packagist
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-application-overview.png‎
260 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-application-overview.png‎
260 KB
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-configure-application.png‎
212 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-configure-application.png‎
212 KB
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-license.png‎
121 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-license.png‎
121 KB
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-login.png‎
113 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-login.png‎
113 KB
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-preflight-check.png‎
183 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-preflight-check.png‎
183 KB
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-tls-configuration.png‎
144 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-tls-configuration.png‎
144 KB
diff --git a/‎Resources/public/img/docs/self-hosted-kubernetes/console-tls-warning.png‎
203 KB b/‎Resources/public/img/docs/self-hosted-kubernetes/console-tls-warning.png‎
203 KB
diff --git a/‎docs/self-hosted/kubernetes-embedded.md‎
Lines changed: 147 additions & 0 deletions b/‎docs/self-hosted/kubernetes-embedded.md‎
Lines changed: 147 additions & 0 deletions
diff --git a/‎docs/self-hosted/kubernetes-existing.md‎
Lines changed: 134 additions & 0 deletions b/‎docs/self-hosted/kubernetes-existing.md‎
Lines changed: 134 additions & 0 deletions
@@ -0,0 +1,147 @@
+## Installing Private Packagist Self-Hosted with an embeded Kubernetes cluster
+##
+
+Private Packagist Self-Hosted leverages the [kots](https://docs.replicated.com/reference/kots-cli-getting-started)
+kubectl plugin by Replicated to run on a Kubernetes cluster. The plugin provides a management interface to your
+Private Packagist Self-Hosted installation and allows you to monitor the application and perform maintenance operations
+such as backups or updates.
+
+This page will guide you through an installation without an existing cluster. To instead install Private Packagist Self-Hosted
+in an existing Kubernetes cluster follow [this guide](./kubernetes-existing.md).
+
+## General requirements
+
+1. License Key File (file extension .yaml) Don't have one yet? [Sign up for a free trial license!](https://packagist.com/self-hosted)
+1. One (sub-)domain to operate the web interface, e.g. packagist.myintranet.com
+1. One (sub-)domain to operate the composer repository, e.g. repo.packagist.myintranet.com or packagist-repo.myintranet.com
+1. An SSL certificate valid for both chosen domains or use Let's Encrypt to generate a certificate for you
+1. An SMTP server or a GMail account for Private Packagist Self-Hosted to send email
+1. A Linux Server
+    * A [supported operating system](https://kurl.sh/docs/install-with-kurl/system-requirements#supported-operating-systems)
+    * At least 8GB memory
+    * At least 4 CPU cores
+    * At least 80GB disk space (or 40GB of disk space if a hosted Redis, PostgreSQL, and blob storage are used)
+    * Ports 80, 443, and 8800 must be accessible, for a full list of ports
+    * Must be reachable at the chosen domain names from your local machine
+1. If your firewall restricts external connections the following domains must be accessible from the server:
+  * hub.docker.com
+  * proxy.replicated.com
+  * replicated.app
+  * amazonaws.com
+  * k8s.gcr.io
+  * k8s.kurl.sh (required to install the kots CLI)
+  * kots.io (required to install the kots CLI)
+  * github.com (required to install the kots CLI)
+<!-- See https://docs.replicated.com/enterprise/installing-general-requirements and https://kurl.sh/docs/install-with-kurl/system-requirements -->
+
+## Installation
+
+To install Private Packagist Self-Hosted and Replicated run the command below.
+To learn more about options for the easy install script, please refer to the [Replicated manual on Installing Replicated](https://help.replicated.com/docs/kubernetes/customer-installations/installing/).
+```
+curl -sSL https://kurl.sh/privatepackagistkots | sudo bash
+```
+
+To log in to the admin console, you will need the password shown at the end of the install command. You can also always
+regenerate the admin console password via `sudo kubectl kots reset-password privatepackagistkots`.
+
+After your Replicated Kubernetes cluster is up and running you can follow the rest of the Packagist guide.
+
+### Replicated Configuration
+#### Replicated Setup
+Once Replicated’s services are installed on your server you need to access the management console on your browser.
+It’s available via SSL on port 8800. Open https://packagist.myintranet.com:8800/ in your browser (replace the domain with your own).
