Compare View
Commits (3)
Showing
8 changed files
Show diff stats
Rakefile
| ... | ... | @@ -34,8 +34,6 @@ if $SPB_ENV == 'lxc' |
| 34 | 34 | exit |
| 35 | 35 | end |
| 36 | 36 | config = YAML.load_file('config/local/config.yaml') |
| 37 | - config['external_ip'] = ips['reverseproxy'] | |
| 38 | - config['relay_ip'] = ips['email'] | |
| 39 | 37 | File.open(config_file, 'w') do |f| |
| 40 | 38 | f.puts(YAML.dump(config)) |
| 41 | 39 | end |
| ... | ... | @@ -155,7 +153,7 @@ task :preconfig => ssh_config_file do |
| 155 | 153 | puts "I: delete #{preconfig_file} to force running again" |
| 156 | 154 | else |
| 157 | 155 | sh 'scp', '-F', ssh_config_file, 'utils/reverseproxy_ssh_setup', 'reverseproxy.unconfigured:/tmp' |
| 158 | - sh 'ssh', '-F', ssh_config_file, 'reverseproxy.unconfigured', 'sudo', '/tmp/reverseproxy_ssh_setup', $ALT_SSH_PORT.to_s, ips['reverseproxy'], ips['integration'] | |
| 156 | + sh 'ssh', '-F', ssh_config_file, 'reverseproxy.unconfigured', 'sudo', '/tmp/reverseproxy_ssh_setup', $ALT_SSH_PORT.to_s, config['external_ip'], ips['integration'] | |
| 159 | 157 | |
| 160 | 158 | File.open(preconfig_file, 'w') do |f| |
| 161 | 159 | f.puts($ALT_SSH_PORT) | ... | ... |
config/prod/ips.yaml
| ... | ... | @@ -0,0 +1,90 @@ |
| 1 | +# This is a sample of config.yaml file. Make the changes according to your | |
| 2 | +# environment. | |
| 3 | + | |
| 4 | +# Valid RPM repository and gpgkey links of SoftwarePublico packages | |
| 5 | +# Default: "https://copr-be.cloud.fedoraproject.org/results/softwarepublico/v5/epel-7-$basearch/" | |
| 6 | +# "https://copr-be.cloud.fedoraproject.org/results/softwarepublico/v5/pubkey.gpg" | |
| 7 | +# | |
| 8 | +#rpm_repository: <RPM REPO> | |
| 9 | +#rpm_gpgkey: <RPM REPO GPG KEY> | |
| 10 | + | |
| 11 | +# Users admins for the environment | |
| 12 | +admins: | |
| 13 | + - ["USER NAME", "USER EMAIL"] | |
| 14 | + | |
| 15 | +# External domain name for Softwarepublico | |
| 16 | +# Example: | |
| 17 | +# site_url: https://softwarepublico.gov.br | |
| 18 | +# external_hostname: softwarepublico.gov.br | |
| 19 | +site_url: https://<SOFTWAREPUBLICO DOMAIN> | |
| 20 | +external_hostname: <SOFTWAREPUBLICO DOMAIN> | |
| 21 | + | |
| 22 | +# External domain for monitoring server | |
| 23 | +# Default: "status.sofwarepublico" | |
| 24 | +# | |
| 25 | +# This is for a production environment. You don't really needs that for | |
| 26 | +# development or test environments. | |
| 27 | +# | |
| 28 | +#monitor_external_hostname: <SOFTWAREPUBLICO STATUS DOMAIN> | |
| 29 | + | |
| 30 | +# Munin master private IP addr | |
| 31 | +# | |
| 32 | +# This also is used for production environment purposes | |
| 33 | +munin_master: <IP ADDR> | |
| 34 | + | |
| 35 | +# Raven dsn key for sentry | |
| 36 | +raven_dsn: <URL SENTRY KEY> | |
| 37 | + | |
| 38 | +# Alternatives hostname for Softwarepulico | |
| 39 | +# | |
| 40 | +#alternative_hostnames: | |
| 41 | +# - <ALT HOSTNAMES> | |
| 42 | + | |
| 43 | +# The public IP address for the reverseproxy machine | |
| 44 | +# If the public IP is provided from other machine, just put the private IP of | |
| 45 | +# the reverseproxy machine | |
| 46 | +external_ip: <IP ADDR> | |
| 47 | + | |
| 48 | +# Alternative port for ssh access of reverseproxy machine | |
| 49 | +alt_ssh_port: <PORT> | |
| 50 | + | |
| 51 | +# Configurations for the email reply. | |
| 52 | +# | |
| 53 | +# Example: | |
| 54 | +# colab_from_address: '"Softwarepublico" <noreply@softwarepublico.gov>' | |
| 55 | +# server_email: '"Softwarepublico" <noreply@softwarepublico.gov>' | |
| 56 | +# email_subject_prefix: '[spb]' | |
| 57 | +colab_from_address: '"EMAIL HEADER" <NOREPLY EMAIL>' | |
| 58 | +server_email: '"EMAIL HEADER" <NOREPLY EMAIL>' | |
| 59 | +email_subject_prefix: '[EMAIL PREFIX]' | |
