3 # Resource:: rails_port
5 # Copyright 2012, OpenStreetMap Foundation
7 # Licensed under the Apache License, Version 2.0 (the "License");
8 # you may not use this file except in compliance with the License.
9 # You may obtain a copy of the License at
11 # https://www.apache.org/licenses/LICENSE-2.0
13 # Unless required by applicable law or agreed to in writing, software
14 # distributed under the License is distributed on an "AS IS" BASIS,
15 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 # See the License for the specific language governing permissions and
17 # limitations under the License.
22 resource_name :rails_port
24 default_action :create
26 property :site, String, :name_attribute => true
27 property :ruby, String, :default => "2.3"
28 property :directory, String
29 property :user, String
30 property :group, String
31 property :repository, String, :default => "https://git.openstreetmap.org/public/rails.git"
32 property :revision, String, :default => "live"
33 property :run_migrations, [TrueClass, FalseClass], :default => false
34 property :email_from, String, :default => "OpenStreetMap <support@openstreetmap.org>"
35 property :status, String, :default => "online"
36 property :database_host, String
37 property :database_port, String
38 property :database_name, String
39 property :database_username, String
40 property :database_password, String
41 property :email_from, String
42 property :messages_domain, String
43 property :gpx_dir, String
44 property :attachments_dir, String
45 property :log_path, String
46 property :logstash_path, String
47 property :memcache_servers, Array
48 property :potlatch2_key, String
49 property :id_key, String
50 property :oauth_key, String
51 property :nominatim_url, String
52 property :osrm_url, String
53 property :google_auth_id, String
54 property :google_auth_secret, String
55 property :google_openid_realm, String
56 property :facebook_auth_id, String
57 property :facebook_auth_secret, String
58 property :windowslive_auth_id, String
59 property :windowslive_auth_secret, String
60 property :github_auth_id, String
61 property :github_auth_secret, String
62 property :wikipedia_auth_id, String
63 property :wikipedia_auth_secret, String
64 property :mapquest_key, String
65 property :mapzen_valhalla_key, String
66 property :thunderforest_key, String
67 property :totp_key, String
68 property :csp_enforce, [TrueClass, FalseClass], :default => false
69 property :csp_report_url, String
70 property :piwik_configuration, Hash
74 ruby#{new_resource.ruby}
75 ruby#{new_resource.ruby}-dev
103 gem_package "bundler#{new_resource.ruby}" do
104 package_name "bundler"
106 gem_binary "gem#{new_resource.ruby}"
107 options "--format-executable"
110 gem_package "bundler#{new_resource.ruby}" do
111 package_name "pkg-config"
112 gem_binary "gem#{new_resource.ruby}"
115 declare_resource :directory, rails_directory do
116 owner new_resource.user
117 group new_resource.group
121 git rails_directory do
123 repository new_resource.repository
124 revision new_resource.revision
125 user new_resource.user
126 group new_resource.group
127 notifies :run, "execute[#{rails_directory}/Gemfile]"
128 notifies :run, "execute[#{rails_directory}/public/assets]"
129 notifies :delete, "file[#{rails_directory}/public/export/embed.html]"
130 notifies :restart, "passenger_application[#{rails_directory}]"
133 declare_resource :directory, "#{rails_directory}/tmp" do
134 owner new_resource.user
135 group new_resource.group
138 file "#{rails_directory}/config/environment.rb" do
139 owner new_resource.user
