That being said I take no responsibility if you cause damage or have issues with your pi afterwards. Again this is a collections of info put in order for an easy smooth install.
Any real superuser feel free to make this a script and send it out should make the process much easier for people that way.
This is turn key. When you are done you will have a complete install with all the basic functions enabled and ready.
This tutorial uses the following files and versions. I did the best I could to make sure I worked with everything as up to date at possible at the time of this writing. (Make it a total pain to complete.) If done correctly you can have one up if a couple hours instead of days like to took me.
2016-05-27-raspbian-jessie/NextCloud 10.0.0.0/PHP7/Apache2/MariaBD version?
A couple preinstall things you can do to make life easier later are. If your router supports static mapping via DHCP thats really handy. Otherwise you will have to set one up on the pi yourself. I will not go in to that on this tutorial. You will need a named address so you can get a SSL Cert I use www.no-ip.com (Only because I've been with them for years.) make sure it points to your house . If you have a decent router it will support a client with them and keep that address point correct. If yours doesn't support that you can always get a linux or windows client to do that for you. If you don't have a computer that stays in all the time I would install it on the Pi it self and the site has instructions to do so. Next if your router supports DNS Resolver/Forwarder set it up to forward all internal requests for the external Named site to point to the internal address. This solves Many problems with the Cert later. If your router doesn't do these things check out http://dd-wrt.com/site/support/router-database and see if you can upgrade your router to a better OS.
Installation.
Download the image and write it to your card. (I assume if you are attempting this you know how to do that if not https://www.raspberrypi.org/documentation/installation/installing-images/README.md.)
Insert the SD in the Pi 2/3 Hook up all the cables except power. (This tutorial is made to work with a wired connection on wifi you may experience slower rates or disconnectivity issues. If you want wifi feel free to google that yourself first before continueing)
If you can have the external hard drive wiped of all partitions as we will create them in the tutorial. If not we can delete the partitions in linux. (Just easier to use GPARTED -=Linux=- or diskpart -=windows=-)
On first boot (while you will do most of this from SSH I recommend using the GUI for this part) run Raspbian Config.
Setup all your main settings Keyboard/Timezone/Location ect. after a reboot you can make this a headless box if you like.
I however like to have TOP Running in a terminal window to see the usage of the processor and ram. Doesn't Hurt.
If possible use the SSH Client to log in from a computer for the rest of this tutorial. If you can't or prefer not to you can do all the work from with in the terminal but when writing the script you will have much more typing to do. Also is you can't cut and paste the command in to the terminal you might not get the intended results.
once in lets get admin status with the following command
- Code: Select all
sudo su
just in case there are partitions on this drive you should try this command if it errors you good to go if not good thing we did it.
- Code: Select all
umount /dev/sda1
umount /dev/sda2
umount /dev/sda3
umount /dev/sda4
If you had partitions you must delete them in fdisk before you create the partition. If you previously deleted the parts on the disk you can skip this step.
- Code: Select all
fdisk /dev/sda
Press d
if it asks for a partition number you must repeat the process until the drive is wiped of all partitions
then press w
Now lets partition the disk for its new use. After pressing N if it asks Primary or secondary press P if not just follow the instructions as listed.
- Code: Select all
fdisk /dev/sda
press n
press 1
press enter 2x
press w
Now lets format the drive for use
- Code: Select all
mke2fs -t ext4 -L rootfs /dev/sda1
now mount the new partition.
- Code: Select all
mount /dev/sda /mnt
We need a backup tool for the next part
- Code: Select all
apt-get install rsync
Mirror the current rootfs to the new location Must use sudo or it will create a loop
- Code: Select all
sudo rsync -axv / /mnt
Back up your startup file
- Code: Select all
cp /boot/cmdline.txt /boot/cmdline.orig
edit startup file
- Code: Select all
nano /boot/cmdline.txt
You need to edit 2 parts of this line do not make any other changes. Change the root= to /dev/sda and at the end add rootdelay=5
in the end my line looks like this
- Code: Select all
dwc_otg.lpm_enable=0 console=serial0,115200 console=tty1 root=/dev/sda1 rootfstype=ext4 elevator=deadline fsck.repair=yes rootwait rootdelay=5
Now we need to edit a file on the new location
- Code: Select all
nano /mnt/etc/fstab
make the changes so it looks like the following.
