docman2/doc/install.html

<h1>Installation instructions</h1>

<ol>
<li>You will need <a href="http://www.apache.org/">Apache</a> web server
    (it should work with version 1.3 or 2.0, but it's not tested on 2.0)
    and <a href="http://www.php.net/">php</a> version 4.x installed and
    configured for docman to work.
    <small><a href="faq.html#php3">related FAQ question</a></small>
<li>Get latest version of Document Manager from
        <a href="http://www.rot13.org/~dpavlin/docman2.html">
        http://www.rot13.org/~dpavlin/docman2.html</a>

<li>Go to installation directory (which <b>shouldn't be</b> under your web
   server's DocumentRoot) and untar distribution
   <pre>
        cd /home/httpd
        tar xvfz docman-2*.tar.gz
   </pre>
   Make a symlink from current version (2.x) to default directory name
   <tt>docman2</tt>
   <pre>
        ln -s docman-2.x docman2
   </pre>
   If you decide to install docman in some other directory, change
   <tt>$gblIncDir</tt> to that directory in <a href="#realm">
   <tt>realm/http_virtual_host.conf</tt></a>!
   <br>If you don't want to use virtual hosts to separate docman
   installations on same host, but instead use directory name before
   <tt>docman.php</tt> script please read whole installation instructions
   and than <a href="admin.html#path_realm">Using script path as realm name</a>
   to correct all instructions.

<li>Go to directory which you want to have under Document Manager control
   (this directory also shouldn't be accessible from your web server tree)
   <pre>
        cd /home/httpd/repository
   </pre>
   chmod that directory so that web server can write in it.
   <pre>
        chown nobody /home/httpd/repository
   </pre>
<li>Make a symlink from that directory to file which will be directory index
   <pre>
        ln -s /home/httpd/docman2/docman.php \
              /home/httpd/http_virtual_host/index.php
   </pre>

<a name="docman.css">
<li> <i>optional, performance</i>
   Make a symlink from docman.css file to your web-exported directory
   <pre>
        ln -s /home/httpd/docman2/html/docman.css \
              /home/httpd/http_virtual_host/docman.css
   </pre>

<a name="docman_conf">
<li>Copy docman <a href="upgrade.html#docman_conf">master configuration</a>
   file to <tt>/etc/docman.conf</tt>. If you
   want, you can change location of that file on top of <tt>docman.php</tt>
   but that will break automatic cvs update
   <small>(see <a href="upgrade.html#cvs">upgrade via CVS</a>)</small>
   <pre>
        cp /home/httpd/docman2/docman.conf /etc/docman.conf
   </pre>
   You can also enter values for <tt>$fsRealmDir</tt> (normally
   set to <tt>$gblIncDir/realm</tt>) there (and to some location
   which is not your docman installation).

<a name="realm">
<li>Go into docman's <tt>realm</tt> directory and copy template configuration
   into your <tt>http_virtual_host.conf</tt>
   <pre>
        cp /home/httpd/docman2/realm/localhost.conf.dist \
           /home/httpd/docman2/realm/http_virtual_host.conf
   </pre>
   More about <a href="new_directory_layout.html#realm">realms</a> can
   be found elsewhere in documentation.

   <br><b>Be sure to change</b> <tt>$gblRepositoryDir</tt> in
   <tt>realm/http_virtual_host.conf</tt> to match your repository
   directory (the one with user files and writable by web server).

<li>Make Apache Virtual Host configuration for hostname <i>http_virtual_host</i>
    to point to <tt>/home/httpd/http_virtual_host</tt>.

    <br>How to do that is beyond scope of this document. Please examine
    <a href="http://www.apache.org">Apache documentation</a>.

   <br>If you don't want to use virtual hosts for docman installation, your
   realm will be called the same as ServerName.

   <br>Add new DirectoryIndex entry to your Apache configuration file. If you
   are using virtual hosts, add it there. If your
   Apache has config files in <tt>/etc/httpd/conf/httpd.conf</tt> find a line
   like
   <pre>
        DirectoryIndex index.html index.htm
   </pre>
   and add <tt>index.php</tt> at the end.
   <pre>
        DirectoryIndex index.html index.htm index.php
   </pre>

<li><i>if you don't want to users in SQL database</i>
   Go to you web server <tt>http://http_virtual_host/</tt> and you should get
   authorization request. If you want to add
   <a href="trustee.html#anonymous">anonymous access</a> (without
   login and password) skip to <a href="#truestee">trustee</a> section.

