Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Docs] Database Preparation #9826

Merged
merged 21 commits into from
Feb 18, 2020
Merged

[Docs] Database Preparation #9826

Changes from 2 commits
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
1d1479a
Database Preparation
bagasme Jan 16, 2020
d83a189
Apply suggestions from @guillep2k
bagasme Jan 18, 2020
5aad7a0
Repeat strong password notice on PostgreSQL
bagasme Jan 18, 2020
a96b246
Add prerequisite note
bagasme Jan 18, 2020
6d53764
Use utf8mb4 instead of utf8
bagasme Jan 18, 2020
c2193b5
Use utf8mb4 if complete character coverage wanted
bagasme Jan 18, 2020
dfcbce1
utf8mb4 recommended
bagasme Jan 18, 2020
47f444b
Reword utf8mb4 recommendation
bagasme Jan 19, 2020
90c8836
Set InnoDB global variables may be needed
bagasme Jan 19, 2020
5e1c4e6
Reorder step number
bagasme Jan 19, 2020
6f995e7
Whoops, bump year date
bagasme Jan 19, 2020
8a95669
Remove `SET GLOBAL`s and step number reorder
bagasme Jan 19, 2020
9436f22
Merge branch 'master' into new/database-prep
lunny Jan 25, 2020
be85999
Syntax edit on MySQL GRANT PRIVILEGEs
bagasme Jan 29, 2020
0166741
DB engine uniformity intro edit
bagasme Jan 29, 2020
7f87865
Merge branch 'master' into new/database-prep
zeripath Feb 1, 2020
732317b
Merge branch 'master' into new/database-prep
zeripath Feb 1, 2020
e8a8b41
Merge branch 'master' into new/database-prep
sapk Feb 3, 2020
fb0f3f3
Merge branch 'master' into new/database-prep
lunny Feb 4, 2020
4101b85
Merge branch 'master' into new/database-prep
sapk Feb 5, 2020
0c85d51
Merge branch 'master' into new/database-prep
guillep2k Feb 18, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
154 changes: 154 additions & 0 deletions docs/content/doc/installation/database-preparation.en-us.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,154 @@
---
date: "2019-01-16"
title: "Database Preparation"
slug: "database-prep"
weight: 10
toc: true
draft: false
menu:
sidebar:
parent: "installation"
name: "Database preparation"
weight: 20
identifier: "database-prep"
---

You need a database to use Gitea. Gitea supports PostgreSQL, MySQL, SQLite, and MSSQL. This page will guide into preparing database. Only PostgreSQL and MySQL will be covered here since those database systems are widely-used in production.

Database instance can be on same machine as Gitea (local database setup), or on different machine (remote database).

## MySQL

1. On database instance, login to database console as root:

```
mysql -u root -p
```

Enter the password as prompted.

2. Create database user which will be used by Gitea, authenticated by password. This example uses `'gitea'` as password. Please use a secure password for your instance.

For local database:

```sql
SET old_passwords=0;
CREATE USER 'gitea' IDENTIFIED BY 'gitea';
```

For remote database:

```sql
SET old_passwords=0;
CREATE USER 'gitea'@'12.34.56.78' IDENTIFIED BY 'gitea';
```

where `12.34.56.78` is the IP address of your Gitea instance.

Replace username and password above as appropriate.

3. Create database with UTF-8 charset and collation. If you expected to use emojis, use `utf8mb4` charset instead of `utf8`. Also, collation chosen depending on your expected content. When in doubt, use either `unicode_ci` or `general_ci`.

```sql
CREATE DATABASE 'giteadb' CHARACTER SET 'utf8' COLLATE 'utf8_unicode_ci';
```

Replace database name as appropriate.

4. Grant all privileges on the database to database user created above.

For local database:

```sql
GRANT ALL PRIVILEGES ON 'giteadb' TO 'gitea';
FLUSH PRIVILEGES;
```

For remote database:

```sql
GRANT ALL PRIVILEGES ON 'giteadb' TO 'gitea'@'12.34.56.78';
FLUSH PRIVILEGES;
```

5. Quit from database console by `exit`.

6. On your Gitea server, test connection to the database:

```
mysql -u gitea -h 23.45.67.89 -p giteadb
```

where `gitea` is database username, `giteadb` is database name, and `23.45.67.89` is IP address of database instance. Omit `-h` option for local database.

You should be connected to the database.

## PostgreSQL

1. PostgreSQL uses `md5` challenge-response encryption scheme for password authentication by default. Nowadays this scheme is not considered secure anymore. Use SCRAM-SHA-256 scheme instead by editing the `postgresql.conf` configuration file on the database server to:

```ini
password_encryption = scram-sha-256
```

Restart PostgreSQL to apply the setting.

2. On the database server, login to the database console as superuser:

```
su -c "psql" - postgres
```

3. Create database user (role in PostgreSQL terms) with login privilege and password:

```sql
CREATE ROLE gitea WITH LOGIN PASSWORD 'gitea';
```

Replace username and password as appropriate.

4. Create database with UTF-8 charset and owned by the database user created earlier. Any `libc` collations can be specified with `LC_COLLATE` and `LC_CTYPE` parameter, depending on expected content:

```sql
CREATE DATABASE giteadb WITH OWNER gitea TEMPLATE template0 ENCODING UTF8 LC_COLLATE 'en_US.UTF-8' LC_CTYPE 'en_US.UTF-8';
```

Replace database name as appropriate.

5. Allow the database user to access the database created above by adding the following authentication rule to `pg_hba.conf`.

For local database:

```ini
local giteadb gitea scram-sha-256
```

For remote database:

```ini
host giteadb gitea 12.34.56.78/32 scram-sha-256
```

Replace database name, user, and IP address of Gitea instance with your own.

Note: rules on `pg_hba.conf` are evaluated sequentially, that is the first matching rule will be used for authentication. Your PostgreSQL installation may come with generic authentication rules that match all users and databases. You may need to place the rules presented here above such generic rules if it is the case.

Restart PostgreSQL to apply new authentication rules.

6. On your Gitea server, test connection to the database.

For local database:

```
psql -U gitea -d giteadb
```

For remote database:

```
psql "postgres://gitea@23.45.67.89/giteadb"
```

where `gitea` is database user, `giteadb` is database name, and `23.45.67.89` is IP address of your database instance.

You should be prompted to enter password for the database user, and connected to the database.