+You will have to proceed despite the security warning (since your certificate is still missing).
+
+![SSL Warning](/Resources/public/img/docs/self-hosted/console-tls-warning.png)
+
+Upload your SSL certificate on the next screen. SSL should work correctly from the next page.
+If your certificate requires intermediate certificates to be recognized by your browser and/or Composer,
+you can paste them into the certificate file together with your own certificate.
+Make sure your own certificate comes first, any intermediate certificate next and the root certificate last.
+If the order is off replicated will not recognize your certificate at all.
+
+If instead you would like to use Let's Encrypt to automatically generate a certificate for Private Packagist then you can
+continue with the self-signed certificate for now. Please note that the Let's Encrypt certificate won't be used for the
+admin console.
+
+![SSL Setup](/Resources/public/img/docs/self-hosted/tls-configuration.png)
+
+Login to the admin console using the password generated during the kots application installation.
+
+![Login to Admin Console](/Resources/public/img/docs/self-hosted-kubernetes/console-login.png)
+
+On the next screen, you can upload the supplied .yaml license key file. If you don't have the license key file yet then
+you can download it from https://packagist.com.
+
+![Upload License](/Resources/public/img/docs/self-hosted-kubernetes/console-license.png)
+
+#### Configure Private Packagist Self-Hosted
+The configuration screen is where you can set up the domains used for Private Packagist and the email configuration. It
+is also the place where you can configure if Private Packagist should use an existing Redis, PostgreSQL, or blob storage.
+![Configuration](/Resources/public/img/docs/self-hosted-kubernetes/console-config.png)
+
+Every configuration change or application update will trigger a preflight check. Once the preflight check have passed,
+the changes can be applied to your Kubernetes cluster.
+![Preflight Check](/Resources/public/img/docs/self-hosted-kubernetes/console-preflight.png)
+
+The application overview in the admin console shows you the application status, your current license information, and any
+available updates for Private Packagist. Once the application has entered the ready state, you can access Private Packagist
+via the domain configured for the web interface e.g. packagist.myintranet.com and finish the setup there.
+![Application Overview](/Resources/public/img/docs/self-hosted-kubernetes/console-application-overview.png)
+
+### Setup authenticateion and Select Admin
+
+#### Authentication Setup
+Within Private Packagist Self-Hosted, you now need to set up at least one user authentication method.
+You have the choice between authentication with email addresses and passwords and several OAuth integrations with third-party services.
+We provide integrations with on-premises versions of GitHub, Bitbucket, GitLab, or their public services on github.com, bitbucket.org,
+or gitlab.com. Follow the instructions to create the respective required identifiers, tokens, and secrets.
+
+* [GitHub (Enterprise) Integration Setup](./github-integration-setup.md)
+* [Bitbucket.org Integration Setup](./bitbucket-integration-setup.md)
+* [Bitbucket Data Center / Server Integration Setup](./bitbucket-server-integration-setup.md)
+* [GitLab Integration Setup](./gitlab-integration-setup.md)
+* [Authentication with Email Addresses and Passwords](./authentication-email-addresses-passwords-setup.md).
+
+
+![Add Integration](/Resources/public/img/docs/self-hosted/08-integration.png)
+
+#### Selecting Admins
+After setting up an integration, you can log in through the top menu. Register an account and pick a username.
+
+![Register Admin](/Resources/public/img/docs/self-hosted/09-register-admin.png)
+
+The first user is granted admin permissions automatically. You can grant admin permissions to more users in the admin panel.
+
+![Add Admin](/Resources/public/img/docs/self-hosted/10-add-admin.png)
+
+#### Switching to Production Mode
+Head back to the admin console to disable the Setup Mode in the configuration. Once the preflight checks passed, you can
+apply the changes.
+
+That’s it! Private Packagist Self-Hosted is now ready to be used! You’ll find all further information in the web interface.
+
+## Database and storage
+
+Private Packagist Self-Hosted will set up PostgreSQL, Redis, and MinIO to store application data and Composer packages.
