A server for proxying push notifications to iOS and Android devices from Mattermost, a self-hosted team communication solution.
For organizations who want to keep internal communications behind their firewall, this service encrypts notification messages with a private key under your control before sending them to Apple's public push notification service for delivery to your iOS devices.
- A linux Ubuntu 14.04 server with at least 1GB of memory
- Either compile the Mattermost iOS app and submit it to the Apple App Store, or host it in your own Enterprise App Store
- Private and public keys obtained from the Apple Developer Program
- An Android API key generated from Google Cloud Messaging
- Follow the directions at developer.apple.com to generate an Apple Push Notification service SSL Certificate, this should give you an
aps_production.cer
- Convert the certificate format to .pem:
openssl x509 -in aps.cer -inform DER -out aps_production.pem
- Double click
aps_production.cer
to install it into the keychain tool - Right click the private cert in keychain access and export to .p12
- Extract the private key from the certificate:
openssl pkcs12 -in Certificates.p12 -out aps_production_priv.pem -nodes -clcerts
- Verifying the certificate works with apple:
openssl s_client -connect gateway.push.apple.com:2195 -cert aps_production.pem -key aps_production_priv.pem
-
For the sake of making this guide simple we located the files at
/home/ubuntu/mattermost-push-proxy
. -
We have also elected to run the Push Proxy Server as the
ubuntu
account for simplicity. We recommend setting up and running the service under amattermost-push-proxy
user account with limited permissions. -
Download Mattermost Notification Server v2.0 by typing:
wget https://github.com/mattermost/mattermost-push-proxy/releases/download/vX.X/mattermost-push-proxy.tar.gz
-
Unzip the Push Proxy Server by typing:
tar -xvzf mattermost-push-proxy.tar.gz
-
Configure Push Proxy Server by editing the mattermost-push-proxy.json file at
/home/ubuntu/mattermost-push-proxy/config
-
Change directories by typing
cd ~/mattermost-push-proxy/config
-
Edit the file by typing
vi mattermost-push-proxy.json
-
Replace
"ApplePushCertPrivate": ""
with a path to the public and private keys obtained from the Apple Developer Program -
For
"AndroidApiKey": ""
, set the key generated from Google Cloud Messaging -
Replace
"ApplePushTopic": "com.mattermost.Mattermost"
with the iOS bundle ID of your custom mobile app. -
Replace
"ApplePushCertPassword": ""
if your certificate has a password. Otherwise leave it blank. -
For example:
"ApplePushCertPrivate": "./config/aps_production_priv.pem", "AndroidApiKey": "DKJDIiwjerljd290u34jFKDSF",
-
-
Setup Push Proxy to use the Upstart daemon which handles supervision of the Push Proxy process.
sudo touch /etc/init/mattermost-push-proxy.conf
sudo vi /etc/init/mattermost-push-proxy.conf
- Copy the following lines into
/etc/init/mattermost-push-proxy.conf
start on runlevel [2345] stop on runlevel [016] respawn chdir /home/ubuntu/mattermost-push-proxy setuid ubuntu console log exec bin/mattermost-push-proxy | logger
- You can manage the process by typing:
sudo start mattermost-push-proxy
- You can also stop the process by running the command
sudo stop mattermost-push-proxy
, but we will skip this step for now
-
Test the Push Proxy Server
-
Verify the server is functioning normally and test the push notifications using curl:
curl http://127.0.0.1:8066/api/v1/send_push -X POST -H "Content-Type: application/json" -d '{ "message":"test", "badge": 1, "platform":"apple", "server_id":"MATTERMOST_DIAG_ID", "device_id":"IPHONE_DEVICE_ID"}'
- Replace MATTERMOST_DIAG_ID with the value found by running the SQL query:
SELECT * FROM Systems WHERE Name = 'DiagnosticId';
- Replace IPHONE_DEVICE_ID with your device ID, which can be found using:
SELECT Email, DeviceId FROM Sessions, Users WHERE Sessions.UserId = Users.Id AND DeviceId != '' AND Email = 'test@example.com'`
-
You can also verify push notifications are working by opening your Mattermost site and mentioning a user who has push notifications enabled in Account Settings > Notifications > Mobile Push Notifications
-
To view the log file, use:
sudo tail -n 1000 /var/log/upstart/ mattermost-push-proxy.log
-
For issues with repro steps, please report to https://github.com/mattermost/platform/issues