RHEL-8-9.md

Installation Process for RHEL 8/9 based systems

We are now going to install all the required dependencies for the Popcorn Time API.
Make sure that all these commands are ran as the root user.
You can do this by running sudo su.

Important Note

Please note that we will be completely removing the firewall and disabling SELinux for this installation to work correctly.
This is not recommended for production environments, but is required for this installation to work correctly.
The machine that you are installing this on should be a dedicated machine, and not a shared server.

Let's Update the System

dnf update -y

Disabling SELinux & Removing The Firewall

Firstly, we are going to disable SELinux, this will allow the Popcorn Time API to work correctly.

setenforce 0
sed -i 's/^SELINUX=.*/SELINUX=disabled/g' /etc/selinux/config
sed -i 's/^SELINUX=.*/SELINUX=disabled/g' /etc/sysconfig/selinux
dnf remove -y firewalld

EPEL (Extra Packages for Enterprise Linux)

Then, we are going to install the EPEL repository, this will allow us to install the required dependencies.

dnf install -y epel-release

MariaDB & Redis

Next, we are going to install MariaDB and Redis, these are the databases that the Popcorn Time API will use.

dnf install -y mariadb mariadb-server redis
systemctl enable --now mariadb redis

We are now going to secure the MariaDB installation, this will allow us to set a root password for the database.

mysql_secure_installation

You will be prompted to set a root password, please do this and keep a note of the password.
You will also be prompted to remove anonymous users, disable remote login, and remove the test database.
Please answer Y to all of these prompts.

PHP 8.1

After that, we are going to install PHP 8.1.

### If you are on RHEL 8 then use the following command
dnf install -y https://rpms.remirepo.net/enterprise/remi-release-8.rpm
### If you are on RHEL 9 then use the following command
dnf install -y https://rpms.remirepo.net/enterprise/remi-release-9.rpm
dnf module enable -y php:remi-8.1
dnf install -y php php-{common,fpm,cli,json,mysqlnd,gd,mbstring,pdo,zip,bcmath,dom,opcache,redis}

Composer

Next, we are going to install Composer and it's requirements, this is the package manager for PHP.

dnf install -y zip unzip tar
curl -sS https://getcomposer.org/installer | php -- --install-dir=/usr/local/bin --filename=composer

Tor

Next, we are going to install Tor, this is the proxy that the Popcorn Time API will use to scrape the torrent sites.
Tor does not need any configuration, and will work out of the box for our use case.

dnf install -y tor
systemctl enable --now tor

Elasticsearch

Next, we are going to install Elasticsearch, this is the search engine that the Popcorn Time API will use.
First, we will import the Elasticsearch GPG key.

update-crypto-policies --set LEGACY
rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch

Now, you should paste the contents below into the file /etc/yum.repos.d/elasticsearch.repo.

[elasticsearch]
name=Elasticsearch repository for 8.x packages
baseurl=https://artifacts.elastic.co/packages/8.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=0
autorefresh=1
type=rpm-md

Now, we can install Elasticsearch.

dnf install -y --enablerepo=elasticsearch elasticsearch

We are now going to configure Elasticsearch to disable the security features and ssl.
Open the file /etc/elasticsearch/elasticsearch.yml and make sure security and ssl is disabled:

xpack.security.enabled: false

xpack.security.http.ssl:
  enabled: false

Now, we can start Elasticsearch.

systemctl enable --now elasticsearch

Nginx

Next, we are going to install the webserver & SSL certificates. Replacing <domain> with your domain.

### Install Nginx & Certbot
dnf install -y nginx python3-certbot-nginx git
systemctl enable --now nginx

### Generate SSL Certificates, replace <domain> with your domain
certbot certonly --nginx -d <domain>

Now, you should paste the contents below into the file /etc/nginx/conf.d/popcorntime.conf.

server_tokens off;

server {
    listen 80;
    server_name <domain>;
    return 301 https://$server_name$request_uri;
}

server {
    listen 443 ssl http2;
    server_name <domain>;

    ssl_certificate /etc/letsencrypt/live/<domain>/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/<domain>/privkey.pem;

    root /var/www/popcorntime/public;
    index index.html;
    
    access_log /var/log/nginx/popcorntime.app-access.log;
    error_log  /var/log/nginx/popcorntime.app-error.log error;

    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }

    location ~ \.php$ {
        fastcgi_pass unix:/var/run/php-fpm/popcorntime.sock;
        fastcgi_index index.php;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        include fastcgi_params;
    }
}

PHP FPM

Now, we are going to configure PHP FPM, this will allow us to run PHP scripts.
Paste the contents below into the file /etc/php-fpm.d/www-popcorntime.conf.

[popcorntime]

user = nginx
group = nginx

listen = /var/run/php-fpm/popcorntime.sock
listen.owner = nginx
listen.group = nginx
listen.mode = 0750

pm = ondemand
pm.max_children = 9
pm.process_idle_timeout = 10s
pm.max_requests = 200

We can now start PHP FPM.

systemctl enable --now php-fpm

Install The Popcorn Time API

Finally, we are going to configure & install the Popcorn Time API.
We are going to download all the files first.

cd /var/www/
git clone https://github.com/popcorn-time-ru/popcorn-ru
mv popcorn-ru popcorntime
cd popcorntime
chown -R nginx:nginx /var/www/popcorntime/*
chown nginx:nginx /var/www/popcorntime/.env
chmod 400 /var/www/popcorntime/.env

Now we are going to configure the Popcorn Time API .env file to our needs.
Firstly, login to your MariaDB database and note down the server version number.

### First run this command, then enter the password when prompted
mysql -u root -p

### Then you can run this command to exit mariadb
exit

Now the password for the root mariadb user and the server version in the .env file. Here is an example

DATABASE_URL=mysql://root:[email protected]:3306/popcorn?serverVersion=mariadb-10.3.35

After that, we are going to configure the TMDB and TRAKT API keys in the .env.local file.
You can get a TMDB API key here. Make sure to use the - v3 Auth Key
You can get a TRAKT API key here. Make sure to use the - Client Secret

TMDB_API_KEY=
TRAKT_KEY=

Please note that these commands should be run once at a time.

systemctl restart php-fpm nginx
composer install
bin/console doctrine:database:create
bin/console doctrine:schema:create
bin/console enqueue:setup-broker

Initialise Popcorn Time Database

We will now initialise the Popcorn Time database with the default data and set up the cron jobs.

(crontab -l ; echo "0 0 1 */3 * /var/www/popcorntime/bin/console spider:run --all")| crontab -
(crontab -l ; echo "0 0 * * * /var/www/popcorntime/bin/console spider:run --all --last=48")| crontab -
(crontab -l ; echo "0 8 * * 1 /var/www/popcorntime/bin/console update:stat")| crontab -
(crontab -l ; echo "0 3,11,19 * * * /var/www/popcorntime/bin/console update:trending")| crontab -
(crontab -l ; echo "0 1 * * * /var/www/popcorntime/bin/console update:syncOld 500 --days-check=180 --days-delete=360")| crontab -
(crontab -l ; echo "0 23 * * * /var/www/popcorntime/bin/console cache:clear")| crontab -
(crontab -l ; echo "9  * * * * cd /var/www/popcorntime/ && killall -9 php")| crontab -
(crontab -l ; echo '10  * * * * cd /var/www/popcorntime/ && pgrep -c -f enqueue:consume || bin/console enqueue:consume --time-limit="now + 55 minutes" --no-debug --memory-limit=200')| crontab -
bin/console spider:run --all