GitLab

This guide is a rough port from the official guide and various internet references.

Some of the steps have been consolidated and obviously customized to the standard Gentoo environment.

If something is missing, please make a point of updating this article, with special attention to dependencies please.

This is a long installation guide, an alternative would be to use the unofficial www-apps/gitlab-ce ebuild from Fritteli’s Overlay.

The Layman's guide

The Gitlab overlay, originally the CVUT overlay, is currently on par with the latest gitlab version (7.12 as of June 2015). It supports gitlab migrations in a post-configure step, for those performing upgrades. The repo and issues can be found here. Fritteli's Gentoo overlay provides an alternative, though the installation instructions are not documented here.

The overlay may be added using either eselect repository or layman.

To add using eselect repository:

To add using layman:

One must then add the following keywords to be accepted by portage

=app-eselect/eselect-gitlabhq-M.m.i ~ARCH
=dev-libs/libuv-M.m.i ~ARCH
=dev-ruby/bundler-M.m.i ~ARCH
=dev-ruby/rake-M.m.i ~ARCH
=dev-ruby/redis-M.m.i ~ARCH
=dev-vcs/gitlab-gitaly-M.m.i ~ARCH
=dev-vcs/gitlab-shell-M.m.i ~ARCH
=net-libs/http-parser-M.m.i ~ARCH
=net-libs/nodejs-M.m.i ~ARCH
=sys-apps/yarn-M.m.i ~ARCH
=www-apps/gitlabhq-M.m.i ~ARCH
=www-servers/gitlab-workhorse-M.m.i ~ARCH

Where ARCH is the architecture and M.m.i are the Major, minor and intermittent/incremental version numbers.

Setup a git user with a home directory, then export it into an environmental variable. The git user will also need to be part of the 'redis' group. This is important later on as the configuration script needs access to /var/run/redis/redis.sock.

Next emerge the package. You will also need the newest version of bundler, redis and rake for redis to work correctly.

For some reason, the gitlabhq package doesn't user bundler to install sidekiq and unicorn-rails. You can install them through using gem. Sidekiq is needed for redis to work correctly, unicorn-rails is needed for gitlabhq.

Next, create all required configuration files from example configs (if they don't exist):

If intending to use PostgreSQL:

It may be desirable to create a sidekiq config:

# Sample configuration file for Sidekiq.
# Options here can still be overridden by cmd line args.
# Place this file at config/sidekiq.yml and Sidekiq will
# pick it up automatically.
---

:verbose: false
:concurrency: 20

# Set timeout to 8 on Heroku, longer if managing systems under administrative control.
:timeout: 30

# Sidekiq will run this file through ERB when reading it so it is possible to
# put in dynamic logic, like a host-specific queue.
# http://www.mikeperham.com/2013/11/13/advanced-sidekiq-host-specific-queues/
:queues:
  - critical
  - default
  - <%= `hostname`.strip %>
  - low

# it is possible to override concurrency based on environment
production:
  :concurrency: 20
staging:
  :concurrency: 20

Default owners are incorrect.

Then change some values in Gitlab-shell config. By default, user git is supposed to have a home directory (/home/git), but gitlab.yml expects it to have a home in /var/lib/git. It has to be fixed:

Change all occurrences of var/lib/git/ to /home/git.

...
#repos_path: "/var/lib/git/repositories"
repos_path: "/home/git/repositories"
...
#auth_file: "/var/lib/git/.ssh/authorized_keys"
auth_file: "/home/git/.ssh/authorized_keys"
...

Now you need to configure redis to have a UNIX socket.

...
unixsocket /var/run/redis/redis.sock
unixsocketperm 770
...

Restart redis.

Assuming you're using Postgresql and have it configured, the gitlabhq configuration script expects a ROLE with the username of git, a password of 'gitlab', LOGIN, CREATEDB and SUPERUSER privileges.

Finally you can run the configuration script.

Now you can start the gitlabhq service:

Otherwise for a more Gentoo-ish approach to installation read on.

Prerequisites and dependencies

• dev-libs/openssl
• dev-libs/icu
• dev-libs/libxslt
• dev-lang/python version 2.7.x
• dev-lang/ruby version 2.0.x
• dev-vcs/git
• dev-db/redis
• dev-ruby/bundler

Optional: To receive mailing notifications from GitLab, install a mail server. The recommended server is Postfix.

Next, tell Gentoo to start redis automagically:

Prepare the necessary users

Gitlab uses the git user, so add it:

Gitlab shell

unixsocket /var/run/redis/redis.sock
unixsocketperm 770

GitLab

Prepare the database

MySQL/MariaDB

Merge mysql if it has not been done so already.

Setup root mysql password.

Turn on mysql.

Set mysql to start upon reboot.

