# limitations under the License.
#
+include_recipe "accounts"
include_recipe "apache"
package %w[
trac
- trac-git
ruby
]
site_name = "trac.openstreetmap.org"
site_directory = "/srv/#{site_name}"
+directory "/var/lib/trac" do
+ owner "trac"
+ group "trac"
+ mode "755"
+end
+
+execute "trac-initenv-#{site_name}" do
+ command "trac-admin /var/lib/trac initenv #{site_name} sqlite:db/trac.db"
+ user "trac"
+ group "trac"
+ not_if { ::File.exist?("/var/lib/trac/VERSION") }
+end
+
template "/var/lib/trac/conf/trac.ini" do
source "trac.ini.erb"
owner "trac"
group "www-data"
- mode 0o644
+ mode "644"
variables :name => site_name
end
source "htdocs"
owner "trac"
group "trac"
- mode 0o755
+ mode "755"
files_owner "trac"
files_group "trac"
files_mode 0o644
source "templates"
owner "trac"
group "trac"
- mode 0o755
+ mode "755"
files_owner "trac"
files_group "trac"
files_mode 0o644
cookbook_file "/usr/local/bin/trac-authenticate" do
owner "root"
group "root"
- mode 0o755
+ mode "755"
end
apache_module "wsgi"
+apache_module "authnz_external" do
+ package "libapache2-mod-authnz-external"
+end
+
ssl_certificate "trac.openstreetmap.org" do
domains ["trac.openstreetmap.org", "trac.osm.org"]
notifies :reload, "service[apache2]"
source "sudoers.erb"
owner "root"
group "root"
- mode 0o440
+ mode "440"
end
template "/etc/cron.daily/trac-backup" do
source "backup.cron.erb"
owner "root"
group "root"
- mode 0o755
+ mode "755"
end