mirror of
https://github.com/viq/NewsBlur.git
synced 2025-09-18 21:43:31 +00:00
9ced4ccadd
* master: (84 commits) Deploying new analytics server. Create mongodb database user. Only runs on analytics, but should work fine on main mongo. Adding second mongo analytics db, cleaning up mongo analytics auth. Adding RSS autodiscovery to blog. Thanks https://forum.newsblur.com/t/irony-newsblur-cant-auto-extract-rss-feed-from-blog-newsblur-com/8849. Revert "Merge branch 'state_timeline'" Fixing syntax error Solving docker networking container issues by turning iptables back on but using ufw after.rules that allow ufw to retain blocking ability. Works on Redis, now to move to mongo. fix flask_metrics ansible role add state timeline dashboard to grafana move state timeline to one single flask that gets astate for all services Mongo analytics monitor not reayd yet Turning consul monitor back on. Turning on analytics Need to strip csv values. Binding redis to public interface. Restore postgres backup. Needs work. Prepping postgres backup Prepping postgres transition, writing redis db maintenance. Prepping redis for moving back to primary. Updating redis backup to include percentage progress and access to the correct data dump. ...
179 lines
7.2 KiB
Makefile
179 lines
7.2 KiB
Makefile
SHELL := /bin/bash
|
|
CURRENT_UID := $(shell id -u)
|
|
CURRENT_GID := $(shell id -g)
|
|
newsblur := $(shell docker ps -qf "name=newsblur_web")
|
|
|
|
.PHONY: node
|
|
|
|
#creates newsblur, but does not rebuild images or create keys
|
|
start:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose up -d
|
|
|
|
metrics:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose -f docker-compose.yml -f docker-compose.metrics.yml up -d
|
|
|
|
metrics-ps:
|
|
- RUNWITHMAKEBUILD=True docker-compose -f docker-compose.yml -f docker-compose.metrics.yml ps
|
|
|
|
rebuild:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose down
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose up -d
|
|
|
|
collectstatic:
|
|
- docker run --rm -v $(shell pwd):/srv/newsblur --platform linux/amd64 newsblur/newsblur_deploy
|
|
|
|
#creates newsblur, builds new images, and creates/refreshes SSL keys
|
|
nb: pull
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose down
|
|
- [[ -d config/certificates ]] && echo "keys exist" || make keys
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose up -d --build --remove-orphans
|
|
- RUNWITHMAKEBUILD=True docker-compose exec newsblur_web ./manage.py migrate
|
|
- RUNWITHMAKEBUILD=True docker-compose exec newsblur_web ./manage.py loaddata config/fixtures/bootstrap.json
|
|
coffee:
|
|
- coffee -c -w **/*.coffee
|
|
|
|
shell:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose exec newsblur_web ./manage.py shell_plus
|
|
bash:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose exec newsblur_web bash
|
|
# allows user to exec into newsblur_web and use pdb.
|
|
debug:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker attach ${newsblur}
|
|
log:
|
|
- RUNWITHMAKEBUILD=True docker-compose logs -f --tail 20 newsblur_web newsblur_node
|
|
logweb: log
|
|
logcelery:
|
|
- RUNWITHMAKEBUILD=True docker-compose logs -f --tail 20 task_celery
|
|
logtask: logcelery
|
|
logmongo:
|
|
- RUNWITHMAKEBUILD=True docker-compose logs -f db_mongo
|
|
alllogs:
|
|
- RUNWITHMAKEBUILD=True docker-compose logs -f --tail 20
|
|
logall: alllogs
|
|
# brings down containers
|
|
down:
|
|
- RUNWITHMAKEBUILD=True docker-compose -f docker-compose.yml -f docker-compose.metrics.yml down
|
|
nbdown: down
|
|
jekyll:
|
|
- cd blog && bundle exec jekyll serve
|
|
jekyll_drafts:
|
|
- cd blog && bundle exec jekyll serve --drafts
|
|
|
|
# runs tests
|
|
test:
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} TEST=True docker-compose -f docker-compose.yml up -d newsblur_web
|
|
- RUNWITHMAKEBUILD=True CURRENT_UID=${CURRENT_UID} CURRENT_GID=${CURRENT_GID} docker-compose exec newsblur_web bash -c "NOSE_EXCLUDE_DIRS=./vendor DJANGO_SETTINGS_MODULE=newsblur_web.test_settings python3 manage.py test -v 3 --failfast"
|
|
|
|
keys:
|
|
- mkdir config/certificates
|
|
- openssl dhparam -out config/certificates/dhparam-2048.pem 2048
|
|
- openssl req -x509 -nodes -new -sha256 -days 1024 -newkey rsa:2048 -keyout config/certificates/RootCA.key -out config/certificates/RootCA.pem -subj "/C=US/CN=Example-Root-CA"
|
|
- openssl x509 -outform pem -in config/certificates/RootCA.pem -out config/certificates/RootCA.crt
