CentOS 8 Stream
💡 This installation manual isn't suitable for CentOS Linux 8 which reaches End Of Life (EOL) on December 31st, 2021
Passwork is not demanding on the resources of the server(s). The amount of resources (RAM, CPU, HDD) and the number of servers depends on the number of active users, the amount of stored data, and the requirements for system fault tolerance.
💡 If the server has 2-4 GB RAM, it is recommended to enable a SWAP file to build all libraries correctly.
Change server hostname to "passwork"
Configure the package management system (yum).
Create a /etc/yum.repos.d/mongodb-org-4.4.repo file so that you can install MongoDB directly, using yum.
Make it look like this:
To install the latest stable version of MongoDB, issue the following command:
Set SELinux to disabled mode in /etc/selinux/config by setting the SELINUX setting to disabled
Set:
You need reboot the system for the changes to take effect
Start MongoDB Service:
Enable mongod service start on the system boot:
💡 PHP version 8.0 must be installed. Newer versions are not yet supported.
Install the Remi repository configuration package
Install PHP and additional extensions
Check PHP version
Make sure PHP 8 is being used
Clone the repository using your login and password
💡 The system will ask for a login and password to the repository, which you can find in your Customer Portal. If you don't have access to the Customer Portal, contact us.
Set up permissions for the files.
Configure your Apache2
Create non-ssl configuration file
Change directives accordingly the entries below:
Restart Apache and PHP-FPM.
Open http://passwork.local or http:// to access the website.
When you open Passwork for the first time, you will see an installation wizard that will check if the server is configured correctly and allow you to enter the basic parameters.
💡 Leave all fields at their default values if you are installing a new copy of Passwork
💡 Please note, the randomly generated key of the setup page is used to encrypt the database.
Sign up an administrator
Enter the username and password for the first user. The user will automatically become the administrator and owner of the organization.
First, install the Apache SSL module:
Create a new directory to store our private key (the /etc/ssl/certs directory is already available to hold our certificate file):
Set correct permissions:
Generate a new certificate and a private key to protect it:
Create a strong Diffie-Hellman group.
Append the generated file to the end of our self-signed certificate.
When working over an SSL connection (HTTPS), the Chrome browser requires the Secure and SameSite flags for the cookies. Without these flags, the browser will not accept cookies, and you will not be able to log into Passwork in Chrome.
To set these flags, enable the session.cookie_secure parameter in the /etc/php.ini file, manual or command:
And set the parameter disableSameSiteCookie ([application] section)in file /var/www/app/config/config.ini to value Off , manual or command:
💡 Please note that the `config.ini` file is generated after going through the initial setup on the installation page.
💡 Do not set these parameters or reset them if you change your mind about using SSL and work via the HTTP protocol.
Open Apache's SSL configuration file in your text editor.
Locate the section that begins with <VirtualHost _default_:443> and make the following changes.
- First, uncomment the DocumentRoot line and edit the address in quotes to the location of your site's document root. By default, this will be in /var/www/html.
- Next, uncomment the ServerName line and replace www.example.com with your domain name or server IP address (whichever one you put as the common name in your certificate):
- Add “Directory” directive next to the “ServerName”.
- Next, find the SSLProtocol and SSLCipherSuite lines and either delete them or comment them out. The configuration we be pasting in a moment will offer more secure settings than the default included with CentOS's Apache:
Find the SSLCertificateFile and SSLCertificateKeyFile lines and change them to the directory we made at /etc/httpd/ssl:
Once these changes have been made, check that your virtual host configuration file matches the following.
We're now done with the changes within the actual VirtualHost block. Save changes (Ctr+O) and exit (Ctr+X).
Restart Apache to apply the changes.
Check SSL connection by going to https://passwork.local.
Background tasks are jobs that run on the scheduler in the background. For example, LDAP synchronization, loading favicons, and other tasks that require a lot of time, constant execution, or resource allocation.