capistrano-o2web-recipes 0.1.0 → 0.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4a34a87eb36bb96737e41cd873dc860a5138e7a4
-  data.tar.gz: f2bfc9af49e8f2fb539adb2afc1ba12997486574
+  metadata.gz: 140e55a898f8910d2f6d3ccb975b39d67360f9bc
+  data.tar.gz: 153ef8d64072b53ac7219a1860a18a4cc61d48a0
 SHA512:
-  metadata.gz: 621d085987cd5404bd55ad731dab560d741415cfd0286659412c090fef06b4576eb7a589b1d6ffff8e5667105360e300a4a92b0a56bb7fb97925d3a7be12a065
-  data.tar.gz: 4c8de6b1b5ca797b8c8b1111d96a89a97ea8a42c266a3a7e48517a33697ecfb71af33de1428fa34c6f9c2c7b301452a7b5d099462f2a0e51a83fc89a36135d88
+  metadata.gz: b7c71c4a88cd6c7f569f2dbeb65e630328707082a492b56cb61f7dfdaacf3fd381323444ec230324d1c50dd5e6104659feed9feda2e04737243cff199cb2c13e
+  data.tar.gz: e36edddf8af692d6356012daf2c5761a1f2e5c4689d8548d6564a47c543c314719f490a31b61d7a929011a8dd824374e2029f3fecabedf0af15f2b11ca20e00d

data/README.md

@@ -58,11 +58,11 @@ set :files_private_dirs, fetch(:files_private_dirs).push(*%W[
 ])
 set :nginx_max_body_size, '10m'
 # default to ['system', 'images']
-set :nginx_assets_dirs, fetch(:nginx_assets_dirs).push(*%W[
+set :nginx_public_dirs, fetch(:nginx_public_dirs).push(*%W[
   spree
 ])
 # default to ['404.html', '422.html', '500.html', 'favicon.ico']
-set :nginx_assets_files, fetch(:nginx_assets_files).push(*%W[
+set :nginx_public_files, fetch(:nginx_public_files).push(*%W[
 ])
 # default to {}
 set :nginx_redirects, fetch(:nginx_redirects).merge({

data/lib/capistrano/helpers/rsync.rb

@@ -0,0 +1,24 @@
+module Capistrano
+  module Helpers
+    module Rsync
+      def send_files(type, server, root = 'public')
+        raise "No server given" if !server
+        system "rsync --progress -rue 'ssh -p #{fetch(:port)}' #{root}/#{type} #{server.user}@#{server.hostname}:#{shared_path}/#{root}/"
+      end
+
+      def get_files(type, server, root = 'public')
+        raise "No server given" if !server
+        puts "Importing #{type}. Please wait..."
+        system "rsync --progress -rue 'ssh -p #{fetch(:port)}' #{server.user}@#{server.hostname}:#{shared_path}/#{root}/#{type} ./#{root}/"
+      end
+
+      def upload(server, source, destination)
+        File.open(source, 'w') do |f|
+          f.puts ERB.new(File.read("#{source}.erb"), nil, '-').result
+        end
+        system "rsync --rsync-path='sudo rsync' -avzO -e 'ssh -p #{fetch(:port)}' '#{source}' #{fetch(:deployer_name)}@#{server.hostname}:#{destination}"
+        FileUtils.rm_f source
+      end
+    end
+  end
+end

data/lib/capistrano/o2web_recipes/version.rb

@@ -1,5 +1,5 @@
 module Capistrano
   module O2webRecipes
-    VERSION = "0.1.0"
+    VERSION = "0.1.1"
   end
 end

data/lib/capistrano/tasks/o2web_recipes.rake

@@ -1,4 +1,7 @@
 require 'erb'
+require 'capistrano/helpers/rsync'
+
+include Capistrano::Helpers::Rsync
 
 namespace :load do
   task :defaults do
@@ -80,17 +83,6 @@ namespace :tmp_cache do
 end
 
 namespace :files do
-  def send_files(type, server, root = 'public')
-    raise "No server given" if !server
-    system "rsync --progress -rue 'ssh -p #{fetch(:port)}' #{root}/#{type} #{server.user}@#{server.hostname}:#{shared_path}/#{root}/"
-  end
-
-  def get_files(type, server, root = 'public')
-    raise "No server given" if !server
-    puts "Importing #{type}. Please wait..."
-    system "rsync --progress -rue 'ssh -p #{fetch(:port)}' #{server.user}@#{server.hostname}:#{shared_path}/#{root}/#{type} ./#{root}/"
-  end
-
   desc 'Import public files'
   task :server_to_local do
     on roles :app do |host|
@@ -161,14 +153,6 @@ namespace :db do
 end
 
