add files

Author: newnius

Dockerfile

@@ -0,0 +1,17 @@
+FROM newnius/php:7.3
+
+MAINTAINER Newnius <[email protected]>
+
+RUN curl -L https://github.com/newnius/QuickAuth/archive/v2.0.1.tar.gz > /tmp/quickauth.tar.gz \
+	&& tar -C /tmp -xzvf /tmp/quickauth.tar.gz \
+	&& mv /tmp/QuickAuth-2.0.1/.htaccess /var/www/html \
+	&& mv /tmp/QuickAuth-2.0.1/* /var/www/html \
+	&& rm -rf /tmp/*
+
+ADD config/config.js /var/www/html/static/
+
+ADD config/config.inc.php /var/www/html/
+
+ADD bootstrap.sh /etc/
+
+CMD /etc/bootstrap.sh

README.md

@@ -1,2 +1,47 @@
-# QuickAuth
-Deploy a OAuth system quickly
+# QuickAuth quick deploy
+
+Deploy the [QuickAuth](https://github.com/newnius/QuickAuth) user management system quickly.
+
+## Requirements
+
+  - `docker` install (version >= 17.03)
+  - Permission to run docker commands
+  - A docker swarm created and this is the **only** node, or the storage may encounter failure
+  - One overlay network named `swarm-net`
+  - The directory `/data` exists and able to read/write
+
+If you haven't meet the requirements, refer to this script `install_requirements.sh` to setup that.
+
+## Steps to deploy
+
+#### Clone this repo
+
+```bash
+git clone https://github.com/QuickDeploy/QuickAuth.git
+```
+
+#### Start the services
+
+```bash
+bash QuickAuth/install.sh
+```
+
+#### Setup the database
+
+visit `http://127.0.0.1/install.php` to init the system, and you will see four `Success`
+
+#### Setup th SendGrid api keys
+
+Visit [SendGrid](https://app.sendgrid.com/) to signup for an account and apply for your own API keys.
+
+#### Run on your own servers
+
+Modify the config files `/data/qa/web/config/config.js` and `/data/qa/web/config/config.inc.php` 
+
+Properties to be updated are `BASE_URL`, `SENDGRID_API_KEY`, `EMAIL_FROM`
+
+That's all!
+
+## Advanced users
+
+Feel free to post issues.

bootstrap.sh

@@ -0,0 +1,23 @@
+#!/bin/bash
+
+if [[ -d /config/ ]]; then
+	if [[ ! -f /config/config.js ]]; then
+		cp /var/www/html/static/config.js /config/config.js
+	fi
+
+	if [[ ! -f /config/config.inc.php ]]; then
+		cp /var/www/html/config.inc.php /config/config.inc.php
+	fi
+fi
+
+if [[ -f /config/config.js ]]; then
+	rm /var/www/html/static/config.js
+	ln -s /config/config.js /var/www/html/static/config.js
+fi
+
+if [[ -f /config/config.inc.php ]]; then
+	rm /var/www/html/config.inc.php
+	ln -s /config/config.inc.php /var/www/html/config.inc.php
+fi
+
+apache2-foreground

config/config.inc.php

@@ -0,0 +1,47 @@
+<?php
+
+/* Mysql */
+/* It is not recommended to use `root` in production environment */
+define('DB_HOST', 'qa-mysql');
+define('DB_PORT', 3306);
+define('DB_NAME', 'quickauth');
+define('DB_USER', 'root');
+define('DB_PASSWORD', '123456');
+define('DB_SHOW_ERROR', false);
+
+/* Redis */
+/* Make sure that your Redis only listens to Intranet */
+define('REDIS_SCHEME', 'tcp');
+define('REDIS_HOST', 'qa-redis');
+define('REDIS_PORT', 6379);
+define('REDIS_SHOW_ERROR', false);
+
+/* Site */
+define('BASE_URL', 'http://127.0.0.1'); //make absolute url for SEO and avoid hijack, no '/' at the end
+define('FORCE_VERIFY', false); //if set, unverified user will be refused to login (Warn: leave this switch as it is not finished)
+//define('ALLOW_REGISTRATION', true);
+//define('ALLOW_CUSTOM_UID', true);
+define('FEEDBACK_EMAIL', '[email protected]');
+define('ALLOW_REGISTER', true);
+
+/* OAuth */
+define('ENABLE_OAUTH', true);
+define('OAUTH_CODE_TIMEOUT', 300); // 5 min
+define('OAUTH_TOKEN_TIMEOUT', 604800); // 7 day
+
+/* Session */
+define('ENABLE_MULTIPLE_LOGIN', true);
+define('BIND_SESSION_WITH_IP', false);
+define('SESSION_TIME_OUT', 1800);// 30 minutes 30*60=1800
+define('ENABLE_COOKIE', true);
+
+/* Rate Limit */
+define('ENABLE_RATE_LIMIT', true);
+define('RATE_LIMIT_KEY_PREFIX', 'rl');
+
+/* Email */
+define('ENABLE_EMAIL_ANTISPAM', true);
+//define('MAXIMUM_EMAIL_PER_IP', 8);
+define('MAXIMUM_EMAIL_PER_EMAIL', 5);//last 24 hours
+define('SENDGRID_API_KEY', '');
+define('EMAIL_FROM', '[email protected]');

