因為我的個人網站 restran.net 已經啟用,博客園的內容已經不再更新。這篇文章是在 Gitlab 7.4 的環境下配置的,相關內容可能已經過時。
后續做了一次遷移,將 Gitlab 升級到了 8.9,又重新整理了一篇文章 CentOS 7 Minimal 安裝 Gitlab 8.9,如果有需要可以前往查看。
其他相關文章:
用源代碼的方式安裝 Gitlab 7.5 的過程中,遇到了不少問題,現把筆記整理出來。
Distribution : CentOS 6.5 Minimal
GitLab version : 7.0 - 7.4
Web Server : Apache, Nginx
Init system : sysvinit
Database : MySQL, PostgreSQL
Contributors : @nielsbasjes, @axilleas, @mairin, @ponsjuh, @yorn, @psftw, @etcet, @mdirkse, @nszceta, @herkalurk
Additional Notes : In order to get a proper Ruby setup we build it from source
Overview
Please read requirements.md for hardware and platform requirements.
Important Notes
The following steps have been known to work and should be followed from up to bottom.
If you deviate from this guide, do it with caution and make sure you don't violate
any assumptions GitLab makes about its environment. We have also tried this on
RHEL 6.3 and found that there are subtle differences which are documented in part.
Look for the RHEL Notes note.
This guide assumes that you run every command as root.
If you find a bug
If you find a bug/error in this guide please submit an issue or a Merge Request
following the contribution guide (see CONTRIBUTING.md).
Security
Many setup guides of Linux software simply state: "disable selinux and firewall".
This guide does not disable any of them, we simply configure them as they were intended.
Stop disabling SELinux.
The GitLab installation consists of setting up the following components:
- Install the base operating system (CentOS 6.5 Minimal) and Packages / Dependencies
- Ruby
- System Users
- Database
- Redis
- GitLab
- Web server
- Firewall
1. Installing the operating system (CentOS 6.5 Minimal)
We start with a completely clean CentOS 6.5 "minimal" installation which can be
accomplished by downloading the appropriate installation iso file. Just boot the
system of the iso file and install the system.
配置網絡
Note that during the installation you use the "Configure Network" option (it's a
button in the same screen where you specify the hostname) to enable the "Connect automatically"
option for the network interface and hand (usually eth0).
If you forget this option the network will NOT start at boot.
The end result is a bare minimum CentOS installation that effectively only has
network connectivity and (almost) no services at all.
Updating and adding basic software and services
Add EPEL repository
安裝 wget
yum -y install wget
EPEL is a volunteer-based community effort from the Fedora project to create
a repository of high-quality add-on packages that complement the Fedora-based
Red Hat Enterprise Linux (RHEL) and its compatible spinoffs, such as CentOS and Scientific Linux.
As part of the Fedora packaging community, EPEL packages are 100% free/libre open source software (FLOSS).
Download the GPG key for EPEL repository from fedoraproject and install it on your system:
wget -O /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6 https://www.fedoraproject.org/static/0608B895.txt --no-check-certificate
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6
Verify that the key got installed successfully:
rpm -qa gpg*
結果應顯示
gpg-pubkey-0608b895-4bd22942
Now install the epel-release-6-8.noarch package, which will enable EPEL repository on your system:
rpm -Uvh http://dl.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm
Note: Don't mind the x86_64, if you install on a i686 system you can use the same commands.
Add PUIAS Computational repository
The PUIAS Computational repository is a part of PUIAS/Springdale Linux,
a custom Red Hat® distribution maintained by Princeton University and the
Institute for Advanced Study. We take advantage of the PUIAS
Computational repository to obtain a git v1.8.x package since the base CentOS
repositories only provide v1.7.1 which is not compatible with GitLab.
Although the PUIAS offers an RPM to install the repo, it requires the
other PUIAS repos as a dependency, so you'll have to add it manually.
Otherwise you can install git from source (instructions below).