 namespace :nginx do
-  def upload(server, source, destination)
-    File.open(source, 'w') do |f|
-      f.puts ERB.new(File.read("#{source}.erb"), nil, '-').result
-    end
-    system "rsync --rsync-path='sudo rsync' -avzO -e 'ssh -p #{fetch(:port)}' '#{source}' #{fetch(:deployer_name)}@#{server.hostname}:#{destination}"
-    FileUtils.rm_f source
-  end
-
   desc 'Export nginx configuration files'
   task :local_to_server do
     on roles :app do |host|
@@ -177,3 +161,35 @@ namespace :nginx do
     end
   end
 end
+
+namespace :monit do
+  desc 'Export monit configuration file'
+  task :local_to_server do
+    on roles :app do |host|
+      upload host, 'config/monitrc', '/etc/monit/monitrc'
+      execute :sudo, 'chown root:root /etc/monit/monitrc'
+      execute :sudo, 'chmod 0700 /etc/monit/monitrc'
+    end
+  end
+
+  desc 'Start monit'
+  task :start do
+    on roles :app do |host|
+      execute :sudo, 'monit start all'
+    end
+  end
+
+  desc 'Stop monit'
+  task :stop do
+    on roles :app do |host|
+      execute :sudo, 'monit stop all'
+    end
+  end
+
+  desc 'Reload monit'
+  task :reload do
+    on roles :app do |host|
+      execute :sudo, 'monit reload'
+    end
+  end
+end

data/lib/generators/capistrano/o2web_recipes/install/templates/config/monitrc.erb

