deployinator 0.0.7 → 0.1.0

data/lib/deployinator.rb

@@ -2,4 +2,6 @@ require 'capistrano/setup'
 require 'capistrano/deploy'
 
 load 'deployinator/deploy.rb'
+load 'deployinator/check.rb'
 load 'deployinator/config.rb'
+load 'deployinator/helpers.rb'

data/lib/deployinator/check.rb

@@ -0,0 +1,133 @@
+namespace :deploy do
+  namespace :check do
+
+    task :bundle_command_map => ['deployinator:deployment_user'] do
+      set :bundle_binstubs, -> { shared_path.join('bundle', 'bin') }
+      set :bundle_gemfile,  -> { release_path.join('Gemfile') }
+      SSHKit.config.command_map[:bundle] = [
+        "/usr/bin/env docker run --rm --tty",
+        "--user", fetch(:deployment_user_id),
+        "-e", "GEM_HOME=#{shared_path.join('bundle')}",
+        "-e", "GEM_PATH=#{shared_path.join('bundle')}",
+        "-e", "PATH=#{shared_path.join('bundle', 'bin')}:$PATH",
+        "--entrypoint", "#{shared_path.join('bundle', 'bin', 'bundle')}",
+        "--volume $SSH_AUTH_SOCK:/ssh-agent --env SSH_AUTH_SOCK=/ssh-agent",
+        "--volume #{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
+        "--volume /etc/passwd:/etc/passwd:ro",
+        "--volume /etc/group:/etc/group:ro",
+        "--volume /home:/home:rw",
+        fetch(:ruby_image_name)
+      ].join(' ')
+    end
+    before 'bundler:install', 'deploy:check:bundle_command_map'
+
+    # Ensure Capistrano's inner rm commands always run using sudo
+    before 'deploy:started', :rm_command_map do
+      SSHKit.config.command_map[:rm] = "/usr/bin/env sudo rm"
+    end
+
+    if Rake::Task.task_defined?("deploy:cleanup")
+      # Append dependancy to existing cleanup task
+      task 'deploy:cleanup' => 'deploy:check:rm_command_map'
+    end
+
+    desc 'Ensure all deployinator specific settings are set, and warn and raise if not.'
+    task :settings do
+      {
+        (File.dirname(__FILE__) + "/examples/config/deploy.rb") => 'config/deploy.rb',
+        (File.dirname(__FILE__) + "/examples/config/deploy/staging.rb") => "config/deploy/#{fetch(:stage)}.rb"
+      }.each do |abs, rel|
+        Rake::Task['deployinator:settings'].invoke(abs, rel)
+        Rake::Task['deployinator:settings'].reenable
+      end
+    end
+
+    # TODO make this better
+    before 'deploy:check', :templates do
+      run_locally do
+        keys_template     = File.expand_path("./templates/deploy/deployment_authorized_keys.erb")
+        bluepill_template = File.expand_path("./templates/deploy/bluepill.rb.erb")
+        unicorn_template  = File.expand_path("./templates/deploy/unicorn.rb.erb")
+        {
+          "You need a templates/deploy/deployment_authorized_keys.erb file."          => keys_template,
+          "You need a templates/deploy/bluepill.rb.erb file."  => bluepill_template,
+          "You need a templates/deploy/unicorn.rb.erb file."   => unicorn_template,
+        }.each do |message, file|
+          fatal(message) and raise unless File.exists? file
+        end
+      end
+    end
+
+    before 'deploy:check', 'deployinator:deployment_user'
+    before 'deploy:check', 'deployinator:webserver_user'
+
+    task :root_dir_permissions => ['deployinator:deployment_user', 'deployinator:webserver_user'] do
+      on roles(:app) do
+        as :root do
+          [fetch(:deploy_to), Pathname.new(fetch(:deploy_to)).join("../")].each do |dir|
+            if directory_exists?(dir)
+              execute "chown", "#{fetch(:deployment_user_id)}:#{fetch(:webserver_user_id)}", dir
+              execute "chmod", "2750", dir
+            end
+          end
+        end
+      end
+    end
+    before 'deploy:check:directories', 'deploy:check:root_dir_permissions'
+
+    before 'deploy:check', :webserver_running do
+      on roles(:app) do
+        if container_exists?(fetch(:webserver_container_name))
+          unless container_is_running?(fetch(:webserver_container_name))
+            warn "The webserver container named #{fetch(:webserver_container_name)} exists but is not running. You can still deploy your code, but you need this, start it, or re-run setup with something like nginxinator."
+            ask :return_to_continue, nil
+            set :nothing, fetch(:return_to_continue)
+          end
+        else
+          warn "No webserver container named #{fetch(:webserver_container_name)} exists! You can still deploy your code, but you need this, set it up with something like nginxinator."
+          ask :return_to_continue, nil
+          set :nothing, fetch(:return_to_continue)
+        end
+      end
+    end
+
+    before 'deploy:check', :postgres_running do
+      on primary fetch(:migration_role) do
+        if container_exists?(fetch(:postgres_container_name))
+          if container_is_running?(fetch(:postgres_container_name))
+            unless localhost_port_responding?(fetch(:postgres_port))
+              fatal "Port #{fetch(:postgres_port)} is not responding, we won't be able to db:migrate!"
+              raise
+            end
+          else
+            fatal "#{fetch(:postgres_container_name)} exists but is not running, we won't be able to db:migrate!"
+            raise
+          end
+        else
+          fatal "#{fetch(:postgres_container_name)} does not exist, we won't be able to db:migrate!"
+          raise
+        end
+      end
+    end
+
+    before 'deploy:check', :ensure_cadvisor do
+      on roles(:app), in: :sequence, wait: 5 do
+        if fetch(:use_cadvisor, true)
+          if container_exists?("cadvisor")
+            if container_is_running?("cadvisor")
+              info "cadvisor is already running."
+            else
+              info "Restarting existing cadvisor container."
+              execute "docker", "start", "cadvisor"
+            end
+          else
+            execute("docker", "run", fetch(:docker_run_cadvisor_command))
+          end
+        else
+          info "Not using cadvisor."
+        end
+      end
+    end
+
+  end
+end