140 group new_resource.group
143 template "#{rails_directory}/config/database.yml" do
145 source "database.yml.erb"
146 owner new_resource.user
147 group new_resource.group
149 variables :host => new_resource.database_host,
150 :port => new_resource.database_port,
151 :name => new_resource.database_name,
152 :username => new_resource.database_username,
153 :password => new_resource.database_password
154 notifies :restart, "passenger_application[#{rails_directory}]"
157 application_yml = edit_file "#{rails_directory}/config/example.application.yml" do |line|
158 line.gsub!(/^( *)server_protocol:.*$/, "\\1server_protocol: \"https\"")
159 line.gsub!(/^( *)server_url:.*$/, "\\1server_url: \"#{new_resource.site}\"")
161 line.gsub!(/^( *)#publisher_url:.*$/, "\\1publisher_url: \"https://plus.google.com/111953119785824514010\"")
163 line.gsub!(/^( *)support_email:.*$/, "\\1support_email: \"support@openstreetmap.org\"")
165 if new_resource.email_from
166 line.gsub!(/^( *)email_from:.*$/, "\\1email_from: \"#{new_resource.email_from}\"")
169 line.gsub!(/^( *)email_return_path:.*$/, "\\1email_return_path: \"bounces@openstreetmap.org\"")
171 line.gsub!(/^( *)status:.*$/, "\\1status: :#{new_resource.status}")
173 if new_resource.messages_domain
174 line.gsub!(/^( *)#messages_domain:.*$/, "\\1messages_domain: \"#{new_resource.messages_domain}\"")
177 line.gsub!(/^( *)#geonames_username:.*$/, "\\1geonames_username: \"openstreetmap\"")
179 line.gsub!(/^( *)#geoip_database:.*$/, "\\1geoip_database: \"/usr/share/GeoIP/GeoIPv6.dat\"")
181 if new_resource.gpx_dir
182 line.gsub!(/^( *)gpx_trace_dir:.*$/, "\\1gpx_trace_dir: \"#{new_resource.gpx_dir}/traces\"")
183 line.gsub!(/^( *)gpx_image_dir:.*$/, "\\1gpx_image_dir: \"#{new_resource.gpx_dir}/images\"")
186 if new_resource.attachments_dir
187 line.gsub!(/^( *)attachments_dir:.*$/, "\\1attachments_dir: \"#{new_resource.attachments_dir}\"")
190 if new_resource.log_path
191 line.gsub!(/^( *)#log_path:.*$/, "\\1log_path: \"#{new_resource.log_path}\"")
194 if new_resource.logstash_path
195 line.gsub!(/^( *)#logstash_path:.*$/, "\\1logstash_path: \"#{new_resource.logstash_path}\"")
198 if new_resource.memcache_servers
199 line.gsub!(/^( *)#memcache_servers:.*$/, "\\1memcache_servers: [ \"#{new_resource.memcache_servers.join('", "')}\" ]")
202 if new_resource.potlatch2_key
203 line.gsub!(/^( *)#potlatch2_key:.*$/, "\\1potlatch2_key: \"#{new_resource.potlatch2_key}\"")
206 if new_resource.id_key
207 line.gsub!(/^( *)#id_key:.*$/, "\\1id_key: \"#{new_resource.id_key}\"")
210 if new_resource.oauth_key
211 line.gsub!(/^( *)#oauth_key:.*$/, "\\1oauth_key: \"#{new_resource.oauth_key}\"")
214 if new_resource.nominatim_url
215 line.gsub!(/^( *)nominatim_url:.*$/, "\\1nominatim_url: \"#{new_resource.nominatim_url}\"")
218 if new_resource.osrm_url
219 line.gsub!(/^( *)osrm_url:.*$/, "\\1osrm_url: \"#{new_resource.osrm_url}\"")
222 if new_resource.google_auth_id
223 line.gsub!(/^( *)#google_auth_id:.*$/, "\\1google_auth_id: \"#{new_resource.google_auth_id}\"")
224 line.gsub!(/^( *)#google_auth_secret:.*$/, "\\1google_auth_secret: \"#{new_resource.google_auth_secret}\"")
225 line.gsub!(/^( *)#google_openid_realm:.*$/, "\\1google_openid_realm: \"#{new_resource.google_openid_realm}\"")
228 if new_resource.facebook_auth_id
229 line.gsub!(/^( *)#facebook_auth_id:.*$/, "\\1facebook_auth_id: \"#{new_resource.facebook_auth_id}\"")
230 line.gsub!(/^( *)#facebook_auth_secret:.*$/, "\\1facebook_auth_secret: \"#{new_resource.facebook_auth_secret}\"")
233 if new_resource.windowslive_auth_id
