Skip to content

Commit

Permalink
Merge pull request #1876 from dolthub/gitbook-dev
Browse files Browse the repository at this point in the history 
doltlab v2.0.3
  • Loading branch information
@coffeegoddd
coffeegoddd authored Nov 22, 2023
2 parents 783b10d + 00b1770 commit 8e5afd1
Show file tree
Hide file tree
Showing 9 changed files with 301 additions and 5 deletions.
Binary file added content/.gitbook/assets/aws_remote_backup_dynamodb.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added content/.gitbook/assets/aws_remote_backup_dynamodb_example.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added content/.gitbook/assets/aws_remote_backup_s3.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added content/.gitbook/assets/aws_remote_backup_s3_example.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added content/.gitbook/assets/gcp_remote_backup_bucket.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added content/.gitbook/assets/gcp_remote_backup_bucket_example.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
2 changes: 1 addition & 1 deletion content/concepts/dolt/sql/databases.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,4 +49,4 @@ mysql> show tables;

## Note

Previous to Dolt 1.27.0, Dolt replaced hyphens in database names (e.g. database directories containing hyphens) with underscores. Dolt now allows databases to be named with hyphens. If you need the old behavior for compatibility, you can set the `DOLT_DBNAME_REPLACE_HYPHENS` environment variable to any value.
Previous to Dolt 1.27.0, Dolt replaced hyphens and space characters in database names (e.g. database directories containing hyphens and space characters) with underscores. Dolt now allows databases to be named with hyphens and space characters. If you need the old behavior for compatibility, you can set the `DOLT_DBNAME_REPLACE` environment variable to any value.
287 changes: 287 additions & 0 deletions content/products/doltlab/administrator.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@ the following information can help DoltLab Admins manually perform some common a
23. [Serve DoltLab over HTTPS natively](#doltlab-https-natively)
24. [Improve DoltLab Performance](#doltlab-performance)
25. [Configure SAML Single-Sign-on](#doltlab-single-sign-on)
26. [Automated Remote Backups](#doltlab-automated-backups)

<h1 id="issues-release-notes">File Issues and View Release Notes</h1>

Expand Down Expand Up @@ -1436,3 +1437,289 @@ On this tab you will see the following:
`Certificate` can be downloaded if you want to add a signature certificate to the IP to verify the digital signatures.

Your DoltLab instance will now use single-sign-on through your IP for user login and account creation.

<h1 id="doltlab-automated-backups">Automated Remote Backups</h1>

DoltLab Enterprise => `v2.0.3` supports automated database backups for DoltLab's application Dolt server. Support for automated backups for each Dolt database on a DoltLab instance is currently underway and will be added soon.

To configure your DoltLab instance to automatically back up its Dolt database server, first, provision either a GCP bucket or and AWS S3 bucket and Dynamo DB table. You will need these to resources to create a remote backup.

Dolt supports a [backup](https://docs.dolthub.com/sql-reference/server/backups#dolt-backup-command) command which can be used to create backups of a Dolt instance.

Let's walk through setting up automated backups using an AWS remote backup first.

<h2 id="aws-remote-backup">AWS Remote Backup</h2>

Dolt can use an [AWS Remote](https://www.dolthub.com/blog/2021-07-19-remotes/) as a backup destination, but requires that two resources be provisioned. As stated in [this helpful blog post](https://www.dolthub.com/blog/2021-07-19-remotes/#aws-remotes), "AWS remotes use a combination of Dynamo DB and S3. The Dynamo table can be created with any name but must have a primary key with the name `db`."

For our example, let's create an AWS S3 bucket called `test-doltlab-application-db-backups`.

![S3 bucket test-doltlab-application-db-backups](../../.gitbook/assets/aws_remote_backup_s3.png)

Let's also create a Dynamo DB table in the same AWS region, and call it `test-doltlab-backup-application-db-manifest`. Notice its uses the required partition key (primary key) `db`.

![Dynamo DB test-doltlab-backup-application-db-manifest](../../.gitbook/assets/aws_remote_backup_dynamodb.png)

The AWS remote url for our DoltLab instance which is determined by the template `aws://[dolt_dynamo_table:dolt_remotes_s3_storage]/backup_name`, will be `aws://[test-doltlab-backup-application-db-manifest:test-doltlab-application-db-backups]/my_doltlab_backup`.

We've also granted read and write access for these resources to an IAM role called `DoltLabBackuper`.

It's now time to update our DoltLab instance configuration to automatically backup it's Dolt server data to our AWS remote.