data/lib/deployinator/config.rb

@@ -1,69 +1,17 @@
 namespace :deployinator do
 
-#  desc 'Ensure all deployinator specific settings are set, and warn and raise if not.'
-#  task :check_settings do
-#    run_locally do
-#      deploy_rb         = File.expand_path("./config/deploy.rb")
-#      deploy_dir        = File.expand_path("./config/deploy")
-#      {
-#        "Do not \"set :bundle_binstubs, ....\", deployinator will overwrite it and you'll be confused." =>
-#          system("grep -R -q -E '^set\ :bundle_binstubs' #{deploy_rb} #{deploy_dir}"),
-#        "Do not \"set :bundle_gemfile, ....\", deployinator will overwrite it and you'll be confused." =>
-#          system("grep -R -q -E '^set\ :bundle_gemfile' #{deploy_rb} #{deploy_dir}"),
-#        "You need \"set :domain, 'your.domain.com'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:domain).nil?,
-#        "You need \"set :nginx_container_name, 'your_nginx_container_name'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:nginx_container_name).nil?,
-#        "You need \"set :external_socket_path, 'your_external_socket_path'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:external_socket_path).nil?,
-#        "You need \"set :postgres_container_name, 'your_postgres_container_name'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:postgres_container_name).nil?,
-#        "You need \"set :postgres_port, 'your_postgres_port_number'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:postgres_port).nil?,
-#        "You need \"set :ruby_image_name, 'your_ruby_image_name'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:ruby_image_name).nil?,
-#        "You need \"set :ruby_container_name, 'your_ruby_container_name'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:ruby_container_name).nil?,
-#        "You need \"set :ruby_container_max_mem_mb, 'your_ruby_container_max_mem_mb'\" in your config/deploy/#{fetch(:stage)}.rb file." =>
-#          fetch(:ruby_container_max_mem_mb).nil?
-#      }.each do |message, true_false|
-#        fatal(message) and raise if true_false
-#      end
-#    end
-#  end
-#  before 'deploy:starting', 'deployinator:check_settings'
-
-  # TODO make this better
-  task :check_templates do
-    run_locally do
-      keys_template     = File.expand_path("./templates/deploy/deployer_authorized_keys.erb")
-      bluepill_template = File.expand_path("./templates/deploy/#{fetch(:application)}_bluepill.rb.erb")
-      unicorn_template  = File.expand_path("./templates/deploy/#{fetch(:application)}_unicorn.rb.erb")
-      {
-        "You need a templates/deploy/deployer_authorized_keys.erb file."            => keys_template,
-        "You need a templates/deploy/#{fetch(:application)}_bluepill.rb.erb file."  => bluepill_template,
-        "You need a templates/deploy/#{fetch(:application)}_unicorn.rb.erb file."   => unicorn_template,
-      }.each do |message, file|
-        fatal(message) and raise unless File.exists? file
-      end
-    end
-  end
-  before 'deploy:starting', 'deployinator:check_templates'
-
   desc 'Write example config files'
   task :write_example_configs do
     run_locally do
       execute "mkdir", "-p", "config/deploy", "templates/deploy"
       {
-        "examples/Capfile"                                => "Capfile_example",
-        "examples/config/deploy.rb"                       => "config/deploy_example.rb",
-        "examples/config/deploy_deployinator.rb"          => "config/deploy_deployinator_example.rb",
-        "examples/config/deploy/staging.rb"               => "config/deploy/staging_example.rb",
-        "examples/config/deploy/staging_deployinator.rb"  => "config/deploy/staging_deployinator_example.rb",
-        "examples/Dockerfile"                             => "templates/deploy/Dockerfile_example",
-        "examples/deployer_authorized_keys.erb"           => "templates/deploy/deployer_authorized_keys_example.erb",
-        "examples/application_unicorn.rb.erb"             => "templates/deploy/#{fetch(:application, "my_app")}_unicorn_example.rb.erb",
-        "examples/application_bluepill.rb.erb"            => "templates/deploy/#{fetch(:application, "my_app")}_bluepill_example.rb.erb"
+        "examples/Capfile"                        => "Capfile_example",
+        "examples/config/deploy.rb"               => "config/deploy_example.rb",
+        "examples/config/deploy/staging.rb"       => "config/deploy/staging_example.rb",
+        "examples/Dockerfile"                     => "templates/deploy/Dockerfile_example",
+        "examples/deployment_authorized_keys.erb" => "templates/deploy/deployment_authorized_keys_example.erb",
+        "examples/unicorn.rb.erb"                 => "templates/deploy/unicorn_example.rb.erb",
+        "examples/bluepill.rb.erb"                => "templates/deploy/bluepill_example.rb.erb"
       }.each do |source, destination|
         config = File.read(File.dirname(__FILE__) + "/#{source}")
         File.open("./#{destination}", 'w') { |f| f.write(config) }
@@ -72,4 +20,5 @@ namespace :deployinator do
       info "Now remove the '_example' portion of their names or diff with existing files and add the needed lines."
     end
   end
+
 end

data/lib/deployinator/deploy.rb

@@ -3,67 +3,41 @@ lock '3.2.1'
 
 namespace :deploy do
 
-  task :set_bundle_command_map => [:set_deployer_user_id] do
-    SSHKit.config.command_map[:bundle] = [
-      "/usr/bin/env docker run --rm --tty",
-      "--user", fetch(:deployer_user_id),
-      "-e", "GEM_HOME=#{fetch(:deploy_to)}/shared/bundle",
-      "-e", "GEM_PATH=#{fetch(:deploy_to)}/shared/bundle",
-      "-e", "PATH=#{fetch(:deploy_to)}/shared/bundle/bin:$PATH",
-      "--entrypoint", "#{fetch(:deploy_to)}/shared/bundle/bin/bundle",
-      "--volume $SSH_AUTH_SOCK:/ssh-agent --env SSH_AUTH_SOCK=/ssh-agent",
-      "--volume #{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
-      "--volume /etc/passwd:/etc/passwd:ro",
-      "--volume /etc/group:/etc/group:ro",
-      "--volume /home:/home:rw",
-      fetch(:ruby_image_name)
-    ].join(' ')
-  end
-  before 'bundler:install', 'deploy:set_bundle_command_map'
-
-  task :set_rm_command_map do
-    SSHKit.config.command_map[:rm] = "/usr/bin/env sudo rm"
-  end
-  before 'deploy:started', 'deploy:set_rm_command_map'
-
-  # Append dependancy to existing cleanup task
-  task :cleanup => :set_rm_command_map
-
-  if Rake::Task.task_defined?("bundler:install")
-    #desc 'Copies .git folder'
-    task :copy_git do
-      unless ENV['from_local'] == "true"
-        on roles(:app) do
-          within release_path do
-            execute :cp, '-r', repo_path, '.git' 
-          end
+  #desc 'Copies .git folder to support .gemspecs that run git commands'
+  task :copy_git do
+    unless ENV['from_local'] == "true"
+      on roles(:app) do
+        within release_path do
+          execute :cp, '-r', repo_path, '.git'
         end
-      end 
+      end
     end
-    before 'bundler:install', 'deploy:copy_git'
   end
+  before 'bundler:install', 'deploy:copy_git'
 
-  # If defined, overwrite :assets:precompile to use docker
   if Rake::Task.task_defined?("deploy:assets:precompile")
+    # Overwrite :assets:precompile to use docker
     Rake::Task["deploy:assets:precompile"].clear
     namespace :assets do
-      task :precompile => :set_deployer_user_id do
+      task :precompile => ['deployinator:deployment_user'] do
         on roles(fetch(:assets_roles)) do
           execute(
-            "docker", "run", "--rm", "--tty", "--user", fetch(:deployer_user_id),
-            "-w", fetch(:release_path, "#{fetch(:deploy_to)}/current"),
+            "docker", "run", "--rm", "--tty", "--user", fetch(:deployment_user_id),
+            "-w", release_path,
             "--link", "#{fetch(:postgres_container_name)}:postgres",
-            "--entrypoint", "#{fetch(:deploy_to)}/shared/bundle/bin/rake",
+            "--entrypoint", "/bin/bash",
             "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
-            fetch(:ruby_image_name), "assets:precompile"
+            fetch(:ruby_image_name), "-c",
+            "\"umask", "0007", "&&", "#{shared_path.join('bundle', 'bin', 'rake')}",
+            "assets:precompile\""
           )
         end
       end
     end
   end
 
