在上线之前建立一个沙盒来测试更改

Regardless of if you’re a moderator or an admin, you will no doubt at some time think about making some change to your live site and wonder if this will bring shame on you, and/or cause yourself an enormous amount of work to put right again.

There is an easy solution to this: build yourself a sandbox! You can restore a backup of your live site to the sandbox and this will give you a representative post and user base, then you can play Dangerous Dan all you want.

(If it isn’t your site, then talk to the admin/site owner first, and make sure they are ok with you cloning the site.)

All you need is:

• A host, preferably with the same OS as your live install.
• A mail provider (at least temporarily for the setup)
• The 30 minute install instructions
• A backup of your live site.

HOST
I used a free tier AWS instance, and installed Ubuntu 16.04. I increased the size of the disk as it was too small to handle restoring the 4.5GB backup. I didn’t bother setting up a domain or encryption, or https. Just a straight box that I could reach via putty and a browser.

MAIL PROVIDER
I used AWS for this as well, I only wanted mail to complete the discourse setup and verify that the setup actually worked. The last thing I wanted was my sandbox to start sending emails out to our users. You could probably skip setting up email entirely.

DISCOURSE INSTALL
SSH into the box
sudo -s
apt-get install htop
dpkg-reconfigure -plow unattended-upgrades
apt-get update
apt-get upgrade
apt-get autoclean
apt-get autoremove
shutdown -r

When the box comes back up check if the login message says “a restart is required” (keep an eye out for this whenever you SSH into the box)

Follow the excellent Simple 30 minute basic install

POST INSTALL
Once the box is up and you’ve complete the web part of the setup, received your email, used that to login to the website, run a backup.
SSH into the box
Make a copy of your app.yml

sudo -s
cd /var/discourse/containers
cp app.yml LIVEapp.yml
nano app.yml

add “NOT-” to the beginning of the SMTP variables (to make sure that your sandbox won’t be able to send emails unless you change those settings again):

DISCOURSE_SMTP_ADDRESS: NOT-email...
DISCOURSE_SMTP_PORT: 587
DISCOURSE_SMTP_USER_NAME: NOT-...
DISCOURSE_SMTP_PASSWORD: NOT-...

save the file and exit nano (Ctrl-o, enter, Ctrl-x)

Rebuild the app:

cd /var/discourse
git pull
./launcher rebuild app

When the rebuild is finished check that you can still reach the website and login etc.

Back in the CLI:

• check how much disk space you have (and note it down somewhere)
  df -h
• check how your RAM usage is (and note it down somewhere)
  free -h
• Have a gander at htop to see what an unloaded blank install looks like
  htop
• f10 or Ctrl-c to exit htop
  ./launcher cleanup

In the GUI go to sitename/admin/site_settings/category/backups and set a checkmark on “allow restore”

Visit your live site and download a recent backup (including uploads) from /admin/backups.

Go to /admin/backups and upload the backup.
Back in the CLI check how much space you have with free-h, IIRC the restore needs about 3x the size of the backup to complete without crashing because your disk is full. If in doubt, fix that now.
Restore the backup to your sandbox site.
While the restore is running, watch what is going on with htop and df-h (it’s a geek thing).
When the restore is complete, goto /admin/settings and change the following:
“disable emails” set a check mark.
Look through all of the settings (use “Only show overridden”) and change any site settings related to S3, CDNs, CSS, permalinks etc so you won’t be interfering (or masquerading) as your live site.
Back in the CLI:
./launcher rebuild app

You don’t really need to do it, but as you may have noticed, I’m a belt and braces kind of a guy, so…
shutdown -r

When it comes back up you should have a functioning site with content, but you won’t be able to login with your live credentials.

SSH into the sandbox

sudo -s
cd /var/discourse
./launcher enter app
rake admin:create

Answer the questions. You can either set a password for your live account, or create a new admin (I used none@nonexistent.com as an email).

Now you can login to the sandbox GUI with the email and password you just set.

The last thing to do is add the plugins which your live site has to your app.yml, then ./launcher rebuild app one last time, then configure any plugin settings as your live site has.

You now have a working sandbox to play with, including content, And damned be him that first cries, “Hold, enough!”.

Quick question on this as pretty new to AWS

• when setting the domain what did you use (if you dont have a domain) - I was able to use the public dns / IP to start but once you stop the server the IP address changes unless you use elastic IPs.
  I am now able to access it on the new IP - however will this not cause me issues with the IP changing constantly everytime I stop / start it when I need it.?

