The collaborative editing software that runs Wikipedia, for Social Coop.

Go to file

Flancian 2dd1c7aeee Fix example OpenID URL; keycloak doesn't expect /auth/ here it seems.		10 hours ago
.drone.yml	Switch to self-hosted stack-ssh-deploy image [mass update]	2 months ago
.env.sample	Fix example OpenID URL; keycloak doesn't expect /auth/ here it seems.	10 hours ago
.gitignore	Ignore live .envrc	3 years ago
LocalSettings.php.tmpl	Add LocalSettings changes for the extensions in the previous commit.	11 hours ago
README.md	Fix build status URL, drop redundant version	5 days ago
abra.sh	Bump LocalSettings and Entrypoint versions.	10 hours ago
compose.openid.yml	Ad SECRET_ to secret names so abra can find them	2 years ago
compose.simplesaml.yml	Update to new SimpleSAML	2 months ago
compose.yml	chore: publish 2.2.2+1.39.1 release	5 days ago
composer.local.json.tmpl	Rename composer local file	2 years ago
entrypoint.sh.tmpl	First stab at adding extensions:	11 hours ago
entrypoint.simplesaml.sh.tmpl	Rename services, add EXTRA_DOMAINS	3 years ago
php.ini.tmpl	Add template file ending	2 years ago
renovate.json	Add renovate.json	3 years ago

README.md

Unescape Escape

Mediawiki

Category: Apps
Status: 1, alpha
Image: mediawiki, 4, upstream
Healthcheck: No
Backups: Yes
Email: 3
Tests: 2
SSO: 2 (OAuth, SAML)

Basic usage

Set up Docker Swarm and abra
Deploy coop-cloud/traefik
abra app new mediawiki --secrets (optionally with --pass if you'd like to save secrets in pass)
abra app config YOURAPPDOMAIN - be sure to change $DOMAIN to something that resolves to your Docker swarm box
abra app deploy YOURAPPDOMAIN
Create an initial admin user: abra app run YOURAPPDOMAIN app php /var/www/html/maintenance/createAndPromote.php --sysop YourUsername YourPassword

Email

abra app config YOURAPPDOMAIN - edit .envrc and uncomment the SMTP lines. Set SMTP_HOST to postfix_relay for coop-cloud/postfix_relay, or mailu_front for coop-cloud/mailu (assuming default stack names)
For postfix_relay, add the domain to your email config – EXTRA_SENDER_DOMAINS in postfix_relay. This doesn't seem to be required for Mailu.
abra app deploy YOURAPPDOMAIN

Single Sign On

SimpleSAMLphp

This app includes optional SAML Single Sign On using SimpleSAMLphp and Mediawiki's Extension:SimpleSAMLphp, based on the venatorfox/simplesamlphp image.

NOTE: currently, if you enable SAML then it'll disable Mediawiki's own user account system. Patches to make this configurable are welcome!

abra app config YOURAPPDOMAIN - uncomment lines in the SAML section (including COMPOSE_FILE)

Generate secrets: (add --pass if you want to store secrets in pass)

abra app YOURAPPDOMAIN secret generate saml_admin_password v1
abra app YOURAPPDOMAIN secret generate saml_secret_salt v1 "pwgen -n 64 1"

abra app deploy YOURAPPDOMAIN

Copy your SimpleSAMLphp metadata and certificates to the container (assuming you have local metadata and cert folders:

abra app YOURAPPDOMAIN cp metadata simplesaml:/var/simplesamlphp/
abra app YOURAPPDOMAIN cp cert simplesaml:/var/simplesamlphp/

You can log into SimpleSAMLphp using the password you generated at https://$DOMAIN/simplesaml/ and test authentication

Edit SimpleSAMLphp's config.php and change store.sql.dsn:

abra app YOURAPPDOMAIN run simplesaml vi /var/simplesamlphp/config/config.php
# find 'store.sql.dsn' and edit to:
# 'sqlite:/var/simplesamlphp/data/simplesamlphp.sq3'

OpenID Connect

abra app config YOURAPPDOMAIN - uncomment lines in the OPENID section (including COMPOSE_FILE)
Store your Keycloak-generated client secret in Docker:

abra app YOURAPPDOMAIN secret insert openid_client_secret v1 put-your-secret-here

abra app deploy YOURAPPDOMAIN

License

MIT License

README.md Unescape Escape