axtro-rubber 1.2.0 → 1.2.1

data/VERSION

@@ -1 +1 @@
-1.2.0
+1.2.1

data/generators/vulcanize/templates/mysql/config/rubber/rubber-mysql.yml

@@ -31,7 +31,7 @@ role_dependencies:
   db:primary=true: [mysql_master]
   db: [mysql_slave]
 
-packages: [mysql-client, libmysql-ruby]
+packages: [mysql-client, libmysqlclient15-dev, libmysql-ruby]
 gems: [mysql]
 
 roles:

data/generators/vulcanize/templates/nginx_frontend/config/rubber/deploy-nginx_frontend.rb

@@ -0,0 +1,85 @@
+
+namespace :rubber do
+
+  namespace :nginx_frontend do
+  
+    rubber.allow_optional_tasks(self)
+
+    after "rubber:install_packages", "rubber:nginx_frontend:custom_install"
+
+    task :custom_install, :roles => :nginx_frontend do
+      # install nginx from source
+      ver = rubber_env.nginx_frontend_version
+      rubber.run_script 'install_sphinx', <<-ENDSCRIPT
+        # check if already installed
+        if [ -x /usr/local/sbin/nginx ]
+          then echo 'Found nginx on system'
+          if /usr/local/sbin/nginx -v | grep 'nginx/#{ver}'
+            then echo 'Nginx version matches, no further steps needed'
+            exit 0
+          fi
+        fi
+
+        echo 'Installing / Upgrading nginx #{ver}'
+        TMPDIR=`mktemp -d` || exit 1
+        cd $TMPDIR
+        echo 'Downloading'
+        wget -qN http://sysoev.ru/nginx/nginx-#{ver}.tar.gz
+        echo 'Unpacking'
+        tar xf nginx-#{ver}.tar.gz
+        cd nginx-#{ver}
+        ./configure \
+          --with-http_ssl_module \
+          --with-http_stub_status_module \
+          --conf-path=/etc/nginx_frontend/nginx.conf \
+          --error-log-path=/var/log/nginx_frontend/error.log \
+          --pid-path=/var/run/nginx_frontend.pid \
+          --lock-path=/var/lock/nginx_frontend.lock \
+          --http-log-path=/var/log/nginx_frontend/access.log \
+          --http-client-body-temp-path=/var/lib/nginx_frontend/body \
+          --http-proxy-temp-path=/var/lib/nginx_frontend/proxy \
+          --http-fastcgi-temp-path=/var/lib/nginx_frontend/fastcgi
+        make
+        make install
+        cd ; rm -rf $TMPDIR
+      ENDSCRIPT
+    end
+
+    # serial_task can only be called after roles defined - not normally a problem, but
+    # rubber auto-roles don't get defined till after all tasks are defined
+    on :load do
+      rubber.serial_task self, :serial_restart, :roles => :nginx_frontend do
+        run "/etc/init.d/nginx_frontend restart"
+      end
+      rubber.serial_task self, :serial_reload, :roles => :nginx_frontend do
+        run "if ! ps ax | grep -v grep | grep -c nginx &> /dev/null; then /etc/init.d/nginx_frontend start; else /etc/init.d/nginx_frontend reload; fi"
+      end
+    end
+    
+    before "deploy:stop", "rubber:nginx_frontend:stop"
+    after "deploy:start", "rubber:nginx_frontend:start"
+    after "deploy:restart", "rubber:nginx_frontend:reload"
+    
+    desc "Stops the nginx web server"
+    task :stop, :roles => :nginx_frontend, :on_error => :continue do
+      run "/etc/init.d/nginx_frontend stop"
+    end
+    
+    desc "Starts the nginx web server"
+    task :start, :roles => :nginx_frontend do
+      run "/etc/init.d/nginx_frontend start"
+    end
+    
+    desc "Restarts the nginx web server"
+    task :restart, :roles => :nginx_frontend do
+      serial_restart
+    end
+  
+    desc "Reloads the nginx web server"
+    task :reload, :roles => :nginx_frontend do
+      serial_reload
+    end
+  
+  end
+
+end

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/logrotate-nginx_frontend

@@ -0,0 +1,14 @@
+<%
+  @path = "/etc/logrotate.d/nginx_frontend"
+  @no_backup = true
+-%>
+/mnt/log/nginx_frontend/*.log {
+        daily
+        missingok
+        dateext
+        create 640 root root
+        sharedscripts
+        postrotate
+                [ ! -f /var/run/nginx_frontend.pid ] || kill -USR1 `cat /var/run/nginx_frontend.pid`
+        endscript
+}

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/monit-nginx_frontend.conf

@@ -0,0 +1,8 @@
+<%
+  @path = '/etc/monit/monit.d/monit-nginx.conf'
+%>
+<% PIDFILE = "/var/run/nginx_frontend.pid" %>
+check process nginx with pidfile <%= PIDFILE %>
+  group nginx-<%= RUBBER_ENV %>
+  start program = "/etc/init.d/nginx start"
+  stop program = "/etc/init.d/nginx stop"