| 60 | + | |
| 61 | +# Email list addresses | |
| 62 | +# | |
| 63 | +# Example: | |
| 64 | +# lists_admin: admin@admin.gov | |
| 65 | +# from_address: noreply@softwarepublico.gov | |
| 66 | +lists_admin: <ADM EMAIL ADDR> | |
| 67 | +from_address: <NOREPLY EMAIL> | |
| 68 | + | |
| 69 | +# Email hostnames | |
| 70 | +# | |
| 71 | +# Example: | |
| 72 | +# lists_hostname: listas.softwarepublico.gov | |
| 73 | +# relay_hostname: relay.softwarepublico.gov | |
| 74 | +lists_hostname: <LIST HOSTNAME> | |
| 75 | +relay_hostname: <RELAY HOSTNAME> | |
| 76 | + | |
| 77 | +# Relay external IP address. Used to send reply emails. | |
| 78 | +relay_ip: <IP ADDR> | |
| 79 | +external_outgoing_mail_relay: <IP ADDR> | |
| 80 | +external_outgoing_mail_domain: <EXTERNAL DOMAIN> | |
| 81 | + | |
| 82 | +# Google Analytics ID. Check out the google documentation for more information | |
| 83 | +# about the ID: https://support.google.com/analytics/answer/1032385?hl=pt-BR | |
| 84 | +google_analytics_id: '<ID>' | |
| 85 | + | |
| 86 | +# Numbers of workes for colab. | |
| 87 | +# Default: numbers of cpu * 2 + 1 | |
| 88 | +# | |
| 89 | +# Make sure that you have enough resources for the amount of workers | |
| 90 | +#colab_http_workers: <NUMBER OF WORKERS> | ... | ... |
| ... | ... | @@ -0,0 +1,50 @@ |
| 1 | +# This file contains the ssh configurations for access the SPB machines | |
| 2 | +Host * | |
| 3 | + ForwardAgent yes | |
| 4 | + | |
| 5 | +# The reverseproxy unconfigured is the reverseproxy machine | |
| 6 | +# before "rake preconfig" command | |
| 7 | +Host reverseproxy.unconfigured | |
| 8 | + User spb | |
| 9 | + Hostname <REVERSEPROXY UNCONFIGURED EXTERNAL IP> | |
| 10 | + | |
| 11 | +Host reverseproxy | |
| 12 | + User spb | |
| 13 | + Hostname <REVERSEPROXY INTERNAL IP> | |
| 14 | + # The port must be equals to the one defined on config.yaml file "alt_ssh_port" | |
| 15 | + Port <PORT> | |
| 16 | + ProxyCommand ssh spb@<REVERSEPROXY EXTERNAL IP> -p 22 nc %h %p | |
| 17 | + | |
| 18 | +Host integration | |
| 19 | + User spb | |
| 20 | + Hostname <REVERSEPROXY EXTERNAL IP> | |
| 21 | + | |
| 22 | +Host database | |
| 23 | + User spb | |
| 24 | + Hostname <DATABASE INTERNAL IP> | |
| 25 | + # connect via reverseproxy host | |
| 26 | + ProxyCommand ssh spb@<REVERSEPROXY EXTERNAL IP> -p %p nc %h 22 | |
| 27 | + | |
| 28 | +Host social | |
| 29 | + User spb | |
| 30 | + Hostname <SOCIAL INTERNAL IP> | |
| 31 | + # connect via reverseproxy host | |
| 32 | + ProxyCommand ssh spb@<REVERSEPROXY EXTERNAL IP> -p %p nc %h 22 | |
| 33 | + | |
| 34 | +Host email | |
| 35 | + User spb | |
| 36 | + Hostname <EMAIL INTERNAL IP> | |
| 37 | + # connect via reverseproxy host | |
| 38 | + ProxyCommand ssh spb@<REVERSEPROXY EXTERNAL IP> -p %p nc %h 22 | |
| 39 | + | |
| 40 | +Host mezuro | |
| 41 | + User spb | |
| 42 | + Hostname <MAZURO INTERNAL IP> | |
| 43 | + # connect via reverseproxy host | |
| 44 | + ProxyCommand ssh spb@<REVERSEPROXY EXTERNAL IP> -p %p nc %h 22 | |
| 45 | + | |
| 46 | +Host monitor | |
| 47 | + User spb | |
| 48 | + Hostname <MONITOR INTERNAL IP> | |
| 49 | + # connect via reverseproxy host | |
| 50 | + ProxyCommand ssh spb@<REVERSEPROXY EXTERNAL IP> -p %p nc %h 22 | ... | ... |
cookbooks/colab/recipes/default.rb
cookbooks/loganalyzer/templates/nginx.conf.erb
| ... | ... | @@ -4,7 +4,7 @@ server { |
| 4 | 4 | root /usr/share/nginx/html/; |
| 5 | 5 | index index.php index.html index.htm; |
| 6 | 6 | |
| 7 | - server_name <%= node['config']['monitor_external_hostname'] %>; | |
| 7 | + server_name <%= node['config']['monitor_external_hostname'] || 'status.softwarepublico' %>; | |
| 8 | 8 | |
| 9 | 9 | location /loganalyzer/images/ { |
| 10 | 10 | alias /usr/share/nginx/html/loganalyzer/images/; | ... | ... |