Download PUIAS repo:
wget -O /etc/yum.repos.d/PUIAS_6_computational.repo https://gitlab.com/gitlab-org/gitlab-recipes/raw/master/install/centos/PUIAS_6_computational.repo --no-check-certificate
Next download and install the gpg key:
wget -O /etc/pki/rpm-gpg/RPM-GPG-KEY-puias http://springdale.math.ias.edu/data/puias/6/x86_64/os/RPM-GPG-KEY-puias
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-puias
Verify that the key got installed successfully:
rpm -qa gpg*
結果應顯示
gpg-pubkey-41a40948-4ce19266
Verify that the EPEL and PUIAS Computational repositories are enabled as shown below:
yum repolist
如果出現錯誤 Error: Cannot retrieve metalink for repository: epel. Please verify its path and try again
vim /etc/yum.repos.d/epel.repo,把基礎的恢復,鏡像的地址注釋掉
#baseurl
mirrorlist
改成
baseurl
#mirrorlist
repo id repo name status
PUIAS_6_computational PUIAS computational Base 6 - x86_64 2,018
base CentOS-6 - Base 4,802
epel Extra Packages for Enterprise Linux 6 - x86_64 7,879
extras CentOS-6 - Extras 12
updates CentOS-6 - Updates 814
repolist: 15,525
If you can't see them listed, use the folowing command (from yum-utils package) to enable them:
先安裝yum-utils,才能使用yum-config-manager,否則會出現commond not found
yum -y install yum-utils
yum-config-manager --enable epel --enable PUIAS_6_computational
Install the required tools for GitLab
yum -y update
yum -y groupinstall 'Development Tools'
yum -y install readline readline-devel ncurses-devel gdbm-devel glibc-devel tcl-devel openssl-devel curl-devel expat-devel db4-devel byacc sqlite-devel libyaml libyaml-devel libffi libffi-devel libxml2 libxml2-devel libxslt libxslt-devel libicu libicu-devel system-config-firewall-tui redis sudo wget crontabs logwatch logrotate perl-Time-HiRes git cmake libcom_err-devel.i686 libcom_err-devel.x86_64
RHEL Notes
If some packages (eg. gdbm-devel, libffi-devel and libicu-devel) are NOT installed,
add the rhel6 optional packages repo to your server to get those packages:
yum-config-manager --enable rhel-6-server-optional-rpms
Tip taken from here.
Note:
During this installation some files will need to be edited manually.
If you are familiar with vim set it as default editor with the commands below.
If you are not familiar with vim please skip this and keep using the default editor.
# Install vim and set as default editor
yum -y install vim-enhanced
update-alternatives --set editor /usr/bin/vim.basic
# For reStructuredText markup language support, install required package:
yum -y install python-docutils
Install mail server
In order to receive mail notifications, make sure to install a
mail server. The recommended one is postfix and you can install it with:
yum -y install postfix
To use and configure sendmail instead of postfix see Advanced Email Configurations.
Configure the default editor
You can choose between editors such as nano, vi, vim, etc.
In this case we will use vim as the default editor for consistency.
ln -s /usr/bin/vim /usr/bin/editor
To remove this alias in the future:
以后刪除別名的時候用這條命令
rm -i /usr/bin/editor
Install Git from Source (optional)
Make sure Git is version 1.7.10 or higher, for example 1.7.12 or 1.8.4
git --version
如果有安裝git,這一步就可以跳過,直接跳到Ruby
If not, install it from source. First remove the system Git:
yum -y remove git
Install the pre-requisite files for Git compilation:
yum install zlib-devel perl-CPAN gettext curl-devel expat-devel gettext-devel openssl-devel
Download and extract it:
mkdir /tmp/git && cd /tmp/git
curl --progress https://www.kernel.org/pub/software/scm/git/git-2.1.3.tar.gz | tar xz
cd git-2.1.3/
./configure
make
make prefix=/usr/local install
Make sure Git is in your $PATH:
which git
You might have to logout and login again for the $PATH to take effect.
Note: When editing config/gitlab.yml (step 6), change the git bin_path to /usr/local/bin/git.
2. Ruby
The use of ruby version managers such as RVM, rbenv or chruby with GitLab in production frequently leads to hard to diagnose problems. Version managers are not supported and we strongly advise everyone to follow the instructions below to use a system ruby.