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/nginx.conf

@@ -0,0 +1,50 @@
+<%
+  @path = "/etc/nginx_frontend/nginx.conf"
+  @post = "mkdir -p /mnt/nginx_frontend/logs"
+-%>
+user www-data www-data;
+
+worker_processes <%= rubber_env.nginx_frontend_workers %>;
+
+error_log  /mnt/log/nginx_frontend/error.log;
+
+#pid        logs/nginx.pid;
+
+
+events {
+    worker_connections <%= rubber_env.nginx_worker_connections %>;
+    accept_mutex <%= rubber_env.nginx_frontend_workers > 1 ? "on" : "off" %>;
+    use epoll; # enable for Linux 2.6+
+}
+
+
+http {
+    include       mime.types;
+    default_type  application/octet-stream;
+
+    # Like Apache's combined format but including the forwarded for header
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log /mnt/log/nginx_frontend/access.log main;
+
+    sendfile        on;
+    tcp_nopush on; # off may be better for *some* Comet/long-poll stuff
+    tcp_nodelay off; # on may be better for some Comet/long-poll stuff
+
+
+    keepalive_timeout <%= rubber_env.nginx_frontend_keepalive_timeout %>;
+
+    gzip on;
+    gzip_http_version 1.0;
+    gzip_proxied any;
+    gzip_min_length 500;
+    gzip_disable "MSIE [1-6]\.";
+    gzip_types text/plain text/html text/xml text/css
+               text/comma-separated-values
+               text/javascript application/x-javascript application/javascript
+               application/atom+xml;
+
+    include /etc/nginx/rubber/*.conf;
+}