   <br>Edit <tt>realm/http_virtual_host.htusers</tt> file to add users.
   You can do that by calling <tt>adduser.pl</tt> script with name of
   your htusers file like this:
   <pre>
        $ cd /home/httpd/docman2
        $ ./adduser.pl realm/http_virtual_host.conf
   </pre>
   If you press just <i>enter</i> for password or enter <tt>auth_pop3</tt>
   docman will use e-mail address to connect to pop3 server and check
   password on it. For that e-mail address must be in following form:
   <tt>pop3login@pop3server.mydomain</tt>

   <br>E-mail addresses are also used for notification of changes in
   repository, so if your pop3 account is not a valid e-mail address that
   won't work for you.
   <br>However, one of planned enhancements is e-mail notification to
   addresses which are not from htusers file, so watch out.

<li> <i>alternative your users are in SQL database</i>
   Change <tt>$gblUsers</tt>
   in <tt>realm/http_virtual_host.conf</tt> to
   <tt>$gblUsers = "htusers_sql";</tt>

   <p><i>Since I will convert all code to use PEAR, you again have to
   download php-dbi classes, because they are not included with docman
   anymore. This feature is not tested in version 2.0. Look out!</i></p>

   <br>Download php-dbi class from 
   <a href="http://pil.dk/downloads/dbi.tar.gz">
   http://pil.dk/downloads/dbi.tar.gz</a> and
   untar it in docman's directory
   <pre>
        cd /home/httpd/docman2
        tar xvfz dbi.tar.gz
   </pre>
   Construct SQL query which returns login, full name, password and
   email from your tables(s). If you don't have some of that data, replace
   them with literal strings.
   <blockquote> 
        e.g. If your table is called <tt>my_users</tt> with columns <tt>who</tt>
        in which is login and column <tt>pw</tt> in which is plain text
        password you can use following query to get requested format:
        <br><tt>select who,'Auth user',pw,'nobody@com' from my_users</tt>
   </blockquote>

   Enter that SQL query under <tt>$dbi_sql</tt> in
   <tt>realm/http_virtual_host.conf</tt>.

   <br>Construct <tt>$dbi</tt> in <tt>realm/http_virtual_host.conf</tt>
   in following format:
   <pre>
        $dbi = "driver:database:user:password"
   </pre>

   Field <i>driver</i> can be: <tt>pgsql</tt>, <tt>mysql</tt>, <tt>oracle</tt>
   or <tt>odbc</tt> (or other if supported by current php-dbi), <i>database</i>
   is name of database in which are your users and <i>user</i>/<i>password</i>
   are credentials for user which connects to database.

<li> <i>alternative if you want to authorize users based on IP numbers,
   client DNS names of HTTP Referrer header (URL from which they accessed
   docman site)</i>
   <br>Put <tt>$gblUsers = "htusers_header";</tt> in
   <tt>realm/http_virtual_host.conf</tt> and use
   following form in your <tt>realm/http_virtual_host.htusers</tt> file:
   <pre>
   REMOTE_ADDR=10.0.0.3:Full name:auth_header:e-mail@foo.bar
   remote_hostname=myworkstation:Full name:auth_header:e-mail@foo.bar
   http_referer=test.foo.bar:Full name:auth_header:e-mail@foo.bar
   </pre>
   Please note that you <b>have to</b> put <tt>auth_header</tt> in password
   field and valid options in login field.
   <br>Valid options for left side of equation (=) in login field are:
   <tt>remote_addr</tt>, <tt>remote_hostname</tt> or <tt>http_referer</tt>.
   Valid filed for right side are respective parameters for that option.

<li> <i>if you want some combination of above auth methods</i>
   <br>Put in <tt>realm/http_virtual_host.conf</tt>:
   <br><tt>$gblUsers = "htusers_union"</tt><br>
   and uncomment which htusers auth modules you want to use and in which
   order. It's enough for just one module to return success and user will
   be allowed to login (so you can first check http_referer and then
   htusers file if you want to).

<a name="#trustee">
<li> <i>optional, but highly recommended</i>
   Trustees are ACL implementation in docman. It's documented in
   <a href="trustee.html">separate document</a>, and you should use it if your
   users shouldn't have same right to all files under docman control, or
   if you want to enable <a href="trustee.html#anonymous">anonymous
   access</a> to repository.