Remove the old Ruby 1.8 package if present. GitLab only supports the Ruby 2.0+ release series:
yum remove ruby
Remove any other Ruby build if it is still present:
cd <your-ruby-source-path>
make uninstall
如果沒有安裝ruby,上述刪除的步驟可以跳過
Download Ruby and compile it:
mkdir /tmp/ruby && cd /tmp/ruby
curl --progress ftp://ftp.ruby-lang.org/pub/ruby/2.1/ruby-2.1.2.tar.gz | tar xz
cd ruby-2.1.2
./configure --disable-install-rdoc
如果出現錯誤
make: Warning: File 'common.mk' has modification time 1386501635 s in the future
是由於系統的時間錯誤導致
一、修正時區
rm -rf /etc/localtime # 刪除當前默認時區www.kwx.gd
ln -s /usr/share/zoneinfo/Asia/Shanghai /etc/localtime
# 復制替換默認時區為上海
SSH執行以上命令,將時區修改為中國上海的時區,當然,也可以設置中國香港或北京的時間。
二、手動修正時間
date -s '09:16:00 2013-01-21'
使用“date”命令,修改時間和日期為2013年1月21日,時間是上午9點16分0秒。
三、時間自動同步和校正
yum install -y ntp #安裝時間同步服務(組件)
ntpdate us.pool.ntp.org #設置同步服務器
date #查看當前時間www.kwx.gd
部分系統已經安裝了NTP服務,系統會根據當前記錄的時區(第一步操作)自動連接ntp服務器校正時間。
make
make prefix=/usr/local install
Install the Bundler Gem:
由於AWS被牆無法使用,修改ruby的源
gem sources --remove https://rubygems.org/
gem sources -a https://ruby.taobao.org/
gem sources -l
gem install bundler --no-doc
Logout and login again for the $PATH to take effect. Check that ruby is properly
installed with:
which ruby
# /usr/local/bin/ruby
ruby -v
# ruby 2.1.2p95 (2014-05-08 revision 45877) [x86_64-linux]
3. System Users
Create a git user for Gitlab:
adduser --system --shell /bin/bash --comment 'GitLab' --create-home --home-dir /home/git/ git
Important: In order to include /usr/local/bin to git user's PATH, one way is to edit the sudoers file. As root run:
visudo
Then search for this line:
Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin
and append /usr/local/bin like so:
Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin
Save and exit.
4. Database
4.2 MySQL
Install mysql and enable the mysqld service to start on boot:
使用這條命令默認安裝的是5.1.37版本
yum install -y mysql-server mysql-devel
使用這些命令安裝5.5.41版本
rpm -Uvh http://dl.fedoraproject.org/pub/epel/6/i386/epel-release-6-8.noarch.rpm
rpm -Uvh http://rpms.famillecollet.com/enterprise/remi-release-6.rpm
yum --enablerepo=remi,remi-test install mysql mysql-server mysql-devel
chkconfig mysqld on
service mysqld start
Ensure you have MySQL version 5.5.14 or later:
mysql --version
Secure your installation:
mysql_secure_installation
Login to MySQL (type the database root password):
mysql -u root -p
Create a user for GitLab (change $password in the command below to a real password you pick):
修改$password為自己的密碼
CREATE USER 'git'@'localhost' IDENTIFIED BY '$password';
Ensure you can use the InnoDB engine which is necessary to support long indexes.
If this fails, check your MySQL config files (e.g. /etc/mysql/*.cnf, /etc/mysql/conf.d/*) for the setting "innodb = off".
SET storage_engine=INNODB;
Create the GitLab production database:
CREATE DATABASE IF NOT EXISTS `gitlabhq_production` DEFAULT CHARACTER SET `utf8` COLLATE `utf8_unicode_ci`;
Grant the GitLab user necessary permissions on the table:
GRANT SELECT, LOCK TABLES, INSERT, UPDATE, DELETE, CREATE, DROP, INDEX, ALTER ON `gitlabhq_production`.* TO 'git'@'localhost';
Quit the database session:
\q
Try connecting to the new database with the new user:
sudo -u git -H mysql -u git -p -D gitlabhq_production
使用上面在MySQL中創建的git用戶的密碼
Type the password you replaced $password with earlier.
