mana 0.0.1

data/cookbooks/postgresql/templates/default/postgresql.monit.conf.erb

@@ -0,0 +1,11 @@
+# managed by chef, changes will be overwritten
+check process postgresql with pidfile /var/run/postgresql/<%= node.postgresql.version -%>-main.pid
+  start program "/etc/init.d/postgresql start"
+  stop  program "/etc/init.d/postgresql stop"
+  if failed unixsocket /var/run/postgresql/.s.PGSQL.5432 protocol pgsql then alert
+  if failed unixsocket /var/run/postgresql/.s.PGSQL.5432 protocol pgsql then restart
+  <% if node.postgresql.listen_all -%>
+  if failed host localhost port 5432 protocol pgsql then alert
+  if failed host localhost port 5432 protocol pgsql then restart
+  <% end -%>
+  if 5 restarts within 5 cycles then timeout

data/cookbooks/railsapp/attributes/default.rb

@@ -0,0 +1,22 @@
+default[:railsapp][:server_names] = "_"
+
+default[:railsapp][:ssl] = false
+default[:railsapp][:ssl_crt_path] = nil
+default[:railsapp][:ssl_key_path] = nil
+
+default[:railsapp][:db_name] = "#{node[:application]}_#{node[:rails_env]}"
+
+default[:railsapp][:worker_processes] = 4
+default[:railsapp][:request_timeout] = 60
+default[:railsapp][:worker_user]  = 'nobody'
+default[:railsapp][:worker_group] = 'nogroup'
+
+default[:railsapp][:before_fork] = <<-RUBY
+  ActiveRecord::Base.connection.disconnect! if defined?(ActiveRecord::Base)
+  Resque.redis.quit if defined?(Resque)
+RUBY
+
+default[:railsapp][:after_fork] = <<-RUBY
+  ActiveRecord::Base.establish_connection if defined?(ActiveRecord::Base)
+  Resque.redis = Redis.connect if defined?(Resque)
+RUBY

data/cookbooks/railsapp/recipes/default.rb

@@ -0,0 +1,65 @@
+directory node[:deploy_to] do
+  mode 0775
+  owner node[:user]
+  action :create
+end
+
+directory node[:shared_path] do
+  mode 0775
+  owner node[:user]
+  action :create
+end
+
+directory "#{node[:shared_path]}/sockets" do
+  mode 0775
+  owner node[:user]
+  action :create
+end
+
+template "#{node[:shared_path]}/unicorn.rb" do
+  source "unicorn.rb.erb"
+  owner "root"
+  group "root"
+  mode 0644
+end
+
+gem_package "bundler"
+
+bash "create_database" do
+  code "psql -U postgres -c \"create database #{node[:railsapp][:db_name]}\""
+  only_if "test `psql -At -U postgres -c \"select count(*) from pg_database where datname = '#{node[:railsapp][:db_name]}';\"` -eq 0"
+end
+
+template "#{node[:nginx][:dir]}/sites-available/#{node[:application]}" do
+  source "site.conf.erb"
+  owner "root"
+  group "root"
+  mode 0644
+  notifies :reload, "service[nginx]"
+end
+
+template "/etc/init.d/#{node[:application]}-web" do
+  source "unicorn-init.sh.erb"
+  owner "root"
+  group "root"
+  mode 0755
+end
+
+nginx_site 'default' do
+  enable false
+end
+
+nginx_site node[:application] do
+  enable true
+end
+
+monitrc "#{node[:application]}-web" do
+  source "master.monit.conf.erb"
+end
+
+node[:railsapp][:worker_processes].times do |i|
+  monitrc "#{node[:application]}-web-#{i}" do
+    source "worker.monit.conf.erb"
+    variables nr: i
+  end
+end

data/cookbooks/railsapp/templates/default/master.monit.conf.erb

@@ -0,0 +1,8 @@
+check process <%= node[:application] -%>-web
+  with pidfile <%= node[:shared_path] -%>/pids/unicorn.pid
+  start program = "/etc/init.d/<%= node[:application] -%>-web start"
+  stop program = "/etc/init.d/<%= node[:application] -%>-web stop"
+  if mem is greater than 300.0 MB for 1 cycles then restart
+  if cpu is greater than 50% for 2 cycles then alert
+  if cpu is greater than 80% for 3 cycles then restart
+  group <%= node[:application] -%>-web