- Code: Select all
proc /proc proc defaults 0 0
/dev/sda1 / ext4 defaults,noatime 0 1
/dev/mmcblk0p1 /boot vfat defaults 0 2
#/dev/mmcblk0p2 / ext4 defaults,noatime 0 1
now we need to reboot to load on the new drive.
- Code: Select all
shutdown -r now
You will need to log back in to the system with your SSH if the box still has a head watch for errors on start if something went wrong you will know pretty quickly. Otherwise the boot process is about 30 seconds.
once in the box regain root with this
- Code: Select all
sudo su
enlarge the swap now that we have TONS of space
- Code: Select all
nano /etc/dphys-swapfile
change 100 to 512
Run the following to make use of the change
- Code: Select all
sudo dphys-swapfile setup
sudo /etc/init.d/dphys-swapfile stop
sudo /etc/init.d/dphys-swapfile start
for some reason you must still use sudo here even with root access. (don't know why didn't work for me with out it)
get all the system updates
- Code: Select all
apt-get update
apt-get upgrade -y
apt-get dist-upgrade -y
rpi-update
apt-get autoremove
Reboot
SSH back in and get root
- Code: Select all
sudo su
Install Apache2
- Code: Select all
apt-get install apache2 -y
Install PHP7
- Code: Select all
nano /etc/apt/sources.list
add the following line
- Code: Select all
deb http://mirrordirector.raspbian.org/raspbian/ stretch main contrib non-free rpi
Make a new file thats needed to continue
- Code: Select all
nano /etc/apt/preferences
paste in the following
- Code: Select all
Package: *
Pin: release n=jessie
Pin-Priority: 600
Run all of the following command in order
- Code: Select all
apt-get update
apt-get install -t stretch php7.0 php7.0-curl php7.0-gd php7.0-fpm php7.0-cli php7.0-opcache php7.0-mbstring php7.0-xml php7.0-zip -y
apt-get install php7.0-APC -y
apt-get install mysql-server php7.0-mysql -y
a2enmod proxy_fcgi setenvif
a2enconf php7.0-fpm
service apache2 reload
apt-get install libxml2-dev php-zip php-dom php-xmlwriter php-xmlreader php-gd php-curl php-mbstring -y
a2enmod rewrite
service apache2 reload
apt-get install mariadb-server -y
cd /var/www/html
nano index.html
Add the following line to the top where "MY.NEXTCLOUD.NAMEDADDRESS.COM" should be the address you created earlier.
- Code: Select all
<meta http-equiv="refresh" content="0; URL='http://MY.NEXTCLOUD.NAMEDADDRESS.COM/nextcloud'" />
install Nextcloud
- Code: Select all
cd /var/www/
wget https://download.nextcloud.com/server/releases/nextcloud-10.0.0.zip
unzip nextcloud-10.0.0.zip
rm nextcloud-10.0.0.zip
cd /
mkdir CloudDATA
cd /home/pi
nano permissions.sh
Paste in the following
- Code: Select all
#!/bin/bash
ocpath='/var/www/nextcloud'
htuser='www-data'
htgroup='www-data'
rootuser='root'
printf "Creating possible missing Directories\n"
mkdir -p $ocpath/data
mkdir -p $ocpath/assets
mkdir -p $ocpath/updater
printf "chmod Files and Directories\n"
find ${ocpath}/ -type f -print0 | xargs -0 chmod 0640
find ${ocpath}/ -type d -print0 | xargs -0 chmod 0750
printf "chown Directories\n"
chown -R ${rootuser}:${htgroup} ${ocpath}/
chown -R ${htuser}:${htgroup} ${ocpath}/apps/
chown -R ${htuser}:${htgroup} ${ocpath}/assets/
chown -R ${htuser}:${htgroup} ${ocpath}/config/
chown -R ${htuser}:${htgroup} ${ocpath}/data/
chown -R ${htuser}:${htgroup} /CloudDATA/
chown -R ${htuser}:${htgroup} ${ocpath}/themes/
chown -R ${htuser}:${htgroup} ${ocpath}/updater/
chown -R ${htuser}:${htgroup} /tmp
chmod +x ${ocpath}/occ