Quit the database session:
\q
配置MySQL max_allowed_packet的大小,避免POST太大的內容導致出現500錯誤,例如GitLab 發出MergeRequest的時候返回500錯誤。
vim /etc/my.cnf
在mysqld中添加max_allowed_packet,調整值,加大為一個合適的數字即可。
[mysqld]
max_allowed_packet=512M
然后reload下mysql的服務即可。
service mysqld restart
5. Redis
Make sure redis is started on boot:
chkconfig redis on
Configure redis to use sockets:
cp /etc/redis.conf /etc/redis.conf.orig
Disable Redis listening on TCP by setting 'port' to 0:
sed 's/^port .*/port 0/' /etc/redis.conf.orig | sudo tee /etc/redis.conf
Enable Redis socket for default CentOS path:
echo 'unixsocket /var/run/redis/redis.sock' | sudo tee -a /etc/redis.conf
echo -e 'unixsocketperm 0775' | sudo tee -a /etc/redis.conf
Activate the changes to redis.conf:
service redis restart
Add git to the redis group:
usermod -aG redis git
6. GitLab
# We'll install GitLab into home directory of the user "git"
cd /home/git
Clone the Source
// vi /home/git/.bash_profile
// 添加如下,不驗證SSL
// export GIT_SSL_NO_VERIFY=1
否則 git clone 時會出現錯誤 Peer certificate cannot be authenticated with known CA certificates
# Clone GitLab repository
sudo -u git -H git clone https://gitlab.com/gitlab-org/gitlab-ce.git -b 7-4-stable gitlab
** Gitlab 中文翻譯版**
不知道為什么,使用sudo -u git -H git clone..還會出現證書錯誤,但是使用下面的就可以
su - git
先進入git用戶,然后git config,才可以,不然還是會出現證書問題
git config --global http.sslverify "false"
git clone https://gitlab.com/larryli/gitlab.git -b 7-5-zh gitlab
# 自己的修改版,修改部分翻譯
git clone https://github.com/restran/gitlabhq.git -b 7-5-zh gitlab
退出git用戶操作命令,使用root用戶操作
logout
Note: You can change 7-4-stable to master if you want the bleeding edge version, but do so with caution!
Configure it
# Go to GitLab installation folder
cd /home/git/gitlab
為了方便添加git用戶擁有root權限 [sudoers文件默認沒有寫權限需要強制保存:wq!]
使用root用戶執行下述命令
[root@Git ruby-2.1.1]# vi /etc/sudoers
最后添加
git ALL=(ALL) ALL
# Copy the example GitLab config
sudo -u git -H cp config/gitlab.yml.example config/gitlab.yml
# Update GitLab config file, follow the directions at top of file
sudo -u git -H editor config/gitlab.yml
配置
host: 192.168.137.142
port: 8008
email_from: gitlab@example.com
email_enabled: false
default_theme: 1
# Make sure GitLab can write to the log/ and tmp/ directories
chown -R git log/
chown -R git tmp/
chmod -R u+rwX log/
chmod -R u+rwX tmp/
# Create directory for satellites
sudo -u git -H mkdir /home/git/gitlab-satellites
chmod u+rwx,g=rx,o-rwx /home/git/gitlab-satellites
# Make sure GitLab can write to the tmp/pids/ and tmp/sockets/ directories
chmod -R u+rwX tmp/pids/
chmod -R u+rwX tmp/sockets/
# Make sure GitLab can write to the public/uploads/ directory
chmod -R u+rwX public/uploads
# Copy the example Unicorn config
sudo -u git -H cp config/unicorn.rb.example config/unicorn.rb
# Find number of cores
nproc
# Enable cluster mode if you expect to have a high load instance
# Ex. change amount of workers to 3 for 2GB RAM server
# Set the number of workers to at least the number of cores
sudo -u git -H editor config/unicorn.rb
特別注意:比較差配置的機器,注意將unicorn.rb中的timeout設置大一點,因為第一次啟動的時候Gitlab需要初始化,如果timeout太小,由於需要執行較長時間,導致無法正常啟動,出現502錯誤
# Copy the example Rack attack config
sudo -u git -H cp config/initializers/rack_attack.rb.example config/initializers/rack_attack.rb
# Configure Git global settings for git user, useful when editing via web
# Edit user.email according to what is set in gitlab.yml
sudo -u git -H git config --global user.name "GitLab"
sudo -u git -H git config --global user.email "gitlab@example.com"
sudo -u git -H git config --global core.autocrlf input
# Configure Redis connection settings
sudo -u git -H cp config/resque.yml.example config/resque.yml
# Change the Redis socket path if you are not using the default CentOS configuration
sudo -u git -H editor config/resque.yml
如果不使用默認的端口,則需要配置
Important Note: Make sure to edit both gitlab.yml and unicorn.rb to match your setup.