+Each of them requires one or more volumes if you prefer to avoid that then you can configure to use your own PostgreSQL,
+Redis, and blob storage. For blob storage, we currently support Azure Blob Storage, Google Cloud Storage, AWS S3, and
+other S3-compatible storage solutions.
+
+Please note that the backup solution provided only covers the built-in services and you are responsible for creating backups
+of any services that you run yourself.
+
+## Backups
+
+The Replicated Admin console integrates with [Velero](https://velero.io/), a tool to back up and restore your Kubernetes
+cluster resources and persistent volumes. It is automatically installed with an embedded cluster installation.
+
+Once your Private Packagist Self-Hosted is up and running, you can configure the storage destination and the backup
+schedule in the Replicated Admin console under Snapshot settings. We recommend using an external storage solution like
+Amazon S3 and configuring full snapshots.
+
+To restore Private Packagist Self-Hosted from a snapshot, access the "Full Snapshots" and click on the "Restore from backup"
+icon. You will then see information on how to either perform a full restore or only restore the Private Packagist Self-Hosted
+application. During the restore process both Private Packagist Self-Hosted and the Replicated Admin console will become
+unavailable.
@@ -0,0 +1,134 @@
+# Installing Private Packagist Self-Hosted on an existing Kubernetes cluster
+##
+
+Private Packagist Self-Hosted leverages the [kots](https://docs.replicated.com/reference/kots-cli-getting-started)
+kubectl plugin by Replicated to run on a Kubernetes cluster. The plugin provides a management interface to your
+Private Packagist Self-Hosted installation. It also allows you to monitor the application and perform maintenance operations
+such as backups or updates.
+
+This page will guide you through an installation with an existing cluster, to instead install Private Packagist Self-Hosted
+without an existing Kubernetes cluster follow [this guide](./kubernetes-embedded.md).
+
+## General requirements
+
+1. A Kubernetes cluster v1.23 or v1.24 
+1. License Key File (file extension .yaml) Don't have one yet? [Sign up for a free trial license!](https://packagist.com/self-hosted)
+1. One (sub-)domain to operate the web interface, e.g. packagist.myintranet.com
+1. One (sub-)domain to operate the Composer repository, e.g. repo.packagist.myintranet.com or packagist-repo.myintranet.com
+1. An SSL certificate valid for both chosen domains or a way to generate one in your cluster like [cert-manager](https://cert-manager.io/)
+1. An SMTP server or a GMail account for Private Packagist Self-Hosted to send email
+1. If your firewall restricts external connections the following domains must be accessible from the server:
+    * hub.docker.com
+    * proxy.replicated.com
+    * replicated.app
+    * kots.io (required to install the kots CLI)
+    * github.com (required to install the kots CLI)
+<!-- See https://docs.replicated.com/enterprise/installing-general-requirements -->
+
+## Installation
+
+Private Packagist requires the installation of the [kots](https://docs.replicated.com/reference/kots-cli-getting-started)
+kubectl plugin from Replicated. The plugin provides an admin console to configure and update Private Packagist Self-Hosted.
+
+The commands below will install the kots plugin and add the Private Packagist Self-Hosted application.
+At the end of the install script, kots will set up a port forward to localhost:8800 where you can continue with the Private
+Packagist Self-Hosted setup. Once Private Packagist is fully configured and setup, it is recommended to stop the port
+forwarding and only start it again to make changes to the configuration or update the application.
+
+Please note: by default the install command will set up a MinIO instance for storage used by the admin console. You can
+skip this by setting the `--with-minio` flag to `false`. For a full list of configuration options see the 
+[CLI documentation](https://docs.replicated.com/reference/kots-cli-install).
+
+```
+curl https://kots.io/install | bash
+# Verify the plugin installation
+kubectl kots --help
+# Install the Private Packagist application
+kubectl kots install privatepackagistkots
+```
+
+To log in to the admin console, you will need the password shown at the end of the install command. You can also always
+regenerate the admin console password via `sudo kubectl kots reset-password privatepackagistkots`.
+
+### Replicated Configuration
+#### Replicated Setup
+
+Login to the admin console using the password generated during the kots application installation.
