The collaborative editing software that runs Wikipedia, for Social Coop.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Go to file
Flancian 2dd1c7aeee
Fix example OpenID URL; keycloak doesn't expect /auth/ here it seems.
10 hours ago
.drone.yml Switch to self-hosted stack-ssh-deploy image [mass update] 2 months ago
.env.sample Fix example OpenID URL; keycloak doesn't expect /auth/ here it seems. 10 hours ago
.gitignore Ignore live .envrc 3 years ago
LocalSettings.php.tmpl Add LocalSettings changes for the extensions in the previous commit. 11 hours ago Fix build status URL, drop redundant version 5 days ago Bump LocalSettings and Entrypoint versions. 10 hours ago
compose.openid.yml Ad SECRET_ to secret names so abra can find them 2 years ago
compose.simplesaml.yml Update to new SimpleSAML 2 months ago
compose.yml chore: publish 2.2.2+1.39.1 release 5 days ago
composer.local.json.tmpl Rename composer local file 2 years ago First stab at adding extensions: 11 hours ago Rename services, add EXTRA_DOMAINS 3 years ago
php.ini.tmpl Add template file ending 2 years ago
renovate.json Add renovate.json 3 years ago


Build Status

  • Category: Apps
  • Status: 1, alpha
  • Image: mediawiki, 4, upstream
  • Healthcheck: No
  • Backups: Yes
  • Email: 3
  • Tests: 2
  • SSO: 2 (OAuth, SAML)

Basic usage

  1. Set up Docker Swarm and abra
  2. Deploy coop-cloud/traefik
  3. abra app new mediawiki --secrets (optionally with --pass if you'd like to save secrets in pass)
  4. abra app config YOURAPPDOMAIN - be sure to change $DOMAIN to something that resolves to your Docker swarm box
  5. abra app deploy YOURAPPDOMAIN
  6. Create an initial admin user: abra app run YOURAPPDOMAIN app php /var/www/html/maintenance/createAndPromote.php --sysop YourUsername YourPassword


  1. abra app config YOURAPPDOMAIN - edit .envrc and uncomment the SMTP lines. Set SMTP_HOST to postfix_relay for coop-cloud/postfix_relay, or mailu_front for coop-cloud/mailu (assuming default stack names)
  2. For postfix_relay, add the domain to your email config EXTRA_SENDER_DOMAINS in postfix_relay. This doesn't seem to be required for Mailu.
  3. abra app deploy YOURAPPDOMAIN

Single Sign On


This app includes optional SAML Single Sign On using SimpleSAMLphp and Mediawiki's Extension:SimpleSAMLphp, based on the venatorfox/simplesamlphp image.

NOTE: currently, if you enable SAML then it'll disable Mediawiki's own user account system. Patches to make this configurable are welcome!

  1. abra app config YOURAPPDOMAIN - uncomment lines in the SAML section (including COMPOSE_FILE)
  2. Generate secrets: (add --pass if you want to store secrets in pass)
    abra app YOURAPPDOMAIN secret generate saml_admin_password v1
    abra app YOURAPPDOMAIN secret generate saml_secret_salt v1 "pwgen -n 64 1"
  3. abra app deploy YOURAPPDOMAIN
  4. Copy your SimpleSAMLphp metadata and certificates to the container (assuming you have local metadata and cert folders:
    abra app YOURAPPDOMAIN cp metadata simplesaml:/var/simplesamlphp/
    abra app YOURAPPDOMAIN cp cert simplesaml:/var/simplesamlphp/
  5. You can log into SimpleSAMLphp using the password you generated at https://$DOMAIN/simplesaml/ and test authentication
  6. Edit SimpleSAMLphp's config.php and change store.sql.dsn:
    abra app YOURAPPDOMAIN run simplesaml vi /var/simplesamlphp/config/config.php
    # find 'store.sql.dsn' and edit to:
    # 'sqlite:/var/simplesamlphp/data/simplesamlphp.sq3'

OpenID Connect

  1. abra app config YOURAPPDOMAIN - uncomment lines in the OPENID section (including COMPOSE_FILE)
  2. Store your Keycloak-generated client secret in Docker:
abra app YOURAPPDOMAIN secret insert openid_client_secret v1 put-your-secret-here
  1. abra app deploy YOURAPPDOMAIN


MIT License