| title |
|---|
VertiGIS Studio - Containers - Installation |
| Requirement | Spec |
|---|---|
| OS | Linux |
| Distribution | Ubuntu 24.04, Ubuntu 22.04, or Debian 12 (bookworm) |
| Memory | 4 GB Minimum, 8 GB Preferred |
| Disk | 16 GB Free |
# Find the latest tags
> az acr repository show-tags -n vertigisapps --repository studio/base --top 10 --orderby time_desc [-u user]
In order to run VertiGIS Studio in containers, there are a few prerequisites that should be satisfied. Before you begin, please have the following at hand:
We require an appropriate license to run our software, but also, you will need registry credentials to pull down the software. Our support can help you with finding the following information:
- VertiGIS Account ID
- VertiGIS Docker Registry Login Credentials
We require Linux to run VertiGIS Studio in containers. You will need to have a suitable distribution/version of Linux installed on an appropriately resourced machine. Please review the system requirements. We suggest using said Linux machine as a pure Docker host. In other words, do not install software directly on the host system.
As with all web software, you will need to know the front-end URL of where you plan to host the software. Various components need to know this value.
Go to your portal and create a web application:
- Register this application (enable OAUTH2)
- Provide a Redirect URL (use the Front-End URL)
- Note the App ID
| Links | |
|---|---|
| TGZ | deploy-studio.tgz |
| ZIP | deploy-studio.zip |
> mkdir -p deploy-studio
> cd deploy-studio
> curl -fsSL https://vertigis.github.io/studio-install-help/deploy-studio.tgz | tar -xz> mkdir deploy-studio
> cd deploy-studio
> curl -fsSL https://vertigis.github.io/studio-install-help/deploy-studio.tgz -o deploy-studio.tgz
> tar -xzf deploy-studio.tgz
> del deploy-studio.tgz> mkdir deploy-studio
> cd deploy-studio
> iwr -Uri https://vertigis.github.io/studio-install-help/deploy-studio.zip -OutFile deploy-studio.zip
> exa -Path deploy-studio.zip -DestinationPath .
> del deploy-studio.zip> git clone --depth 1 --branch gh-pages https://github.com/vertigis/studio-install-help deploy-studio
> cd deploy-studio
# Install Docker and supporting tools
> sudo ./install-tools.sh
# Edit configuration for VertiGIS Studio
# If using a plain terminal, try one of these:
> nano docker-compose.yaml
> vi docker-compose.yaml
# If using a GUI, try one of these:
> code docker-compose.yaml &
> gedit docker-compose.yaml &
> kate docker-compose.yaml &
> mousepad docker-compose.yaml &
# Gain access to images
> az acr login -n vertigisapps [-u user]
# Pull/Start VertiGIS Studio
> docker compose up --wait# If login has expired, gain access to images
> az acr login -n vertigisapps [-u user]
# Pull down VertiGIS Studio
> docker compose pull
# Upgrade VertiGIS Studio
> docker compose up --wait
# Refresh configuration
> docker exec studio-main-1 util-refresh# ADMIN: Install required tools
> .\install-tools.ps1
# Extract CA certificates from Active Directory
# Some environments may use an internal CA system.
# This will enable systems to communicate over HTTPS in this situation.
> .\extract-ca-certs.ps1
# Edit configuration for VertiGIS Studio
> code docker-compose.yaml
> notepad docker-compose.yaml
# Create SSH key
> ssh-keygen -t ed25519
# Enable passwordless SSH
> .\rsat-auth.ps1 user@linux.contoso.com# ADMIN: Request Web certificates using Enrollment Services
# This step can be skipped if testing or if no web certificate is needed.
# Refer to the section on using Enrollment Services.
> .\request-web-certs.ps1
# Transfer context to remote deploy-studio folder.
> .\rsat-transfer.ps1 user@linux.contoso.com deploy-studioThe Studio image will provide HTTP access (container port 8080) and HTTPS access (container port 8443). You may map these ports however you like on the host machine (see configuration).
If you wish to use your own reverse proxy, you will want to expose the container via non-standard ports. Afterwards, you will need to configure your reverse proxy to route to one of these ports. Remember to give the container a certificate if you plan to route to the HTTPS port.
If you wish, you may leverage the HTTPS port directly and route the standard HTTPS port (443) to the container port (8443).
Some Windows enterprise environments require using internal CA services for secure communication. If you plan on using Studio as a frontend, you'll want to give the container a real web certificate. Your IT professional can likely help with this. Although, you can likely perform this task independently.
- Edit the
docker-compose.yamlfile - Adjust the
WEB_CERTsettinghostis the default value
- Go to the
web-certsfolder- Place the
.pfxfile here - Give this file a name like
host_<id>.pfx
- Place the
- Update your deployment (see here)
- Edit the
docker-compose.yamlfile - Adjust the
WEB_CERTsettinghostis the default value
- Go to the
web-certsfolder- Copy the
sample.inffile tohost.inf - Remove the
sample.inffile - Edit the
host.inffile (reference here) - Adjust the Subject
- Adjust the DNS names
- Save this file
- Copy the
- Update your deployment (see here)
[NewRequest]
Subject = "CN=System Name, O=Example Corp, OU=IT Department, L=New York, ST=New York, C=US"
...
[Extensions]
2.5.29.17 = "{text}"
_continue_ = "dns=server1.contoso.com&"
_continue_ = "dns=server2.contoso.com"
...
For convenience, the Studio image provides a means of using the internal NGINX server as a reverse proxy. You can take advantage of this for whatever needs you have:
- Modify
server/nginx.conffile - Update your deployment (see here)