Note: If you want to use HTTPS, see Using HTTPS for the additional steps.
Configure GitLab DB settings
# MySQL only:
sudo -u git cp config/database.yml.mysql config/database.yml
# MySQL and remote PostgreSQL only:
# Update username/password in config/database.yml.
# You only need to adapt the production settings (first part).
# If you followed the database guide then please do as follows:
# Change 'secure password' with the value you have given to $password
# You can keep the double quotes around the password
sudo -u git -H editor config/database.yml
修改為正確的用戶名和密碼
分別修改git用戶和root用戶
# PostgreSQL and MySQL:
# Make config/database.yml readable to git only
sudo -u git -H chmod o-rwx config/database.yml
Install Gems
Note: As of bundler 1.5.2, you can invoke bundle install -jN
(where N the number of your processor cores) and enjoy the parallel gems installation with measurable
difference in completion time (~60% faster). Check the number of your cores with nproc.
For more information check this post.
First make sure you have bundler >= 1.5.2 (run bundle -v) as it addresses some issues
that were fixed in 1.5.2.
cd /home/git/gitlab
# Or for MySQL (note, the option says "without ... postgres")
修改為淘寶的ruby源
vi Gemfile
修改為
source 'https://ruby.taobao.org/'
sudo -u git -H bundle install --deployment --without development test postgres aws
這一步的時間會等很久
Install GitLab shell
GitLab Shell is an SSH access and repository management software developed specially for GitLab.
# Run the installation task for gitlab-shell (replace `REDIS_URL` if needed):
sudo -u git -H bundle exec rake gitlab:shell:install[v2.2.0] REDIS_URL=unix:/var/run/redis/redis.sock RAILS_ENV=production
執行上述命令有SSL證書問題,改用下述命令
su - git
cd /home/git/gitlab
bundle exec rake gitlab:shell:install[v2.2.0] REDIS_URL=unix:/var/run/redis/redis.sock RAILS_ENV=production
logout
# By default, the gitlab-shell config is generated from your main GitLab config.
# You can review (and modify) the gitlab-shell config as follows:
sudo -u git -H editor /home/git/gitlab-shell/config.yml
# Ensure the correct SELinux contexts are set
# Read http://wiki.centos.org/HowTos/Network/SecuringSSH
restorecon -Rv /home/git/.ssh
Note: If you want to use HTTPS, see Using HTTPS for the additional steps.
Initialize Database and Activate Advanced Features
初始化數據庫
cd /home/git/gitlab/
sudo -u git -H bundle exec rake gitlab:setup RAILS_ENV=production
Type yes to create the database.
When done you see Administrator account created:.
Note: You can set the Administrator password by supplying it in environmental variable GITLAB_ROOT_PASSWORD, eg.:
如果要修改gitlab管理員的密碼,則執行這一句,否則執行上一句
sudo -u git -H bundle exec rake gitlab:setup RAILS_ENV=production GITLAB_ROOT_PASSWORD=newpassword
Install Init Script
Download the init script (will be /etc/init.d/gitlab):
wget -O /etc/init.d/gitlab https://gitlab.com/gitlab-org/gitlab-recipes/raw/master/init/sysvinit/centos/gitlab-unicorn --no-check-certificate
chmod +x /etc/init.d/gitlab
chkconfig --add gitlab
Make GitLab start on boot:
chkconfig gitlab on
Set up logrotate
cp lib/support/logrotate/gitlab /etc/logrotate.d/gitlab
Check Application Status
Check if GitLab and its environment are configured correctly:
sudo -u git -H bundle exec rake gitlab:env:info RAILS_ENV=production
Compile assets
sudo -u git -H bundle exec rake assets:precompile RAILS_ENV=production
Start your GitLab instance
service gitlab start
7. Configure the web server
Use either Nginx or Apache, not both. Official installation guide recommends nginx.
Nginx
You will need a new version of nginx otherwise you might encounter an issue like this.