-  # If defined, overwrite :cleanup_assets to use docker
   if Rake::Task.task_defined?("deploy:cleanup_assets")
+    # Overwrite :cleanup_assets to use docker
     Rake::Task["deploy:cleanup_assets"].clear
     desc 'Cleanup expired assets'
     task :cleanup_assets => [:set_rails_env] do
@@ -71,8 +45,8 @@ namespace :deploy do
         execute(
           "docker", "run", "--rm", "--tty",
           "-e", "RAILS_ENV=#{fetch(:rails_env)}",
-          "-w", fetch(:release_path, "#{fetch(:deploy_to)}/current"),
-          "--entrypoint", "#{fetch(:deploy_to)}/shared/bundle/bin/bundle",
+          "-w", release_path,
+          "--entrypoint", shared_path.join('bundle', 'bin', 'bundle'),
           "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
           fetch(:ruby_image_name), "exec", "rake", "assets:clean"
         )
@@ -80,11 +54,11 @@ namespace :deploy do
     end
   end
 
-  # If defined, overwrite :migrate to use docker
   if Rake::Task.task_defined?("deploy:migrate")
+    # Overwrite :migrate to use docker
     Rake::Task["deploy:migrate"].clear
     desc 'Runs rake db:migrate if migrations are set'
-    task :migrate => [:set_rails_env, :ensure_running_postgres] do
+    task :migrate => [:set_rails_env, 'deploy:check:postgres_running'] do
       on primary fetch(:migration_role) do
         conditionally_migrate = fetch(:conditionally_migrate)
         info '[deploy:migrate] Checking changes in /db/migrate' if conditionally_migrate
@@ -97,8 +71,8 @@ namespace :deploy do
             "--link", "#{fetch(:postgres_container_name)}:postgres",
             "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
             "-e", "RAILS_ENV=#{fetch(:rails_env)}",
-            "--entrypoint", "#{fetch(:deploy_to)}/shared/bundle/bin/rake",
-            "-w", fetch(:release_path, "#{fetch(:deploy_to)}/current"),
+            "--entrypoint", shared_path.join('bundle', 'bin', 'rake'),
+            "-w", release_path,
             fetch(:ruby_image_name), "db:migrate"
           )
         end
@@ -106,168 +80,47 @@ namespace :deploy do
     end
   end
 
-  # TODO make this better
-  task :ensure_running_postgres do
-    on primary fetch(:migration_role) do
-      unless capture("nc", "127.0.0.1", fetch(:postgres_port), "<", "/dev/null", ">", "/dev/null;", "echo", "$?").strip == "0"
-        fatal "Port #{fetch(:postgres_port)} is not responding, cannot db:migrate!"
-        raise
-      end
-    end
-  end
-#  task :ensure_running_postgres do
-#    on primary fetch(:migration_role) do
-#      if test "docker", "inspect", fetch(:postgres_container_name), "&>", "/dev/null"
-#        if (capture "docker", "inspect",
-#            "--format='{{.State.Running}}'",
-#            fetch(:postgres_container_name)).strip == "true"
-#        else
-#          execute "docker", "start", fetch(:postgres_container_name)
-#        end
-#      else
-#        set :run_pg_setup, ask("'true' or 'false', - #{fetch(:postgres_container_name)} is not running, would you like to run 'rake pg:setup'?", "false")
-#        if fetch(:run_pg_setup) == "true"
-#          #load Gem.bin_path('bundler', 'bundle')
-#          #import 'postgresinator'
-#          #load './infrastructure/Rakefile'
-#          Rake::Task['pg:setup'].invoke
-#        else
-#          raise "#{fetch(:postgres_container_name)} is not running, can't run db:migrate!"
-#        end
-#      end
-#    end
-#  end
-  before 'deploy:started', :ensure_running_postgres
-
-  before 'deploy:check', :setup_deployer_user do
-    on "#{ENV['USER']}@#{fetch(:domain)}" do
-      as :root do
-        unless test "id", fetch(:deploy_username)
-          execute "adduser", "--disabled-password", "--gecos", "\"\"", fetch(:deploy_username)
-          execute "usermod", "-a", "-G", "sudo", fetch(:deploy_username)
-          execute "usermod", "-a", "-G", "docker", fetch(:deploy_username)
-        end
-        execute "mkdir", "-p", "/home/#{fetch(:deploy_username)}/.ssh"
-        # not actually using ERB interpolation, no need for an instance variable.
-        template_path = File.expand_path("./templates/deploy/#{fetch(:deploy_username)}_authorized_keys.erb")
-        generated_config_file = ERB.new(File.new(template_path).read).result(binding)
-        # upload! does not yet honor "as" and similar scoping methods
-        upload! StringIO.new(generated_config_file), "/tmp/authorized_keys"
-        execute "mv", "-b", "/tmp/authorized_keys", "/home/#{fetch(:deploy_username)}/.ssh/authorized_keys"
-        execute "chown", "-R", "#{fetch(:deploy_username)}:#{fetch(:deploy_username)}", "/home/#{fetch(:deploy_username)}/.ssh"
-        execute "chmod", "700", "/home/#{fetch(:deploy_username)}/.ssh"
-        execute "chmod", "600", "/home/#{fetch(:deploy_username)}/.ssh/authorized_keys"
-      end
-    end
-  end
-
-  task :ensure_www_data_user do
-    on "#{ENV['USER']}@#{fetch(:domain)}" do
-      as :root do
-        unless test "id", "www-data"
-          execute "adduser", "--disabled-password", "--gecos", "\"\"", "www-data"
-        end
-      end
-    end
-  end
-  after 'deploy:started', :ensure_www_data_user
-
-  task :set_deployer_user_id do
-    on roles(:app), in: :sequence, wait: 5 do
-      set :deployer_user_id, capture("id", "-u", fetch(:deploy_username)).strip
-    end
-  end
-
-  task :set_www_data_user_id do
-    on roles(:app), in: :sequence, wait: 5 do
-      set :www_data_user_id, capture("id", "-u", "www-data").strip
-    end
-  end
-
-  task :chown_log_dir => :set_www_data_user_id do
-    on roles(:app), in: :sequence, wait: 5 do
-      as :root do
-        unless test "[", "-d", "#{fetch(:deploy_to)}/shared/log", "]"
-          execute("mkdir", "-p", "#{fetch(:deploy_to)}/shared/log")
-        end
-        execute "chown", "-R", "#{fetch(:www_data_user_id)}:#{fetch(:www_data_user_id)}", "#{fetch(:deploy_to)}/shared/log"
-      end
-    end
-  end
-  before 'deploy:check:linked_dirs', :chown_log_dir
-
-  task :setup_deploy_to_dir => :set_deployer_user_id do
+  task :install_bundler => ['deployinator:deployment_user'] do
     on roles(:app), in: :sequence, wait: 5 do
-      as :root do
-        [
-          fetch(:deploy_to),
-          "#{fetch(:deploy_to)}/shared",
-          "#{fetch(:deploy_to)}/releases"
-        ].each do |dir|
-          unless test "[", "-d", dir, "]"
-            execute("mkdir", "-p", dir)
-          end
-          execute "chown", "#{fetch(:deployer_user_id)}:#{fetch(:deployer_user_id)}", dir
-        end
-      end
-    end
-  end
-  after :setup_deployer_user, :setup_deploy_to_dir
-
-  task :install_bundler => :set_deployer_user_id do
-    on roles(:app), in: :sequence, wait: 5 do
-      as :root do
-        unless test "[", "-f", "#{fetch(:deploy_to)}/shared/bundle/bin/bundle", "]"
-          execute(
-            "docker", "run", "--rm", "--tty",
-            "-e", "GEM_HOME=#{fetch(:deploy_to)}/shared/bundle",
-            "-e", "GEM_PATH=#{fetch(:deploy_to)}/shared/bundle",
-            "-e", "PATH=#{fetch(:deploy_to)}/shared/bundle/bin:$PATH",
-            "--entrypoint", "/usr/local/bin/gem",
-            "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
-            fetch(:ruby_image_name), "install",
-            "--install-dir", "#{fetch(:deploy_to)}/shared/bundle",
-            "--bindir", "#{fetch(:deploy_to)}/shared/bundle/bin",
-            "--no-ri", "--no-rdoc", "--quiet", "bundler", "-v'#{fetch(:bundler_version)}'"
-          )
-        end
-        execute "chown", "-R", "#{fetch(:deployer_user_id)}:#{fetch(:deployer_user_id)}", "#{fetch(:deploy_to)}/shared/bundle"
+      unless file_exists?(shared_path.join('bundle', 'bin', 'bundle'))
+        execute(
+          "docker", "run", "--rm", "--tty", "--user", fetch(:deployment_user_id),
+          "-e", "GEM_HOME=#{shared_path.join('bundle')}",
+          "-e", "GEM_PATH=#{shared_path.join('bundle')}",
+          "-e", "PATH=#{shared_path.join('bundle', 'bin')}:$PATH",
+          "--entrypoint", "/bin/bash",
+          "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
+          fetch(:ruby_image_name), "-c",
+          "\"umask", "0007", "&&" "/usr/local/bin/gem", "install",
+          "--install-dir", "#{shared_path.join('bundle')}",
+          "--bindir", shared_path.join('bundle', 'bin'),
+          "--no-ri", "--no-rdoc", "--quiet", "bundler", "-v'#{fetch(:bundler_version)}'\""
+        )
       end
     end
   end
   before 'bundler:install', 'deploy:install_bundler'
 
