Server Installation
Recommended server configuration
- 4 vCPUs (cores)
- 8GB RAM
Server Infrastructure
NOMAD has been developed to run on the server in Docker environment and therefore you will need to start by installing both Docker Engine and Docker Compose that are available on a wide variety of Linux platforms, mcOS, Windows 10. Here are the links to installation instructions on Linux from the command line.
To check whether Docker installation was successful use two following commands
sudo docker -v
sudo docker compose -v
Docker Compose Configuration
Using sudo privileges create installation folder and docker-compose.yaml configuration file
sudo su
mkdir /nomad
nano /nomad/docker-compose.yaml
version: '3.8'
services:
mongodb:
image: 'mongo'
restart: always
volumes:
- mongo-data:/data/db
api:
image: nomadnmr/api:production
env_file:
- ./backend.env
ports:
- '8080:8080'
volumes:
- ./datastore:/app/datastore
- ./downloads:/app/downloads
restart: always
depends_on:
- mongodb
server:
image: nomadnmr/server:production
ports:
- 80:80
volumes:
- ./downloads:/app/downloads
restart: always
depends_on:
- api
volumes:
mongo-data:
The indents in yaml files have a purpose. Make sure that they remain unchanged otherwise the configuration file won't work.
NOMAD system is composed of three service containers mongodb, api and server. The first container is based on official Docker image of Mongo Database, the other two are based on images that were built from the NOMAD source code stored in nomad-server repository. The example of the configuration file uses images with production tag that correspond to images currently used in production in St Andrews. If you want to use an image with specific version release then you need to change image entry accordingly. For example, following changes in docker-compose.yaml file would compose the system based on v3.2.0 release.
api:
image: nomadnmr/api:v3.2.0
server:
image: nomadnmr/server:v3.2.0
Docker images are stored on Docker Hub where you can check available tags.
Datastore folder configuration
The NMR data should be archived on a dedicated resilient data storage volume.
To get this working using the configuration file above the archiving volume must be mounted to datastore folder inside the nomad installation folder.
If the archiving volume is mounted somewhere else then you need to define corresponding path in docker-compose.yaml file by editing the path before colon in api service volumes entry. Both relative and absolute paths work here. For example following change would make NOMAD to store data in /mnt/datastore folder.
api:
##
volumes:
- /mnt/datastore:/app/datastore
This configuration sets up HTTP server that will use insecure unencrypted connection with clients which is fine for testing but production server should use additional configuration settings for TLS encrypted communication as described in the following paragraph.
TLS Enabled server
To enable TLS encryption for your server a different configuration of server Docker container in docker-compose.yaml file is required. In nutshell, different server image server-tls has to be used, port needs to be set to 443 and folder with ssl certificates has to be mounted. If the following configuration is used in docker-compose.yaml file then certificate and key have to be saved as /root/ssl/nomad3.pem and /root/ssl/nomad3.key, respectively.
server:
image: nomadnmr/server-tls:production
ports:
- 443:443
volumes:
- /root/ssl:/ssl
- ./downloads:/app/downloads
restart: always
depends_on:
- api
Environmental variables
Using sudo privileges create backend.env file with following example content.
sudo su
nano /nomad/backend.env
PORT=8080
MONGODB_URL='mongodb://mongodb:27017/nomad'
HOST='0.0.0.0'
#Frontend host url
FRONT_HOST_URL='###'
#Password for automatically generated admin user
ADMIN_PASSWORD='###'
#JWT expiration time in seconds
JWT_EXPIRATION=3600
#Secret word for generating JWT
JWT_SECRET='###'
EMAIL_SUFFIX='###'
#SMTP configuration
SMTP_HOST='###'
SMTP_PORT=###
SMTP_SECURE=###
SMTP_REQUIRE_TLS=###
SMTP_USER='###'
SMTP_PASS='###'
SMTP_SENDER='###'
#Set true if NOMAD submission is used
SUBMIT_ON=true
#Set true if NOMAD datastore is used
DATASTORE_ON=true,
DATASTORE_PATH='/app/datastore'
DOWNLOADS_PATH='/app/downloads'
#timeout for upload data route connection
DATA_UPLOAD_TIMEOUT=30000
COLLECTION_DOWNLOAD_TIMEOUT=900000
All entries with value ### need to be edited.
FRONT_HOST_URL : URL of the server hosting your system. For example:
http://nomad.my_domain.ukADMIN_PASSWORD : A backdoor password of your choice that will enable you to login with username admin after system installation.
cautionThe user admin with the password set in environmental variables is only created at server startup with no users in the database. If the user admin has already been created changing ADMIN_PASSWORD in environmental variables will not change the password in the database.
In order to reset the user admin password you can start the server with an empty database by following commands:sudo docker exec -it mongodb-container-name mongoshYou need to use the actual name of mongodb container that you can find by
docker pscommand.use nomad
db.dropDatabase()CTRL+C to exit mongosh and then stop and start the server.
JWT_SECRET : Any random string of your choice that will be used to secure communication of the server with clients.
EMAIL_SUFFIX : Email suffix that will be used to auto-generate e-mail addresses from usernames. For example:
my_domain.ukSMTP configuration
- SMTP_HOST : URL of SMTP server that will be used to send e-mails. For example:
mailhost.my_domain.uk - SMTP_PORT : Port on SMTP server that will receive the request. For SSL/TLS 587 or 2525. More info
- SMTP_SECURE : false or true depending on SMTP server set up
- SMTP_REQUIRE_TLS : false or true depending on SMTP server set up. Related to SMTP_PORT setting.
- SMTP_USER : Username for SMTP server authentication. Use empty string
''if authentication is not required. - SMTP_PASS : Password for SMTP server authentication. Use empty string
''if authentication is not required. - SMTP_SENDER : An email address that will be used as sender for NOMAD system e-mails. For example
nomad@my_domain.uk
- SMTP_HOST : URL of SMTP server that will be used to send e-mails. For example:
All the other environmental variables should remain unchanged. They are used for expert setups used in development environment etc.
Start/Stop the server
After you have set up docker-compose.yaml and backend.env configuration files, you can simply start and stop the server by using following commands.
sudo docker compose up -d
sudo docker compose down
For the commands to work, you need to be in the folder with docker-compose.yaml file.
You can use the following command to check running containers.
sudo docker ps
You should see three running containers with following names nomad-mongodb-1, nomad-api-1 and nomad-server-1.
- Container names will be slightly different if the folder with docker-compose.yaml file has other name than nomad.
- If the containers are running when VM gets rebooted the containers will automatically restart.
Updating the server
If you use version specific tags (e.g.
:v3.2.0) then you need to stop the service, change the tag in docker-compose.yaml file and then start the service again.If you are using
:productiontag (version currently running on production server in St Andrews) and want to update to a newer version then you need to remove the images that you currently have on your server and then pull the new ones from Docker-Hub.
sudo docker compose down
sudo docker rmi nomadnmr/server-tls:production nomadnmr/api:production
sudo docker compose pull
sudo docker compose up -d
Database dumps
To dump database
sudo docker exec -i nomad-mongodb-1 sh -c 'mongodump --archive' > mongodb.dump
To restore from dump
sudo docker exec -i nomad-mongodb-1 sh -c 'mongorestore --archive --drop' < mongodb.dump
- if the commands don't work use
docker pscommand to check actual name of your mongodb container which might differ from the one (nomad-mongodb-1) used in above example. - Create a cron command to periodically archive mongodb.dump in the datastore volume or other secure place. The database dump and nomad docker images will allow you to resurrect the system on a new VM after a catastrophic event.