data/cookbooks/railsapp/templates/default/site.conf.erb

@@ -0,0 +1,62 @@
+upstream unicorn_<%= node[:application] %> {
+ # This is the socket we configured in unicorn.rb
+ server unix:<%= node[:shared_path] %>/sockets/unicorn.sock
+ fail_timeout=0;
+}
+
+server {
+  server_name <%= node[:railsapp][:server_names] %>;
+  listen 80;
+
+  root <%= node[:current_path] %>/public;
+
+  location / {
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header Host $http_host;
+    proxy_redirect off;
+
+    # If you don't find the filename in the static files
+    # Then request it from the unicorn server
+    if (!-f $request_filename) {
+      proxy_pass http://unicorn_<%= node[:application] %>;
+      break;
+    }
+  }
+
+  location ~* \.(js|css|png|jpg|gif)$ {
+    if ($query_string ~ "^[0-9]+$") {
+      access_log off;
+      expires max;
+      add_header Cache-Control public;
+    }
+  }
+}
+
+<% if node[:railsapp][:ssl] %>
+server {
+  listen       443;
+  server_name  <%= node[:railsapp][:server_names] %>;
+
+  ssl on;
+  ssl_protocols   SSLv3 TLSv1;
+  ssl_certificate <%= node[:current_path] %>/<%= node[:railsapp][:ssl_crt_path] %>;
+  ssl_certificate_key <%= node[:current_path] %>/<%= node[:railsapp][:ssl_key_path] %>;
+
+  proxy_set_header  X-FORWARDED_PROTO https;
+
+  root <%= node[:current_path] %>/public;
+  
+  location / {
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header Host $http_host;
+    proxy_redirect off;
+    
+    # If you don't find the filename in the static files
+    # Then request it from the unicorn server
+    if (!-f $request_filename) {
+      proxy_pass http://unicorn_<%= node[:application] %>;
+      break;
+    }
+  }
+}
+<% end %>

data/cookbooks/railsapp/templates/default/unicorn-init.sh.erb

@@ -0,0 +1,64 @@
+#!/bin/sh
+
+set -e
+
+<%
+cmd = <<-SHELL
+    cd #{node[:current_path]}
+    /usr/bin/env RAILS_ENV=#{node[:rails_env]} bundle exec unicorn -D -c #{node[:shared_path]}/unicorn.rb
+SHELL
+pid = "#{node[:shared_path]}/pids/unicorn.pid"
+old_pid = "#{pid}.oldbin"
+%>
+
+PATH=/usr/local/sbin:/usr/local/bin:$PATH
+
+action="$1"
+
+set -u
+
+sig () {
+	test -s "<%= pid %>" && kill -$1 `cat <%= pid %>`
+}
+
+case $action in
+start)
+	sig 0 && echo >&2 "Already running" && exit 0
+	<%= cmd %>
+	;;
+stop)
+	sig QUIT && exit 0
+	echo >&2 "Not running"
+	;;
+force-stop)
+	sig TERM && exit 0
+	echo >&2 "Not running"
+	;;
+restart|reload)
+	if sig USR2 && sleep 5 && sig 0
+	then
+		n=60
+		while test -s <%= old_pid %> && test $n -ge 0
+		do
+			printf '.' && sleep 1 && n=$(( $n - 1 ))
+		done
+		echo
+
+		if test $n -lt 0 && test -s <%= old_pid %>
+		then
+			echo >&2 "Old process still exists after 60 seconds"
+			exit 1
+		fi
+		exit 0
+	fi
+	echo >&2 "Couldn't reload, starting '<%= cmd %>' instead"
+	<%= cmd %>
+	;;
+reopen-logs)
+	sig USR1
+	;;
+*)
+	echo >&2 "Usage: $0 <start|stop|restart|force-stop|reopen-logs>"
+	exit 1
+	;;
+esac

data/cookbooks/railsapp/templates/default/unicorn.rb.erb

@@ -0,0 +1,37 @@
+worker_processes <%= node[:railsapp][:worker_processes] %>
+
+timeout <%= node[:railsapp][:request_timeout] %>
+
+user '<%= node[:railsapp][:worker_user] %>',
+     '<%= node[:railsapp][:worker_group] %>'
+
+listen "<%= node[:shared_path] %>/sockets/unicorn.sock"
+pid "<%= node[:shared_path] %>/pids/unicorn.pid"
+
+working_directory File.readlink("<%= node[:current_path] %>")
+
+stderr_path "<%= node[:shared_path] %>/log/unicorn.log"
+stdout_path "<%= node[:shared_path] %>/log/unicorn.log"
+
+preload_app true
+GC.copy_on_write_friendly = true if GC.respond_to?(:copy_on_write_friendly=)
+
+before_fork do |server, worker|
+  old_pid = "#{server.config[:pid]}.oldbin"
+  if File.exists?(old_pid) && server.pid != old_pid
+    begin
+      Process.kill(:QUIT, File.read(old_pid).to_i)
+    rescue Errno::ENOENT, Errno::ESRCH
+      # someone else did our job for us
+    end
+  end
+  # Application-specific
+  <%= node[:railsapp][:before_fork] %>
+end
+
+after_fork do |server, worker|
+  child_pid = server.config[:pid].sub('.pid', ".#{worker.nr}.pid")
+  system("echo #{Process.pid} > #{child_pid}")
+  # Application-specific
+  <%= node[:railsapp][:after_fork] %>
+end

data/cookbooks/railsapp/templates/default/worker.monit.conf.erb

@@ -0,0 +1,8 @@
+check process <%= node[:application] -%>-web-worker-<%= @nr -%>
+  with pidfile <%= node[:shared_path] -%>/pids/unicorn.<%= @nr -%>.pid
+  start program = "/bin/true"
+  stop program = "/bin/sh -c 'kill `cat <%= node[:shared_path] -%>/pids/unicorn.<%= @nr -%>.pid`'"
+  if mem is greater than 200.0 MB for 1 cycles then restart
+  if cpu is greater than 25% for 2 cycles then alert
+  if cpu is greater than 50% for 5 cycles then restart
+  group <%= node[:application] -%>-web