<li> <i>optional</i> You can create file named <tt>.info.inc</tt> in
   <tt>/home/httpd/repository</tt> directory for some kind of 
   <acronym title="message of the day">motd</acronym>
   file. You can use html mark-up in it also!

<li> <i>optional</i>If you decided to use 
   <a href="admin.html#path_realm">script path as realm name</a>
   correct all installation files according to
   <a href="admin.html#path_realm_convert">this instructions</a>.

<li> if you want to <b>upload files which are bigger than 2Mb</b> increase
   <tt>upload_max_filesize</tt> to more than 2Mb in <tt>php.ini</tt>.
   If you still get errors on files bigger than 8Mb increase
   <tt>post_max_size</tt> also.

<li> <i>optional</i> Think about configuring your backup software so that
   <tt>/home/httpd</tt> is backup ed automatically.

<li> <i>optional</i> You can use document manager behind secure http
        server (<tt>https</tt>) simply by installing it. For information take a
        look at <a href="http://www.modssl.org">http://www.modssl.org</a>
        if you are using Apache 1.x or examine configuration options
        for Apache 2.x.

<a name="gblSeparateAdminMessages">
<li> <i>optional, after you are sure that configuration if correct</i>
        You can separate administrative messages from errors which are
        reported to users using 
        <tt>$gblSeparateAdminMessages = 1</tt>
        in <tt>realm/http_virtual_host.conf</tt>. Error messages for you
        will go to Apache Error log, and (if you also setup
        <tt>$gblMailAdminMessages = 1</tt> to ServerAdmin from
        <tt>apache.conf</tt>).