To do so, follow the instructions provided by the nginx wiki and then install nginx with:
yum update
yum -y install nginx16
chkconfig nginx on
使用SSl
wget -O /etc/nginx/conf.d/gitlab.conf https://gitlab.com/gitlab-org/gitlab-ce/raw/master/lib/support/nginx/gitlab-ssl --no-check-certificate
不使用SSL
wget -O /etc/nginx/conf.d/gitlab.conf https://gitlab.com/gitlab-org/gitlab-ce/raw/master/lib/support/nginx/gitlab --no-check-certificate
最后加上--no-check-certificate不檢查證書
Edit /etc/nginx/conf.d/gitlab.conf and replace git.example.com with your FQDN. Make sure to read the comments in order to properly set up SSL.
vi /etc/nginx/conf.d/gitlab.conf
去掉listen后面的default_server,修改為正確的端口號
去掉 listen [::]:
修改server_name 為本機的IP地址
修改client_max_body_size 256m;
否則當推送較多數據到 gitlab 上時,會由於數據過大,而出現錯誤
fatal: The remote end hung up unexpectedly fatal: The remote end hung up unexpectedly error: RPC failed; result=22, HTTP code = 413
Add nginx user to git group:
usermod -a -G git nginx
chmod g+rx /home/git/
//chmod -R g+rx /home/git/gitlab/
# 修改權限
//chmod o+x /home/git
將selinux關閉,否則會出現 nginx 訪問錯誤 (13: Permission denied),HTTP顯示502
setenforce 0 # 只是臨時關閉,重啟后問題仍然出現
Finally start nginx with:
service nginx start
出現錯誤
nginx: [emerg] bind() to 0.0.0.0:8080 failed (13: Permission denied)
注意:開啟selinux情況下正常使用nginx,需要修改selinux的策略
將selinux關閉就可以
查看SELinux狀態:
1、/usr/sbin/sestatus -v ##如果SELinux status參數為enabled即為開啟狀態
SELinux status: enabled
2、getenforce ##也可以用這個命令檢查
關閉SELinux:
1、臨時關閉(不用重啟機器):
setenforce 0 ##設置SELinux 成為permissive模式
##setenforce 1 設置SELinux 成為enforcing模式
2、修改配置文件需要重啟機器:
修改/etc/selinux/config 文件
vi /etc/selinux/config
將SELINUX=enforcing 改為 SELINUX=disabled,重啟機器即可
shutdown -r now
service gitlab restart
Test Configuration
Validate your gitlab or gitlab-ssl Nginx config file with the following command:
nginx -t
You should receive syntax is okay and test is successful messages. If you receive errors check your gitlab or gitlab-ssl Nginx config file for typos, etc. as indiciated in the error message given.
//vi /home/git/gitlab-shell/config.yml
//修改gitlab_url為nginx中配置的相應端口
//gitlab_url: http://192.168.137.142:8083/
8. Configure the firewall
Poke an iptables hole so users can access the web server (http and https ports) and ssh.
lokkit -s http -s https -s ssh
添加防火牆允許的端口
vi /etc/sysconfig/iptables
添加,端口為nginx中為gitlab設置的端口
-A INPUT -m state --state NEW -m tcp -p tcp --dport 8083 -j ACCEPT
Restart the service for the changes to take effect:
service iptables restart
Done!
Double-check Application Status
To make sure you didn't miss anything run a more thorough check with:
cd /home/git/gitlab
sudo -u git -H bundle exec rake gitlab:check RAILS_ENV=production
Now, the output will complain that your init script is not up-to-date as follows:
Init script up-to-date? ... no
Try fixing it:
Redownload the init script
For more information see:
doc/install/installation.md in section "Install Init Script"
Please fix the error above and rerun the checks.
Do not mind about that error if you are sure that you have downloaded the up-to-date file from https://gitlab.com/gitlab-org/gitlab-recipes/raw/master/init/sysvinit/centos/gitlab-unicorn and saved it to /etc/init.d/gitlab.
wget https://gitlab.com/gitlab-org/gitlab-recipes/raw/master/init/sysvinit/centos/gitlab-unicorn
mv gitlab-unicorn gitlab
cp -f gitlab /etc/init.d/gitlab
rm gitlab
復制完后,要刪除/etc/init.d/gitlab.swap文件
If all other items are green, then congratulations on successfully installing GitLab!
NOTE: Supply SANITIZE=true environment variable to gitlab:check to omit project names from the output of the check command.