@@ -0,0 +1,253 @@
+###############################################################################
+## Monit control file
+###############################################################################
+##
+## Comments begin with a '#' and extend through the end of the line. Keywords
+## are case insensitive. All path's MUST BE FULLY QUALIFIED, starting with '/'.
+##
+## Below you will find examples of some frequently used statements. For
+## information about the control file and a complete list of statements and
+## options, please have a look in the Monit manual.
+##
+##
+###############################################################################
+## Global section
+###############################################################################
+##
+## Start Monit in the background (run as a daemon):
+#
+set daemon 120              # check services at 2-minute intervals
+#   with start delay 240    # optional: delay the first check by 4-minutes (by
+#                           # default Monit check immediately after Monit start)
+#
+#
+## Set syslog logging with the 'daemon' facility. If the FACILITY option is
+## omitted, Monit will use 'user' facility by default. If you want to log to
+## a standalone log file instead, specify the full path to the log file
+#
+# set logfile syslog facility log_daemon
+set logfile /var/log/monit.log
+#
+#
+## Set the location of the Monit id file which stores the unique id for the
+## Monit instance. The id is generated and stored on first Monit start. By
+## default the file is placed in $HOME/.monit.id.
+#
+# set idfile /var/.monit.id
+set idfile /var/lib/monit/id
+#
+## Set the location of the Monit state file which saves monitoring states
+## on each cycle. By default the file is placed in $HOME/.monit.state. If
+## the state file is stored on a persistent filesystem, Monit will recover
+## the monitoring state across reboots. If it is on temporary filesystem, the
+## state will be lost on reboot which may be convenient in some situations.
+#
+set statefile /var/lib/monit/state
+#
+## Set the list of mail servers for alert delivery. Multiple servers may be
+## specified using a comma separator. If the first mail server fails, Monit
+# will use the second mail server in the list and so on. By default Monit uses
+# port 25 - it is possible to override this with the PORT option.
+#
+# set mailserver mail.bar.baz,               # primary mailserver
+#                backup.bar.baz port 10025,  # backup mailserver on port 10025
+#                localhost                   # fallback relay
+#
+#
+## By default Monit will drop alert events if no mail servers are available.
+## If you want to keep the alerts for later delivery retry, you can use the
+## EVENTQUEUE statement. The base directory where undelivered alerts will be
+## stored is specified by the BASEDIR option. You can limit the maximal queue
+## size using the SLOTS option (if omitted, the queue is limited by space
+## available in the back end filesystem).
+#
+set eventqueue
+  basedir /var/lib/monit/events # set the base directory where events will be stored
+  slots 100                     # optionally limit the queue size
+#
+#
+## Send status and events to M/Monit (for more informations about M/Monit
+## see http://mmonit.com/). By default Monit registers credentials with
+## M/Monit so M/Monit can smoothly communicate back to Monit and you don't
+## have to register Monit credentials manually in M/Monit. It is possible to
+## disable credential registration using the commented out option below.
+## Though, if safety is a concern we recommend instead using https when
+## communicating with M/Monit and send credentials encrypted.
+#
+# set mmonit http://monit:monit@192.168.1.10:8080/collector
+#     # and register without credentials     # Don't register credentials
+#
+#
+## Monit by default uses the following format for alerts if the the mail-format
+## statement is missing::
+## --8<--
+## set mail-format {
+##      from: monit@$HOST
+##   subject: monit alert --  $EVENT $SERVICE
+##   message: $EVENT Service $SERVICE
+##                 Date:        $DATE
+##                 Action:      $ACTION
+##                 Host:        $HOST
+##                 Description: $DESCRIPTION
+##
+##            Your faithful employee,
+##            Monit
+## }
+## --8<--
+##
+## You can override this message format or parts of it, such as subject
+## or sender using the MAIL-FORMAT statement. Macros such as $DATE, etc.
+## are expanded at runtime. For example, to override the sender, use:
+#
+# set mail-format { from: monit@foo.bar }
+#
+#
+## You can set alert recipients whom will receive alerts if/when a
+## service defined in this file has errors. Alerts may be restricted on
+## events by using a filter as in the second example below.
+#
+# set alert sysadm@foo.bar                       # receive all alerts
+## Do not alert when Monit start,stop or perform a user initiated action
+# set alert manager@foo.bar not on { instance, action }
+#
+#
+## Monit has an embedded web server which can be used to view status of
+## services monitored and manage services from a web interface. See the
+## Monit Wiki if you want to enable SSL for the web server.
+#
+set httpd port 2812 and
+  use address localhost  # only accept connection from localhost
+  allow localhost        # allow localhost to connect to the server and
+  allow admin:monit      # require user 'admin' with password 'monit'
+  allow @monit           # allow users of group 'monit' to connect (rw)
+  allow @users readonly  # allow users of group 'users' to connect readonly
+#
+###############################################################################
+## Services
+###############################################################################
+##
+## Check general system resources such as load average, cpu and memory
+## usage. Each test specifies a resource, conditions and the action to be
+## performed should a test fail.
+#
+#  check system myhost.mydomain.tld
+#    if loadavg (1min) > 4 then alert