First, ensure that the AWS credentials on the DoltLab host can be used to assume the role `DoltLabBackuper`. Create a AWS config file that contains:

```
[profile doltlab_backuper]
role_arn = arn:aws:iam::<aws account number>:role/DoltLabBackuper
region = <aws region>
source_profile = default
```

Then use the AWS CLI to confirm this profile can be used on your DoltLab host:

```
AWS_SDK_LOAD_CONFIG=1 \
AWS_REGION=<aws region> \
AWS_CONFIG_FILE=<path to config file> \
AWS_SDK_LOAD_CONFIG=1 \
AWS_PROFILE=doltlab_backuper \
aws sts get-caller-identity
{
"UserId": "<user id>:botocore-session-1700511795",
"Account": <aws account number>,
"Arn": "arn:aws:sts::<aws account number>:assumed-role/DoltLabBackuper/botocore-session-1700511795"
}
```

Next, we shut down our running DoltLab instance to make changes to the `docker-compose.yaml` file. In the `doltlabdb` secion, uncomment the AWS environment variables in the `doltlabdb.environment` block, as well as the ones in the `doltlabdb.volumes` block.

```yaml
...
doltlabdb:
...
environment:
DOLT_PASSWORD: "${DOLT_PASSWORD}"
DOLTHUBAPI_PASSWORD: "${DOLTHUBAPI_PASSWORD}"

## Uncomment the AWS environment variables
## to mount AWS credentials into server container. This allows
## for backing up to AWS remotes.

AWS_PROFILE: "${AWS_PROFILE}"
AWS_SDK_LOAD_CONFIG: "1"
AWS_SHARED_CREDENTIALS_FILE: "/.aws/credentials"
AWS_CONFIG_FILE: "/.aws/config"
AWS_REGION: "${AWS_REGION}"

## Uncomment to mount GCP credentials into server container. This allows
## for backing up to GCP remotes.

# GOOGLE_APPLICATION_CREDENTIALS=/gcloud_credentials.json
networks:
- default
volumes:
- doltlabdb-dolt-data:/var/lib/dolt
- doltlabdb-dolt-root:/.dolt
- doltlabdb-dolt-configs:/etc/dolt
- doltlabdb-dolt-backups:/backups

## Uncomment the AWS environment variables
## to mount AWS credentials into server container. This allows
## for backing up to AWS remotes.

- ${AWS_SHARED_CREDENTIALS_FILE}:/.aws/credentials
- ${AWS_CONFIG_FILE}:/.aws/config

## Uncomment to mount GCP credentials into server container. This allows
## for backing up to GCP remotes.

# - ${GOOGLE_APPLICATION_CREDENTIALS}:/gcloud_credentials.json
...
```

Doing so will mount the AWS credentials on the host, into the Dolt server container, which is required for authenticating pushes as `DoltLabBackuper` to our AWS remote.

Next, uncomment the `backup-syncer`, `prometheus`, and `alertmanager` sections in the `docker-compose.yaml` file as well.

```yaml
...
## Uncomment backup-syncer for configuring automated backups.

backup-syncer:
depends_on:
- doltlabdb
- doltlabenvoy
- doltlabapi
image: public.ecr.aws/doltlab/backup-syncer:v2.0.3
command:
-dolthubapiHost doltlabapi
-dolthubapiPort 60051
-doltUser dolthubadmin
-doltHost doltlabdb
-doltPort 3306
-backupUrlBase "${DOLT_BACKUP_URL}"
-doltDatabaseName dolthubapi
-cron "0 0 * * *" # everyday at 12am
-backupOnBoot
environment:
DOLT_PASSWORD: "${DOLT_PASSWORD}"
networks:
- default

## Uncomment prometheus for DoltLab go service metrics.
## Should be used with backup-syncer and alertmanager for automated backup alerts.

prometheus:
depends_on:
- doltlabenvoy
- doltlabapi
image: prom/prometheus:latest
command:
--config.file=/etc/prometheus/prometheus.yaml
ports:
- "9090:9090"
networks:
- default
volumes:
- ${PWD}/prometheus-alert.rules:/etc/prometheus/alerts.rules
- ${PWD}/prometheus.yaml:/etc/prometheus/prometheus.yaml
alertmanager:
depends_on:
- doltlabenvoy
- doltlabapi
image: prom/alertmanager:latest
command:
--config.file=/etc/alertmanager/alertmanager.yaml
networks:
- default
ports:
- "9093:9093"
volumes:
${PWD}/alertmanager.yaml:/etc/alertmanager/alertmanager.yaml
...
```

`backup-syncer` is the service responsible for calling [DOLT_BACKUP](https://docs.dolthub.com/sql-reference/server/backups#sync-a-backup-from-sql) on DoltLab's Dolt server. By default, this service will backup the Dolt database whenever it starts, and then again at midnight each night. The backup schedule can be set with the `-cron` argument.