   desc 'Restart application using bluepill restart inside the docker container.'
-  task :restart => [:set_www_data_user_id, :install_config_files] do
+  task :restart => ['deployinator:webserver_user', :install_config_files] do
     on roles(:app), in: :sequence, wait: 5 do
-      as :root do
-        paths = [
-          fetch(:external_socket_path),
-          "#{fetch(:deploy_to)}/shared/tmp",
-          "#{fetch(:deploy_to)}/shared/log/production.log"
-        ].join(' ')
-        execute "chown", "-R", "#{fetch(:www_data_user_id)}:#{fetch(:www_data_user_id)}", paths
-      end
-      if test "docker", "inspect", fetch(:ruby_container_name), "&>", "/dev/null"
-        if (capture "docker", "inspect",
-            "--format='{{.State.Restarting}}'",
-            fetch(:ruby_container_name)).strip == "true"
+      if container_exists?(fetch(:ruby_container_name))
+        if container_is_restarting?(fetch(:ruby_container_name))
           execute("docker", "stop", fetch(:ruby_container_name))
         end
-        if (capture "docker", "inspect",
-            "--format='{{.State.Running}}'",
-            fetch(:ruby_container_name)).strip == "true"
+        if container_is_running?(fetch(:ruby_container_name))
           execute(
             "docker", "exec", "--tty",
             fetch(:ruby_container_name),
-            "#{fetch(:deploy_to)}/shared/bundle/bin/bluepill",
+            shared_path.join('bundle', 'bin', 'bluepill'),
             fetch(:application), "restart"
           )
+        else
+          execute("docker", "start", fetch(:ruby_container_name))
         end
       else
         as :root do
-          execute("rm", "-f", "#{fetch(:external_socket_path)}/unicorn.pid")
-          execute "chown", "-R", "#{fetch(:deployer_user_id)}:#{fetch(:deployer_user_id)}", "#{fetch(:deploy_to)}/shared/bundle"
+          execute("rm", "-f", fetch(:webserver_socket_path).join('unicorn.pid'))
         end
         execute("docker", "run", fetch(:docker_run_bluepill_command))
       end
@@ -279,27 +132,28 @@ namespace :deploy do
   namespace :restart do
     task :force do
       on roles(:app), in: :sequence, wait: 5 do
-        if (capture "docker", "inspect",
-            "--format='{{.State.Running}}'",
-            fetch(:ruby_container_name)).strip == "true"
-          execute(
-            "docker", "exec", "--tty",
-            fetch(:ruby_container_name),
-            "#{fetch(:deploy_to)}/shared/bundle/bin/bluepill",
-            fetch(:application), "stop"
-          )
-          sleep 5
-        end
-        execute("docker", "stop", fetch(:ruby_container_name))
-        execute("docker", "wait", fetch(:ruby_container_name))
-        begin
-          execute("docker", "rm",   fetch(:ruby_container_name))
-        rescue
-          sleep 5
+        if container_exists?(fetch(:ruby_container_name))
+          if container_is_running?(fetch(:ruby_container_name))
+            execute(
+              "docker", "exec", "--tty",
+              fetch(:ruby_container_name),
+              shared_path.join('bundle', 'bin', 'bluepill'),
+              fetch(:application), "stop"
+            )
+            sleep 5
+            execute("docker", "stop", fetch(:ruby_container_name))
+            execute("docker", "wait", fetch(:ruby_container_name))
+          else
+          end
           begin
             execute("docker", "rm",   fetch(:ruby_container_name))
           rescue
-            fatal "We were not able to remove the container for some reason. Try running 'cap <stage> deploy:restart:force' again."
+            sleep 5
+            begin
+              execute("docker", "rm",   fetch(:ruby_container_name))
+            rescue
+              fatal "We were not able to remove the container for some reason. Try running 'cap <stage> deploy:restart:force' again."
+            end
           end
         end
         Rake::Task['deploy:restart'].invoke
@@ -307,70 +161,36 @@ namespace :deploy do
     end
   end
 
-  after :publishing, :check_nginx_running do
-    on primary fetch(:migration_role) do
-      # TODO fix false negative when nginx_container_name is unset
-      if test "docker", "inspect", fetch(:nginx_container_name), "&>", "/dev/null"
-        if (capture "docker", "inspect",
-            "--format='{{.State.Running}}'",
-            fetch(:nginx_container_name)).strip == "true"
-        else
-          warn "The nginx container named #{fetch(:nginx_container_name)} exists but is not running. (You need this, start it, or re-run setup with something like nginxinator.)"
-        end
-      else
-        warn "No nginx container named #{fetch(:nginx_container_name)} exists! (You need this, set it up with something like nginxinator.)"
-      end
-    end
-  end
+#  after :restart, :clear_cache do
+#    on roles(:web), in: :groups, limit: 3, wait: 10 do
+#      # Here we can do anything such as:
+#      # within release_path do
+#      #   execute :rake, 'cache:clear'
+#      # end
+#    end
+#  end
 
