Skip to main content

Apache Server

This chapter provides detailed instructions for deploying HAWKI on an apache web server.

Server Preparation

To prepare your server, ensure communication ports are properly configured. HAWKI deployment requires the HTTPS protocol, though testing locally or alternatives using HTTP are possible but not recommended. For local testing, refer to the "Getting Started" chapter.

For this guide, we'll assume port usage as follows:

  • HTTP: Port 80
  • HTTPS: Port 443

Ensure your server meets the following requirements to run Laravel/PHP applications:

  1. PHP version 8.2 or higher
  2. Required PHP Extensions:
- PHP >= 8.2
- Ctype PHP Extension
- cURL PHP Extension
- DOM PHP Extension
- Fileinfo PHP Extension
- Filter PHP Extension
- Hash PHP Extension
- Mbstring PHP Extension
- OpenSSL PHP Extension
- PCRE PHP Extension
- PDO PHP Extension
- Session PHP Extension
- Tokenizer PHP Extension
- XML PHP Extension

Ensure output buffering is enabled in your php.ini file by un-commenting:

output_buffering = 4096
or setting:
output_buffering = On

Additionally, verify that Node and Composer are installed on your machine.

You can use the HAWKI CLI to check if your system meets all requirements. Navigate to project root and run:

php hawki check

This command checks for:

  • PHP version (8.1+)
  • Composer
  • Node.js and npm
  • Required PHP extensions (mbstring, xml, pdo, curl, zip, json, fileinfo, openssl)

If any dependencies are missing, the command will provide installation instructions.

Project Deployment

  1. Copy the HAWKI project content to the desired webserver location, typically /var/www/html/hawki-project. This can be done via cloning the git repository or manually uploading files.

  2. Configure your server to use /var/www/html/hawki-project/public as the Document Root for port 443.

DocumentRoot /var/www/html/hawki-project/public
  • Optionally, redirect port 80 traffic to HTTPS:
Redirect permanent / https://yourDomain.com/
  1. Install dependency packages by navigating to the project root and executing:
composer install
npm install
npm run build

Please note that after changing some variables (for example some of the .env variables) you need to run npm run build again to update the build with these variables.

Or use the HAWKI CLI for a streamlined initialization:

php hawki init

Using php hawki init will:

  • Create .env file from .env.example
  • Set up required configuration files
  • Install Composer dependencies
  • Install npm packages
  • Create storage symlinks
  • Generate application keys and security salts

For a complete guided setup process, use:

php hawki init -all
  1. If using traditional methods, manually generate an application key:
php artisan key:generate

At this point, the project is transferred to the server, but you may encounter a Laravel error if the database connection is not configured.

Database

1- If not already installed, set up a preferred database. This documentation employs MySQL, but selection depends on your usage and specific requirements.

!!! Please ensure that your database has adequate security !!!

2- Create a new, empty database, such as HAWKI_DB.

3- Update the database connection settings in the .env file with:

DB_CONNECTION= mysql
DB_HOST= 127.0.0.1 #Database host IP
DB_PORT= 3306 #Database host port
DB_DATABASE= HAWKI_DB #Database name
DB_USERNAME= root #Database username
DB_PASSWORD= root #Database password

You can also use the HAWKI CLI to configure your database settings interactively:

php hawki setup -db

This interactive command will prompt you for database connection details with sensible defaults.

4-Run database migrations and seed data by navigating to the project directory and executing:

php artisan migrate
php artisan db:seed

Alternatively, use the HAWKI CLI:

php hawki migrate

For a fresh database (which will reset all data), use:

php hawki migrate --fresh

At this stage, the database tables should be set up and operational.

IMPORTANT: If instructions are not strictly followed, please do not forget to seed the databse before allowing any other users to join HAWKI. This will ensure that the AI Agent (HAWKI) is registered as a user on the database. If you want start a fresh database run:

php artisan migrate:fresh

Project Configuration

Edit the .env file within the root folder. Most variables can remain at their default values unless specific adjustments are required.

For comprehensive information on .env variables, refer to the dot env section of this documentation.

You can configure your environment using the HAWKI CLI interactive setup:

php hawki setup

This command will guide you through configuring all aspects of your HAWKI installation. Alternatively, you can configure specific sections:

php hawki setup -g    # General settings
php hawki setup -auth # Authentication settings
php hawki setup -reverb # Reverb settings

Setup Authentication Methods

in the .env file find AUTHENTICATION_METHOD variable. Currently HAWKI supports LDAP, OpenID, and Shibboleth authentication services. A built-in Test User Athentication for internal testing purposes is also available.

Set the variable to one of the following:

- AUTHENTICATION_METHOD="LDAP"
- AUTHENTICATION_METHOD="OIDC"
- AUTHENTICATION_METHOD="Shibboleth"

According to your authentication method set the necessary variables. For more information refer to the documentation in .env file.

Using HAWKI CLI, you can configure authentication settings with:

php hawki setup -auth

If you are using LDAP make sure the structure of the LDAP response is setup correctly on the HAWKI side. To do that first make sure the LDAP_ATTRIBUTES are set correctly and in the correct order: Username, Email Address, Employee Type, Name. By default HAWKI looks for the element zero/ variable name/ element zero ($info[0][$ldapAttr][0]). If for any reason the response from your LDAP server has a different structure, your can change this in /app/Services/Auth/LdapService.php.