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/nginx_frontend

@@ -0,0 +1,366 @@
+<%
+  @path = "/etc/init.d/nginx_frontend"
+-%>
+#! /bin/sh
+### BEGIN INIT INFO
+# Provides:          nginx_frontend
+# Required-Start:    $remote_fs $syslog
+# Required-Stop:     $remote_fs $syslog
+# Default-Start:     2 3 4 5
+# Default-Stop:      0 1 6
+# Short-Description: nginx init.d dash script for Ubuntu <=9.10.
+# Description:       nginx init.d dash script for Ubuntu <=9.10.
+### END INIT INFO
+#------------------------------------------------------------------------------
+# nginx - this Debian Almquist shell (dash) script, starts and stops the nginx
+#         daemon for ubuntu 9.10 and lesser version numbered releases.
+#
+# description:  Nginx is an HTTP(S) server, HTTP(S) reverse \
+#               proxy and IMAP/POP3 proxy server.  This \
+#		script will manage the initiation of the \
+#		server and it's process state.
+#
+# processname: nginx
+# config:      /etc/nginx_frontend/nginx.conf
+# pidfile:     /var/run/nginx_frontend.pid
+# Provides:    nginx_frontend
+#
+# Author:  Jason Giedymin
+#          <jason.giedymin AT gmail.com>.
+#
+# Version: 2.0 02-NOV-2009 jason.giedymin AT gmail.com
+# Notes: nginx init.d dash script for Ubuntu <=9.10.
+#
+# This script's project home is:
+# 	http://code.google.com/p/nginx-init-ubuntu/
+#
+#------------------------------------------------------------------------------
+#                               MIT X11 License
+#------------------------------------------------------------------------------
+#
+# Copyright (c) 2009 Jason Giedymin, http://Amuxbit.com formerly
+#				     http://AcronymLabs.com
+#
+# Permission is hereby granted, free of charge, to any person obtaining
+# a copy of this software and associated documentation files (the
+# "Software"), to deal in the Software without restriction, including
+# without limitation the rights to use, copy, modify, merge, publish,
+# distribute, sublicense, and/or sell copies of the Software, and to
+# permit persons to whom the Software is furnished to do so, subject to
+# the following conditions:
+#
+# The above copyright notice and this permission notice shall be
+# included in all copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+# LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+# OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+# WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+#------------------------------------------------------------------------------
+
+#------------------------------------------------------------------------------
+#                               Functions
+#------------------------------------------------------------------------------
+. /lib/lsb/init-functions
+
+#------------------------------------------------------------------------------
+#                               Consts
+#------------------------------------------------------------------------------
+PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
+DAEMON=/usr/local/sbin/nginx
+
+PS="nginx"
+PIDNAME="nginx_frontend"				#lets you do $PS-slave
+PIDFILE=$PIDNAME.pid                    #pid file
+PIDSPATH=/var/run
+
+DESCRIPTION="Nginx Server..."
+
+RUNAS=root                              #user to run as
+
+SCRIPT_OK=0                             #ala error codes
+SCRIPT_ERROR=1                          #ala error codes
+TRUE=1                                  #boolean
+FALSE=0                                 #boolean
+
+lockfile=/var/lock/nginx_frontend
+NGINX_CONF_FILE="/etc/nginx_frontend/nginx.conf"
+
+#------------------------------------------------------------------------------
+#                               Simple Tests
+#------------------------------------------------------------------------------
+
+#test if nginx is a file and executable
+test -x $DAEMON || exit 0
+
+# Include nginx defaults if available
+if [ -f /etc/default/nginx_frontend ] ; then
+        . /etc/default/nginx_frontend
+fi
+
+#set exit condition
+#set -e
+
+#------------------------------------------------------------------------------
+#                               Functions
+#------------------------------------------------------------------------------
+
+setFilePerms(){
+
+        if [ -f $PIDSPATH/$PIDFILE ]; then
+                chmod 400 $PIDSPATH/$PIDFILE
+        fi
+}
+
+configtest() {
+	$DAEMON -t -c $NGINX_CONF_FILE
+}
+
+getPSCount() {
+	return `pgrep -f $PS | wc -l`
+}
+
+isRunning() {
+        if [ $1 ]; then
+                pidof_daemon $1
+                PID=$?
+
+                if [ $PID -gt 0 ]; then
+                        return 1
+                else
+                        return 0
+                fi
+        else
+                pidof_daemon
+                PID=$?
+
+                if [ $PID -gt 0 ]; then
+                        return 1
+                else
+                        return 0
+                fi
+        fi
+}
+
+#courtesy of php-fpm
+wait_for_pid () {
+        try=0
+
+        while test $try -lt 35 ; do
+
+                case "$1" in
+                        'created')
+                        if [ -f "$2" ] ; then
+                                try=''
+                                break
+                        fi
+                        ;;
+
+                        'removed')
+                        if [ ! -f "$2" ] ; then
+                                try=''
+                                break
+                        fi
+                        ;;
+                esac
+
+                #echo -n .
+                try=`expr $try + 1`
+                sleep 1
+        done
+}
+
+status(){
+	isRunning
+	isAlive=$?
+
+	if [ "${isAlive}" -eq $TRUE ]; then
+                echo "$PIDNAME found running with processes:  `pidof $PS`"
+        else
+                echo "$PIDNAME is NOT running."
+        fi
+
+
+}
+
+removePIDFile(){
+	if [ $1 ]; then
+                if [ -f $1 ]; then
+        	        rm -f $1
+	        fi
+        else
+		#Do default removal
+		if [ -f $PIDSPATH/$PIDFILE ]; then
+        	        rm -f $PIDSPATH/$PIDFILE
+	        fi
+        fi
+}
+
+start() {
+        log_daemon_msg "Starting $DESCRIPTION"
+
+	isRunning
+	isAlive=$?
+
+        if [ "${isAlive}" -eq $TRUE ]; then
+                log_end_msg $SCRIPT_ERROR
+        else
+                start-stop-daemon --start --quiet --chuid $RUNAS --pidfile $PIDSPATH/$PIDFILE --exec $DAEMON \
+                -- -c $NGINX_CONF_FILE
+                setFilePerms
+                log_end_msg $SCRIPT_OK
+        fi
+}
+
+stop() {
+	log_daemon_msg "Stopping $DESCRIPTION"
+
+	isRunning
+	isAlive=$?
+        if [ "${isAlive}" -eq $TRUE ]; then
+                start-stop-daemon --stop --quiet --pidfile $PIDSPATH/$PIDFILE
+
+		wait_for_pid 'removed' $PIDSPATH/$PIDFILE
+
+                if [ -n "$try" ] ; then
+                        log_end_msg $SCRIPT_ERROR
+                else
+                        removePIDFile
+	                log_end_msg $SCRIPT_OK
+                fi
+
+        else
+                log_end_msg $SCRIPT_ERROR
+        fi
+}
+
+reload() {
+	configtest || return $?
+
+	log_daemon_msg "Reloading (via HUP) $DESCRIPTION"
+
+        isRunning
+        if [ $? -eq $TRUE ]; then
+		`killall -HUP $PS` #to be safe
+
+                log_end_msg $SCRIPT_OK
+        else
+                log_end_msg $SCRIPT_ERROR
+        fi
+}
+
+quietupgrade() {
+	log_daemon_msg "Peforming Quiet Upgrade $DESCRIPTION"
+
+        isRunning
+        isAlive=$?
+        if [ "${isAlive}" -eq $TRUE ]; then
+		kill -USR2 `cat $PIDSPATH/$PIDFILE`
+		kill -WINCH `cat $PIDSPATH/$PIDFILE.oldbin`
+
+		isRunning
+		isAlive=$?
+		if [ "${isAlive}" -eq $TRUE ]; then
+			kill -QUIT `cat $PIDSPATH/$PIDFILE.oldbin`
+			wait_for_pid 'removed' $PIDSPATH/$PIDFILE.oldbin
+                        removePIDFile $PIDSPATH/$PIDFILE.oldbin
+
+			log_end_msg $SCRIPT_OK
+		else
+			log_end_msg $SCRIPT_ERROR
+
+			log_daemon_msg "ERROR! Reverting back to original $DESCRIPTION"
+
+			kill -HUP `cat $PIDSPATH/$PIDFILE`
+			kill -TERM `cat $PIDSPATH/$PIDFILE.oldbin`
+			kill -QUIT `cat $PIDSPATH/$PIDFILE.oldbin`
+
+			wait_for_pid 'removed' $PIDSPATH/$PIDFILE.oldbin
+                        removePIDFile $PIDSPATH/$PIDFILE.oldbin
+
+			log_end_msg $SCRIPT_ok
+		fi
+        else
+                log_end_msg $SCRIPT_ERROR
+        fi
+}
+
+terminate() {
+        log_daemon_msg "Force terminating (via KILL) $DESCRIPTION"
+
+	PIDS=`pidof $PS` || true
+
+	[ -e $PIDSPATH/$PIDFILE ] && PIDS2=`cat $PIDSPATH/$PIDFILE`
+
+	for i in $PIDS; do
+		if [ "$i" = "$PIDS2" ]; then
+	        	kill $i
+                        wait_for_pid 'removed' $PIDSPATH/$PIDFILE
+			removePIDFile
+		fi
+	done
+
+	log_end_msg $SCRIPT_OK
+}
+
+destroy() {
+	log_daemon_msg "Force terminating and may include self (via KILLALL) $DESCRIPTION"
+	killall $PS -q >> /dev/null 2>&1
+	log_end_msg $SCRIPT_OK
+}
+
+pidof_daemon() {
+    PIDS=`pidof $PS` || true
+
+    [ -e $PIDSPATH/$PIDFILE ] && PIDS2=`cat $PIDSPATH/$PIDFILE`
+
+    for i in $PIDS; do
+        if [ "$i" = "$PIDS2" ]; then
+            return 1
+        fi
+    done
+    return 0
+}
+
+case "$1" in
+  start)
+	start
+        ;;
+  stop)
+	stop
+        ;;
+  restart|force-reload)
+	stop
+	sleep 1
+	start
+        ;;
+  reload)
+	$1
+	;;
+  status)
+	status
+	;;
+  configtest)
+        $1
+        ;;
+  quietupgrade)
+	$1
+	;;
+  terminate)
+	$1
+	;;
+  destroy)
+	$1
+	;;
+  *)
+	FULLPATH=/etc/init.d/$PS
+	echo "Usage: $FULLPATH {start|stop|restart|force-reload|status|configtest|quietupgrade|terminate|destroy}"
+	echo "       The 'destroy' command should only be used as a last resort."
+	exit 1
+	;;
+esac
+
+exit 0

