This repository contains the project for Udacity Linux Server Configuration
Terminal Client to Run SSH into Linux.
URL: http://eo-u1604-vm3.southcentralus.cloudapp.azure.com
IP Address: 13.84.186.157
Connection: ssh grader@13.84.186.157 -p 2200 -i /location_of_rsa_key
User: grader
This repository covers the requirements for Udacity - Full Stack Web Development Item Catalog project.
This project was created using a Virtual Machine running Ubuntu 16.04.3 LTS.
The machine is located in Microsofts Azure Cloud Computing Platform and Services.
On deployment the machine was upgrade through:
sudo apt-get updatesudo apt-get upgrade
The following configurations were performed on the server:
Timezone was upgraded thorugh sudo dpkg-reconfigure tzdata. Select None of the Above. Select UTC.
The following packages were installed through sudo apt-get install
- Apache:
apache2 - WSGI:
libapache2-mod-wsgi - PostgreSQL:
postgresql - Git:
git - Pip:
pip
- Enable ports 2200, 80, and 123 in Azure.
- Change SSH port to 2200, disable password based authentication, and disable remote login by root by running:
sudo nano /etc/ssh/sshd_config- Change the port to
Port 2200 - Change
PasswordAuthernticationtono - Change
Permit
- Configure Uncomplicated Firewall:
sudo ufw default deny incomingsudo ufw default allow outgoingsudo ufw allow 2200/tcpsudo ufw allow wwworsudo ufw allow 80/tcpsudo ufw allow 123/tcpsudo ufw enable
- Create user 'grader' through
sudo adduser grader - Give sudo permissions to grader through:
- Copy sudoers file:
sudo cp /etc/sudoers.d/eoadmin /etc/sudoers.d/grader - Replace username in file to
grader
- Copy sudoers file:
- Create an SSH pair for grader by running:
- Create RSA key:
ssh-keygen. Key will be located in resulting .pub file. - Run
sudo nano .ssh/authorized_keysand copy Public Key in this file. Save Changes.
- Create RSA key:
- Secure the directories with the RSA Keys:
sudo chmod 700 .ssh(Only user can read, write, execute)sudo chmod 644 .ssh/authorized_keys(Use can read and write, others can only read)
- Create catalog database through
CREATE DATABASE catalog - Setup & initialize the database:
- Setup:
python /var/www/html/Item_Catalog/Item_Catalog/database_setup.py - Initialize:
python /var/www/html/Item_Catalog/Item_Catalog/initialize_database.py
- Setup:
- Login to the database
psql -d catalog - Add new users www-data and www to ensure psycop2g compatibility
createuser username - Grant permissions to new user for CRUD operations
GRANT SELECT, INSERT, DELETE, UPDATE ON category to "www-data";GRANT SELECT, INSERT, DELETE, UPDATE ON category to "www";
- Exit the database with
\q
- Modify the default site through
sudo nano /etc/apache2/sites-enabled/000-default.conf - Enter the following code after the first set of commentary:
WSGIScriptAlias / /var/www/html/Item_Catalog/app_WSGI.wsgi <Directory /var/www/html/Item_Catalog/Item_Catalog/> Allow from all Order deny,allow </Directory> Alias /static /var/www/html/Item_Catalog/Item_Catalog/static/ <Directory /var/www/html/Item_Catalog/Item_Catalog/static/> Allow from all Order deny,allow </Directory>``` - Restart apache
sudo apache2ctl restart
- Navigate to the app's desired directory through
cd /var/www/html - Initialize git on the folder
sudo git init - Clone GitHub repository for Item_Catalog
sudo git clone https://github.com/cseHdz/Item_Catalog.git - The app is located in the local_flask branch
sudo git reset --hard origin/local_flask - The following packages were installed through
sudo -H pip install- Flask
Flask - SQLAlchemy
sqlalchemy - Psycopg2
psycopg2 - oauth2client
oauth2client - httplib2
httplib2 - requests
requests
- Flask
- For system packages please refer to Section 1.