Edit on GitHub

Push Notification Service

Install the Mattermost Push Notification Service

Now that the app can receive push notifications, we need to make sure that the Mattermost Push Notification Service is able to send the notification to the device. This guide will focus on installing and configuring the push notification service.

Requirements

A linux box server with at least 1GB of memory.
A copy of the Mattermost Push Notification Service.
Custom Android and/or iOS Mattermost mobile apps.
Private and public keys obtained from the Apple Developer Program.
A Firebase Cloud Messaging Server key obtained from the Firebase Console.

Installing & Upgrading

For the sake of making this guide simple we located the files at /home/ubuntu/mattermost-push-proxy. We’ve also elected to run the Push Notification Service as the ubuntu account for simplicity. We recommend setting up and running the service under a mattermost-push-proxy user account with limited permissions.

Download the Mattermost Push Notification Service (any version): wget https://github.com/mattermost/mattermost-push-proxy/releases/download/vX.X.X/mattermost-push-proxy-X.X.X.tar.gz

in the previous command vX.X.X refers to the release version you want to download, see Mattermost Push Notification Service releases.
If you are upgrading a previous version of the Mattermost Push Notification Service make sure to backup your mattermost-push-proxy.json file before continuing.
Unzip the downloaded Mattermost Push Notification Service by typing: tar -xvzf mattermost-push-proxy-X.X.X.tar.gz
Configure the Mattermost Push Notification service by editing the mattermost-push-proxy.json file at /home/ubuntu/mattermost-push-proxy/config. Follow the steps in the Android and iOS sections to replace the values in the config file.
Setup the Mattermost Push Notification Services to use the Upstart daemon which handles supervision of the Push Service process
- sudo touch /etc/init/mattermost-push-proxy.conf
- sudo vi /etc/init/mattermost-push-proxy.conf
- Copy the following lines into /etc/init/mattermost-push-proxy.conf
```
start on runlevel [2345]
stop on runlevel [016]
respawn
chdir /home/ubuntu/mattermost-push-proxy
setuid ubuntu
console log
exec bin/mattermost-push-proxy | logger
```
Start the process with sudo start mattermost-push-proxy or if the process is already running with sudo restart mattermost-push-proxy.

Set Up Mattermost Push Notification Service to Send Android Push Notifications

Go to the Firebase Console and select the project you’ve created. Once in the dashboard, go to the project settings and select CLOUD MESSAGING.
Look for the value of the Server Key and copy it.
Open the mattermost-push-proxy.json file in the mattermost-push-proxy/config directory and paste the value for the “AndroidApiKey” setting

Set up Mattermost Push Notification Service to Send iOS Push Notifications

Double click the Distribution Certificate generated while Setup Push Notifications for iOS to add it to your Keychain Access. Go to Keychain Access, select the login keychain and My Certificates from the side menu.
Find the certificate you imported and then right click to export it as a .p12 file
Enter a name for the filename and click Save
Leave the password blank and then click OK

Convert the downloaded certificate to .pem

\$ openssl x509 -in aps.cer -inform DER -out aps_production.pem

Extract the private key from the certificate you exported ..

\$ openssl pkcs12 -in Certificates.p12 -out aps_production_priv.pem -nodes -clcerts -passin pass:

Verify the certificate works with apple

\$ openssl s_client -connect gateway.push.apple.com:2195 -cert aps_production.pem -key aps_production_priv.pem

Copy the private key file aps_production_priv.pem into your mattermost-push-proxy/config directory
Open the mattermost-push-proxy.json file under the mattermost-push-proxy/config directory and add the path to the private key file as the value for “ApplePushCertPrivate” and the value for “ApplePushTopic” with your Bundle Identifier

Configure the Mattermost Server to use the Mattermost Push Notification Service

In you Mattermost instance, enable mobile push notifications.
- Go to System Console > Notifications > Mobile Push.
- Under Send Push Notifications, select Manually enter Push Notification Service location.
- Enter the location of your Mattermost Push Notification Service in the Push Notification Server field.

(Optional) Customize mobile push notification contents.
- Go to System Console > Notifications > Mobile Push.
- Select an option for Push Notification Contents to specify what type of information to include in the push notifications.
- Most deployments choose to include the full message snippet in push notifications unless they have policies against it to protect confidential information.

Finally, start your Mattermost Push Notification Service, and your app should start receiving push notifications.

Test the Mattermost Push Notification Service

Verify that the server is functioning normally and test the push notification using curl: curl http://127.0.0.1:8066/api/v1/send_push -X POST -H "Content-Type: application/json" -d '{"message": "test", "badge": 1, "platform: "PLATFORM", "server_id": "MATTERMOST_DIAG_ID", "device_id": "DEVICE_ID}'
- Replace MATTERMOST_DIAG_ID with the value found by running the SQL query: SELECT * FROM Systems WHERE Name = 'DiagnosticId';
- Replace DEVICE_ID with your device ID, which can be found using:
```
SELECT
   Email, DeviceId
FROM
   Sessions,
   Users
WHERE
   Sessions.UserId = Users.Id
      AND DeviceId != ''
      AND Email = 'test@example.com'
```
```
Remove the `apple:`, `apple_rn`, `android:` or `android_rn:` prefix from your device ID before replacing `DEVICE_ID`. Use that prefix as the `PLATFORM` (make sure to remove the ":").
```
You can also verify push notifications are working by opening your Mattermost site and mentioning a user who has push notifications enabled in Account Settings > Notifications > Mobile Push Notifications.

To view the log file, use:

$ sudo tail -n 1000 /var/log/upstart/mattermost-push-proxy.log

Troubleshooting

High Sierra Apple Developer Keys Steps - follow these instructions if you run into an error like below:

2018/04/13 12:39:24 CRIT Failed to load the apple pem cert err=failed to parse PKCS1 private key for type=apple_rn
panic: Failed to load the apple pem cert err=failed to parse PKCS1 private key for type=apple_rn

Follow the directions at developer.apple.com to generate an Apple Push Notification service SSL Certificate, this should give you an aps_production.cer
Convert the certificate format to .pem:
- openssl x509 -in aps.cer -inform DER -out aps_production.pem
Double click aps_production.cer to install it into the keychain tool
Right click the private cert in keychain access and export to .p12
Extract the private key from the certificate into an intermediate state:
- openssl pkcs12 -in Certificates.p12 -out intermediate.pem -nodes -clcerts
Generate an intermediate RSA private key
- openssl rsa -in intermediate.pem -out intermediate_rsa_priv.pem
Remove the private key information from intermediate.pem
- sed -i '/^-----BEGIN PRIVATE KEY-----$/,$d' intermediate.pem
Combine intermediate.pem and intermediate_rsa_priv.pem to create a valid bundle
- cat intermediate.pem intermediate_rsa_priv.pem >> aps_production_priv.pem && rm intermediate.pem intermediate_rsa_priv.pem
Verifying the certificate works with apple:
- openssl s_client -connect gateway.push.apple.com:2195 -cert aps_production.pem -key aps_production_priv.pem

Reporting issues

For issues with repro steps, please report to https://github.com/mattermost/mattermost-server/issues