-  after :publishing, :ensure_cadvisor do
+  task :install_config_files => ['deployinator:deployment_user', 'deployinator:webserver_user'] do
     on roles(:app), in: :sequence, wait: 5 do
-      if fetch(:use_cadvisor, true)
-        if test "docker", "inspect", "cadvisor", "&>", "/dev/null"
-          if (capture "docker", "inspect",
-              "--format='{{.State.Running}}'",
-              "cadvisor").strip == "true"
-            info "cadvisor is already running."
-          else
-            info "Restarting existing cadvisor container."
-            execute "docker", "start", "cadvisor"
-          end
-        else
-          execute("docker", "run", fetch(:docker_run_cadvisor_command))
+      set :bluepill_config, -> { "bluepill.rb" }
+      set :unicorn_config,  -> { "unicorn.rb" }
+      set :socket_path,     -> { fetch(:webserver_socket_path) }
+      [fetch(:bluepill_config), fetch(:unicorn_config)].each do |config_file|
+        template_path = File.expand_path("./templates/deploy/#{config_file}.erb")
+        generated_config_file = ERB.new(File.new(template_path).read).result(binding)
+        set :final_path, -> { release_path.join('config', config_file) }
+        upload! StringIO.new(generated_config_file), "/tmp/#{config_file}"
+        execute("mv", "/tmp/#{config_file}", fetch(:final_path))
+        as :root do
+          execute("chown", "#{fetch(:deployment_user_id)}:#{fetch(:webserver_user_id)}", fetch(:final_path))
         end
       end
     end
   end
 
-  after :restart, :clear_cache do
-    on roles(:web), in: :groups, limit: 3, wait: 10 do
-      # Here we can do anything such as:
-      # within release_path do
-      #   execute :rake, 'cache:clear'
-      # end
-    end
-  end
-
-  task :install_config_files => [:set_deployer_user_id] do
-    on roles(:app), in: :sequence, wait: 5 do
-      set :bluepill_config, -> { "#{fetch(:application)}_bluepill.rb" }
-      set :unicorn_config,  -> { "#{fetch(:application)}_unicorn.rb" }
-      set :socket_path,     -> { fetch(:internal_socket_path) }
-      as 'root' do
-        [fetch(:bluepill_config), fetch(:unicorn_config)].each do |config_file|
-          @deploy_to            = fetch(:deploy_to)   # needed for ERB
-          @internal_socket_path = fetch(:socket_path) # needed for ERB
-          @application          = fetch(:application) # needed for ERB
-          template_path = File.expand_path("./templates/deploy/#{config_file}.erb")
-          current_path  = Pathname.new("#{fetch(:deploy_to)}/current")
-          generated_config_file = ERB.new(File.new(template_path).read).result(binding)
-          set :final_path, -> { fetch(:release_path, current_path).join('config', config_file) }
-          upload! StringIO.new(generated_config_file), "/tmp/#{config_file}"
-          execute("mv", "/tmp/#{config_file}", fetch(:final_path))
-          execute("chown", "#{fetch(:deployer_user_id)}:#{fetch(:deployer_user_id)}", fetch(:final_path))
-          execute("chmod", "664", fetch(:final_path))
-        end
-      end
+  after 'deploy:finished', :success_message do
+    run_locally do
+      info "That was a successful deploy!"
     end
   end
 

data/lib/deployinator/examples/bluepill.rb.erb

@@ -0,0 +1,23 @@
+def red_unicorn_exec
+  "<%= shared_path.join('bundle', 'bin', 'red_unicorn') %> --env production --pid-file <%= fetch(:webserver_socket_path) %>/unicorn.pid --unicorn-exec <%= shared_path.join('bundle', 'bin', 'unicorn_rails') %> --unicorn-config <%= current_path.join('config', 'unicorn.rb') %>"
+end
+
+Bluepill.application("<%= fetch(:application) %>", :log_file => "<%= shared_path.join('log', 'bluepill.log') %>", :foreground => true) do |app|
+  app.process("unicorn") do |process|
+    process.pid_file            = "<%= fetch(:webserver_socket_path) %>/unicorn.pid"
+    process.working_dir         = "<%= current_path %>"
+    process.environment         = {"BUNDLE_GEMFILE" => "<%= current_path.join('Gemfile') %>"}
+    process.start_command       = "#{red_unicorn_exec} start"
+    process.stop_command        = "#{red_unicorn_exec} stop"
+    process.restart_command     = "'#{red_unicorn_exec} status; if [ $? = 0 ]; then #{red_unicorn_exec} restart; else #{red_unicorn_exec} start; fi'"
+    process.uid = process.gid   = '<%= fetch(:webserver_username) %>'
+    process.start_grace_time    = 30.seconds
+    process.stop_grace_time     = 30.seconds
+    process.restart_grace_time  = 60.seconds
+    process.monitor_children do |child_process|
+      child_process.stop_command  = "kill -QUIT {{PID}}"
+      child_process.checks :mem_usage, :every => 30.seconds, :below => 300.megabytes, :times => [3,4], :fires => :stop
+      child_process.checks :cpu_usage, :every => 30.seconds, :below => 50, :times => [3,4], :fires => :stop
+    end
+  end
+end

data/lib/deployinator/examples/config/deploy.rb

@@ -1,8 +1,16 @@
 # config valid only for Capistrano 3.1
 lock '3.2.1'
 
-set :application, 'my_app_name'
-set :repo_url, 'git@example.com:me/my_repo.git'
+set :application,                 'my_app_name'
+set :repo_url,                    'git@example.com:me/my_repo.git'
+set :preexisting_ssh_user,        ENV['USER']
+set :deployment_username,         "deployer" # user with SSH access and passwordless sudo rights
+set :webserver_username,          "www-data" # less trusted web server user with limited write permissions
+
+set :webserver_writeable_dirs,    [shared_path.join('run'), shared_path.join("tmp"), shared_path.join("log")]
+set :webserver_executable_dirs,   [shared_path.join("bundle", "bin")]
+set :ignore_permissions_dirs,     [shared_path.join("postgres")]
+set :webserver_socket_path,       shared_path.join('run')
 
 # Default branch is :master
 # Always use the master branch in production:
@@ -14,24 +22,14 @@ end
 # Default deploy_to directory is /var/www/my_app
 # set :deploy_to, '/var/www/my_app'
 
-# Default value for :scm is :git
-# set :scm, :git
-
-# Default value for :format is :pretty
-# set :format, :pretty
-
 # Default value for :log_level is :debug
 # set :log_level, :debug
 
-# Default value for :pty is false
-# set :pty, true
-
 # Default value for :linked_files is []
 # set :linked_files, %w{config/database.yml}
 
 # Default value for linked_dirs is []
 # set :linked_dirs, %w{bin log tmp/pids tmp/cache tmp/sockets vendor/bundle public/system}
-set :linked_dirs, %w{log tmp}
 
 # Default value for default_env is {}
 # set :default_env, { path: "/opt/ruby/bin:$PATH" }
@@ -39,28 +37,62 @@ set :linked_dirs, %w{log tmp}
 # Default value for keep_releases is 5
 # set :keep_releases, 5
 
-namespace :deploy do
 
-  ### No need to do anything here, deployinator defines this task.
-  desc 'Restart application'
-  task :restart do
-    on roles(:app), in: :sequence, wait: 5 do
-      # Your restart mechanism here, for example:
-      # execute :touch, release_path.join('tmp/restart.txt')
-    end
-  end
-
-  after :publishing, :restart
+#----------------------------------------------------
+## The values below shouldn't need changed under the majority of circumstances.
 
