mirror of
https://github.com/Southampton-RSG/breccia-mapper.git
synced 2026-03-03 03:17:07 +00:00
deploy: Use RedHat Software Collections
RHSCL provides patched versions of Python and Nginx
This commit is contained in:
James Graham
3
.gitignore
vendored
3
.gitignore
vendored
@@ -16,6 +16,7 @@ deployment-key
|
|||||||
deployment-key.pub
|
deployment-key.pub
|
||||||
|
|
||||||
# Deployment
|
# Deployment
|
||||||
|
/.dbbackup/
|
||||||
.vagrant/
|
.vagrant/
|
||||||
staging.yml
|
staging.yml
|
||||||
/.dbbackup/
|
production.yml
|
||||||
|
|||||||
4
Makefile
4
Makefile
@@ -9,8 +9,8 @@ lint:
|
|||||||
|
|
||||||
.PHONY: staging
|
.PHONY: staging
|
||||||
staging:
|
staging:
|
||||||
ansible-playbook -v -i staging.yml playbook.yml -u jag1e17 -K
|
env ANSIBLE_STDOUT_CALLBACK=debug ansible-playbook -v -i staging.yml playbook.yml -u jag1e17 -K
|
||||||
|
|
||||||
.PHONY: production
|
.PHONY: production
|
||||||
production:
|
production:
|
||||||
ansible-playbook -v -i production.yml playbook.yml -u jag1e17 -K
|
env ANSIBLE_STDOUT_CALLBACK=debug ansible-playbook -v -i production.yml playbook.yml -u jag1e17 -K
|
||||||
|
|||||||
@@ -22,6 +22,7 @@
|
|||||||
name: mariadb
|
name: mariadb
|
||||||
state: restarted
|
state: restarted
|
||||||
enabled: yes
|
enabled: yes
|
||||||
|
daemon_reload: yes
|
||||||
|
|
||||||
- name: Create database
|
- name: Create database
|
||||||
mysql_db:
|
mysql_db:
|
||||||
|
|||||||
@@ -5,7 +5,7 @@ deploy_mode_dict:
|
|||||||
3: Development
|
3: Development
|
||||||
deploy_mode: 3
|
deploy_mode: 3
|
||||||
|
|
||||||
secret_key: '{{ lookup("password", "/tmp/secretkeyfile") }}'
|
secret_key: '{{ lookup("password", "/dev/null") }}'
|
||||||
|
|
||||||
project_name: 'breccia-mapper'
|
project_name: 'breccia-mapper'
|
||||||
project_full_name: 'breccia_mapper'
|
project_full_name: 'breccia_mapper'
|
||||||
|
|||||||
@@ -12,6 +12,17 @@
|
|||||||
name: '*'
|
name: '*'
|
||||||
state: latest
|
state: latest
|
||||||
|
|
||||||
|
- name: Enable RedHat Software Collections - RHEL
|
||||||
|
rhsm_repository:
|
||||||
|
name: rhel-server-rhscl-7-rpms
|
||||||
|
when: ansible_distribution == "RedHat"
|
||||||
|
|
||||||
|
- name: Enable RedHat Software Collections - CentOS
|
||||||
|
yum:
|
||||||
|
name: centos-release-scl
|
||||||
|
state: latest
|
||||||
|
when: ansible_distribution == "CentOS"
|
||||||
|
|
||||||
- name: Install system prerequisites
|
- name: Install system prerequisites
|
||||||
yum:
|
yum:
|
||||||
name: '{{ packages }}'
|
name: '{{ packages }}'
|
||||||
@@ -20,12 +31,8 @@
|
|||||||
packages:
|
packages:
|
||||||
- gcc
|
- gcc
|
||||||
- git
|
- git
|
||||||
- nginx
|
- rh-nginx114
|
||||||
- python36
|
- rh-python36
|
||||||
- python36-devel
|
|
||||||
- python36-pip
|
|
||||||
- python36-setuptools
|
|
||||||
- python36-virtualenv
|
|
||||||
- policycoreutils-python
|
- policycoreutils-python
|
||||||
- python
|
- python
|
||||||
- python-setuptools
|
- python-setuptools
|
||||||
@@ -86,11 +93,15 @@
|
|||||||
group: '{{ web_group }}'
|
group: '{{ web_group }}'
|
||||||
recurse: yes
|
recurse: yes
|
||||||
|
|
||||||
|
- name: Create venv
|
||||||
|
shell: |
|
||||||
|
source scl_source enable rh-python36
