Standalone installation
Run the Pelican Panel directly on a web server.
You should have some basic familiarity with Linux before you proceed!
Requirements
Operating System (OS)
The Panel runs on a wide range of operating systems, so pick whichever you are most comfortable using.
This documentation assumes a Debian-based OS with apt.
SQLite support depends on libsqlite3-0_3.35+ being on the host system.
OS's that do not support SQLite include: Debian 11, Alma Linux 8 or 9, Rocky Linux 8 or 9.
Dependencies
For the Panel you need to install PHP 8.5 (recommended), 8.4, 8.3 or 8.2, with the following extensions:
gd, mysql, mbstring, bcmath, xml, curl, zip, intl, sqlite3 and fpm.
You will also need a web server. Currently, Apache, NGINX or Caddy are supported.
If you want to use MySQL, MariaDB or PostgreSQL for the panel database make sure to install either MySQL 8+, MariaDB 10.6+ or PostgreSQL 14+. (both client and server!)
Finally, for some commands during the installation you need curl, tar and unzip.
Please make sure you installed all needed dependencies before continuing!
Download Panel files
The first step in this process is to create the folder where the panel will live and then move ourselves into that newly created folder.
sudo mkdir -p /var/www/pelican
cd /var/www/pelican
Once you have created a new directory to use and moved into it, you'll need to download the Panel files.
This is as simple as using curl to download the latest release.
curl -L https://github.com/pelican-dev/panel/releases/latest/download/panel.tar.gz | sudo tar -xzv
Install Composer
Next we will set up Composer along with the required dependencies.
curl -sS https://getcomposer.org/installer | sudo php -- --install-dir=/usr/local/bin --filename=composer
sudo COMPOSER_ALLOW_SUPERUSER=1 composer install --no-dev --optimize-autoloader
Even though composer might tell you that you have outdated dependencies, do not run composer update!
Web server Configuration
When using the SSL (https) configuration you MUST create SSL certificates, otherwise your web server will fail to start. See the Creating SSL Certificates documentation page to learn how to create these certificates before continuing.
- Nginx
- Apache
- Caddy
If you're not using php8.5, you will need to edit the config file to point to the proper php fpm socket.
The line is highlighted below.
First, remove the default NGINX configuration.
sudo rm /etc/nginx/sites-enabled/default
Now, you should paste the contents of the file below, replacing <domain> with your domain or IP being used in a file called
pelican.conf and place the file in /etc/nginx/sites-available/.
- https
- http
Note: IPs cannot be used with SSL.
server_tokens off;
server {
listen 80;
server_name <domain>;
return 301 https://$server_name$request_uri;
}
server {
listen 443 ssl http2;
server_name <domain>;
root /var/www/pelican/public;
index index.php;
access_log /var/log/nginx/pelican.app-access.log;
error_log /var/log/nginx/pelican.app-error.log error;
# allow larger file uploads and longer script runtimes
client_max_body_size 100m;
client_body_timeout 120s;
sendfile off;
ssl_certificate /etc/letsencrypt/live/<domain>/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/<domain>/privkey.pem;
ssl_session_cache shared:SSL:10m;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384";
ssl_prefer_server_ciphers on;
# See https://hstspreload.org/ before uncommenting the line below.
# add_header Strict-Transport-Security "max-age=15768000; preload;";
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header X-Robots-Tag none;
add_header Content-Security-Policy "frame-ancestors 'self'";
add_header X-Frame-Options DENY;
add_header Referrer-Policy same-origin;
location / {
try_files $uri $uri/ /index.php?$query_string;
}
location ~ \.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/run/php/php8.5-fpm.sock;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param HTTP_PROXY "";
fastcgi_intercept_errors off;
fastcgi_buffer_size 16k;
fastcgi_buffers 4 16k;
fastcgi_connect_timeout 300;
fastcgi_send_timeout 300;
fastcgi_read_timeout 300;
include /etc/nginx/fastcgi_params;
}
location ~ /\.ht {
deny all;
}
}
server {
listen 80;
server_name <domain>;
root /var/www/pelican/public;
index index.html index.htm index.php;
charset utf-8;
location / {
try_files $uri $uri/ /index.php?$query_string;
}
location = /favicon.ico { access_log off; log_not_found off; }
location = /robots.txt { access_log off; log_not_found off; }
access_log off;
error_log /var/log/nginx/pelican.app-error.log error;
# allow larger file uploads and longer script runtimes
client_max_body_size 100m;
client_body_timeout 120s;
sendfile off;
location ~ \.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/run/php/php8.5-fpm.sock;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param HTTP_PROXY "";
fastcgi_intercept_errors off;
fastcgi_buffer_size 16k;
fastcgi_buffers 4 16k;
fastcgi_connect_timeout 300;
fastcgi_send_timeout 300;
fastcgi_read_timeout 300;
}
location ~ /\.ht {
deny all;
}
}
Enabling Configuration
The final step is to enable your NGINX configuration and restart it.
sudo ln -s /etc/nginx/sites-available/pelican.conf /etc/nginx/sites-enabled/pelican.conf
You need to restart nginx to load the new config file.
sudo systemctl restart nginx
First, remove the default Apache configuration.
a2dissite 000-default default-ssl 000-default-le-ssl
Now, you should paste the contents of the file below, replacing <domain> with your domain name being used in a file called
pelican.conf and place the file in /etc/apache2/sites-available/.