-  after :restart, :clear_cache do
-    on roles(:web), in: :groups, limit: 3, wait: 10 do
-      # Here we can do anything such as:
-      # within release_path do
-      #   execute :rake, 'cache:clear'
-      # end
+# Use `cap <stage> deploy from_local=true` to deploy your
+#   locally changed code instead of the code in the git repo. You can also add --trace.
+if ENV['from_local']
+  if fetch(:current_stage) == "production"
+    run_locally do
+      fatal "You are trying to deploy to production using from_local, this should pretty much never be done."
+    end
+    ask :yes_no, "Are you positive you want to continue?"
+    if fetch(:yes_no).chomp.downcase == "yes"
+      set :scm, :copy
+    else
+      exit
     end
   end
-
+else
+  set :scm, :git
 end
 
-require './config/deploy_deployinator.rb'
+#set :bundle_roles, :all                                         # this is default
+#set :bundle_servers, -> { release_roles(fetch(:bundle_roles)) } # this is default
+#set :bundle_binstubs, -> { shared_path.join('bin') }            # this is default
+#set :bundle_binstubs, -> { shared_path.join('bundle', 'bin') }  # this will be overwritten by deployinator
+#set :bundle_gemfile, -> { release_path.join('Gemfile') }        # this will be overwritten by deployinator
+#set :bundle_path, -> { shared_path.join('bundle') }             # this is default
+#set :bundle_without, %w{development test}.join(' ')             # this is default
+#set :bundle_flags, '--deployment --quiet'                       # this is default
+#set :bundle_flags, '--deployment'
+#set :bundle_env_variables, {}                                   # this is default
+
+set :docker_run_bluepill_command, -> { [
+  "--tty", "--detach",
+  "--name", fetch(:ruby_container_name),
+  "-e", "GEM_HOME=#{shared_path.join('bundle')}",
+  "-e", "GEM_PATH=#{shared_path.join('bundle')}",
+  "-e", "BUNDLE_GEMFILE=#{current_path.join('Gemfile')}",
+  "-e", "PATH=#{shared_path.join('bundle', 'bin')}:$PATH",
+  "--link", "#{fetch(:postgres_container_name)}:postgres",
+  "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
+  "--entrypoint", shared_path.join('bundle', 'bin', 'bluepill'),
+  "--restart", "always", "--memory", "#{fetch(:ruby_container_max_mem_mb)}m",
+  fetch(:ruby_image_name), "load",
+  current_path.join('config', 'bluepill.rb')
+] }
+
+set :docker_run_cadvisor_command, -> { [
+  "--detach",
+  "--name", "cadvisor",
+  "--volume", "/:/rootfs:ro",
+  "--volume", "/var/run:/var/run:rw",
+  "--volume", "/sys:/sys:ro",
+  "--volume", "/var/lib/docker/:/var/lib/docker:ro",
+  "--publish", "127.0.0.1:8080:8080",
+  "--restart", "always",
+  "google/cadvisor:latest"
+] }

data/lib/deployinator/examples/config/deploy/staging.rb

@@ -1,50 +1,21 @@
-# Simple Role Syntax
-# ==================
-# Supports bulk-adding hosts to roles, the primary server in each group
-# is considered to be the first unless any hosts have the primary
-# property set.  Don't declare `role :all`, it's a meta role.
+set  :domain,                   "my-app-staging.example.com"
+set  :user_host,                "#{fetch(:deployment_username)}@#{fetch(:domain)}"
 
-set  :domain,           "my-app-staging.example.com"
-set  :deploy_username,  "deployer"
-set  :user_host,        "#{fetch(:deploy_username)}@#{fetch(:domain)}"
+role :app,                      fetch(:user_host)
+role :web,                      fetch(:user_host)
+role :db,                       fetch(:user_host)
 
-role :app, fetch(:user_host)
-role :web, fetch(:user_host)
-role :db,  fetch(:user_host)
+set :rails_env,                 'production'
+set :migration_role,            'app'                 # Defaults to 'db'
+#set :conditionally_migrate,     true                  # Defaults to false. If true, it's skip migration if files in db/migrate not modified
+set :assets_roles,              [:app]                # Defaults to [:web]
+#set :assets_prefix,             'prepackaged-assets'  # Defaults to 'assets' this should match config.assets.prefix in your rails config/application.rb
 
-# Extended Server Syntax
-# ======================
-# This can be used to drop a more detailed server definition into the
-# server list. The second argument is a, or duck-types, Hash and is
-# used to set extended properties on the server.
-
-#server 'example.com', user: 'deploy', roles: %w{web app}, my_property: :my_value
-
-
-# Custom SSH Options
-# ==================
-# You may pass any option but keep in mind that net/ssh understands a
-# limited set of options, consult[net/ssh documentation](http://net-ssh.github.io/net-ssh/classes/Net/SSH.html#method-c-start).
-#
-# Global options
-# --------------
-#  set :ssh_options, {
-#    keys: %w(/home/rlisowski/.ssh/id_rsa),
-#    forward_agent: false,
-#    auth_methods: %w(password)
-#  }
-#
-# And/or per server (overrides global)
-# ------------------------------------
-# server 'example.com',
-#   user: 'user_name',
-#   roles: %w{web app},
-#   ssh_options: {
-#     user: 'user_name', # overrides user setting above
-#     keys: %w(/home/user_name/.ssh/id_rsa),
-#     forward_agent: false,
-#     auth_methods: %w(publickey password)
-#     # password: 'please use keys'
-#   }
-
-require './config/deploy/staging_deployinator.rb'
+set :webserver_container_name,  "my-app-staging.example.com-nginx-80-443"
+set :postgres_container_name,   "my-app-staging.example.com-postgres-5432-master"
+set :postgres_port,             "5432"
+set :ruby_image_name,           "snarlysodboxer/ruby:1.9.3-p547"
+set :ruby_container_name,       "#{fetch(:domain)}-ruby-bluepill"
+set :ruby_container_max_mem_mb, "1024"
+set :bundler_version,           "1.7.4"
+set :use_cadvisor,              true

data/lib/deployinator/examples/{application_unicorn.rb.erb → unicorn.rb.erb}

@@ -1,12 +1,12 @@
-current_path = "<%= @deploy_to %>/current"
-shared_path = "<%= @deploy_to %>/shared"
-shared_bundler_gems_path = "<%= @deploy_to %>/shared/bundle"
+current_path              = "<%= current_path %>"
+shared_path               = "<%= shared_path %>"
+shared_bundler_gems_path  = "<%= shared_path.join('bundle') %>"
 
 worker_processes 4
 working_directory current_path
-listen "<%= @internal_socket_path %>/unicorn.socket", :backlog => 64
+listen "<%= fetch(:webserver_socket_path) %>/unicorn.socket", :backlog => 64
 timeout 300
-pid "<%= @internal_socket_path %>/unicorn.pid"
+pid "<%= fetch(:webserver_socket_path) %>/unicorn.pid"
 
 stderr_path "#{shared_path}/log/unicorn.stderr.log"
 stdout_path "#{shared_path}/log/unicorn.stdout.log"
@@ -21,7 +21,7 @@ before_fork do |server, worker|
 end
 
 after_fork do |server, worker|
-  worker.user('www-data', 'www-data') if Process.euid == 0
+  worker.user('<%= fetch(:webserver_username) %>', '<%= fetch(:webserver_username) %>') if Process.euid == 0
 