Create the database and user:

mysql> CREATE DATABASE IF NOT EXISTS `gitlabhq_production` DEFAULT CHARACTER SET `utf8` COLLATE `utf8_unicode_ci`;
mysql> CREATE USER 'gitlab'@'localhost' IDENTIFIED BY 'changeme aka gitlabdbpass';
mysql> GRANT SELECT, INSERT, UPDATE, DELETE, CREATE, DROP, INDEX, ALTER ON `gitlabhq_production`.* TO 'gitlab'@'localhost' IDENTIFIED BY 'gitlabdbpass';
mysql> quit

Test connecting to the databases with the new user:

Enter Password:

PostgreSQL

Merge postgresql-server, or postgresql-base if the PostgreSQL installation is on another server.

For PostgreSQL there are different methods of authentication. For a installation on the local machine some administrators prefer using the local account when connecting through a socket. By default this is enabled.

Create a database and a new user without a password and give the user ownership of it. Remember, when connecting through the socket the shell user is used for authentication, so its name must be git.

template1=# CREATE USER git;
template1=# CREATE DATABASE gitlabhq_production OWNER git;
template1=# \q

The git user will need access to the PostgreSQL socket, so it's required to add the user to the postgres group

And a little test, just to be sure everything went fine:

Copy the example database configuration file:

• Edit the new configuration file and add the database credentials just created:

#
# PRODUCTION
#
production:
  adapter: postgresql
  encoding: unicode
  database: gitlabhq_production
  pool: 5
  username: gitlab
  # password:
  # host: localhost
  # port: 5432
  socket: /run/postgresql/.s.PGSQL.5432

Configure Gitlab

Deploy directories

chown -R git log/
chown -R git tmp/
chmod -R u+rwX  log/
chmod -R u+rwX  tmp/

mkdir /home/git/gitlab-satellites
mkdir tmp/pids/
mkdir tmp/sockets/
mkdir public/uploads
cp config/unicorn.rb.example config/unicorn.rb
nano config/unicorn.rb
cp config/initializers/rack_attack.rb.example config/initializers/rack_attack.rb
nano config/initializers/rack_attack.rb
git config --global user.name "GitLab"
git config --global user.email "gitlab@localhost"
git config --global core.autocrlf input

Install needed gems

Note that charlock_holmes has a bug on gentoo, so a workaround is required:

Note that there might be an error message about a dropped dependency called "modernizr". This is a frontend gem who has been renamed. This has to be added to the Gemfile:

just search the modernizr (v. 2.6.2) package and rename it to "modernizr-rails", "2.7.1". Also Note that a (maybe failing) command, being issued before, has created a Gemfile.lock. This lock file would need an edit as well (two mentions of modernizr).

Then build the package depending on the database setup, excluding the staging and dev environment (which have not been set up yet) and the not-used database:

• mysql

• postgresql

Initialize database and activate advanced features

Download and start the initscript

At the time of writing, this init script is confirmed to work with Gitlab versions 6, just edit the user and home directory:

Web frontend

Nginx

Download the official template and activate it:

Use a favorite text editor to change the relevant portions:

...
  listen 0.0.0.0:80 default_server;
  server_name git.domain.tld;
...

Apache/Passenger

go over to the rails page, and fix up passenger...

The /etc/apache2/vhosts.d/00_default_vhost.conf file needs to be edited, to adapt DocumentRoot and <Directory> directives to use /home/gitlab/gitlab/public. Thus, add the following virtual host to manage gitlab :

<IfDefine DEFAULT_VHOST>
Listen 80
NameVirtualHost *:80
<VirtualHost *:80>
        DocumentRoot /home/git/gitlab/public
        <Directory /home/git/gitlab/public>
        </Directory> 
</VirtualHost>
</IfDefine>

Now apache has to be restarted, don't forget to

Finish installing

To remove login for the git user (Optional), use this:

Then build the assets for the Web Frontend using:

Use a favorite web browser to navigate to the new host that was set up
If everything loads properly, the installer has made an admin account.

admin@local.host
5iveL!fe

root
5iveL!fe

Testing

Diagnostics

Run this command to get a full diagnostic.

Push, pull, clone

Users to push, pull, clone generate ssh-rsa key.

Using the GitLab web page interface, add a user key to a user, & create new repository.

Many commands will show up, they need to be run on the users computer.

The command 'git push -u origin master' will activate the repository created and allow cloning.

clone using the url the web interface displays. (replace localhost with IP address, or fully qualified domain name)

Omniauth

In the file /home/gitlab/gitlab/config/gitlab.yml there's a section that controls login from remote sites such as Google, Twitter, and GitHub. change enabled: false to enabled: true. then scroll down and remove all ## marks from

#    - { name: 'google_oauth2', app_id: 'YOUR APP ID',
#        app_secret: 'YOUR APP SECRET',

and ensure to leave the leading - on the first line.