data/lib/mana.rb

@@ -0,0 +1,5 @@
+require "mana/version"
+require "mana/railtie"
+
+module Mana
+end

data/lib/mana/capistrano.rb

@@ -0,0 +1,93 @@
+require 'roundsman/capistrano'
+require 'capistrano_colors'
+require 'capistrano/ext/multistage'
+
+Capistrano::Configuration.instance(:must_exist).load do
+  
+  # Convinient defaults
+  
+  set(:deploy_to) { "/opt/#{fetch(:application)}" }
+  set :scm, 'git'
+  set :deploy_via, :remote_cache
+  set :use_sudo, false
+  
+  default_run_options[:pty] = true
+  ssh_options[:forward_agent] = true
+  
+  # Roundsman fine-tuning
+
+  set :chef_version, '0.10.10'
+  set :cookbooks_directory, 'config/deploy/cookbooks'
+  set :stream_roundsman_output, false
+  set :ruby_install_script do
+    %Q{
+        set -e
+        cd #{roundsman_working_dir}
+        rm -rf ruby-build
+        git clone -q git://github.com/sstephenson/ruby-build.git
+        cd ruby-build
+        ./install.sh
+        CONFIGURE_OPTS='--disable-install-rdoc' ruby-build #{fetch(:ruby_version)} #{fetch(:ruby_install_dir)}
+    }
+  end
+  
+  # Mana
+  
+  namespace :mana do
+    desc 'Complete setup of all software'
+    task :default do
+      if roundsman.install.install_ruby?
+        abort "Node is not boostrapped yet. Please run 'cap mana:setup' instead"
+      end
+      install
+      deploy.migrations
+    end
+  
+    desc 'Bootstrap chef and ruby'
+    task :bootstrap do
+      roundsman.install.default
+      roundsman.chef.install
+    end
+    
+    desc 'Install & update software'
+    task :install do
+      roundsman.chef.default
+    end
+    
+    desc 'Show install log'
+    task :log do
+      sudo "cat /tmp/roundsman/cache/chef-stacktrace.out"
+    end
+    
+    desc 'Complete setup'
+    task :setup do
+      upgrade
+      bootstrap
+      install
+      deploy.setup
+      deploy.cold
+      deploy.seed
+      sudo 'monit reload'
+    end
+    
+    desc 'Upgrade software'
+    task :upgrade do
+      sudo "#{fetch(:package_manager)} -yq update"
+      sudo "#{fetch(:package_manager)} -yq upgrade"
+    end
+  end
+  
+  # More convinience
+  
+  namespace :deploy do
+    desc 'Update the database with seed data'
+    task :seed, roles: :db, only: {primary: true} do
+      run "cd #{current_path}; rake db:seed RAILS_ENV=#{rails_env}"
+    end
+    
+    desc "Restart unicorn"
+    task :restart_unicorn, roles: :app, except: {no_release: true} do
+      sudo "service #{fetch(:application)}-web restart"
+    end
+  end
+end

data/lib/mana/railtie.rb

@@ -0,0 +1,7 @@
+module Mana
+  class ManaRailtie < Rails::Railtie
+    rake_tasks do
+      load 'tasks/mana.rake'
+    end
+  end
+end

data/lib/mana/version.rb

@@ -0,0 +1,3 @@
+module Mana
+  VERSION = "0.0.1"
+end

data/lib/tasks/mana.rake

@@ -0,0 +1,9 @@
+namespace :mana do
+  desc "Install mana configs"
+  task :install do
+    templates_path = File.expand_path(File.join(File.dirname(__FILE__), '../../templates')) + '/.'
+    cookbooks_path = File.expand_path(File.join(File.dirname(__FILE__), '../../cookbooks'))
+    FileUtils.cp_r templates_path, '.'
+    FileUtils.cp_r cookbooks_path, './config/deploy'
+  end
+end

data/mana.gemspec

@@ -0,0 +1,21 @@
+# -*- encoding: utf-8 -*-
+require File.expand_path('../lib/mana/version', __FILE__)
+
+Gem::Specification.new do |gem|
+  gem.authors       = ["Ilia Ablamonov, Cloud Castle Inc."]
+  gem.email         = ["ilia@flamefork.ru"]
+  gem.description   = "Configuration management with Chef & Capistrano"
+  gem.summary       = "Configuration management with Chef & Capistrano"
+  gem.homepage      = "https://github.com/cloudcastle/mana"
+
+  gem.files         = `git ls-files`.split($\)
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.name          = "mana"
+  gem.require_paths = ["lib"]
+  gem.version       = Mana::VERSION
+
+  gem.add_dependency "capistrano"
+  gem.add_dependency "roundsman"
+  gem.add_dependency "capistrano_colors"
+end

data/templates/Vagrantfile

@@ -0,0 +1,4 @@
+Vagrant::Config.run do |config|
+  config.vm.box = "precise64"
+  config.vm.network :hostonly, "10.10.10.10"
+end