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/web_tools/nginx-tools.conf

@@ -0,0 +1,55 @@
+<%
+  @path = "/etc/nginx/rubber/tools.conf"
+%>
+
+
+# This server is setup to serve http.
+server
+{
+  listen <%= rubber_env.web_tools_port %>;
+  server_name <%= rubber_env.full_host %>;
+  root /var/www;
+
+  rewrite (.*) https://$host:<%= rubber_env.web_tools_ssl_port %>$1 break;
+}
+
+# This server is setup to serve https.
+server
+{
+  listen <%= rubber_env.web_tools_ssl_port %>;
+  server_name <%= rubber_env.full_host %>;
+
+  ssl                  on;
+  ssl_certificate    /etc/ssl/certs/ssl-cert-snakeoil.pem;
+  ssl_certificate_key /etc/ssl/private/ssl-cert-snakeoil.key;
+  # ssl_certificate      <%= RUBBER_ROOT %>/config/snapmylife.com.crt;
+  # ssl_certificate_key  <%= RUBBER_ROOT %>/config/snapmylife.com.key;
+
+  auth_basic            "Rubber Admin Tools";
+  auth_basic_user_file  <%= RUBBER_ROOT %>/config/<%= rubber_env.app_name %>.auth;
+
+  client_max_body_size 10M;
+  root /var/www;
+
+
+  location /
+  {
+    # If the file exists as a static file serve it directly without
+    # running all the other rewrite tests on it
+    if (-f $request_filename)
+    {
+      break;
+    }
+
+    # check for index.html for directory index
+    # if its there on the filesystem then rewite
+    # the url to add /index.html to the end of it
+    # and then break to send it to the next config rules.
+    if (-f $request_filename/index.html)
+    {
+      rewrite (.*) $1/index.html break;
+    }
+  }
+
+  include /etc/nginx/rubber/tools/*.conf;
+}

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/web_tools/tools-index.html

@@ -0,0 +1,30 @@
+<%
+  @path = "/var/www/index.html"
+%>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
+<html>
+	<head>
+		<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+		<title>Rubber Admin Tools</title>
+	</head>
+	<body>
+		<h1>Rubber Admin Tools</h1>
+		<ul>
+
+      <li><a href="/munin/">Munin</a></li>
+
+      <% if cruise_host = rubber_instances.for_role('cruise').first %>
+        <li><a href="http://<%= cruise_host %>/cruise/">CruiseControl</a></li>
+      <% end %>
+
+		  <% rubber_instances.for_role('haproxy').each do |ic| %>
+		      <li><a href="/haproxy_<%= ic.name %>/">HAProxy <%= ic.name %></a></li>
+		  <% end %>
+
+      <% rubber_instances.each do |ic| %>
+          <li><a href="/monit_<%= ic.name %>/">Monit <%= ic.name %></a></li>
+      <% end %>
+
+		</ul>
+	</body>
+</html>

data/generators/vulcanize/templates/nginx_frontend/config/rubber/role/web_tools/tools-nginx.auth

@@ -0,0 +1,7 @@
+<%
+  @path = "#{RUBBER_ROOT}/config/#{rubber_env.app_name}.auth"
+  user = rubber_env.web_tools_user || 'admin'
+  pass = rubber_env.web_tools_password || rand(1000000000).to_s
+%>
+
+<%= user %>:<%= pass.crypt(sprintf('%02d', rand(100)))%>

data/generators/vulcanize/templates/nginx_frontend/config/rubber/rubber-nginx_frontend.yml

@@ -0,0 +1,22 @@
+
+# Uses from base rubber config
+# domain: foo.com
+
+# Uses from rubber-complete.yml
+# web_tools_port: 8080
+
+nginx_frontend_version: 0.7.65
+
+ # you generally only need one nginx worker unless you're serving large amounts of static files which require blocking disk reads
+nginx_frontend_workers: 1
+
+# increase if you have lots of clients
+nginx_frontend_worker_connections: 1024
+
+# ~2 seconds is often enough for most folks to parse HTML/CSS and
+# retrieve needed images/icons/frames, connections are cheap in
+# nginx so increasing this is generally safe...
+nginx_frontend_keepalive_timeout: 2
+
+roles:
+  nginx_frontend:

data/generators/vulcanize/templates/nginx_frontend/templates.yml

@@ -0,0 +1 @@
+description: The nginx module, configured to act as the front end for a web application backend server.

data/generators/vulcanize/templates/unicorn/config/rubber/deploy-unicorn.rb

@@ -0,0 +1,43 @@
+namespace :rubber do
+
+  namespace :unicorn do
+
+    rubber.allow_optional_tasks(self)
+
+    # serial_task can only be called after roles defined - not normally a problem, but
+    # rubber auto-roles don't get defined till after all tasks are defined
+    on :load do
+      rubber.serial_task self, :serial_restart, :roles => :unicorn do
+        run "/etc/init.d/unicorn restart"
+      end
+      rubber.serial_task self, :serial_reload, :roles => :unicorn do
+        run "if ! ps ax | grep -v grep | grep -c unicorn_rails &> /dev/null; then /etc/init.d/unicorn start; else /etc/init.d/unicorn reload; fi"
+      end
+    end
+
+    before "deploy:stop", "rubber:unicorn:stop"
+    after "deploy:start", "rubber:unicorn:start"
+    after "deploy:restart", "rubber:unicorn:reload"
+
+    desc "Stops the unicorn web server"
+    task :stop, :roles => :unicorn, :on_error => :continue do
+      run "/etc/init.d/unicorn stop"
+    end
+
+    desc "Starts the unicorn web server"
+    task :start, :roles => :unicorn do
+      run "/etc/init.d/unicorn start"
+    end
+
+    desc "Restarts the unicorn web server"
+    task :restart, :roles => :unicorn do
+      serial_restart
+    end
+
+    desc "Reloads the unicorn web server"
+    task :reload, :roles => :unicorn do
+      serial_reload
+    end
+
+  end
+end

data/generators/vulcanize/templates/unicorn/config/rubber/role/nginx_frontend/unicorn_nginx_server.conf