234 line.gsub!(/^( *)#windowslive_auth_id:.*$/, "\\1windowslive_auth_id: \"#{new_resource.windowslive_auth_id}\"")
235 line.gsub!(/^( *)#windowslive_auth_secret:.*$/, "\\1windowslive_auth_secret: \"#{new_resource.windowslive_auth_secret}\"")
238 if new_resource.github_auth_id
239 line.gsub!(/^( *)#github_auth_id:.*$/, "\\1github_auth_id: \"#{new_resource.github_auth_id}\"")
240 line.gsub!(/^( *)#github_auth_secret:.*$/, "\\1github_auth_secret: \"#{new_resource.github_auth_secret}\"")
243 if new_resource.wikipedia_auth_id
244 line.gsub!(/^( *)#wikipedia_auth_id:.*$/, "\\1wikipedia_auth_id: \"#{new_resource.wikipedia_auth_id}\"")
245 line.gsub!(/^( *)#wikipedia_auth_secret:.*$/, "\\1wikipedia_auth_secret: \"#{new_resource.wikipedia_auth_secret}\"")
248 if new_resource.mapquest_key
249 line.gsub!(/^( *)#mapquest_key:.*$/, "\\1mapquest_key: \"#{new_resource.mapquest_key}\"")
252 if new_resource.mapzen_valhalla_key
253 line.gsub!(/^( *)#mapzen_valhalla_key:.*$/, "\\1mapzen_valhalla_key: \"#{new_resource.mapzen_valhalla_key}\"")
256 if new_resource.thunderforest_key
257 line.gsub!(/^( *)#thunderforest_key:.*$/, "\\1thunderforest_key: \"#{new_resource.thunderforest_key}\"")
260 if new_resource.totp_key
261 line.gsub!(/^( *)#totp_key:.*$/, "\\1totp_key: \"#{new_resource.totp_key}\"")
264 if new_resource.csp_enforce
265 line.gsub!(/^( *)csp_enforce:.*$/, "\\1csp_enforce: \"#{new_resource.csp_enforce}\"")
268 if new_resource.csp_report_url
269 line.gsub!(/^( *)#csp_report_url:.*$/, "\\1csp_report_url: \"#{new_resource.csp_report_url}\"")
272 line.gsub!(/^( *)require_terms_seen:.*$/, "\\1require_terms_seen: true")
273 line.gsub!(/^( *)require_terms_agreed:.*$/, "\\1require_terms_agreed: true")
278 file "#{rails_directory}/config/application.yml" do
279 owner new_resource.user
280 group new_resource.group
282 content application_yml
283 notifies :run, "execute[#{rails_directory}/public/assets]"
286 if new_resource.piwik_configuration
287 file "#{rails_directory}/config/piwik.yml" do
288 owner new_resource.user
289 group new_resource.group
291 content YAML.dump(new_resource.piwik_configuration)
292 notifies :run, "execute[#{rails_directory}/public/assets]"
295 file "#{rails_directory}/config/piwik.yml" do
297 notifies :run, "execute[#{rails_directory}/public/assets]"
301 execute "#{rails_directory}/Gemfile" do
303 command "bundle#{new_resource.ruby} install"
307 environment "NOKOGIRI_USE_SYSTEM_LIBRARIES" => "yes"
308 subscribes :run, "gem_package[bundler#{new_resource.ruby}]"
309 notifies :restart, "passenger_application[#{rails_directory}]"
312 execute "#{rails_directory}/db/migrate" do
314 command "bundle#{new_resource.ruby} exec rake db:migrate"
316 user new_resource.user
317 group new_resource.group
318 subscribes :run, "git[#{rails_directory}]"
319 notifies :restart, "passenger_application[#{rails_directory}]"
320 only_if { new_resource.run_migrations }
323 execute "#{rails_directory}/public/assets" do
325 command "bundle#{new_resource.ruby} exec rake assets:precompile"
326 environment "RAILS_ENV" => "production"
328 user new_resource.user
329 group new_resource.group
330 notifies :restart, "passenger_application[#{rails_directory}]"
333 file "#{rails_directory}/public/export/embed.html" do
337 passenger_application rails_directory
339 template "/etc/cron.daily/rails-#{new_resource.site.tr('.', '-')}" do
341 source "rails.cron.erb"
345 variables :directory => rails_directory
350 passenger_application rails_directory do
356 include Chef::Mixin::EditFile
359 new_resource.directory || "/srv/#{new_resource.site}"