config/config.js

@@ -0,0 +1,4 @@
+window.config = {
+	'BASE_URL': 'http://127.0.0.1' /* No '/' at the end */
+
+};

install.sh

@@ -0,0 +1,29 @@
+#!/bin/bash
+
+DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null && pwd )"
+
+if [[ ! -d /data ]]; then
+	echo "Make sure dir /data exists and this user has read/write access !"
+	exit 1;
+fi
+
+mkdir -p /data/qa/redis
+mkdir -p /data/qa/mysql/data
+mkdir -p /data/qa/web/config
+mkdir -p /data/qa/web/logs
+
+docker pull redis:5
+docker pull mysql:5.7
+docker pull quickdeploy/quickauth:v2.0
+
+bash "${DIR}/swarm_start_redis.sh"
+
+bash "${DIR}/swarm_start_mysql.sh"
+
+bash "${DIR}/swarm_start_web.sh"
+
+echo "Please wait until services started"
+
+echo "Use 'docker service ps qa-' to see the status"
+
+echo "After started, visit http://127.0.0.1/install.php to setup the system"

install_requirements.sh

@@ -0,0 +1,30 @@
+#!/bin/bash
+
+# install latest docker
+curl -fsSL https://get.docker.com | sh
+
+sudo usermod -aG docker $USER
+
+# enable auto start
+sudo systemctl start docker
+
+sudo systemctl enable docker
+
+# create docker swarm
+
+sudo docker swarm init --listen-addr 127.0.0.1
+
+# create overlay network named `swarm-net`
+sudo docker network  create --driver overlay swarm-net
+
+# create directory for storing data
+sudo mkdir /data
+
+sudo chown $USER:$USER /data
+
+
+# re-login to take effect
+
+echo 're-login to take effect'
+
+exit

swarm_start_mysql.sh

@@ -0,0 +1,12 @@
+#! /bin/bash
+
+docker service create \
+	--name qa-mysql \
+	--hostname qa-mysql \
+	--network swarm-net \
+	--replicas 1 \
+	--endpoint-mode dnsrr \
+	--mount type=bind,source=/data/qa/mysql/data,target=/var/lib/mysql \
+	-e MYSQL_ROOT_PASSWORD=123456 \
+	-e MYSQL_DATABASE=quickauth \
+	mysql:5.7

swarm_start_redis.sh

@@ -0,0 +1,11 @@
+#! /bin/bash
+
+docker service create \
+	--name qa-redis \
+	--hostname qa-redis \
+	--network swarm-net \
+	--replicas 1 \
+	--endpoint-mode dnsrr \
+	--mount type=bind,source=/etc/localtime,target=/etc/localtime \
+	--mount type=bind,source=/data/qa/redis,target=/data \
+	redis:5 redis-server --appendonly yes

swarm_start_web.sh

@@ -0,0 +1,12 @@
+#! /bin/bash
+
+docker service create \
+	--name qa-web \
+	--hostname qa-web \
+	--network swarm-net \
+	--replicas 1 \
+	--publish mode=host,published=80,target=80 \
+	--mount type=bind,source=/etc/localtime,target=/etc/localtime \
+	--mount type=bind,source=/data/qa/web/config,target=/config \
+	--mount type=bind,source=/data/qa/web/logs,target=/var/log/apache2 \
+	quickdeploy/quickauth:v2.0

uninstall.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+
+echo 'Warning !'
+
+echo 'It is dangerous to run this script as it would erase all the data'
+
+echo 'Do not run this script unless you absolutely know what will happen'
+
+echo 'You may press Ctrl+C now to abort this script'
+
+echo ''
+
+echo '+Sleep 10'
+
+sleep 10
+
+
+
+docker service rm qa-web
+
+docker service rm qa-mysql
+
+docker service rm qa-redis
+
+
+rm -rf /data/qa/
+
+docker rmi redis:5
+docker rmi mysql:5.7
+docker rmi quickdeploy/quickauth:v2.0
+
+echo "All data & services removed !"