@@ -0,0 +1,90 @@
+<%
+  @path = "/etc/nginx_frontend/unicorn_nginx_server.conf"
+
+  # For unicorn nodes running on the same host as nginx, we can use unix domain sockets, otherwise fall back to TCP
+  unicorn_nodes = rubber_instances.for_role('nginx_frontend')
+  self_instance = rubber_instances[rubber_env.host]
+
+  # Instead of pointing to the real release dir, we point to the capistrano symlink (current). This allows us to
+  # do hot deploys without restarting nginx.
+  deploy_to = "/mnt/#{rubber_env.app_name}-#{RUBBER_ENV}"
+-%>
+
+# this can be any application server, not just Unicorn/Rainbows!
+upstream app_server {
+    # fail_timeout=0 means we always retry an upstream even if it failed
+    # to return a good HTTP response (in case the Unicorn master nukes a
+    # single worker for timing out).
+
+    <% unicorn_nodes.each do |n| %>
+      <% if self_instance.full_name == n.full_name %>
+        # for UNIX domain socket setups:
+        server unix:/tmp/.sock fail_timeout=0;
+      <% else %>
+        server <%= n.full_name %>:8080 fail_timeout=0;
+      <% endif %>
+    <% end %>
+}
+
+server {
+    #listen       80;
+    listen 80 default deferred; # for Linux
+    client_max_body_size 1G;
+
+    server_name  _;
+    root <%= "#{deploy_to}/current/public" %>;
+
+    # If we have Rails-style proxy-busting query string, do internal redirect to special location which adds a far-future expire header.
+    # When opening static assets without proxy-busting query string, we do not redirect, and do not set the expire header (for example when referencing images from css files not parsed by rails
+    if ($query_string ~* "^[0-9]{10}$") {
+      rewrite ^(.*) /add_expires_header$1;
+      break;
+    }
+    location /add_expires_header {
+      expires max;
+    }
+
+    location / {
+      # an HTTP header important enough to have its own Wikipedia entry:
+      #   http://en.wikipedia.org/wiki/X-Forwarded-For
+      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+
+      # enable this if and only if you use HTTPS, this helps Rack
+      # set the proper protocol for doing redirects:
+      # proxy_set_header X-Forwarded-Proto https;
+
+      # pass the Host: header from the client right along so redirects
+      # can be set properly within the Rack application
+      proxy_set_header Host $http_host;
+
+      # we don't want nginx trying to do something clever with
+      # redirects, we set the Host: header above already.
+      proxy_redirect off;
+
+      # set "proxy_buffering off" *only* for Rainbows! when doing
+      # Comet/long-poll stuff.  It's also safe to set if you're
+      # using only serving fast clients with Unicorn + nginx.
+      # Otherwise you _want_ nginx to buffer responses to slow
+      # clients, really.
+      # proxy_buffering off;
+
+      # Try to serve static files from nginx, no point in making an
+      # *application* server like Unicorn/Rainbows! serve static files.
+      if (!-f $request_filename) {
+        proxy_pass http://app_server;
+        break;
+      }
+    }
+
+    # TODO: Move this into our app
+    location /private/3sellers/ {
+      internal;
+      alias   <%= deploy_to %>/shared/private/3sellers/;
+    }
+
+    # Rails error pages
+    error_page 500 502 503 504 /500.html;
+    location = /500.html {
+      root <%= deploy_to %>/current/public;
+    }
+}

data/generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/logrotate-unicorn

@@ -0,0 +1,16 @@
+<%
+  @path = "/etc/logrotate.d/unicorn"
+  @no_backup = true
+
+  deploy_to = "/mnt/#{rubber_env.app_name}-#{RUBBER_ENV}"
+-%>
+<%= deploy_to %>/shared/log/unicorn*.log {
+        daily
+        missingok
+        dateext
+        create 640 <%= rubber_env.app_user %> <%= rubber_env.app_user %>
+        sharedscripts
+        postrotate
+                [ ! -f <%= deploy_to %>/shared/pids/unicorn.pid ] || kill -USR1 `cat <%= deploy_to %>/shared/pids/unicorn.pid`
+        endscript
+}

data/generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/monit-unicorn.conf