</ol>

<p><b>You are ready to go.</b></p>

<p>
More info see: <a href="new_directory_layout.html">New Directory Layout</a>,
<a href="upgrade.html">How to Upgrade from v1.x</a>,
<a href="performance.html">Performance tips</a> and
<a href="admin.html">Administration manual</a>
</p>
1	<h1>Installation instructions</h1>
2
3	<ol>
4	<li>You will need <a href="http://www.apache.org/">Apache</a> web server
5	(it should work with version 1.3 or 2.0, but it's not tested on 2.0)
6	and <a href="http://www.php.net/">php</a> version 4.x installed and
7	configured for docman to work.
8	<small><a href="faq.html#php3">related FAQ question</a></small>
9	<li>Get latest version of Document Manager from
10	<a href="http://www.rot13.org/~dpavlin/docman2.html">
11	http://www.rot13.org/~dpavlin/docman2.html</a>
12
13	<li>Go to installation directory (which <b>shouldn't be</b> under your web
14	server's DocumentRoot) and untar distribution
15	<pre>
16	cd /home/httpd
17	tar xvfz docman-2*.tar.gz
18	</pre>
19	Make a symlink from current version (2.x) to default directory name
20	<tt>docman2</tt>
21	<pre>
22	ln -s docman-2.x docman2
23	</pre>
24	If you decide to install docman in some other directory, change
25	<tt>$gblIncDir</tt> to that directory in <a href="#realm">
26	<tt>realm/http_virtual_host.conf</tt></a>!
27	<br>If you don't want to use virtual hosts to separate docman
28	installations on same host, but instead use directory name before
29	<tt>docman.php</tt> script please read whole installation instructions
30	and than <a href="admin.html#path_realm">Using script path as realm name</a>
31	to correct all instructions.
32
33	<li>Go to directory which you want to have under Document Manager control
34	(this directory also shouldn't be accessible from your web server tree)
35	<pre>
36	cd /home/httpd/repository
37	</pre>
38	chmod that directory so that web server can write in it.
39	<pre>
40	chown nobody /home/httpd/repository
41	</pre>
42	<li>Make a symlink from that directory to file which will be directory index
43	<pre>
44	ln -s /home/httpd/docman2/docman.php \
45	/home/httpd/http_virtual_host/index.php
46	</pre>
47
48	<a name="docman.css">
49	<li> <i>optional, performance</i>
50	Make a symlink from docman.css file to your web-exported directory
51	<pre>
52	ln -s /home/httpd/docman2/html/docman.css \
53	/home/httpd/http_virtual_host/docman.css
54	</pre>
55
56	<a name="docman_conf">
57	<li>Copy docman <a href="upgrade.html#docman_conf">master configuration</a>
58	file to <tt>/etc/docman.conf</tt>. If you
59	want, you can change location of that file on top of <tt>docman.php</tt>
60	but that will break automatic cvs update
61	<small>(see <a href="upgrade.html#cvs">upgrade via CVS</a>)</small>
62	<pre>
63	cp /home/httpd/docman2/docman.conf /etc/docman.conf
64	</pre>
65	You can also enter values for <tt>$fsRealmDir</tt> (normally
66	set to <tt>$gblIncDir/realm</tt>) there (and to some location
67	which is not your docman installation).
68
69	<a name="realm">
70	<li>Go into docman's <tt>realm</tt> directory and copy template configuration
71	into your <tt>http_virtual_host.conf</tt>
72	<pre>
73	cp /home/httpd/docman2/realm/localhost.conf.dist \
74	/home/httpd/docman2/realm/http_virtual_host.conf
75	</pre>
76	More about <a href="new_directory_layout.html#realm">realms</a> can
77	be found elsewhere in documentation.
78
79	<br><b>Be sure to change</b> <tt>$gblRepositoryDir</tt> in
80	<tt>realm/http_virtual_host.conf</tt> to match your repository
81	directory (the one with user files and writable by web server).
82
83	<li>Make Apache Virtual Host configuration for hostname <i>http_virtual_host</i>
84	to point to <tt>/home/httpd/http_virtual_host</tt>.
85
86	<br>How to do that is beyond scope of this document. Please examine
87	<a href="http://www.apache.org">Apache documentation</a>.
88
89	<br>If you don't want to use virtual hosts for docman installation, your
90	realm will be called the same as ServerName.
91
92	<br>Add new DirectoryIndex entry to your Apache configuration file. If you
93	are using virtual hosts, add it there. If your
94	Apache has config files in <tt>/etc/httpd/conf/httpd.conf</tt> find a line
95	like
96	<pre>
97	DirectoryIndex index.html index.htm
98	</pre>
99	and add <tt>index.php</tt> at the end.
100	<pre>
101	DirectoryIndex index.html index.htm index.php
102	</pre>
103
104	<li><i>if you don't want to users in SQL database</i>
105	Go to you web server <tt>http://http_virtual_host/</tt> and you should get
106	authorization request. If you want to add
107	<a href="trustee.html#anonymous">anonymous access</a> (without
108	login and password) skip to <a href="#truestee">trustee</a> section.
109
110	<br>Edit <tt>realm/http_virtual_host.htusers</tt> file to add users.
111	You can do that by calling <tt>adduser.pl</tt> script with name of
112	your htusers file like this:
113	<pre>
114	$ cd /home/httpd/docman2
115	$ ./adduser.pl realm/http_virtual_host.conf
116	</pre>
117	If you press just <i>enter</i> for password or enter <tt>auth_pop3</tt>
118	docman will use e-mail address to connect to pop3 server and check
119	password on it. For that e-mail address must be in following form:
120	<tt>pop3login@pop3server.mydomain</tt>
121
122	<br>E-mail addresses are also used for notification of changes in
123	repository, so if your pop3 account is not a valid e-mail address that
124	won't work for you.
125	<br>However, one of planned enhancements is e-mail notification to