Test User

To login using test users, set the authentication method to LDAP. In /storage/app/ locate test_users.json file and update it with your desired profiles as below:

[
    {
        "username": "tester",
        "password": "123",
        "name": "TheTester",
        "email": "tester@MyUni.de",
        "employeetype": "Tester",
        "avatar_id": ""
    },
    ...
]

Create Storage Link

To allow clients to read files from the storage folder, we need to create a symbolic link for the storage. Use the following command to create the symbolic link:

php artisan storage:link

You should be able to see the storage shortcut inside public folder.

Please note that after changing the sturcture of your files in the storage folder you may need to recreate the virtual link:

sudo rm -rf public/storage
php artisan storage:link

Setup Server Salts

For encryption purposes, HAWKI utilises individual salts for each component. Though not mandatory, unique hash keys are recommended:

VariableValue
USERDATA_ENCRYPTION_SALTbase64:RandomHash==
INVITATION_SALTbase64:RandomHash==
AI_CRYPTO_SALTbase64:RandomHash==
PASSKEY_SALTbase64:RandomHash==
BACKUP_SALTbase64:RandomHash==

Adding API Keys

Navigate to config folder. There you'll find model_providers.php.example. Also rename it to model_providers.php. Open the file and update the configuration as you need. HAWKI currently supports models from OpenAI, GWDG, and Google.

You can also use the HAWKI CLI to configure AI model providers interactively:

php hawki setup-models

This command will allow you to:

  • Activate or deactivate AI providers
  • Set API keys for each active provider
  • Configure the default model
  • Set models for system tasks (title generation, prompt improvement, etc.)

Alternatively, edit the configuration file manually:

    // The Default Model (use the id of one of model you wish)
    'defaultModel' => 'gpt-4o',

    // The model which generates the chat names.
    'titleGenerationModel' => 'gpt-4o-mini', 

    'providers' =>[
        'openai' => [
            'id' => 'openai',
            'active' => true, //set to false if you want to disable the provider
            'api_key' => ' ** YOUR SECRET API KEY ** ',
            'api_url' => 'https://api.openai.com/v1/chat/completions',
            'ping_url' => 'https://api.openai.com/v1/models',
            'models' => [
                [
                    'id' => 'gpt-4o',
                    'label' => 'OpenAI GPT 4o',
                    'streamable' => true,
                ],
                ...  
            ]
        ],
        ...
    ]

Broadcasting & Workers

HAWKI uses Laravel Reverb for real-time communication between client and server. In the .env file you simply need to set reverb variables:

REVERB_APP_ID=my-app-id
REVERB_APP_KEY=my-app-key
REVERB_APP_SECRET=my-app-secret

REVERB configuration defaults to port 8080. Use HTTPS for secure communication:

REVERB_SERVER_HOST=0.0.0.0
REVERB_SERVER_PORT=8080

However, to secure the communication between the client and the server you should use https protocol and port 443 for websocket as well. Set the variables to:

REVERB_HOST=yourDomain.com // set your domain without any prefixes
REVERB_PORT=443
REVERB_SCHEME=https //reverb scheme must be set to https instead of http.

also add the path the SSL certificate chain and key path:

SSL_CERTIFICATE=""
SSL_CERTIFICATE_KEY=""

rebuild the node packages to update the config variables:

npm run build

Ensure Port 8080 is blocked by the server firewall. Establish a reverse proxy for communication redirection. first make sure the proxy modules are activated:

sudo a2enmod proxy
sudo a2enmod proxy_http
sudo a2enmod proxy_wstunnel

open the configuration file, normally located at: /etc/apache2/sites-available/hawki-ssl.com.conf. Add the following to the configuration:

# Specific WebSocket Proxy
ProxyPass /app ws://localhost:8080/app
ProxyPassReverse /app ws://localhost:8080/app

ProxyPass /apps ws://localhost:8080/apps
ProxyPassReverse /apps ws://localhost:8080/apps

restart apache server:

sudo service apache2 restart

At this step if you run

php artisan reverb:start

With php artisan reverb:start, clients can connect to Reverb-created group chat channels.

You can also use the HAWKI CLI to clear all Laravel caches (which may be necessary after configuration changes):

php hawki clear-cache

This clears:

  • Configuration cache
  • Application cache
  • View cache
  • Route cache
  • Event cache
  • Compiled files

Preparing workers to broadcast messages follows.

Services

Before broadcasting messages to users, each message is queued on the server and laravel workers. In order to automate the reverb broadcasting and laravel workers we need to create extra services in your linux server. If reverb is already running from the previous step, stop it before continuing.