@@ -0,0 +1,10 @@
+<%
+  @path = '/etc/monit/monit.d/monit-unicorn.conf'
+
+  deploy_to = "/mnt/#{rubber_env.app_name}-#{RUBBER_ENV}"
+%>
+<% PIDFILE = "#{deploy_to}/shared/pids/unicorn.pid" %>
+check process unicorn with pidfile <%= PIDFILE %>
+  group unicorn-<%= RUBBER_ENV %>
+  start program = "/etc/init.d/unicorn start"
+  stop program = "/etc/init.d/unicorn stop"

data/generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/unicorn

@@ -0,0 +1,327 @@
+<%
+  @path = "/etc/init.d/unicorn"
+
+  deploy_to = "/mnt/#{rubber_env.app_name}-#{RUBBER_ENV}"
+-%>
+#! /bin/sh
+### BEGIN INIT INFO
+# Provides:          unicorn_rails
+# Required-Start:    $remote_fs $syslog
+# Required-Stop:     $remote_fs $syslog
+# Default-Start:     2 3 4 5
+# Default-Stop:      0 1 6
+# Short-Description: unicorn_rails init.d dash script for Ubuntu <=9.10.
+# Description:       unicorn_rails init.d dash script for Ubuntu <=9.10.
+### END INIT INFO
+#------------------------------------------------------------------------------
+# unicorn - this Debian Almquist shell (dash) script, starts and stops the unicorn
+#           daemon for ubuntu 9.10 and lesser version numbered releases.
+#
+# description:  Unicorn is an HTTP server for Rack applications designed to only serve fast clients on low-latency, \
+#               high-bandwidth connections and take advantage of features in Unix/Unix-like kernels. Slow clients \
+#               should only be served by placing a reverse proxy capable of fully buffering both the the request and \
+#               response in between Unicorn and slow clients.
+#
+# processname: unicorn_rails
+# config:      /etc/unicorn/unicorn.conf
+# pidfile:     <% "#{deploy_to}/shared/pids/unicorn.pid" %>
+# Provides:    unicorn_rails
+#
+# Author:  Henning Kiel
+#          <henning.kiel AT gmail.com>.
+#
+# Version: 0.1 18-FEB-2010 henning.kiel AT gmail.com
+# Notes: unicorn_rails init.d dash script for Ubuntu <=9.10.
+#
+#------------------------------------------------------------------------------
+#                               MIT X11 License
+#------------------------------------------------------------------------------
+#
+# Copyright (c) 2010 Henning Kiel, http://www.axtro.es
+#
+# Permission is hereby granted, free of charge, to any person obtaining
+# a copy of this software and associated documentation files (the
+# "Software"), to deal in the Software without restriction, including
+# without limitation the rights to use, copy, modify, merge, publish,
+# distribute, sublicense, and/or sell copies of the Software, and to
+# permit persons to whom the Software is furnished to do so, subject to
+# the following conditions:
+#
+# The above copyright notice and this permission notice shall be
+# included in all copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+# LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+# OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+# WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+#------------------------------------------------------------------------------
+
+#------------------------------------------------------------------------------
+#                               Functions
+#------------------------------------------------------------------------------
+. /lib/lsb/init-functions
+
+#------------------------------------------------------------------------------
+#                               Consts
+#------------------------------------------------------------------------------
+PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
+DAEMON=/usr/local/bin/unicorn_rails
+
+PS="unicorn_rails"
+PIDNAME="unicorn"				#lets you do $PS-slave
+PIDFILE=$PIDNAME.pid                    #pid file
+PIDSPATH=<% "#{deploy_to}/shared/pids %>
+
+DESCRIPTION="Unicorn Server..."
+
+RUNAS=<%= rubber_env.app_user %>        #user to run as
+
+SCRIPT_OK=0                             #ala error codes
+SCRIPT_ERROR=1                          #ala error codes
+TRUE=1                                  #boolean
+FALSE=0                                 #boolean
+
+UNICORN_CONF_FILE="/etc/unicorn/unicorn.conf"
+
+#------------------------------------------------------------------------------
+#                               Simple Tests
+#------------------------------------------------------------------------------
+
+#test if unicorn_rails is a file and executable
+test -x $DAEMON || exit 0
+
+# Include unicorn_rails defaults if available
+if [ -f /etc/default/unicorn_rails ] ; then
+        . /etc/default/unicorn_rails
+fi
+
+#set exit condition
+#set -e
+
+#------------------------------------------------------------------------------
+#                               Functions
+#------------------------------------------------------------------------------
+
+setFilePerms(){
+
+        if [ -f $PIDSPATH/$PIDFILE ]; then
+                chmod 400 $PIDSPATH/$PIDFILE
+        fi
+}
+
+configtest() {
+	$DAEMON -t -c $UNICORN_CONF_FILE
+}
+
+getPSCount() {
+	return `pgrep -f $PS | wc -l`
+}
+
+isRunning() {
+        if [ $1 ]; then
+                pidof_daemon $1
+                PID=$?
+
+                if [ $PID -gt 0 ]; then
+                        return 1
+                else
+                        return 0
+                fi
+        else
+                pidof_daemon
+                PID=$?
+
+                if [ $PID -gt 0 ]; then
+                        return 1
+                else
+                        return 0
+                fi
+        fi
+}
+
+#courtesy of php-fpm
+wait_for_pid () {
+        try=0
+
+        while test $try -lt 35 ; do
+
+                case "$1" in
+                        'created')
+                        if [ -f "$2" ] ; then
+                                try=''
+                                break
+                        fi
+                        ;;
+
+                        'removed')
+                        if [ ! -f "$2" ] ; then
+                                try=''
+                                break
+                        fi
+                        ;;
+                esac
+
+                #echo -n .
+                try=`expr $try + 1`
+                sleep 1
+        done
+}
+
+status(){
+	isRunning
+	isAlive=$?
+
+	if [ "${isAlive}" -eq $TRUE ]; then
+                echo "$PIDNAME found running with processes:  `pidof $PS`"
+        else
+                echo "$PIDNAME is NOT running."
+        fi
+
+
+}
+
+removePIDFile(){
+	if [ $1 ]; then
+                if [ -f $1 ]; then
+        	        rm -f $1
+	        fi
+        else
+		#Do default removal
+		if [ -f $PIDSPATH/$PIDFILE ]; then
+        	        rm -f $PIDSPATH/$PIDFILE
+	        fi
+        fi
+}
+
+start() {
+        log_daemon_msg "Starting $DESCRIPTION"
+
+	isRunning
+	isAlive=$?
+
+        if [ "${isAlive}" -eq $TRUE ]; then
+                log_end_msg $SCRIPT_ERROR
+        else
+                start-stop-daemon --start --quiet --chuid $RUNAS --pidfile $PIDSPATH/$PIDFILE --exec $DAEMON \
+                -- -c $UNICORN_CONF_FILE
+                setFilePerms
+                log_end_msg $SCRIPT_OK
+        fi
+}
+
+stop() {
+	log_daemon_msg "Stopping $DESCRIPTION"
+
+	isRunning
+	isAlive=$?
+        if [ "${isAlive}" -eq $TRUE ]; then
+                start-stop-daemon --stop --quiet --pidfile $PIDSPATH/$PIDFILE
+
+		wait_for_pid 'removed' $PIDSPATH/$PIDFILE
+
+                if [ -n "$try" ] ; then
+                        log_end_msg $SCRIPT_ERROR
+                else
+                        removePIDFile
+	                log_end_msg $SCRIPT_OK
+                fi
+
+        else
+                log_end_msg $SCRIPT_ERROR
+        fi
+}
+
+reload() {
+	configtest || return $?
+
+	log_daemon_msg "Reloading (via HUP) $DESCRIPTION"
+
+        isRunning
+        if [ $? -eq $TRUE ]; then
+		`killall -HUP $PS` #to be safe
+
+                log_end_msg $SCRIPT_OK
+        else
+                log_end_msg $SCRIPT_ERROR
+        fi
+}
+
+terminate() {
+        log_daemon_msg "Force terminating (via KILL) $DESCRIPTION"
+
+	PIDS=`pidof $PS` || true
+
+	[ -e $PIDSPATH/$PIDFILE ] && PIDS2=`cat $PIDSPATH/$PIDFILE`
+
+	for i in $PIDS; do
+		if [ "$i" = "$PIDS2" ]; then
+	        	kill $i
+                        wait_for_pid 'removed' $PIDSPATH/$PIDFILE
+			removePIDFile
+		fi
+	done
+
+	log_end_msg $SCRIPT_OK
+}
+
+destroy() {
+	log_daemon_msg "Force terminating and may include self (via KILLALL) $DESCRIPTION"
+	killall $PS -q >> /dev/null 2>&1
+	log_end_msg $SCRIPT_OK
+}
+
+pidof_daemon() {
+    PIDS=`pidof $PS` || true
+
+    [ -e $PIDSPATH/$PIDFILE ] && PIDS2=`cat $PIDSPATH/$PIDFILE`
+
+    for i in $PIDS; do
+        if [ "$i" = "$PIDS2" ]; then
+            return 1
+        fi
+    done
+    return 0
+}
+
+case "$1" in
+  start)
+	start
+        ;;
+  stop)
+	stop
+        ;;
+  restart|force-reload)
+	stop
+	sleep 1
+	start
+        ;;
+  reload)
+	$1
+	;;
+  status)
+	status
+	;;
+  configtest)
+        $1
+        ;;
+  quietupgrade)
+	$1
+	;;
+  terminate)
+	$1
+	;;
+  destroy)
+	$1
+	;;
+  *)
+	FULLPATH=/etc/init.d/$PS
+	echo "Usage: $FULLPATH {start|stop|restart|force-reload|status|configtest|quietupgrade|terminate|destroy}"
+	echo "       The 'destroy' command should only be used as a last resort."
+	exit 1
+	;;
+esac
+
+exit 0

