X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/cfa0fe92774c9dfcf0a0085d7772319550066ed7..8e010de9a9d26d57220d326e69bb0440098cf22e:/cookbooks/web/resources/rails_port.rb diff --git a/cookbooks/web/resources/rails_port.rb b/cookbooks/web/resources/rails_port.rb index fbf4aeb0b..debc4db50 100644 --- a/cookbooks/web/resources/rails_port.rb +++ b/cookbooks/web/resources/rails_port.rb @@ -61,13 +61,14 @@ property :google_auth_secret, String property :google_openid_realm, String property :facebook_auth_id, String property :facebook_auth_secret, String -property :windowslive_auth_id, String -property :windowslive_auth_secret, String +property :microsoft_auth_id, String +property :microsoft_auth_secret, String property :github_auth_id, String property :github_auth_secret, String property :wikipedia_auth_id, String property :wikipedia_auth_secret, String property :thunderforest_key, String +property :tracestrack_key, String property :totp_key, String property :csp_enforce, [true, false], :default => false property :csp_report_url, String @@ -85,6 +86,13 @@ property :avatar_storage_url, String property :trace_image_storage_url, String property :trace_icon_storage_url, String property :tile_cdn_url, String +property :imagery_blacklist, Array +property :signup_ip_per_day, Integer +property :signup_ip_max_burst, Integer +property :signup_email_per_day, Integer +property :signup_email_max_burst, Integer +property :doorkeeper_signing_key, String +property :user_account_deletion_delay, Integer action :create do package %W[ @@ -107,6 +115,7 @@ action :create do libgd-dev libarchive-dev libbz2-dev + libyaml-dev ] package %w[ @@ -240,9 +249,9 @@ action :create do line.gsub!(/^( *)#facebook_auth_secret:.*$/, "\\1facebook_auth_secret: \"#{new_resource.facebook_auth_secret}\"") end - if new_resource.windowslive_auth_id - line.gsub!(/^( *)#windowslive_auth_id:.*$/, "\\1windowslive_auth_id: \"#{new_resource.windowslive_auth_id}\"") - line.gsub!(/^( *)#windowslive_auth_secret:.*$/, "\\1windowslive_auth_secret: \"#{new_resource.windowslive_auth_secret}\"") + if new_resource.microsoft_auth_id + line.gsub!(/^( *)#microsoft_auth_id:.*$/, "\\1microsoft_auth_id: \"#{new_resource.microsoft_auth_id}\"") + line.gsub!(/^( *)#microsoft_auth_secret:.*$/, "\\1microsoft_auth_secret: \"#{new_resource.microsoft_auth_secret}\"") end if new_resource.github_auth_id @@ -313,13 +322,14 @@ action :create do "google_openid_realm", "facebook_auth_id", "facebook_auth_secret", - "windowslive_auth_id", - "windowslive_auth_secret", + "microsoft_auth_id", + "microsoft_auth_secret", "github_auth_id", "github_auth_secret", "wikipedia_auth_id", "wikipedia_auth_secret", "thunderforest_key", + "tracestrack_key", "totp_key", "csp_enforce", "csp_report_url", @@ -334,18 +344,29 @@ action :create do "avatar_storage_url", "trace_image_storage_url", "trace_icon_storage_url", - "tile_cdn_url" + "tile_cdn_url", + "imagery_blacklist", + "signup_ip_per_day", + "signup_ip_max_burst", + "signup_email_per_day", + "signup_email_max_burst", + "doorkeeper_signing_key", + "user_account_deletion_delay" ).compact.merge( "server_protocol" => "https", "server_url" => new_resource.site, "support_email" => "support@openstreetmap.org", "email_return_path" => "bounces@openstreetmap.org", "geonames_username" => "openstreetmap", - "maxmind_database" => "/usr/share/GeoIP/GeoLite2-Country.mmdb", + "maxmind_database" => "#{node[:geoipupdate][:directory]}/GeoLite2-Country.mmdb", "max_request_area" => node[:web][:max_request_area], "max_number_of_nodes" => node[:web][:max_number_of_nodes], "max_number_of_way_nodes" => node[:web][:max_number_of_way_nodes], - "max_number_of_relation_members" => node[:web][:max_number_of_relation_members] + "max_number_of_relation_members" => node[:web][:max_number_of_relation_members], + "oauth_10_support" => false, + "oauth_10_registration" => false, + "oauth_10a_support" => false, + "basic_auth_support" => false ) if new_resource.memcache_servers @@ -410,7 +431,8 @@ action :create do directory rails_directory command "rails yarn:install" environment "HOME" => rails_directory, - "RAILS_ENV" => "production" + "RAILS_ENV" => "production", + "SECRET_KEY_BASE_DUMMY" => "1" user new_resource.user group new_resource.group subscribes :run, "git[#{rails_directory}]" @@ -422,7 +444,8 @@ action :create do directory rails_directory command "rails i18n:js:export" environment "HOME" => rails_directory, - "RAILS_ENV" => "production" + "RAILS_ENV" => "production", + "SECRET_KEY_BASE_DUMMY" => "1" user new_resource.user group new_resource.group subscribes :run, "git[#{rails_directory}]" @@ -434,7 +457,8 @@ action :create do directory rails_directory command "rails assets:precompile" environment "HOME" => rails_directory, - "RAILS_ENV" => "production" + "RAILS_ENV" => "production", + "SECRET_KEY_BASE_DUMMY" => "1" user new_resource.user group new_resource.group subscribes :run, "git[#{rails_directory}]" @@ -484,7 +508,7 @@ action :restart do end action_class do - include Chef::Mixin::EditFile + include OpenStreetMap::Mixin::EditFile def rails_directory new_resource.directory || "/srv/#{new_resource.site}"