complete docs

2 months ago · 509676966e
--- a/README.md
+++ b/README.md
@ -2,19 +2,98 @@ camgear
 =====================

 <a href="https://dev.sigpipe.me/dashie/camgear/src/branch/main/LICENSE"><img src="https://img.shields.io/badge/license-MIT-green.svg"/></a>
 <img src="https://img.shields.io/badge/python-%3E%3D3.6-blue.svg"/> [![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/ambv/black)

 # Versions requirement
 - Python >= 3.6 (all under 3.6 are not supported) (say bye-bye to debian stable, sorry)
 - try https://github.com/chriskuehl/python3.6-debian-stretch if you use debian stable

 # Installation
    Install a BDD (mysql is supported, SQLite maybe, PostgreSQL should be)
    Makes sure that encoding is/will be in UNICODE/UTF-8
    git clone https://github.com/rhaamo/camgear
    cd camgear
    pip3 install --requirement requirements.txt
    TODO
 <img src="https://img.shields.io/badge/python-%3E%3D3.8-blue.svg"/> [![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/ambv/black)

 # Requirements
 - Python 3.8 (minimum !)
 - Nginx
 - PostgreSQL

 # Install - manual

 We assume in here you are installing under the `camgear` user with default home directory `/home/camgear`, like by doing:
 ```
 useradd -m -s /bin/bash camgear
 ```

 ## API Backend

 ```shell
 sudo su - camgear
 git clone https://github.com/rhaamo/camgear/ camgear
 cd camgear
 python3.8 -m virtualenv -p python3.8 venv
 source venv/bin/activate
 pip install --requirement requirements.txt
 # For production environment
 cp deploy/env.prod.sample .env
 $EDITOR .env
 # For local development see the other section
 python manage.py collectstatic
 # don't forget to run migrations
 python manage.py migrate
 # create a superuser
 python manage.py createsuperuser
 ```

 You can uses `deploy/camgear-server.service` for your systemd service. 

 ## Nginx
 See the file `deploy/camgear-nginx.conf` for a sample, don't forget you need all the `location /xxx` as the example to make it works.

 ## Development

 For local development, you always needs to export `DJANGO_SETTINGS_MODULE=config.settings.local` to have the right config:
 ```
 cp deploy/env.dev.sample .env
 $EDITOR .env
 export DJANGO_SETTINGS_MODULE=config.settings.local
 python manage.py ...
 ```

 ### Docker image build
 ```
 docker build -t camgear -f Dockerfile
 ```

 ## Updating
 Look at release changes first if anything is needed.

 ```
 sudo su - camgear
 cd camgear
 source venv/bin/activate
 git pull
 pip install -r requirements.txt
 python manage.py migrate
 ```

 Then restart your `camgear-server` service.

 # Install - docker image
 You can use the `Dockerfile` to run Camgear.

 See the file ./deploy/env.prod.sample for the list of ENV variables you can use for the container.

 You can copy that env file, edit it, and use `--env-file your-env-file.prod` for `docker run/exec` too.

 The volume for uploads is `/uploads`.

 To migrate the database:
 ```
 docker exec -it camgear python manage.py migrate
 ```

 To create your superuser:
 ```
 docker exec -it camgear python manage.py createsuperuser
 ```

 Example build & run:
 ```
 docker build -t camgear -f Dockerfile .
 docker run --net=host --name camgear -it --rm --env-file .env -v /local/path/to/uploads:/uploads camgear:latest
 ```

 # Creating an user

--- a/deploy/camgear-nginx.conf
+++ b/deploy/camgear-nginx.conf
@ -0,0 +1,74 @@
 upstream camgear {
    server localhost:5000;
 }

 map $http_upgrade $connection_upgrade {
    default upgrade;
    ''      close;
 }

 server {
    listen 80;
    listen [::]:80;
    server_name demo.camgear.squeaky.tech;
    location / { return 301 https://$host$request_uri; }
 }
 server {
    listen      443 ssl;
    listen [::]:443 ssl;
    server_name demo.camgear.squeaky.tech;

    # TLS
    ssl_protocols TLSv1.2;
    ssl_ciphers HIGH:!MEDIUM:!LOW:!aNULL:!NULL:!SHA;
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:10m;