`prometheus` and `alertmanager` are [Prometheus](https://prometheus.io/) and [AlertManager](https://prometheus.io/docs/alerting/latest/alertmanager/) instances used to notify DoltLab administrators of failed backup attempts.

In order for `alertmanager` to notify you of backup failures, edit the `./alertmanager.yaml` file and include the SMTP authentication information:

```yaml
global:
smtp_from: [email protected]
smtp_auth_username: my-username
smtp_auth_password: ******
smtp_smarthost: smtp.gmail.com:587

receivers:
- name: doltlab-admin-email
email_configs:
- to: [email protected]
send_resolved: true

route:
receiver: "doltlab-admin-email"
group_wait: 30s
group_interval: 2m
repeat_interval: 4h
routes:
- receiver: "doltlab-admin-email"
group_by: [alertname]
matchers:
- app =~ "backup-syncer"
- severity =~ "page|critical"
```
For more configuration options, please consult the [AlertManager documentaion](https://prometheus.io/docs/alerting/latest/configuration/).
Finally, restart DoltLab using the `./start-doltlab.sh` script, adding the following environment variables:

```bash
...
AWS_PROFILE=doltlab_backuper \
AWS_SHARED_CREDENTIALS_FILE=/absolute/path/to/aws/credentials \
AWS_CONFIG_FILE=/absolute/path/to/aws/config \
AWS_REGION=aws-region \
DOLT_BACKUP_URL="aws://[test-doltlab-backup-application-db-manifest:test-doltlab-application-db-backups]/my_doltlab_backup" \
./start-doltlab.sh
```

The `backup-syncer` service will start backing up the DoltLab application database and you will see your backups stored in your S3 bucket, and the manifest stored in your DynamoDB table.

![Backup in S3](../../.gitbook/assets/aws_remote_backup_s3_example.png)

![Backup in Dynamo DB](../../.gitbook/assets/aws_remote_backup_dynamodb_example.png)

Your DoltLab's Dolt server is now automatically backing up to your AWS remote.

<h2 id="gcp-remote-backup">GCP Remote Backup</h2>

To backup DoltLab's Dolt server to a GCP remote, first create a bucket in GCP. This will be the only required resource needed.

![GCP bucket](../../.gitbook/assets/gcp_remote_backup_bucket.png)

Next, add GCP JSON credentials to your DoltLab host. You can find information about GCP credentials [here](https://cloud.google.com/sdk/gcloud/reference/auth/application-default/login).

Following the Dolt's url template for GCP remotes as outlined in [this blog](https://www.dolthub.com/blog/2021-07-19-remotes/#gcp-remotes), the remote url we will use for this bucket will be `gs://test-doltlab-application-db-backup/my_doltlab_backup`.

Ensure you have stopped your running DoltLab instance, then, like we did for the AWS remote, we are going to uncomment the `GOOGLE_APPLICATION_CREDENTIALS` environment variables in the `doltlabdb.environment` and `doltlabdb.volumes` block of DoltLab's `./docker-compose.yaml` file.

```yaml
...
doltlabdb:
...
environment:
DOLT_PASSWORD: "${DOLT_PASSWORD}"
DOLTHUBAPI_PASSWORD: "${DOLTHUBAPI_PASSWORD}"
## Uncomment the AWS environment variables
## to mount AWS credentials into server container. This allows
## for backing up to AWS remotes.
#AWS_PROFILE: "${AWS_PROFILE}"
#AWS_SDK_LOAD_CONFIG: "1"
#AWS_SHARED_CREDENTIALS_FILE: "/.aws/credentials"
#AWS_CONFIG_FILE: "/.aws/config"
#AWS_REGION: "${AWS_REGION}"
## Uncomment to mount GCP credentials into server container. This allows
## for backing up to GCP remotes.
GOOGLE_APPLICATION_CREDENTIALS: /gcloud_credentials.json
networks:
- default
volumes:
- doltlabdb-dolt-data:/var/lib/dolt
- doltlabdb-dolt-root:/.dolt
- doltlabdb-dolt-configs:/etc/dolt
- doltlabdb-dolt-backups:/backups
## Uncomment the AWS environment variables
## to mount AWS credentials into server container. This allows
## for backing up to AWS remotes.
#- ${AWS_SHARED_CREDENTIALS_FILE}:/.aws/credentials
#- ${AWS_CONFIG_FILE}:/.aws/config
## Uncomment to mount GCP credentials into server container. This allows
## for backing up to GCP remotes.
- ${GOOGLE_APPLICATION_CREDENTIALS}:/gcloud_credentials.json
...
```

Additionally, uncomment the `backup-syncer`, `prometheus`, and `alertmanager` like we did for the AWS remote.

