Login

Install on Linux Natively

Using systemd and rsyslog to provide reliable service

Operating System Compatibility

This guide is written with RHEL or Amazon Linux 2 in mind. If you are running a different distribution of Linux, steps may vary.

This guide walks through installing GRAX from scratch natively on a Linux operating system. It configures a service to automatically restart GRAX if it fails, and creates a rsyslog helper service to copy logs from stdout to a log retention file. Optional steps as take-home exercises include log rotation, and syslog streaming. If you do not have infrastructure set up to run GRAX, see our technical specifications and architecture guides for more information first.

WARNING:

Never set up a publicly accessible instance of the GRAX app without modifying the ADMIN_PASSWORD in the configuration away from these examples

Installation Steps

Before you begin the steps below, many of them require root access. Start by logging in as root, or elevating your session to a point where you have sudo capabilities.

Download and Expand GRAX Executable

To download the GRAX app, simply request it from GRAX HQ:

$ curl https://hq.grax.com/api/v2/download/graxinc/grax/master -L --output grax.zip

  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100    67  100    67    0     0    740      0 --:--:-- --:--:-- --:--:--   797
100 47.5M    0 47.5M    0     0  5738k      0 --:--:--  0:00:08 --:--:-- 7915k

GRAX HQ serves this download as a gzipped tar, meaning you need to expand it to get the contained binaries:

$ unzip grax.zip

Archive:  grax.zip
  inflating: github_event.json
  inflating: grax
  inflating: graxctl

Mark the resultant files executable for later use:

$ chmod +x grax graxctl

[no output expected]

Create a Configuration File

Create a configuration file with a valid key=value list. The GRAX app loads configuration values from the environment at time of boot; to use this configuration, the values must be loaded into the execution environment prior to calling the GRAX binary. Normally, this is done via the EnvironmentFile argument of a systemd service configuration. As a result of using such a tool to load the file into the environment, the name and location of this file is arbitrary. We specify a .env file located in the app directory as an example below.

The configuration file includes your server's public domain name (WEB_APP_URL). In some cases, this domain name is of the format https://grax.department.customer.com, but can be decided by your networking team. The app's port is also adjustable via ADDR, but keep in mind that a change here may result in necessary changes in your load balancers, security groups, and/or monitoring.

Generate a secure random value for each of the values marked [GENERATE] below. A length of at least 30 characters each is recommended. You can generate such a value with openssl rand -base64 48 | tr "+/" "-_" | tr -d = in most Linux distributions.

$ vim .env

ADDR=:8000
GRAX_TEMPLATE_VERSION=aws-sm:1.0.0
DATABASE_URL=postgres://username:[email protected]:5432/database-name
WEB_APP_URL=https://grax.department.customer.com
SECRET_STORE_BASE=[GENERATE]
ADMIN_PASSWORD=[GENERATE]
GRAX_REGISTRATION_KEY=[FROM https://platform.grax.com OR GRAX SUPPORT]

If your disk configuration dictates that GRAX cache data in a location other than your OS-default TMPDIR (usually /tmp), you can override that value by adding TMPDIR=/new/path to the above. For more information, see here.

Create a GRAX Service Configuration

Use systemd to ensure GRAX stays running as a background service. Ensure you replace the paths in this configuration with the proper paths to the executable and environment files created above:

$ vim /lib/systemd/system/grax.service

[Install]
WantedBy=multi-user.target
[Service]
EnvironmentFile=/home/ec2-user/.env
ExecStart=/home/ec2-user/grax
Restart=always
Type=simple
[Unit]
Description=grax daemon

Start all the Services in Order

To start everything in the proper order, run the systemctl commands like this:

$ systemctl daemon-reload && systemctl restart rsyslog.service && systemctl enable grax.service && systemctl restart grax.service && journalctl -f -u grax.service

[json structured logs streaming here]

The services should now be online.

Next Steps

To proceed with connecting GRAX to Salesforce and your storage platform of choice, start with our connection documentation.

Updated 3 days ago