    # HSTS
    add_header Strict-Transport-Security "max-age=31536000";

    # Security related headers

    # add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";

    # compression settings
    gzip on;
    gzip_comp_level    5;
    gzip_min_length    256;
    gzip_proxied       any;
    gzip_vary          on;

    gzip_types
        application/javascript
        application/vnd.geo+json
        application/vnd.ms-fontobject
        application/x-font-ttf
        application/x-web-app-manifest+json
        font/opentype
        image/bmp
        image/svg+xml
        image/x-icon
        text/cache-manifest
        text/css
        text/plain
        text/vcard
        text/vnd.rim.location.xloc
        text/vtt
        text/x-component
        text/x-cross-domain-policy;

    location / {
        proxy_pass http://camgear/;
    }

    location /static/ {
        alias /home/camgear/data/static/;
    }

    location /media/ {
        alias /home/camgear/data/media/;
    }

    ssl_certificate /etc/letsencrypt/live/demo.camgear.squeaky.tech/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/demo.camgear.squeaky.tech/privkey.pem; # managed by Certbot
 }
--- a/deploy/camgear-server.service
+++ b/deploy/camgear-server.service
@ -0,0 +1,12 @@
 [Unit]
 Description=Camgear application server
 After=postgresql.service

 [Service]
 User=camgear
 WorkingDirectory=/home/camgear/camgear/api
 EnvironmentFile=/home/camgear/camgear/.env
 ExecStart=/home/camgear/camgear/venv/bin/gunicorn config.asgi:application -w ${CAMGEAR_WEB_WORKERS} -k uvicorn.workers.UvicornWorker -b ${CAMGEAR_API_IP}:${CAMGEAR_API_PORT}

 [Install]
 WantedBy=multi-user.target
--- a/deploy/env.dev.sample
+++ b/deploy/env.dev.sample
@ -0,0 +1,8 @@
 CAMGEAR_API_IP=127.0.0.1
 CAMGEAR_API_PORT=8000
 CAMGEAR_WEB_WORKERS=1
 CAMGEAR_HOSTNAME=127.0.0.1
 CAMGEAR_PROTOCOL=http
 DJANGO_ALLOWED_HOSTS=localhost,0.0.0.0,127.0.0.1
 DJANGO_SETTINGS_MODULE=config.settings.local
 DATABASE_URL=postgresql://camgear@:5432/camgear
--- a/deploy/env.prod.sample
+++ b/deploy/env.prod.sample
@ -0,0 +1,66 @@
 # If you're tweaking this file from the template, ensure you edit at least the
 # following variables:
 # - DJANGO_SECRET_KEY
 # - CAMGEAR_HOSTNAME
 # - EMAIL_CONFIG and DEFAULT_FROM_EMAIL if you plan to send emails)
 # On non-docker setup **only**, you'll also have to tweak/uncomment those variables:
 # - DATABASE_URL
 # - CACHE_URL

 # Set this variables to bind the API server to another interface/port
 # example: CAMGEAR_API_IP=0.0.0.0
 # example: CAMGEAR_API_PORT=5678
 CAMGEAR_API_IP=127.0.0.1
 CAMGEAR_API_PORT=5000
 # The number of web workers to start in parallel. Higher means you can handle
 # more concurrent requests, but also leads to higher CPU/Memory usage
 CAMGEAR_WEB_WORKERS=1
 # Replace this by the definitive, public domain you will use for
 # your instance
 CAMGEAR_HOSTNAME=yourdomain.camgear
 CAMGEAR_PROTOCOL=https

 # Configure email sending using this variale
 # By default, camgear will output emails sent to stdout
 # here are a few examples for this setting
 # EMAIL_CONFIG=consolemail://         # output emails to console (the default)
 # EMAIL_CONFIG=dummymail://          # disable email sending completely
 # On a production instance, you'll usually want to use an external SMTP server:
 # EMAIL_CONFIG=smtp://user@:password@youremail.host:25
 # EMAIL_CONFIG=smtp+ssl://user@:password@youremail.host:465
 # EMAIL_CONFIG=smtp+tls://user@:password@youremail.host:587

 # The email address to use to send system emails.
 # DEFAULT_FROM_EMAIL=noreply@yourdomain

 # API/Django configuration

 # Database configuration
 # Examples:
 #  DATABASE_URL=postgresql://<user>:<password>@<host>:<port>/<database>
 #  DATABASE_URL=postgresql://camgear:passw0rd@localhost:5432/camgear_database
 # Use the next one if you followed Debian installation guide
 # DATABASE_URL=postgresql://camgear@:5432/camgear

 # Where media files (such as album covers or audio tracks) should be stored
 # on your system?
 # (Ensure this directory actually exists)
 MEDIA_ROOT=/srv/camgear/data/media

 # Where static files (such as API css or icons) should be compiled
 # on your system?
 # (Ensure this directory actually exists)
 STATIC_ROOT=/srv/camgear/data/static

 # which settings module should django use?
 # You don't have to touch this unless you really know what you're doing
 DJANGO_SETTINGS_MODULE=config.settings.production

 # Generate one using `openssl rand -base64 45`, for example
 DJANGO_SECRET_KEY=

 # You don't have to edit this, but you can put the admin on another URL if you
 # want to
 # DJANGO_ADMIN_URL=^api/admin/

 DJANGO_ALLOWED_HOSTS=localhost,camgear