+#    if loadavg (5min) > 2 then alert
+#    if memory usage > 75% then alert
+#    if swap usage > 25% then alert
+#    if cpu usage (user) > 70% then alert
+#    if cpu usage (system) > 30% then alert
+#    if cpu usage (wait) > 20% then alert
+#
+#
+## Check if a file exists, checksum, permissions, uid and gid. In addition
+## to alert recipients in the global section, customized alert can be sent to
+## additional recipients by specifying a local alert handler. The service may
+## be grouped using the GROUP option. More than one group can be specified by
+## repeating the 'group name' statement.
+#
+#  check file apache_bin with path /usr/local/apache/bin/httpd
+#    if failed checksum and
+#       expect the sum 8f7f419955cefa0b33a2ba316cba3659 then unmonitor
+#    if failed permission 755 then unmonitor
+#    if failed uid root then unmonitor
+#    if failed gid root then unmonitor
+#    alert security@foo.bar on {
+#           checksum, permission, uid, gid, unmonitor
+#        } with the mail-format { subject: Alarm! }
+#    group server
+#
+#
+## Check that a process is running, in this case Apache, and that it respond
+## to HTTP and HTTPS requests. Check its resource usage such as cpu and memory,
+## and number of children. If the process is not running, Monit will restart
+## it by default. In case the service is restarted very often and the
+## problem remains, it is possible to disable monitoring using the TIMEOUT
+## statement. This service depends on another service (apache_bin) which
+## is defined above.
+#
+#  check process apache with pidfile /usr/local/apache/logs/httpd.pid
+#    start program = "/etc/init.d/httpd start" with timeout 60 seconds
+#    stop program  = "/etc/init.d/httpd stop"
+#    if cpu > 60% for 2 cycles then alert
+#    if cpu > 80% for 5 cycles then restart
+#    if totalmem > 200.0 MB for 5 cycles then restart
+#    if children > 250 then restart
+#    if loadavg(5min) greater than 10 for 8 cycles then stop
+#    if failed host www.tildeslash.com port 80 protocol http
+#       and request "/somefile.html"
+#       then restart
+#    if failed port 443 type tcpssl protocol http
+#       with timeout 15 seconds
+#       then restart
+#    if 3 restarts within 5 cycles then timeout
+#    depends on apache_bin
+#    group server
+#
+#
+## Check filesystem permissions, uid, gid, space and inode usage. Other services,
+## such as databases, may depend on this resource and an automatically graceful
+## stop may be cascaded to them before the filesystem will become full and data
+## lost.
+#
+#  check filesystem datafs with path /dev/sdb1
+#    start program  = "/bin/mount /data"
+#    stop program  = "/bin/umount /data"
+#    if failed permission 660 then unmonitor
+#    if failed uid root then unmonitor
+#    if failed gid disk then unmonitor
+#    if space usage > 80% for 5 times within 15 cycles then alert
+#    if space usage > 99% then stop
+#    if inode usage > 30000 then alert
+#    if inode usage > 99% then stop
+#    group server
+#
+#
+## Check a file's timestamp. In this example, we test if a file is older
+## than 15 minutes and assume something is wrong if its not updated. Also,
+## if the file size exceed a given limit, execute a script
+#
+#  check file database with path /data/mydatabase.db
+#    if failed permission 700 then alert
+#    if failed uid data then alert
+#    if failed gid data then alert
+#    if timestamp > 15 minutes then alert
+#    if size > 100 MB then exec "/my/cleanup/script" as uid dba and gid dba
+#
+#
+## Check directory permission, uid and gid.  An event is triggered if the
+## directory does not belong to the user with uid 0 and gid 0.  In addition,
+## the permissions have to match the octal description of 755 (see chmod(1)).
+#
+#  check directory bin with path /bin
+#    if failed permission 755 then unmonitor
+#    if failed uid 0 then unmonitor
+#    if failed gid 0 then unmonitor
+#
+#
+## Check a remote host availability by issuing a ping test and check the
+## content of a response from a web server. Up to three pings are sent and
+## connection to a port and an application level network check is performed.
+#
+#  check host myserver with address 192.168.1.1
+#    if failed icmp type echo count 3 with timeout 3 seconds then alert
+#    if failed port 3306 protocol mysql with timeout 15 seconds then alert
+#    if failed url http://user:password@www.foo.bar:8080/?querystring
+#       and content == 'action="j_security_check"'
+#       then alert
+#
+#
+check process nginx with pidfile /var/run/nginx.pid
+  start program = "/etc/init.d/nginx start"
+  stop program = "/etc/init.d/nginx stop"
+  if cpu > 80% for 5 cycles then restart
+
+###############################################################################
+## Includes
+###############################################################################
+##
+## It is possible to include additional configuration parts from other files or
+## directories.
+#
+include /etc/monit/conf.d/*
+#

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: capistrano-o2web-recipes
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Patrice Lebel
@@ -66,11 +66,13 @@ files:
 - Rakefile
 - capistrano-o2web-recipes.gemspec
 - lib/capistrano-o2web-recipes.rb
+- lib/capistrano/helpers/rsync.rb
 - lib/capistrano/o2web_recipes.rb
 - lib/capistrano/o2web_recipes/version.rb
 - lib/capistrano/tasks/o2web_recipes.rake
 - lib/generators/capistrano/o2web_recipes/install/USAGE.md
 - lib/generators/capistrano/o2web_recipes/install/install_generator.rb
+- lib/generators/capistrano/o2web_recipes/install/templates/config/monitrc.erb
 - lib/generators/capistrano/o2web_recipes/install/templates/config/nginx.app.conf.erb
 - lib/generators/capistrano/o2web_recipes/install/templates/config/nginx.conf.erb
 homepage: https://github.com/o2web/capistrano-o2web-recipes
@@ -92,9 +94,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.4.5
+rubygems_version: 2.2.2
 signing_key: 
 specification_version: 4
 summary: Common Capistrano Recipes used by O2Web.
 test_files: []
-has_rdoc: