Mar 07 2013

Setting Up RavenDB as IIS Website

Categories: RavenDB

Over the past year, I’ve gotten to know RavenDB which is an excellent NoSQL document database product from Hibernating Rhinos.  It’s an open source project built in .NET that fits in well with .NET technologies like LINQ.  I love the process of taking my domain objects and simply dumping them into a database and being able to retrieve them with very little effort.  The programming experience is excellent.

But since this is new to most people (and organizations), getting started setting up a RavenDB server to connect to can be a little challenging getting everything right, especially if you don’t have the infrastructure support of IIS experts and/or DBAs.  This post shows step-by-step instructions on how to set up RavenDB on an IIS 7.x system.  These instructions have worked well for me and make the following assumptions:

  • You want to use IIS to host RavenDB (you can also embed it or use Windows Services – I won’t talk about that right now).
  • You want to use HTTPS as your transport protocol.
  • You want to use integrated Windows security to authorize users to access your DB.

Here’s what you should do to achieve this (this is for version 2.0 of RavenDB, build 2261 or higher):

  1. Ensure you have the following software installed on your server:
    1. IIS 7.5
    2. .NET Framework 4.0 – it might not be installed if you are on Windows Server 2008 (it shipped with 3.5 SP1)
    3. Get the .zip of the latest stable RavenDB build (or an unstable build if you wish).  Unzip to a directory on the server.  The sub-directory /Web is where the web site will run from.  I put this on same disk as the Raven Data directory.
  2. Install Windows Authentication service.
    1. Server Manager –> Roles –> Web Server, then click on Add Role Services link.
    2. Check “Windows Authentication” and then continue.
  3. Setup proper DNS to point to your server’s IP address (this is probably already done).
  4. If you are behind a corporate firewall, have them open port 8080 (or whatever port you are using).  You probably want it open to your entire subnet including a VPN IP range if you have that.
  5. Obtain and install an SSL certificate for the domain for the machine.
  6. Create a new application pool for the web site.
    1. Set it to use .NET 4.0 and Integrated Pipeline.
    2. Give it a name such as “RavenAppPool”
  7. Disable overlapped recycle on the app pool.  Raven doesn’t want multiple instances attempting to write to its files.
    1. On the app pool you just created –> Advanced Settings –> Disable Overlapped Recycle set to True.
  8. Set the app pool so that IIS never shuts it down.  You want your DB up at all times.
    1. The setting for this can’t be applied in the GUI for IIS 7.5.
    2. Find C:\Windows\System32\inetsrv\config\applicationHost.config and open it.  Make a backup copy.
    3. Find the app pool entry for the app pool you created for Raven.
    4. Add the attribute startMode=”AlwaysRunning” to it and save the file.
  9. Create a new website or set Default Web Site.
    1. Right click Sites under Web Server and choose Add New Site.
    2. Set site name to “RavenDB” or whatever you want.
    3. Set the app pool to the RavenAppPool you created in step 6.
    4. Set the physical path to the /Web folder of the RavenDB install.
    5. Set HTTP binding if not already.
    6. Uncheck start web site immediately.
    7. Click OK.
  10. Create a RavenDB user group.  This is a Windows group that represents the users that can login to RavenDB.
    1. Server Manager –> Configuration –> Local Users and Groups…
    2. Right-click on Groups folder, select New Group…
    3. Give group a name and description ("RavenDB”)
    4. Click OK.
  11. If you are connecting with an application, create a new user now for the proxy account that will use this database.  This user should belong to the \RavenDB group you just created.  You should also create any DBA or developer accounts now and give them this group as well.
  12. Turn on Require SSL for the website.
  13. Configure where Indexes and Data directories are.  You should have two different disks for best parallel I/O – one for the Indexes and one for the Data.
    1. Open the web.config file in the /Web folder of the RavenDB install.
    2. In <appSettings>, add a setting for data path - <add key=”Raven/DataDir” value=”[your path here]” />
    3. Also add a setting for indexes - <add key=”Raven/IndexStoragePath” value=”[your path here]” />
  14. Start the web site.
  15. In a web browser with Silverlight plugin installed, navigate to https://[yoursitedomain]:[port]/ to make sure the Management Studio opens.  If it works, you know that RavenDB started, created the default database and that your website is serving data correctly over HTTPS and your firewall rules are correct.
  16. Turn on Windows Authentication
    1. Click on RavenDB web site just created.
    2. Select Authentication from IIS categories.
    3. Click on Windows Authentication from the list and click Enable link  on the actions panel.
    4. Turn off anonymous access in Raven:  open its web.config file and add the following setting to the <appSettings> section - <add key=”Raven/AnonymousAccess” value=”None” />
  17. Configure Raven to only allow that specific Windows group you created earlier.
    1. In Raven Management studio, click on the databases link at the top right. 
    2. Click on the <system> database button on the right.  It will warn you about modifying the system database, just click OK.
    3. Now click the “gear” icon at the top next to the <system> database name to open the settings for the db.
    4. Select Windows Authentication from the left pane.
    5. On the Groups tab, click Add Group Settings.
    6. In the Name text box, add the name of your windows group preceded by a slash (“\RavenDB”).
    7. Check Enabled.
    8. Add the specific databases to the group (such as the default database or a specific tenant you may have created).
    9. Click Save Changes button to complete.
  18. Open Management Studio again.  You should be prompted by your browser for a username and password.

These instructions will create you a running RavenDB instance in IIS that has HTTPS transport security, Windows security, and does not allow anonymous access.  It also configured where indexes and data are written to and made sure IIS doesn’t recycle your process or start two of them at once.

The official documentation can also help you out if you are having any trouble:  http://ravendb.net/docs/2.0/server/deployment/as-iis-application

No Comments