升級Gitlab Shell,安裝的時候版本是2.1.0,需要升級到2.2.0才可以使用,否則會出現502錯誤
Upgrade GitLab Shell
GitLab Shell might be outdated, running the commands below ensures you're using a compatible version:
su - git
cd /home/git/gitlab-shell
git fetch
git checkout v`cat /home/git/gitlab/GITLAB_SHELL_VERSION`
One line upgrade command
You've read through the entire guide and probably already did all the steps one by one.
Here is a one line command with step 1 to 5 for the next time you upgrade:
cd /home/git/gitlab; \
sudo -u git -H bundle exec rake gitlab:backup:create RAILS_ENV=production; \
sudo service gitlab stop; \
if [ -f bin/upgrade.rb ]; then sudo -u git -H ruby bin/upgrade.rb -y; else sudo -u git -H ruby script/upgrade.rb -y; fi; \
cd /home/git/gitlab-shell; \
sudo -u git -H git fetch; \
sudo -u git -H git checkout v`cat /home/git/gitlab/GITLAB_SHELL_VERSION`; \
cd /home/git/gitlab; \
exit; \
sudo service gitlab start; \
sudo service nginx restart; sudo -u git -H bundle exec rake gitlab:check RAILS_ENV=production
Initial Login
Visit YOUR_SERVER in your web browser for your first GitLab login.
The setup has created an admin account for you. You can use it to log in:
root
5iveL!fe
Important Note:
Please go over to your profile page and immediately change the password, so
nobody can access your GitLab by using this login information later on.
Enjoy!
You can also check some Advanced Setup Tips.
Links used in this guide
代碼更新
修改Github上的代碼,然后更新到服務器上
cd /home/git/gitlab/
git fetch origin
git merge origin/7-5-zh
重啟 gitlab
service gitlab restart
Gitlab 備份
官網的備份說明
https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/raketasks/backup_restore.md
查看備份設置
vim /home/git/gitlab/config/gitlab.yml
檢查Backup Settings設置項
默認情況下,備份文件是存放在/home/git/gitlab/tmp/backups/
執行備份
sudo service gitlab stop # 先停止Gitlab,可以不暫停
cd /home/git/gitlab/
sudo -u git -H bundle exec rake gitlab:backup:create RAILS_ENV=production
執行完成后,會在/home/git/gitlab/tmp/backups/目錄下創建一個備份俄文件,以時間戳_gitlab_backup命名如 1417040627_gitlab_backup.tar
重新啟動
sudo service gitlab start
sudo service nginx restart
還原
需要給其他用戶配置讀寫執行的權限
chmod o+wrx /home/git/.ssh/authorized_keys.lock
否則會出現如下錯誤,是由於沒有權限
/home/git/gitlab-shell/lib/gitlab_keys.rb:101:in `initialize': Permission denied @ rb_sysopen - /home/git/.ssh/authorized_keys.lock (Errno::EACCES)
需要使用 git 用戶來執行,否則會沒有權限操作 git 目錄下的文件,timestamp_of_backup為時間戳如 1417040627
sudo service gitlab stop
cd /home/git/gitlab/
sudo -u git -H bundle exec rake gitlab:backup:restore BACKUP=timestamp_of_backup RAILS_ENV=production
sudo service gitlab start
sudo service nginx restart
sudo -u git -H bundle exec rake gitlab:check RAILS_ENV=production
設置自動備份
sudo service gitlab stop;
cd /home/git/gitlab;
sudo -u git -H editor config/gitlab.yml; # Enable keep_time in the backup section to automatically delete old backups
keep_time參數默認是604800(單位是秒),因此會保留最近7天內的備份
sudo -u git crontab -e # Edit the crontab for the git user
將如下內容添加到文件末尾
# Create a full backup of the GitLab repositories and SQL database every day at 2am
0 2 * * * cd /home/git/gitlab && PATH=/usr/local/bin:/usr/bin:/bin bundle exec rake gitlab:backup:create RAILS_ENV=production CRON=1
每天凌晨2點自動備份
The CRON=1 environment setting tells the backup script to suppress all progress output if there are no errors. This is recommended to reduce cron spam.
重新啟動
sudo service gitlab start;
sudo service nginx restart;
sudo -u git -H bundle exec rake gitlab:check RAILS_ENV=production;