   defined?(ActiveRecord::Base) and
     ActiveRecord::Base.establish_connection

data/lib/deployinator/helpers.rb

@@ -0,0 +1,194 @@
+namespace :deployinator do
+
+  # These are the only two tasks using :preexisting_ssh_user
+  namespace :deployment_user do
+    #desc "Setup or re-setup the deployment user, idempotently"
+    task :setup do
+      on "#{fetch(:preexisting_ssh_user)}@#{fetch(:domain)}" do
+        as :root do
+          unix_user_add(fetch(:deployment_username)) unless unix_user_exists?(fetch(:deployment_username))
+          execute "usermod", "-a", "-G", "sudo,docker,#{fetch(:webserver_username)}", fetch(:deployment_username)
+          execute "mkdir", "-p", "/home/#{fetch(:deployment_username)}/.ssh"
+          template_path = File.expand_path("./templates/deploy/deployment_authorized_keys.erb")
+          generated_config_file = ERB.new(File.new(template_path).read).result(binding)
+          # upload! does not yet honor "as" and similar scoping methods
+          upload! StringIO.new(generated_config_file), "/tmp/authorized_keys"
+          execute "mv", "-b", "/tmp/authorized_keys", "/home/#{fetch(:deployment_username)}/.ssh/authorized_keys"
+          execute "chown", "-R", "#{fetch(:deployment_username)}:#{fetch(:deployment_username)}", "/home/#{fetch(:deployment_username)}/.ssh"
+          execute "chmod", "700", "/home/#{fetch(:deployment_username)}/.ssh"
+          execute "chmod", "600", "/home/#{fetch(:deployment_username)}/.ssh/authorized_keys"
+        end
+      end
+    end
+  end
+
+  task :deployment_user do
+    on "#{fetch(:preexisting_ssh_user)}@#{fetch(:domain)}" do
+      as :root do
+        if unix_user_exists?(fetch(:deployment_username))
+          info "User #{fetch(:deployment_username)} already exists. You can safely re-setup the user with 'deployinator:deployment_user:setup'."
+        else
+          Rake::Task['deployinator:deployment_user:setup'].invoke
+        end
+        set :deployment_user_id, unix_user_get_id(fetch(:deployment_username))
+      end
+    end
+  end
+
+  task :webserver_user do
+    on roles(:app) do
+      as :root do
+        unix_user_add(fetch(:webserver_username)) unless unix_user_exists?(fetch(:webserver_username))
+        set :webserver_user_id, unix_user_get_id(fetch(:webserver_username))
+      end
+    end
+  end
+
+  task :sshkit_umask do
+    SSHKit.config.umask = "0027"
+  end
+  if Rake::Task.task_defined?('deploy:started')
+    before 'deploy:started', 'deployinator:sshkit_umask'
+  end
+
+  task :file_permissions => [:deployment_user, :webserver_user] do
+    on roles(:app) do
+      as :root do
+        ignore_options = fetch(:ignore_permissions_dirs).collect do |dir|
+          ["-not", "-path", "\"#{dir}\"", "-not", "-path", "\"#{dir}/*\""]
+        end
+
+        # chown
+        execute "find", fetch(:deploy_to), ignore_options,
+          "-exec", "chown", "#{fetch(:deployment_user_id)}:#{fetch(:webserver_user_id)}", "{}", "+"
+
+        # chmod executable
+        fetch(:webserver_executable_dirs).each do |dir|
+          if directory_exists?(dir)
+            execute "find", dir, "-type", "f",
+              "-exec", "chmod", "0750", "{}", "+"
+          end
+          ignore_options += ["-not", "-path", "\"#{dir}\"", "-not", "-path", "\"#{dir}/*\""]
+        end
+
+        # chmod writable
+        fetch(:webserver_writeable_dirs).each do |dir|
+          if directory_exists?(dir)
+            execute "find", "-L", dir, "-type", "d",
+              "-exec", "chmod", "2770", "{}", "+"
+            execute "find", "-L", dir, "-type", "f",
+              "-exec", "chmod", "0660", "{}", "+"
+          end
+          ignore_options += ["-not", "-path", "\"#{dir}\"", "-not", "-path", "\"#{dir}/*\""]
+        end
+
+        # chmod
+        execute "find", fetch(:deploy_to), "-type", "d", ignore_options,
+          "-exec", "chmod", "2750", "{}", "+"
+        execute "find", fetch(:deploy_to), "-type", "f", ignore_options,
+          "-exec", "chmod", "0640", "{}", "+"
+      end
+    end
+  end
+  after   'deploy:check',   'deployinator:file_permissions'
+  before  'deploy:restart', 'deployinator:file_permissions'
+
+
+  task :settings, [:absolute_path, :relative_path] do |t, args|
+    run_locally do
+      need_moar_settings = false
+      settings = File.read(args.absolute_path).split("\nset").collect do |line|
+        "set#{line}" if line =~ /^ :/
+      end.compact
+      if fetch(:print_all, false)
+        lines = "\nThe following settings are needed in your config (#{args.relative_path}).\n"
+      else
+        lines = "\nAdd the following setting(s) to your config (#{args.relative_path}) and try again:\n"
+      end
+      settings.each do |setting|
+        if fetch(setting.split(',')[0].split(':')[1].to_sym).nil? or fetch(:print_all, false)
+          lines += setting.chomp == setting ? "#{setting}\n" : setting
+          need_moar_settings = true
+        end
+      end
+      if need_moar_settings
+        if fetch(:print_all, false)
+          info lines
+        else
+          fatal lines if lines.lines.count > 2
+          exit
+        end
+      end
+    end
+  end
+
+end
+
+def container_exists?(container_name)
+  test "bash", "-c", "\"docker", "inspect", container_name, "&>", "/dev/null\""
+end
+
+def container_is_running?(container_name)
+  test "[", "\"`docker", "inspect", "--format='{{.State.Running}}'",
+    "#{container_name} 2>&1`\"", "=", "\"true\"", "]"
+end
+
+def container_is_restarting?(container_name)
+  test "[", "\"`docker", "inspect", "--format='{{.State.Restarting}}'",
+    container_name, "2>&1`\"", "=", "\"true\"", "]"
+end
+
+def localhost_port_responding?(port)
+  test "nc", "127.0.0.1", port, "<", "/dev/null", ">", "/dev/null;",
+    "[", "`echo", "$?`", "-eq", "0", "]"
+end
+
+def unix_user_exists?(user)
+  test "bash", "-c", "\"id", user, "&>", "/dev/null\""
+end
+
+def unix_user_add(user)
+  execute "adduser", "--disabled-password", "--gecos", "\"\"", user
+end
+
+def unix_user_get_id(user)
+  capture("id", "-u", user).strip
+end
+
+def file_exists?(file)
+  test "[", "-f", file, "]"
+end
+
+def directory_exists?(dir)
+  test "[", "-d", dir, "]"
+end
+
+def check_stayed_running(name)
+  sleep 3
+  unless container_is_running?(name)
+    fatal "Container #{name} on #{fetch(:domain)} did not stay running more than 3 seconds"
+    exit
+  end
+  if container_is_restarting?(name)
+    fatal "Container #{name} on #{fetch(:domain)} is stuck restarting itself."
+    exit
+  end
+end
+
+def create_container(name, command)
+  warn "Starting a new container named #{name} on #{fetch(:domain)}"
+  execute("docker", "run", command)
+  check_stayed_running(name)
+end
+
+def start_container(name)
+  warn "Starting an existing but non-running container named #{name}"
+  execute("docker", "start", name)
+  check_stayed_running(name)
+end
+
+def restart_container(name)
+  warn "Restarting a running container named #{name}"
+  execute("docker", "restart", name)
+  check_stayed_running(name)
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: deployinator
 version: !ruby/object:Gem::Version
-  version: 0.0.7
+  version: 0.1.0
   prerelease: 
 platform: ruby
 authors:
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-12-11 00:00:00.000000000 Z
+date: 2014-12-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: capistrano
@@ -35,16 +35,16 @@ extra_rdoc_files: []
 files:
 - lib/deployinator.rb
 - lib/deployinator/deploy.rb
+- lib/deployinator/check.rb
 - lib/deployinator/config.rb
+- lib/deployinator/helpers.rb
 - lib/deployinator/examples/Capfile
 - lib/deployinator/examples/config/deploy.rb
-- lib/deployinator/examples/config/deploy_deployinator.rb
 - lib/deployinator/examples/config/deploy/staging.rb
-- lib/deployinator/examples/config/deploy/staging_deployinator.rb
 - lib/deployinator/examples/Dockerfile
-- lib/deployinator/examples/deployer_authorized_keys.erb
-- lib/deployinator/examples/application_unicorn.rb.erb
-- lib/deployinator/examples/application_bluepill.rb.erb
+- lib/deployinator/examples/deployment_authorized_keys.erb
+- lib/deployinator/examples/unicorn.rb.erb
+- lib/deployinator/examples/bluepill.rb.erb
 homepage: https://github.com/snarlysodboxer/deployinator
 licenses:
 - GNU