I used elastic IP for SSH, and the public dns for the web interface.

Gonna go through this in the morning, thanks for putting this together

Take notes for the AWS setup (if you’re using them). I spent about 2 hours peering at the AWS docs and googling until I’d managed to get a machine that I could SSH into. I didn’t take any notes, as with each step I kept thinking “ok, so as soon as I figure out this minor thing I’ll be able to move on to the discourse install”.

The AWS doc’s aren’t exactly Ikea assembly instructions, I took a while to twig their terminology. Mind you, it could be worse.

Agreed! To me, AWS is a twisty maze of passages that all look the same. Digital Ocean has much, much, less flexibility than AWS, but there’s relatively little that can go wrong setting up a droplet.

Yes, I found AWS to be very… atomic. The bits are all there, but it takes some energy to create a molecule.

I first tried a Ubuntu VM on a Windows PC then my Synology. The windows PC died and my Syno was woefully weak on RAM… then I noticed Amazon’s free tier. Our live site is on AWS, so it was a match for me.

10$/month for a DO droplet isn’t much, but it is still 10$/month, and AWS’s complication kind of forced me to dig a bit deeper into what is going on behind.

• autoclean & autoremove after the upgrades
• I have always kept my plugins in place during transfers from a server to another. One less rebuild.
• Arubacloud’s 1€ VPS should fit the bill here, if 20GB SSD is sufficient. ScaleWay’s 2.99€/50GB is the next option.

That’s why I tried it too. Somehow I managed to create something that kept billing me even though all of my instances were shut down. I think it was an elastic IP, or maybe some kind of disk space.

Snapshots or volumes…

Do you use https on your main site? Because by not setting it up here for testing, and then uploading your entire backup unencrypted over http you exposed it to anyone in the way listening, including emails, password hashes, private messages etc.

What you should have done is created a self signed cert, used letsencrypt, or simply went over an ssh tunnel. All these would protect you.

You should probably edit your post so others don’t make the same mistake.

Could you give us a walk through how to do that, particularly the creation of a self signed cert?

AWS free tier isn’t really suitable for Discourse - there’s not enough RAM, and adding swap files will go very badly as soon as they start to get used due to the I/O restrictions on EBS.

It might be alright for a sandbox, but if you run anything memory intensive (like a migration or upgrade) then it might grind to a halt.

“For a sandbox” being the main point here. The free tier instance does indeed limit what you can expect the box to do in a reasonable time (I can say for a fact that a rebake on 1.8 million posts just isn’t going to work). But for someone trying to evaluate plugins, or CSS or such, a free sandbox is a good thing to have.

Agreed - if all you’re doing is messing with CSS then it’ll probably be fine, but if you’re installing plugins or updating using docker-manager there could be problems.

The issues we had didn’t just make things slow, they completely brought the OS to a standstill and we had to restart the server.

As you say - if it is just a sandbox then that’s not the end of the world, but worth being aware of.

有一点非常令人困惑：我们是否应该使用两个不同的域名？
一个是已经运行我们在线网站的域名。
另一个是用于安装这个“沙盒 Discourse 站点”的域名？（据我理解，Discourse 实例无法在 IP 地址上安装、运行和使用。）

另外，如果我们已经在在线网站上使用 S3 备份，是否需要先将这些备份下载到本地电脑，然后才能在此沙盒 Discourse 实例上使用或恢复？

是的，每个站点都需要有自己的完全限定域名（FQDN）。

您可以将预发布站点配置为使用相同的备份存储桶，这样它就可以直接从生产站点的备份进行恢复。

谢谢。

但我觉得最好还是将预发布站点的存储桶保持独立/全新。以免它（不知何故/误操作）覆盖了生产环境最新（也可能是唯一）的备份！

我的做法是在预发布站点关闭自动备份。你可以在 yml 文件中的环境变量里进行设置，这样就无法被更改。

能够直接将备份恢复到另一台服务器，而无需先移动文件，这一功能非常实用。

我很难相信，你竟然能在这个网站上花这么多时间帮助他人，而且持续了这么久。

一个人如何既能谋生、忠于自己的生活与家庭，又能如此高效地帮助他人？！

在我看来，这太难了。
我的朋友圈里的人（当我告诉他们时）也这么觉得。

我见过很多人在 Meta 和其他论坛上互相帮忙。
但多年来一直帮助每一个人，似乎并不容易。
你身上一定有什么特别之处。

附言：或者我在生活中错过了什么重要的东西。