+
+![Login to Admin Console](/Resources/public/img/docs/self-hosted-kubernetes/console-login.png)
+
+On the next screen, you can upload the supplied .yaml license key file. If you don't have the license key file yet then
+you can download it from https://packagist.com.
+
+![Upload License](/Resources/public/img/docs/self-hosted-kubernetes/console-license.png)
+
+#### Configure Private Packagist Self-Hosted
+The configuration screen is where you can set up the domains used for Private Packagist and the email configuration. It
+is also the place where you can configure if Private Packagist should use an existing Redis, PostgreSQL, or blob storage.
+![Configuration](/Resources/public/img/docs/self-hosted-kubernetes/console-config.png)
+
+Every configuration change or application update will trigger a preflight check. Once the preflight check have passed,
+the changes can be applied to your Kubernetes cluster.
+![Preflight Check](/Resources/public/img/docs/self-hosted-kubernetes/console-preflight.png)
+
+The application overview in the admin console shows you the application status, your current license information, and any
+available updates for Private Packagist. Once the application has entered the ready state, you can access Private Packagist
+via the domain configured for the web interface e.g. packagist.myintranet.com and finish the setup there.
+![Application Overview](/Resources/public/img/docs/self-hosted-kubernetes/console-application-overview.png)
+
+### Setup authentication and Select Admin
+
+#### Authentication Setup
+Within Private Packagist Self-Hosted, you now need to set up at least one user authentication method.
+You have the choice between authentication with email addresses and passwords and several OAuth integrations with third-party services.
+We provide integrations with on-premises versions of GitHub, Bitbucket, GitLab, or their public services on github.com, bitbucket.org,
+or gitlab.com. Follow the instructions to create the respective required identifiers, tokens, and secrets.
+
+* [GitHub (Enterprise) Integration Setup](./github-integration-setup.md)
+* [Bitbucket.org Integration Setup](./bitbucket-integration-setup.md)
+* [Bitbucket Data Center / Server Integration Setup](./bitbucket-server-integration-setup.md)
+* [GitLab Integration Setup](./gitlab-integration-setup.md)
+* [Authentication with Email Addresses and Passwords](./authentication-email-addresses-passwords-setup.md).
+
+
+![Add Integration](/Resources/public/img/docs/self-hosted/08-integration.png)
+
+#### Selecting Admins
+After setting up an integration, you can log in through the top menu. Register an account and pick a username.
+
+![Register Admin](/Resources/public/img/docs/self-hosted/09-register-admin.png)
+
+The first user is granted admin permissions automatically. You can grant admin permissions to more users in the admin panel.
+
+![Add Admin](/Resources/public/img/docs/self-hosted/10-add-admin.png)
+
+#### Switching to Production Mode
+Head back to the admin console to disable the Setup Mode in the configuration. Once the preflight checks passed, you can
+apply the changes.
+
+That’s it! Private Packagist Self-Hosted is now ready to be used! You’ll find all further information in the web interface.
+
+## Database and storage with dynamic volumes
+
+Private Packagist Self-Hosted will set up PostgreSQL, Redis, and MinIO to store application data and Composer packages.
+Each of them requires one or more volumes using [dynamic volume provision](https://kubernetes.io/docs/concepts/storage/dynamic-provisioning/) to allocate storage for the different Pods.
+Configure the Storage Class under the Kubernetes Settings on the Config page in the admin console.
+
+Alternatively, you can configure Private Packagist Self-Hosted to use your own PostgreSQL, Redis, and blob storage.
+For blob storage, we currently support Azure Blob Storage, Google Cloud Storage, AWS S3, and other S3-compatible storage solutions.
+
+## Security
+
+The Private Packagist Self-Hosted application expects that TLS termination happens at or before the Ingress level.
+All traffic within the cluster is unencrypted.
+
+Make sure your Kubernetes network plugin encrypts connections between pods to avoid potential security issues.
+
+## Backups
+
+The Replicated admin console integrates with [Velero](https://velero.io/), a tool to back up and restore your Kubernetes
+cluster resources and persistent volumes. Private Packagist Self-Hosted provides annotations to help back up and restore
+the application with Velero.
+
+If you are using your own backup solution, we recommend making regular backups of PostgreSQL, Redis, and the used blob
+storage.