Finally, restart your DoltLab instance using the `./start-doltlab.sh` script while supplying the following additional environment variables:

```bash
...
GOOGLE_APPLICATION_CREDENTIALS=/absolute/path/to/gcloud/credentials \
DOLT_BACKUP_URL="gs://test-doltlab-application-db-backup/my_doltlab_backup" \
./start-doltlab.sh
```

Your DoltLab instance will now automatically back up its application Dolt server to your GCP bucket.

![Backup in GCP bucket](../../.gitbook/assets/gcp_remote_backup_bucket_example.png)
17 changes: 13 additions & 4 deletions content/products/doltlab/installation.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
title: "Installation"
---

The latest version of DoltLab is `v2.0.2` and to get started running your own DoltLab instance, you can follow the steps below. To see release notes for [DoltLab's releases](https://github.com/dolthub/doltlab-issues/releases) or to report and track DoltLab issues, visit DoltLab's [issues repository](https://github.com/dolthub/doltlab-issues).
The latest version of DoltLab is `v2.0.3` and to get started running your own DoltLab instance, you can follow the steps below. To see release notes for [DoltLab's releases](https://github.com/dolthub/doltlab-issues/releases) or to report and track DoltLab issues, visit DoltLab's [issues repository](https://github.com/dolthub/doltlab-issues).

Please note, that to upgrading to a newer version of DoltLab will require you to kill the older version of DoltLab and install the newer one, which may result in data loss.

Expand Down Expand Up @@ -44,15 +44,15 @@ If your host is running Ubuntu 18.04/20.04, the quickest way to install these de
To use them:

```bash
export DOLTLAB_VERSION=v2.0.2
export DOLTLAB_VERSION=v2.0.3
chmod +x ubuntu-bootstrap.sh
sudo ./ubuntu-bootstrap.sh with-sudo "$DOLTLAB_VERSION"
cd doltlab
sudo newgrp docker # login as root to run docker without sudo
```

```bash
export DOLTLAB_VERSION=v2.0.2
export DOLTLAB_VERSION=v2.0.3
chmod +x centos-bootstrap.sh
sudo ./centos-bootstrap.sh with-sudo "$DOLTLAB_VERSION"
cd doltlab
Expand Down Expand Up @@ -86,7 +86,7 @@ cd doltlab

To install a specific version, run:
```bash
export DOLTLAB_VERSION=v2.0.2
export DOLTLAB_VERSION=v2.0.3
curl -LO https://doltlab-releases.s3.amazonaws.com/linux/amd64/doltlab-${DOLTLAB_VERSION}.zip
unzip doltlab-${DOLTLAB_VERSION}.zip -d doltlab
cd doltlab
Expand All @@ -111,6 +111,9 @@ Inside the unzipped `doltlab` directory, you'll find the following items:
* docker-compose.yaml
* docker-compose-tls.yaml
* start-doltlab.sh
* prometheus.yaml
* prometheus-alert.rules
* alertmanager.yaml

`templates` contains email templates used by `doltlabapi` to send automated emails to users of your DoltLab instance. You can customize emails by
editing these files before starting your DoltLab instance. For more information on the contents of these files and how to change them, see the [Customize automated emails](./administrator.md#customize-automated-emails) section of the Administrator guide.
Expand Down Expand Up @@ -149,6 +152,12 @@ For DoltLab `v1.0.0` and later, Dolt is the database server. To connect to it, s

`start-doltlab.sh` is a helper script designed to quickly and easily start DoltLab. See the following section for more information about how to use this script.

`prometheus.yaml` is a [Prometheus](https://prometheus.io/) configuration file that can be used for observing real-time DoltLab service metrics. Used for DoltLab Enterprise automated backups.

`prometheus-alert.rules` is an alert rules file used for sending emails to DoltLab admins in the event of a backup failure. Used for DoltLab Enterprise automated backups.

`alertmanager.yaml` is a [AlertManager](https://prometheus.io/docs/alerting/latest/alertmanager/) configuration file for sending email alerts to DoltLab admins based on Prometheus metrics. Used for DoltLab Enterprise automated backups.

<h1 id="start-doltlab"><ins>Step 3: Start DoltLab</ins></h1>

The recommended way to run DoltLab is with the `start-doltlab.sh` script included in DoltLab's zip folder. This script requires the following environment variables to be set:
Expand Down

0 comments on commit 8e5afd1

Please sign in to comment.