#
node.default[:incron][:planetdump] = {
- :user => "www-data",
+ :user => "root",
:path => "/store/backup",
:events => %w[IN_CREATE IN_MOVED_TO],
- :command => "/usr/local/bin/planetdump $#"
+ :command => "/bin/systemctl start planetdump@$#"
}
include_recipe "git"
package %w[
gcc
+ g++
make
autoconf
automake
+ pkg-config
libxml2-dev
libboost-dev
libboost-program-options-dev
pbzip2
php-cli
php-curl
+ mktorrent
+ xmlstarlet
+ libxml2-utils
]
directory "/opt/planet-dump-ng" do
owner "root"
group "root"
- mode 0o755
+ mode "755"
end
git "/opt/planet-dump-ng" do
action :sync
- repository "git://github.com/zerebubuth/planet-dump-ng.git"
- revision "v1.1.6"
+ repository "https://github.com/zerebubuth/planet-dump-ng.git"
+ revision "v1.2.0"
+ depth 1
user "root"
group "root"
end
directory "/store/planetdump" do
owner "www-data"
group "www-data"
- mode 0o755
+ mode "755"
+ recursive true
end
%w[planetdump planet-mirror-redirect-update].each do |program|
source "#{program}.erb"
owner "root"
group "root"
- mode 0o755
+ mode "755"
end
end
-template "/etc/cron.d/planet-dump-mirror" do
- source "planet-dump-mirror-cron.erb"
- owner "root"
- group "root"
- mode 0o644
+systemd_service "planetdump@" do
+ description "Planet dump for %i"
+ user "www-data"
+ exec_start "/usr/local/bin/planetdump %i"
+ memory_max "64G"
+ private_tmp true
+ private_devices true
+ private_network true
+ protect_system "full"
+ protect_home true
+ no_new_privileges true
+end
+
+cron_d "planet-dump-mirror" do
+ minute "*/10"
+ user "www-data"
+ command "/usr/local/bin/planet-mirror-redirect-update"
+ mailto "horntail-www-data-cron@firefishy.com"
end