|
||||||
|
python3 -m venv {{ venv_dir }}
|
||||||
|
|
||||||
- name: Install pip requirements
|
- name: Install pip requirements
|
||||||
pip:
|
pip:
|
||||||
requirements: '{{ project_dir }}/requirements.txt'
|
requirements: '{{ project_dir }}/requirements.txt'
|
||||||
virtualenv: '{{ venv_dir }}'
|
virtualenv: '{{ venv_dir }}'
|
||||||
virtualenv_command: virtualenv-3
|
|
||||||
|
|
||||||
- name: Create static directory
|
- name: Create static directory
|
||||||
file:
|
file:
|
||||||
@@ -124,10 +135,9 @@
|
|||||||
when: deploy_mode > 1
|
when: deploy_mode > 1
|
||||||
|
|
||||||
- name: Install uWSGI
|
- name: Install uWSGI
|
||||||
pip:
|
shell: |
|
||||||
name: uwsgi
|
source scl_source enable rh-python36
|
||||||
state: latest
|
pip3 install uwsgi
|
||||||
executable: pip3
|
|
||||||
|
|
||||||
- name: Setup uWSGI config
|
- name: Setup uWSGI config
|
||||||
file:
|
file:
|
||||||
@@ -145,6 +155,7 @@
|
|||||||
name: uwsgi
|
name: uwsgi
|
||||||
state: started
|
state: started
|
||||||
enabled: yes
|
enabled: yes
|
||||||
|
daemon_reload: yes
|
||||||
|
|
||||||
- name: Copy web config files
|
- name: Copy web config files
|
||||||
template:
|
template:
|
||||||
@@ -189,7 +200,7 @@
|
|||||||
- name: Copy Nginx site
|
- name: Copy Nginx site
|
||||||
template:
|
template:
|
||||||
src: nginx-site-ssl.j2
|
src: nginx-site-ssl.j2
|
||||||
dest: '/etc/nginx/conf.d/{{ project_name }}-ssl.conf'
|
dest: '/etc/opt/rh/rh-nginx114/nginx/conf.d/{{ project_name }}-ssl.conf'
|
||||||
owner: '{{ web_user }}'
|
owner: '{{ web_user }}'
|
||||||
group: '{{ web_group }}'
|
group: '{{ web_group }}'
|
||||||
|
|
||||||
@@ -198,7 +209,7 @@
|
|||||||
- name: Copy Nginx site
|
- name: Copy Nginx site
|
||||||
template:
|
template:
|
||||||
src: nginx-site.j2
|
src: nginx-site.j2
|
||||||
dest: '/etc/nginx/conf.d/{{ project_name }}.conf'
|
dest: '/etc/opt/rh/rh-nginx114/nginx/conf.d/{{ project_name }}.conf'
|
||||||
owner: '{{ web_user }}'
|
owner: '{{ web_user }}'
|
||||||
group: '{{ web_group }}'
|
group: '{{ web_group }}'
|
||||||
|
|
||||||
@@ -207,9 +218,10 @@
|
|||||||
name: "{{ item }}"
|
name: "{{ item }}"
|
||||||
state: restarted
|
state: restarted
|
||||||
enabled: yes
|
enabled: yes
|
||||||
|
daemon_reload: yes
|
||||||
with_items:
|
with_items:
|
||||||
- uwsgi
|
- uwsgi
|
||||||
- nginx
|
- rh-nginx114-nginx
|
||||||
|
|
||||||
- name: Open webserver ports on firewall
|
- name: Open webserver ports on firewall
|
||||||
firewalld:
|
firewalld:
|
||||||
|
|||||||
@@ -2,8 +2,8 @@
|
|||||||
Description=uWSGI Emperor Service
|
Description=uWSGI Emperor Service
|
||||||
|
|
||||||
[Service]
|
[Service]
|
||||||
ExecStartPre=/bin/bash -c 'mkdir -p /run/uwsgi; chown {{ web_user }}:{{ web_group }} /run/uwsgi'
|
ExecStartPre=/bin/bash -c 'mkdir -p /run/uwsgi; chown {{ web_user }}:{{ web_group }} /run/uwsgi; source scl_source rh-python36'
|
||||||
ExecStart=/usr/local/bin/uwsgi --emperor /etc/uwsgi/sites
|
ExecStart=/bin/scl enable rh-python36 "uwsgi --emperor /etc/uwsgi/sites"
|
||||||
Restart=always
|
Restart=always
|
||||||
KillSignal=SIGQUIT
|
KillSignal=SIGQUIT
|
||||||
Type=notify
|
Type=notify
|
||||||
|
|||||||
Reference in New Issue
Block a user