  1. Navigate to /etc/systemd/system. You will find the list of linux services.

  2. Create a new file for reverb and call it reverb.service. Insert this content:

Don't forget to update paths: /var/www/html/hawki-project

[Unit]
Description=Reverb WebSocket Server
After=network.target

[Service]
User=www-data
Group=www-data
WorkingDirectory=/var/www/html/hawki-project
ExecStart=/usr/bin/php /var/www/html/hawki-project/artisan reverb:start
Restart=always
TimeoutSec=300
LimitNOFILE=4096

[Install]
WantedBy=multi-user.target

  1. Create a new file for workers and call it "laravel-worker.service". Insert this content:

Don't forget to update paths: /var/www/html/hawki-project

[Unit]
Description=Laravel Worker Service
After=network.target

[Service]
User=www-data
Group=www-data
WorkingDirectory=/var/www/html/hawki-project
ExecStart=/usr/bin/php /var/www/html/hawki-project/artisan queue:work --queue=default,mails,message_broadcast --tries=3 --timeout=90

Restart=always
RestartSec=5
TimeoutSec=300
LimitNOFILE=4096

ExecStartPost=/usr/bin/php /var/www/html/hawki-project/artisan queue:restart

StandardOutput=append:/var/www/html/hawki-project/storage/logs/worker.log
StandardError=append:/var/www/html/hawki-project/storage/logs/worker-error.log

[Install]
WantedBy=multi-user.target

4- Reload Systemd Manager Configuration

sudo systemctl daemon-reload

5- Enable services:

sudo systemctl enable reverb.service
sudo systemctl enable laravel-worker.service

6- Start the Services:

sudo systemctl start reverb.service
sudo systemctl start laravel-worker.service

7-Check Status (to ensure they started correctly):

sudo systemctl status reverb.service
sudo systemctl status laravel-worker.service

Now that workers are running the queued messages should be successfully broadcasted to the users.

Updating to V2.0.1

If you have already implemented HAWKI 2.0 on your machine, there are a few steps needed to update to version 2.0.1.

1- As usual, update the project content.

2- Set the updated .env variables:

  • BROADCAST_DRIVER: Similar to BROADCAST_CONNECTION, the BROADCAST_DRIVER is set to utilize reverb as the broadcasting backend mechanism.

  • ALLOW_USER_TOKEN_CREATION: In the new update, the admin can decide whether users are allowed to create API tokens for external communication. You can set ALLOW_EXTERNAL_COMMUNICATION to true to allow API communication but restrict key generation by setting ALLOW_USER_TOKEN_CREATION accordingly. This setup ensures that tokens can only be created by the server admin using the HAWKI CLI with the command php hawki create-token. For more information, refer to the HAWKI CLI Section.

3- If you are using custom icons different from the ones included in the project, move the icons folder from resources/views/icons to /resources/icons and change the file formats from .blade.php to .svg. Otherwise, you can skip this step and use the icons included in the 2.0.1 project.

4- Reinstall Composer and Node packages.
The new packages include:

  • blade-ui-kit: This Composer component enhances icon management. As mentioned previously, this library is responsible for loading project icons in the GUI. It also ensures that the component library does not conflict with other libraries that are or will be used in the project.

  • HAWKI CLI: This custom CLI facilitates frequently used commands for the installation and maintenance of HAWKI. For more information, refer to the HAWKI CLI Section.

  • Pako: The new data-flow of the message broadcasting mechanism includes a compression step, where broadcasting data is compressed on the server side using gzencode and decompressed using Pako on the client side. With this broadcasting system, HAWKI can broadcast larger data packets, such as Google search results generated by Gemini in chat rooms.

To install the packages, run:

composer install
npm install
npm run build

5- Migrate the database tables.

In this version, new attributes have been added to the database:

  • isRemoved: This attribute is added to the users and members tables. It allows the server to detect if a user profile has been removed. However, after profile removal, shared data such as group memberships and group messages remain connected to the profile, ensuring the integrity and consistency of room messages even if a member is no longer available.

  • Completion: This property is added in AI-generated conversation messages (private messages). It flags the completion of a message generated by an AI model. If the generation is interrupted (e.g., due to lost connection or aborted generation), the message will be flagged as incomplete.

  • API Type: This type is added to usage record types. It is used when a message generation request is sent from an external service via the API endpoint.

Finally, remove all cached data from the server to ensure updates are applied correctly:

php artisan config:clear
php artisan cache:clear
php artisan route:clear
php artisan view:clear

At this point, the new version should be ready and running on your machine.

FAQs

1. Config updates are not applied to the project.

By default laravel caches every configuration in the project. Don't forget to clear the cached data after each adjustment. for example by using:

php artisan config:clear
php artisan cache:clear
php artisan route:clear
php artisan view:clear

2. Styles or Javascript updates are not applied

If the styles in browser seem incorrect or the changes are not visible on a live server, the issue may be due to the cached style or scripts in your browser. Try to hard reload or empty browser cache and reload. Some changes in javascript may be also cached in view caches. Use php artisan view:clear to clear the cache.

3. "Failed to fetch Server Salt"

Clear Config and cache:

php artisan config:clear
php artisan cache:clear

4. Vite Packages are not loaded. (md is not defined)

Make sure node packages are built npm run build. If the problem perists, locate and remove "hot" file in the public folder.

5.Database is created but throws error when trying to migrate

  • double check your username and password.
  • make sure the database name and the .env variable are identic and there are no typos.