data/generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/unicorn.conf

@@ -0,0 +1,86 @@
+<%
+  @path = "/etc/unicorn/unicorn.conf"
+  @post = "mkdir -p /mnt/log/unicorn"
+
+  deploy_to = "/mnt/#{rubber_env.app_name}-#{RUBBER_ENV}"
+-%>
+# Sample configuration file for Unicorn (not Rack)
+#
+# See http://unicorn.bogomips.org/Unicorn/Configurator.html for complete
+# documentation.
+
+# Use at least one worker per core if you're on a dedicated server,
+# more will usually help for _short_ waits on databases/caches.
+worker_processes <%= rubber_env.unicorn_workers %>
+
+# Help ensure your application will always spawn in the symlinked
+# "current" directory that Capistrano sets up.
+working_directory "<%= deploy_to %>/current" # available in 0.94.0+
+
+# listen on both a Unix domain socket and a TCP port,
+# we use a shorter backlog for quicker failover when busy
+listen "/tmp/.sock", :backlog => 64
+listen 8080, :tcp_nopush => true
+
+# nuke workers after 30 seconds instead of 60 seconds (the default)
+timeout <%= rubber_env.unicorn_worker_timeout %>
+
+# feel free to point this anywhere accessible on the filesystem
+pid "<%= deploy_to %>/shared/pids/unicorn.pid"
+
+# some applications/frameworks log to stderr or stdout, so prevent
+# them from going to /dev/null when daemonized here:
+stderr_path "<%= deploy_to %>/shared/log/unicorn.stderr.log"
+stdout_path "<%= deploy_to %>/shared/log/unicorn.stdout.log"
+
+# combine REE with "preload_app true" for memory savings
+# http://rubyenterpriseedition.com/faq.html#adapt_apps_for_cow
+preload_app <%= rubber_env.unicorn_preload_app %>
+<%= rubber_env.unicorn_use_copy_on_write_if_available || "false" %> and GC.respond_to?(:copy_on_write_friendly=) and
+  GC.copy_on_write_friendly = true
+
+before_fork do |server, worker|
+  # the following is highly recomended for Rails + "preload_app true"
+  # as there's no need for the master process to hold a connection
+  defined?(ActiveRecord::Base) and
+    ActiveRecord::Base.connection.disconnect!
+
+  # The following is only recommended for memory/DB-constrained
+  # installations.  It is not needed if your system can house
+  # twice as many worker_processes as you have configured.
+  #
+  # This allows a new master process to incrementally
+  # phase out the old master process with SIGTTOU to avoid a
+  # thundering herd (especially in the "preload_app false" case)
+  # when doing a transparent upgrade.  The last worker spawned
+  # will then kill off the old master process with a SIGQUIT.
+  old_pid = "#{server.config[:pid]}.oldbin"
+  if old_pid != server.pid
+    begin
+      sig = (worker.nr + 1) >= server.worker_processes ? :QUIT : :TTOU
+      Process.kill(sig, File.read(old_pid).to_i)
+    rescue Errno::ENOENT, Errno::ESRCH
+    end
+  end
+
+  # *optionally* throttle the master from forking too quickly by sleeping
+  sleep 1
+end
+
+after_fork do |server, worker|
+  # per-process listener ports for debugging/admin/migrations
+  # addr = "127.0.0.1:#{<%= rubber_env.unicorn_base_port %> + worker.nr}"
+  # server.listen(addr, :tries => -1, :delay => 5, :tcp_nopush => true)
+
+  # the following is *required* for Rails + "preload_app true",
+  defined?(ActiveRecord::Base) and
+    ActiveRecord::Base.establish_connection
+
+  # if preload_app is true, then you may also want to check and
+  # restart any other shared sockets/descriptors such as Memcached,
+  # and Redis.  TokyoCabinet file handles are safe to reuse
+  # between any number of forked children (assuming your kernel
+  # correctly implements pread()/pwrite() system calls)
+  Rails.cache.instance_variable_get(:@data).reset if defined?(Rails.cache) and Rails.cache.class == ActiveSupport::Cache::MemCacheStore
+  CACHE.reset if defined?(CACHE)
+end