126	addresses which are not from htusers file, so watch out.
127
128	<li> <i>alternative your users are in SQL database</i>
129	Change <tt>$gblUsers</tt>
130	in <tt>realm/http_virtual_host.conf</tt> to
131	<tt>$gblUsers = "htusers_sql";</tt>
132
133	<p><i>Since I will convert all code to use PEAR, you again have to
134	download php-dbi classes, because they are not included with docman
135	anymore. This feature is not tested in version 2.0. Look out!</i></p>
136
137	<br>Download php-dbi class from
138	<a href="http://pil.dk/downloads/dbi.tar.gz">
139	http://pil.dk/downloads/dbi.tar.gz</a> and
140	untar it in docman's directory
141	<pre>
142	cd /home/httpd/docman2
143	tar xvfz dbi.tar.gz
144	</pre>
145	Construct SQL query which returns login, full name, password and
146	email from your tables(s). If you don't have some of that data, replace
147	them with literal strings.
148	<blockquote>
149	e.g. If your table is called <tt>my_users</tt> with columns <tt>who</tt>
150	in which is login and column <tt>pw</tt> in which is plain text
151	password you can use following query to get requested format:
152	<br><tt>select who,'Auth user',pw,'nobody@com' from my_users</tt>
153	</blockquote>
154
155	Enter that SQL query under <tt>$dbi_sql</tt> in
156	<tt>realm/http_virtual_host.conf</tt>.
157
158	<br>Construct <tt>$dbi</tt> in <tt>realm/http_virtual_host.conf</tt>
159	in following format:
160	<pre>
161	$dbi = "driver:database:user:password"
162	</pre>
163
164	Field <i>driver</i> can be: <tt>pgsql</tt>, <tt>mysql</tt>, <tt>oracle</tt>
165	or <tt>odbc</tt> (or other if supported by current php-dbi), <i>database</i>
166	is name of database in which are your users and <i>user</i>/<i>password</i>
167	are credentials for user which connects to database.
168
169	<li> <i>alternative if you want to authorize users based on IP numbers,
170	client DNS names of HTTP Referrer header (URL from which they accessed
171	docman site)</i>
172	<br>Put <tt>$gblUsers = "htusers_header";</tt> in
173	<tt>realm/http_virtual_host.conf</tt> and use
174	following form in your <tt>realm/http_virtual_host.htusers</tt> file:
175	<pre>
176	REMOTE_ADDR=10.0.0.3:Full name:auth_header:e-mail@foo.bar
177	remote_hostname=myworkstation:Full name:auth_header:e-mail@foo.bar
178	http_referer=test.foo.bar:Full name:auth_header:e-mail@foo.bar
179	</pre>
180	Please note that you <b>have to</b> put <tt>auth_header</tt> in password
181	field and valid options in login field.
182	<br>Valid options for left side of equation (=) in login field are:
183	<tt>remote_addr</tt>, <tt>remote_hostname</tt> or <tt>http_referer</tt>.
184	Valid filed for right side are respective parameters for that option.
185
186	<li> <i>if you want some combination of above auth methods</i>
187	<br>Put in <tt>realm/http_virtual_host.conf</tt>:
188	<br><tt>$gblUsers = "htusers_union"</tt><br>
189	and uncomment which htusers auth modules you want to use and in which
190	order. It's enough for just one module to return success and user will
191	be allowed to login (so you can first check http_referer and then
192	htusers file if you want to).
193
194	<a name="#trustee">
195	<li> <i>optional, but highly recommended</i>
196	Trustees are ACL implementation in docman. It's documented in
197	<a href="trustee.html">separate document</a>, and you should use it if your
198	users shouldn't have same right to all files under docman control, or
199	if you want to enable <a href="trustee.html#anonymous">anonymous
200	access</a> to repository.
201
202	<li> <i>optional</i> You can create file named <tt>.info.inc</tt> in
203	<tt>/home/httpd/repository</tt> directory for some kind of
204	<acronym title="message of the day">motd</acronym>
205	file. You can use html mark-up in it also!
206
207	<li> <i>optional</i>If you decided to use
208	<a href="admin.html#path_realm">script path as realm name</a>
209	correct all installation files according to
210	<a href="admin.html#path_realm_convert">this instructions</a>.
211
212	<li> if you want to <b>upload files which are bigger than 2Mb</b> increase
213	<tt>upload_max_filesize</tt> to more than 2Mb in <tt>php.ini</tt>.
214	If you still get errors on files bigger than 8Mb increase
215	<tt>post_max_size</tt> also.
216
217	<li> <i>optional</i> Think about configuring your backup software so that
218	<tt>/home/httpd</tt> is backup ed automatically.
219
220	<li> <i>optional</i> You can use document manager behind secure http
221	server (<tt>https</tt>) simply by installing it. For information take a
222	look at <a href="http://www.modssl.org">http://www.modssl.org</a>
223	if you are using Apache 1.x or examine configuration options
224	for Apache 2.x.
225
226	<a name="gblSeparateAdminMessages">
227	<li> <i>optional, after you are sure that configuration if correct</i>
228	You can separate administrative messages from errors which are
229	reported to users using
230	<tt>$gblSeparateAdminMessages = 1</tt>
231	in <tt>realm/http_virtual_host.conf</tt>. Error messages for you
232	will go to Apache Error log, and (if you also setup
233	<tt>$gblMailAdminMessages = 1</tt> to ServerAdmin from
234	<tt>apache.conf</tt>).
235
236	</ol>
237
238	<p><b>You are ready to go.</b></p>
239
240	<p>
241	More info see: <a href="new_directory_layout.html">New Directory Layout</a>,
242	<a href="upgrade.html">How to Upgrade from v1.x</a>,
243	<a href="performance.html">Performance tips</a> and
244	<a href="admin.html">Administration manual</a>
245	</p>