printf "chmod/chown .htaccess\n"
if [ -f ${ocpath}/.htaccess ]
then
chmod 0644 ${ocpath}/.htaccess
chown ${rootuser}:${htgroup} ${ocpath}/.htaccess
fi
if [ -f ${ocpath}/data/.htaccess ]
then
chmod 0644 ${ocpath}/data/.htaccess
chown ${rootuser}:${htgroup} ${ocpath}/data/.htaccess
fi
make it a executable and run it
- Code: Select all
chmod +x permissions.sh
sudo ./permissions.sh
Configure Apache2
- Code: Select all
cd /etc/apache2/sites-available
nano nextcloud.conf
Paste in the following
- Code: Select all
Alias /nextcloud "/var/www/nextcloud/"
<Directory /var/www/nextcloud/>
Options +FollowSymlinks
AllowOverride All
<IfModule mod_dav.c>
Dav off
</IfModule>
SetEnv HOME /var/www/nextcloud
SetEnv HTTP_HOME /var/www/nextcloud
</Directory>
Do the following commands
- Code: Select all
ln -s /etc/apache2/sites-available/nextcloud.conf /etc/apache2/sites-enabled/nextcloud.conf
a2enmod headers
a2enmod env
a2enmod dir
a2enmod mime
a2enmod ssl
a2ensite default-ssl
service apache2 reload
Setup the DataBase
- Code: Select all
mysql -u root -p
enter the following commands Where it says "PASSWORD" enter a password for the database to use DON'T FORGET IT well need it later.
- Code: Select all
CREATE DATABASE nextcloud;
CREATE USER 'nextclouduser'@'localhost' IDENTIFIED BY 'PASSWORD';
GRANT ALL PRIVILEGES ON nextcloud.* TO nextclouduser@localhost;
EXIT
Setup SSL
- Code: Select all
apt install git -y
cd /etc
git clone https://github.com/letsencrypt/letsencrypt
cd letsencrypt
sudo ./letsencrypt-auto
crontab -e
Enter the following line at the bottom of the file
- Code: Select all
* 1 * * 1 /etc/certbot-auto renew --quiet
Now were ready to login to the server to generate the configfile we need to edit
open a browse and go to the named address you created earlier it should take you to your cloud.
Enter the name and password you will use as the site administrator
Change the Data Folder to the following
- Code: Select all
/CloudDATA
the data base info is as follows with PASSWORD being the password you used for the DataBase
- Code: Select all
nextclouduser
PASSWORD
nextcloud
Enable Mem Cache most guides say this is optional it really isn't just do it
- Code: Select all
sudo nano /var/www/nextcloud/config/config.php
There before ); insert
- Code: Select all
'memcache.local' => '\OC\Memcache\APC',
Clean the disk from all the mess
apt-get clean
Set File size limit
- Code: Select all
cd /var/www/nextcloud
nano .htaccess
find the line that says php_value upload_max_filesize 512M and the line below it that says php_value post_max_size 512M
Change both to the size you want if in Gigs use a G instead of the M
- Code: Select all
nano .user.ini
Find upload_max_filesize=512M and post_max_size=512M
Change these to the same size you used before and don't forget to change to a G if in Gigs
Now harden the box as much as I know how by preventing Man in the Middle Attacks
- Code: Select all
cd /etc/apache2
nano apache2.conf
at to bottom of the file add the following
- Code: Select all
<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
</IfModule>
Reboot
- Code: Select all
shutdown -r now
When it come back up go to your browser and login to go to app page choose productivity and pick documents, now go to admin then additional settings and setup to use the libreoffice (Top option at the time of this writing) click save and test
Done and Enjoy. Everything is all set and you can configure the rest to your liking on the site.
)