|
|
- openssl req -new -nodes -newkey rsa:2048 -keyout config/certificates/localhost.key -out config/certificates/localhost.csr -subj "/C=US/ST=YourState/L=YourCity/O=Example-Certificates/CN=localhost.local"
|
|
- openssl x509 -req -sha256 -days 1024 -in config/certificates/localhost.csr -CA config/certificates/RootCA.pem -CAkey config/certificates/RootCA.key -CAcreateserial -out config/certificates/localhost.crt
|
|
- cat config/certificates/localhost.crt config/certificates/localhost.key > config/certificates/localhost.pem
|
|
- /usr/bin/security add-trusted-cert -d -r trustAsRoot -k /Library/Keychains/System.keychain ./config/certificates/RootCA.crt
|
|
|
|
# Digital Ocean / Terraform
|
|
list:
|
|
- doctl -t `cat /srv/secrets-newsblur/keys/digital_ocean.token` compute droplet list
|
|
sizes:
|
|
- doctl -t `cat /srv/secrets-newsblur/keys/digital_ocean.token` compute size list
|
|
size: sizes
|
|
ratelimit:
|
|
- doctl -t `cat /srv/secrets-newsblur/keys/digital_ocean.token` account ratelimit
|
|
ansible-deps:
|
|
ansible-galaxy install -p roles -r ansible/roles/requirements.yml --roles-path ansible/roles
|
|
tfrefresh:
|
|
terraform -chdir=terraform refresh
|
|
plan:
|
|
terraform -chdir=terraform plan -refresh=false
|
|
apply:
|
|
terraform -chdir=terraform apply -refresh=false -parallelism=15
|
|
inventory:
|
|
- ./ansible/utils/generate_inventory.py
|
|
oldinventory:
|
|
- OLD=1 ./ansible/utils/generate_inventory.py
|
|
|
|
# Docker
|
|
pull:
|
|
- docker pull newsblur/newsblur_python3
|
|
- docker pull newsblur/newsblur_node
|
|
- docker pull newsblur/newsblur_monitor
|
|
|
|
build_web:
|
|
- docker image build . --platform linux/amd64 --file=docker/newsblur_base_image.Dockerfile --tag=newsblur/newsblur_python3
|
|
build_node:
|
|
- docker image build . --platform linux/amd64 --file=docker/node/Dockerfile --tag=newsblur/newsblur_node
|
|
build_monitor:
|
|
- docker image build . --platform linux/amd64 --file=docker/monitor/Dockerfile --tag=newsblur/newsblur_monitor
|
|
build_deploy:
|
|
- docker image build . --platform linux/amd64 --file=docker/newsblur_deploy.Dockerfile --tag=newsblur/newsblur_deploy
|
|
build: build_web build_node build_monitor build_deploy
|
|
push_web: build_web
|
|
- docker push newsblur/newsblur_python3
|
|
push_node: build_node
|
|
- docker push newsblur/newsblur_node
|
|
push_monitor: build_monitor
|
|
- docker push newsblur/newsblur_monitor
|
|
push_deploy: build_deploy
|
|
- docker push newsblur/newsblur_deploy
|
|
push_images: push_web push_node push_monitor push_deploy
|
|
push: build push_images
|
|
|
|
# Tasks
|
|
deploy_web:
|
|
- ansible-playbook ansible/deploy.yml -l app
|
|
deploy: deploy_web
|
|
app: deploy_web
|
|
web: deploy_web
|
|
deploy_static:
|
|
- ansible-playbook ansible/deploy.yml -l app --tags static
|
|
static: deploy_static
|
|
deploy_node:
|
|
- ansible-playbook ansible/deploy.yml -l node
|
|
node: deploy_node
|
|
deploy_task:
|
|
- ansible-playbook ansible/deploy.yml -l task
|
|
task: deploy_task
|
|
deploy_www:
|
|
- ansible-playbook ansible/deploy.yml -l www
|
|
www: deploy_www
|
|
deploy_work:
|
|
- ansible-playbook ansible/deploy.yml -l work
|
|
work: deploy_work
|
|
deploy_monitor:
|
|
- ansible-playbook ansible/deploy.yml -l db
|
|
monitor: deploy_monitor
|
|
deploy_staging:
|
|
- ansible-playbook ansible/deploy.yml -l staging
|
|
staging: deploy_staging
|
|
celery_stop:
|
|
- ansible-playbook ansible/deploy.yml -l task --tags stop
|
|
maintenance_on:
|
|
- ansible-playbook ansible/deploy.yml -l web --tags maintenance_on
|
|
maintenance_off:
|
|
- ansible-playbook ansible/deploy.yml -l web --tags maintenance_off
|
|
|
|
# Provision
|
|
firewall:
|
|
- ansible-playbook ansible/all.yml -l db --tags firewall
|
|
oldfirewall:
|
|
- ANSIBLE_CONFIG=/srv/newsblur/ansible.old.cfg ansible-playbook ansible/all.yml -l db --tags firewall
|
|
repairmongo:
|
|
- sudo docker run -v "/srv/newsblur/docker/volumes/db_mongo:/data/db" mongo:4.0 mongod --repair --dbpath /data/db
|
|
|
|
|
|
# performance tests
|
|
perf-cli:
|
|
locust -f perf/locust.py --headless -u $(users) -r $(rate) --run-time 5m --host=$(host)
|
|
|
|
perf-ui:
|
|
locust -f perf/locust.py
|
|
|
|
perf-docker:
|
|
- docker build . --file=./perf/Dockerfile --tag=perf-docker
|
|
- docker run -it -p 8089:8089 perf-docker locust -f locust.py
|
|
|
|
clean:
|
|
- find . -name \*.pyc -delete
|