data/generators/vulcanize/templates/unicorn/config/rubber/rubber-unicorn.yml

@@ -0,0 +1,13 @@
+unicorn_version: 0.96.1
+unicorn_workers: "#{RUBBER_ENV == 'production' ? 8 : 2}"
+unicorn_worker_timeout: 30
+unicorn_base_port: 7000
+unicorn_preload_app: true
+unicorn_use_copy_on_write_if_available: true
+
+role_dependencies:
+  unicorn: [nginx_frontend]
+
+roles:
+  unicorn:
+    gems: [[unicorn, "#{unicorn_version}"]]

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification 
 name: axtro-rubber
 version: !ruby/object:Gem::Version 
-  version: 1.2.0
+  version: 1.2.1
 platform: ruby
 authors: 
 - Matt Conway
@@ -9,9 +9,19 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-02-06 00:00:00 +01:00
+date: 2010-02-22 00:00:00 +01:00
 default_executable: vulcanize
 dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: gemcutter
+  type: :runtime
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - <
+      - !ruby/object:Gem::Version 
+        version: 0.4.0
+    version: 
 - !ruby/object:Gem::Dependency 
   name: capistrano
   type: :runtime
@@ -80,7 +90,6 @@ extensions: []
 
 extra_rdoc_files: 
 - README
-- TODO
 files: 
 - CHANGELOG
 - COPYING
@@ -207,6 +216,16 @@ files:
 - generators/vulcanize/templates/nginx/config/rubber/role/web_tools/tools-nginx.auth
 - generators/vulcanize/templates/nginx/config/rubber/rubber-nginx.yml
 - generators/vulcanize/templates/nginx/templates.yml
+- generators/vulcanize/templates/nginx_frontend/config/rubber/deploy-nginx_frontend.rb
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/logrotate-nginx_frontend
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/monit-nginx_frontend.conf
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/nginx.conf
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/nginx_frontend/nginx_frontend
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/web_tools/nginx-tools.conf
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/web_tools/tools-index.html
+- generators/vulcanize/templates/nginx_frontend/config/rubber/role/web_tools/tools-nginx.auth
+- generators/vulcanize/templates/nginx_frontend/config/rubber/rubber-nginx_frontend.yml
+- generators/vulcanize/templates/nginx_frontend/templates.yml
 - generators/vulcanize/templates/passenger/config/rubber/deploy-passenger.rb
 - generators/vulcanize/templates/passenger/config/rubber/role/passenger/munin-passenger-memory.conf
 - generators/vulcanize/templates/passenger/config/rubber/role/passenger/munin-passenger-sudoers.conf
@@ -232,6 +251,13 @@ files:
 - generators/vulcanize/templates/sphinx/config/rubber/role/sphinx/monit-sphinx.conf
 - generators/vulcanize/templates/sphinx/config/rubber/rubber-sphinx.yml
 - generators/vulcanize/templates/sphinx/templates.yml
+- generators/vulcanize/templates/unicorn/config/rubber/deploy-unicorn.rb
+- generators/vulcanize/templates/unicorn/config/rubber/role/nginx_frontend/unicorn_nginx_server.conf
+- generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/logrotate-unicorn
+- generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/monit-unicorn.conf
+- generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/unicorn
+- generators/vulcanize/templates/unicorn/config/rubber/role/unicorn/unicorn.conf
+- generators/vulcanize/templates/unicorn/config/rubber/rubber-unicorn.yml
 - generators/vulcanize/vulcanize_generator.rb
 - lib/capistrano/hostcmd.rb
 - lib/rubber.rb
@@ -293,6 +319,6 @@ summary: A capistrano plugin for managing multi-instance deployments to the clou
 test_files: 
 - test/environment_test.rb
 - test/generator_test.rb
-- test/instance_test.rb
 - test/test_helper.rb
 - test/util_test.rb
+- test/instance_test.rb