{| class="wikitable" border="1"| yum install koji-hub httpd mod_ssl mod_python|-| |-| |-| Then edit the Apache conf file – ‘/etc/httpd/conf/httpd.conf’ and change the “MaxRequestsPerChild” to 100.|-| On IRAQ these setting were already in place as Apache was running and configured.|-| |-| Next edit the ‘/etc/koji-hub/hub.conf’ file and add the following lines:|-| DBName = koji|-| DBUser = koji|-| DBHost = localhost|-| KojiDir = /mnt/koji|-| LoginCreatesUser = On|-| KojiWebURL = http://iraq.proximity.on.ca/koji|-| Since we are using SSL for authentication, also add|-| |-| DNUsernameComponent = CN|-| ProxyDNs = "/C=CA/ST=Ontario/O=Seneca CDOT/OU=/CN=kojiweb/emailAddress="|-| |-| And in the ‘/etc/httpd/conf.d/kojihub.conf’ uncomment the following lines:|-| |-| <Location /kojihub>|-| SSLOptions +StdEnvVars|-| </Location>|-| |-| Using the Koji certificates, we need to add the following lines to ‘/etc/httpd/conf.d/ssl.conf’, under the section ‘VirtualHost _default_:443′:|-| |-| SSLCertificateFile /etc/pki/koji/certs/kojihub.crt|-| SSLCertificateKeyFile /etc/pki/koji/certs/kojihub.key|-| SSLCertificateChainFile /etc/pki/koji/koji_ca_cert.crt|-| SSLCACertificateFile /etc/pki/koji/koji_ca_cert.crt|-| SSLVerifyClient require|-| SSLVerifyDepth 10|-| Even though SE Linux is not currently in use on IRAQ,|-| it may be in the future. In order to allow Apache to connect to the Postgresql database run the following command as root:|-| |-| setsebool -P httpd_can_network_connect_db 1|-| To allow Koji to work, a skeleton filesystem needs to be created and the ownership|-| changed so Apache can write to it as required. The following commands were executed:|-| |-| mkdir -p /mnt/koji/{packages,repos,work,scratch}|-| chown -R apache.apache /mnt/koji|-| Then edited the '/etc/koji.conf' file and changed the following lines:|-| |-| ;url of XMLRPC server|-| server = http://iraqong.proximity.on.ca/koji|-| ;url of package download site|-| pkgurl = http://iraq.proximity.on.ca/packages|-| ;path to the koji top directory|-| topdir = /mnt/koji|-| ;configuration for SSL athentication|-| ;client certificate|-| cert = ~/.koji/client.crt|-| ;certificate of the CA that issued the client certificate|-| ca = ~/.koji/clientca.crt|-| ;certificate of the CA that issued the HTTP server certificate|-| serverca = ~/.koji/serverca.crt|-| After this is competed, the final step is the addition of the user and builder accounts. First add the kojira account and grant repo privileges with the following command( this should be done before running kojira for the first time) :|-| |-| su - kojiadmin|-| koji add-user kojira|-| koji grant-permission repo kojira|-| |-| Then add as many builders as required using the following commands editing where required (this should also be done prior to running kojid on each host):|-| |-| koji add-host arm-001-001 arm|-| koji add-host arm-001-002 arm|-| koji add-host arm-001-003 arm|-| |-| == Project Plan ==|-| |-| Goals for each release:|-| * 0.1 - '''Koji Certificates '''|-| Koji Hub setup - Certificates/security|-| * 0.2 - '''Koji Hub setup and Koji Database'''|-| Koji Hub Setup- Configuration|-| To setup PostgreSQL for use with Koji|-| * 0.3 - '''Koji Web'''|-| Build software with koji hub|-| == Project News ==|-| |-| 1,November I will do Project Plan 0.1- I set up Koji Certificates|-| |-| 5,November I did build and create Koji Certifacation on IRAQ server.|-| |-| 19,November I set up Koji Database.|-| |-| 26,November I set up Koji hub Configuration|-| |-| == Resources ==|-| |-| [http://zenit.senecac.on.ca/wiki/index.php/Fedora_Arm_Secondary_Architecture/Koji_Certificates How to get koji certificate?]|-| |-| [http://zenit.senecac.on.ca/wiki/index.php/CDOT_Development_Systems Configuration of CDOT_Development system]|-| |-| [http://fedoraproject.org/wiki/Koji How To Setting up and Using Koji on Fedora]|-| |-| [http://developer.postgresql.org/pgdocs/postgres/index.html PostgreSQL9.1 devel Document]|-| |-| [http://fedoraproject.org/wiki/Koji/ServerHowTo#PostgreSQL_Server PostgreSQL_Server]|-| |}