Advanced Installation / De-Dockerize?

fido94 2023-01-17 16:47:41 UTC #1

I have a couple of other threads going but will move the conversation here. I am looking at various groupware solutions to see which will provide the most integrated solution and can integrate into our model; we have not installed egroupware as yet. We are running a ZFS-based environment with our own ACME SSL service and an SSO service leveraging smartcard based gpg logins or mTLS. The identity provider is OpenLDAP based and supports nearly all authentication connectors. For containers we use podman.

Thanks to @RalfBecker, I now see that moving the database post-installation should be pretty straightforward. Simlarly I think exporting/importing the core and push-server docker images to podman should be no problem.

This leaves the remaining hurdle of the reverse proxy which we need to convert to using our PKI and should be handled by the host’s native apache service. Is there any way to configure this as part of the install process or is dockerized letsencrypt/certbot nginx revers-proxy the only option?

In general I don’t mind manually dis-assembling the installer to roll-my-own process for the initial install, nearly everything in our environment is custom; but I am concerned about how to prevent updates clobbering our customizations so I am trying to best understand what is where before proceeding.

Once the install is complete, is there any reason there would be problems with upgrading by pulling new docker images for just core egroupware and the push-server?

RalfBecker 2023-01-17 20:09:52 UTC #2

You should make an installation, before speculating!

EGroupware uses either by default Nginx or Apache running on the host as proxy. Therefore you can use Certbot or whatever else works for these webservers running on the host.

Replacing Docker with Podman is surely possible, but will not be supported here in the forum.

Ralf

fido94 2023-01-17 22:38:10 UTC #3

Haha! We should and we will…but it is necessary to try and determine if a tool is even feasible before moving forward. We’re also looking at: BlueMind, Citadel, Corteza, Cozy Cloud, Group Office, Horde, HRCloud2, Kolab, Kopano, SOGo, tine20, and Tracim…investing time in a functional install of 13 platforms would be quite the investment without asking a few questions first.

That said, egroupware seems to be the running favorite with the team so far; the next step will indeed be setting something up in Test/Staging.

P.S. You should harvest some of the Q/A from your presentations such as Kielux2021 and incorporate them into your FAQ. They were helpful.

RalfBecker 2023-01-17 23:01:32 UTC #4

An easy way to test EGroupware is to get a - free of charge - trial in our EGroupware hosting:

You can always export your data and re-import it in you own installation, once you decided to use one, or continue in our hosting.

Ralf

fido94 2023-01-17 23:14:15 UTC #5

Thank you for this thought. However the exercise of deployment in our environment will be a critical metric and has to be part of the vetting process. I am looking forward to trying it out.

Off topic: Any plans to offer OnlyOffice as an app integration?

RalfBecker 2023-01-18 00:56:48 UTC #6

We had plans a while ago, but OnlyOffice sales wanted big numbers from us, beside we had to do the work of the integration and they would earn the money from selling it to our customers.

That was a very different experience from our cooperative relation with Collabora and therefore we stopped our talks and plans with OnlyOffice.

Ralf