Note: When using Apache, make sure you have the libapache2-mod-php package installed or else PHP will not display on your web server.
- https
- http
Note: IPs cannot be used with SSL.
<VirtualHost *:80>
ServerName <domain>
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
</VirtualHost>
<VirtualHost *:443>
ServerName <domain>
DocumentRoot "/var/www/pelican/public"
AllowEncodedSlashes On
php_value upload_max_filesize 100M
php_value post_max_size 100M
<Directory "/var/www/pelican/public">
Require all granted
AllowOverride all
</Directory>
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/<domain>/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/<domain>/privkey.pem
</VirtualHost>
<VirtualHost *:80>
ServerName <domain>
DocumentRoot "/var/www/pelican/public"
AllowEncodedSlashes On
php_value upload_max_filesize 100M
php_value post_max_size 100M
<Directory "/var/www/pelican/public">
AllowOverride all
Require all granted
</Directory>
</VirtualHost>
Enabling Configuration
Once you've created the file above, simply run the commands below.
If you're not using php8.5, you will need to edit the command to point to enable the correct mod.
The line is highlighted below.
sudo a2ensite pelican.conf
sudo a2enmod rewrite
sudo a2enmod php8.5
You need to restart apache to load the new config file.
sudo systemctl restart apache2
If you're not using php8.5, you will need to edit the config file to point to the proper php fpm socket.
The line is highlighted below.
First, remove the default Caddy configuration.
sudo rm /etc/caddy/Caddyfile
The config file path is /etc/caddy/.
- https
- http
Note: IPs cannot be used with SSL.
{
servers :443 {
timeouts {
read_body 120s
}
}
}
<domain> {
root * /var/www/pelican/public
file_server
php_fastcgi unix//run/php/php8.5-fpm.sock {
root /var/www/pelican/public
index index.php
env PHP_VALUE "upload_max_filesize = 100M
post_max_size = 100M"
env HTTP_PROXY ""
env HTTPS "on"
read_timeout 300s
dial_timeout 300s
write_timeout 300s
}
header Strict-Transport-Security "max-age=16768000; preload;"
header X-Content-Type-Options "nosniff"
header X-XSS-Protection "1; mode=block;"
header X-Robots-Tag "none"
header Content-Security-Policy "frame-ancestors 'self'"
header X-Frame-Options "DENY"
header Referrer-Policy "same-origin"
request_body {
max_size 100m
}
respond /.ht* 403
log {
output file /var/log/caddy/pelican.log {
roll_size 100MiB
roll_keep_for 7d
}
level INFO
}
}
{
servers :80 {
timeouts {
read_body 120s
}
}
}
<domain>:80 {
root * /var/www/pelican/public
file_server
php_fastcgi unix//run/php/php8.5-fpm.sock {
root /var/www/pelican/public
index index.php
env PHP_VALUE "upload_max_filesize = 100M
post_max_size = 100M"
env HTTP_PROXY ""
read_timeout 300s
dial_timeout 300s
write_timeout 300s
}
header Strict-Transport-Security "max-age=16768000; preload;"
header X-Content-Type-Options "nosniff"
header X-XSS-Protection "1; mode=block;"
header X-Robots-Tag "none"
header Content-Security-Policy "frame-ancestors 'self'"
header X-Frame-Options "DENY"
header Referrer-Policy "same-origin"
request_body {
max_size 100m
}
respond /.ht* 403
log {
output file /var/log/caddy/pelican.log {
roll_size 100MiB
roll_keep_for 7d
}
level INFO
}
}
Enabling Configuration
The final step is to restart Caddy.
sudo systemctl restart caddy
Panel Setup
The core environment is easily configured using a single CLI command & the web installer built into the app.
These steps will cover setting up things such as sessions, caching, database credentials, and email sending.
Running php artisan p:environment:setup will, if it does not exist, auto-create the required .env file and generate a APP_KEY.
sudo php artisan p:environment:setup
APP_KEY!Back up your encryption key (APP_KEY in the .env file). This is used as an encryption key for all data that needs to be stored securely (e.g. api keys).
Store it somewhere safe - not just on your server. If you lose it all encrypted data is irrecoverable -- even if you have database backups.
Setting Permissions
The next step in the installation process is to set the correct permissions on the Panel files so that the web server can use them correctly.
sudo chmod -R 755 storage/* bootstrap/cache/
- NGINX/Apache/Caddy
- Rocky Linux NGINX
- Rocky Linux Apache
sudo chown -R www-data:www-data /var/www/pelican
sudo chown -R nginx:nginx /var/www/pelican
sudo chown -R apache:apache /var/www/pelican
Web Installer
Once you've set the proper permissions, finish the Panel install via the web installer.
The web installer is located at <domain>/installer or <ip>/installer, e.g. https://panel.example.com/installer
During this step you will choose the default drivers, create the queue worker and create the default admin user.
Make sure to read the MySQL guide first if you want to use MySQL/MariaDB instead of SQLite!
If you want to use Redis make sure to read the Redis guide first.