin	1.2	docman will use e-mail address to connect to pop3 server and check
108	dpavlin	1.1	password on it. For that e-mail address must be in following form:
109			<tt>pop3login@pop3server.mydomain</tt>
110
111			<br>E-mail addresses are also used for notification of changes in
112			repository, so if your pop3 account is not a valid e-mail address that
113			won't work for you.
114			<br>However, one of planned enhancements is e-mail notification to
115			addresses which are not from htusers file, so watch out.
116
117			<li> <i>alternative your users are in SQL database</i>
118			Change <tt>$gblUsers</tt>
119			in <tt>realm/http_virtual_host.conf</tt> to
120			<tt>$gblUsers = "htusers_sql";</tt>
121
122			<p><i>Since I will convert all code to use PEAR, you again have to
123			download php-dbi classes, because they are not included with docman
124			anymore. This feature is not tested in version 2.0. Look out!</i></p>
125
126			<br>Download php-dbi class from
127			<a href="http://pil.dk/downloads/dbi.tar.gz">
128			http://pil.dk/downloads/dbi.tar.gz</a> and
129			untar it in docman's directory
130			<pre>
131			cd /home/httpd/docman2
132			tar xvfz dbi.tar.gz
133			</pre>
134			Construct SQL query which returns login, full name, password and
135			email from your tables(s). If you don't have some of that data, replace
136			them with literal strings.
137			<blockquote>
138			e.g. If your table is called <tt>my_users</tt> with columns <tt>who</tt>
139			in which is login and column <tt>pw</tt> in which is plain text
140			password you can use following query to get requested format:
141			<br><tt>select who,'Auth user',pw,'nobody@com' from my_users</tt>
142			</blockquote>
143
144			Enter that SQL query under <tt>$dbi_sql</tt> in
145			<tt>realm/http_virtual_host.conf</tt>.
146
147			<br>Construct <tt>$dbi</tt> in <tt>realm/http_virtual_host.conf</tt>
148			in following format:
149			<pre>
150			$dbi = "driver:database:user:password"
151			</pre>
152
153			Field <i>driver</i> can be: <tt>pgsql</tt>, <tt>mysql</tt>, <tt>oracle</tt>
154			or <tt>odbc</tt> (or other if supported by current php-dbi), <i>database</i>
155			is name of database in which are your users and <i>user</i>/<i>password</i>
156			are credentials for user which connects to database.
157
158			<li> <i>alternative if you want to authorize users based on IP numbers,
159	dpavlin	1.2	client DNS names of HTTP Referrer header (URL from which they accessed
160	dpavlin	1.1	docman site)</i>
161			<br>Put <tt>$gblUsers = "htusers_header";</tt> in
162			<tt>realm/http_virtual_host.conf</tt> and use
163			following form in your <tt>realm/http_virtual_host.htusers</tt> file:
164			<pre>
165			REMOTE_ADDR=10.0.0.3:Full name:auth_header:e-mail@foo.bar
166			remote_hostname=myworkstation:Full name:auth_header:e-mail@foo.bar
167			http_referer=test.foo.bar:Full name:auth_header:e-mail@foo.bar
168			</pre>
169			Please note that you <b>have to</b> put <tt>auth_header</tt> in password
170			field and valid options in login field.
171			<br>Valid options for left side of equation (=) in login field are:
172			<tt>remote_addr</tt>, <tt>remote_hostname</tt> or <tt>http_referer</tt>.
173	dpavlin	1.2	Valid filed for right side are respective parameters for that option.
174	dpavlin	1.1
175	dpavlin	1.2	<li> <i>if you want some combination of above auth methods</i>
176	dpavlin	1.1	<br>Put in <tt>realm/http_virtual_host.conf</tt>:
177			<br><tt>$gblUsers = "htusers_union"</tt><br>
178			and uncomment which htusers auth modules you want to use and in which
179			order. It's enough for just one module to return success and user will
180			be allowed to login (so you can first check http_referer and then
181			htusers file if you want to).
182
183			<a name="#trustee">
184			<li> <i>optional, but highly recommended</i>
185			Trustees are ACL implementation in docman. It's documented in
186			<a href="trustee.html">separate document</a>, and you should use it if your
187	dpavlin	1.2	users shouldn't have same right to all files under docman control, or
188	dpavlin	1.1	if you want to enable <i>anonymous</i> access to repository.
189
190			<li> <i>optional</i> You can create file named <tt>.info.inc</tt> in
191			<tt>/home/httpd/repository</tt> directory for some kind of
192			<acronym title="message of the day">motd</acronym>
193	dpavlin	1.2	file. You can use html mark-up in it also!
194	dpavlin	1.1
195			<li> if you want to <b>upload files which are bigger than 2Mb</b> increase
196			<tt>upload_max_filesize</tt> to more than 2Mb in <tt>php.ini</tt>.
197			If you still get errors on files bigger than 8Mb increase
198			<tt>post_max_size</tt> also.
199
200			<li> <i>optional</i> Think about configuring your backup software so that
201	dpavlin	1.2	<tt>/home/httpd</tt> is backup ed automatically.
202	dpavlin	1.1
203			<li> <i>optional</i> You can use document manager behind secure http
204			server (<tt>https</tt>) simply by installing it. For information take a
205			look at <a href="http://www.modssl.org">http://www.modssl.org</a>
206			if you are using Apache 1.x or examine configuration options
207			for Apache 2.x.
208
209	dpavlin	1.3	<a name="gblSeparateAdminMessages">
210			<li> <i>optional, after you are sure that configuration if correct</i>
211			You can separate administrative messages from errors which are
212			reported to users using
213			<tt>$gblSeparateAdminMessages = 1</tt>
214			in <tt>realm/http_virtual_host.conf</tt>. Error messages for you
215			will go to Apache Error log, and (if you also setup
216			<tt>$gblMailAdminMessages = 1</tt> to ServerAdmin from
217			<tt>apache.conf</tt>).
218
219	dpavlin	1.1	</ol>
220
221			<p><b>You are ready to go.</b></p>
222
223			<p>
224			More info see: <a href="new_directory_layout.html">New Directory Layout</a>,
225			<a href="upgrade.html">How to Upgrade from v1.x</a>,
226	dpavlin	1.3	<a href="performance.html">Performance tips</a> and
227			<a href="admin.html">Administration manual</a>
228	dpavlin	1.1	</p>