data/lib/deployinator/examples/application_bluepill.rb.erb

@@ -1,27 +0,0 @@
-def red_unicorn_exec
-  "<%= @deploy_to %>/shared/bundle/bin/red_unicorn --env production --pid-file <%= @internal_socket_path %>/unicorn.pid --unicorn-exec <%= @deploy_to %>/shared/bundle/bin/unicorn_rails --unicorn-config <%= @deploy_to %>/current/config/<%= @application %>_unicorn.rb"
-end
-
-Bluepill.application("<%= @application %>", :log_file => "<%= @deploy_to %>/shared/log/bluepill.log", :foreground => true) do |app|
-  app.process("unicorn") do |process|
-    process.pid_file = "<%= @internal_socket_path %>/unicorn.pid"
-    process.working_dir = "<%= @deploy_to %>/current"
-    process.environment = {"BUNDLE_GEMFILE" => "<%= @deploy_to %>/current/Gemfile"}
-    process.start_command = "#{red_unicorn_exec} start"
-    process.stop_command = "#{red_unicorn_exec} stop"
-    process.restart_command = "'#{red_unicorn_exec} status; if [ $? = 0 ]; then #{red_unicorn_exec} restart; else #{red_unicorn_exec} start; fi'"
-
-    process.uid = process.gid = 'www-data'
-
-    process.start_grace_time = 30.seconds
-    process.stop_grace_time = 30.seconds
-    process.restart_grace_time = 60.seconds
-
-    process.monitor_children do |child_process|
-      child_process.stop_command = "kill -QUIT {{PID}}"
-
-      child_process.checks :mem_usage, :every => 30.seconds, :below => 300.megabytes, :times => [3,4], :fires => :stop
-      child_process.checks :cpu_usage, :every => 30.seconds, :below => 50, :times => [3,4], :fires => :stop
-    end
-  end
-end

data/lib/deployinator/examples/config/deploy/staging_deployinator.rb

@@ -1,19 +0,0 @@
-set :rails_env,                 'production'          # If the environment differs from the stage name
-set :migration_role,            'app'                 # Defaults to 'db'
-#set :conditionally_migrate,     true                  # Defaults to false. If true, it's skip migration if files in db/migrate not modified
-set :assets_roles,              [:app]                # Defaults to [:web]
-#set :assets_prefix,             'prepackaged-assets'  # Defaults to 'assets' this should match config.assets.prefix in your rails config/application.rb
-
-# If you are using nginxinator and postgresinator, your settings would look similar to this:
-  # if using nginxinator, :nginx_container_name will be set by it, so leave this one commented out:
-#set :nginx_container_name,      "my-app-staging.example.com-nginx-80-443"
-set :external_socket_path,      "/my-app-staging.example.com-nginx-80-443-conf/run"
-set :internal_socket_path,      "/var/run/unicorn"
-  # if using postgresinator, :postgres_container_name will be set by it, so leave this one commented out:
-#set :postgres_container_name,   "my-app-staging.example.com-postgres-5432-master"
-set :postgres_port,             "5432"
-set :ruby_image_name,           "snarlysodboxer/ruby:1.9.3-p547"
-set :ruby_container_name,       "my-app-staging.example.com-ruby-bluepill"
-set :ruby_container_max_mem_mb, "1024"
-set :bundler_version,           "1.7.4"
-#set :use_cadvisor,              true                  # this is default

data/lib/deployinator/examples/config/deploy_deployinator.rb

@@ -1,50 +0,0 @@
-# Use `cap <stage> deploy from_local=true` to deploy your
-#   locally changed code instead of the code in the git repo. You can also add --trace.
-if ENV['from_local']
-  set :scm, :copy
-else
-  set :scm, :git
-end
-
-## The values in this file are not meant to be changed and shouldn't
-##  need to be under the majority of circumstances:
-
-#set :bundle_roles, :all                                         # this is default
-#set :bundle_servers, -> { release_roles(fetch(:bundle_roles)) } # this is default
-#set :bundle_binstubs, -> { shared_path.join('bin') }            # this is default
-set :bundle_binstubs, -> { shared_path.join('bundle', 'bin') }  # this is required for deployinator
-set :bundle_gemfile, -> { release_path.join('Gemfile') }        # this is required for deployinator
-#set :bundle_path, -> { shared_path.join('bundle') }             # this is default
-#set :bundle_without, %w{development test}.join(' ')             # this is default
-set :bundle_without, %w{development test deployment}.join(' ')
-#set :bundle_flags, '--deployment --quiet'                       # this is default
-#set :bundle_flags, '--deployment'
-#set :bundle_env_variables, {}                                   # this is default
-
-set :docker_run_bluepill_command, -> { [
-  "--tty", "--detach",
-  "--name", fetch(:ruby_container_name),
-  "-e", "GEM_HOME=#{fetch(:deploy_to)}/shared/bundle",
-  "-e", "GEM_PATH=#{fetch(:deploy_to)}/shared/bundle",
-  "-e", "BUNDLE_GEMFILE=#{fetch(:deploy_to)}/current/Gemfile",
-  "-e", "PATH=#{fetch(:deploy_to)}/shared/bundle/bin:$PATH",
-  "--link", "#{fetch(:postgres_container_name)}:postgres",
-  "--volume", "#{fetch(:deploy_to)}:#{fetch(:deploy_to)}:rw",
-  "--volume", "#{fetch(:external_socket_path)}:#{fetch(:internal_socket_path)}:rw",
-  "--entrypoint", "#{fetch(:deploy_to)}/shared/bundle/bin/bluepill",
-  "--restart", "always", "--memory", "#{fetch(:ruby_container_max_mem_mb)}m",
-  fetch(:ruby_image_name), "load",
-  "#{fetch(:deploy_to)}/current/config/#{fetch(:application)}_bluepill.rb"
-] }
-
-set :docker_run_cadvisor_command, -> { [
-  "--detach",
-  "--name", "cadvisor",
-  "--volume", "/:/rootfs:ro",
-  "--volume", "/var/run:/var/run:rw",
-  "--volume", "/sys:/sys:ro",
-  "--volume", "/var/lib/docker/:/var/lib/docker:ro",
-  "--publish", "127.0.0.1:8080:8080",
-  "--restart", "always",
-  "google/cadvisor:latest"
-] }