orats 0.3.2 → 0.4.0

data/lib/orats/templates/auth.rb

@@ -38,9 +38,9 @@ puts        '-'*80, ''; sleep 0.25
 
 inject_into_file 'Gemfile', before: "\ngem 'kaminari'" do <<-CODE
 
-gem 'devise', '~> 3.2.2'
+gem 'devise', '~> 3.2.4'
 gem 'devise-async', '~> 0.9.0'
-gem 'pundit', '~> 0.2.1'
+gem 'pundit', '~> 0.2.3'
 CODE
 end
 

data/lib/orats/templates/base.rb

@@ -1,5 +1,5 @@
 # =====================================================================================================
-# Template for generating an opinionated base Rails 4.0.2 project using Ruby 2.1.0
+# Template for generating an opinionated base Rails 4.1.0 project using Ruby 2.1.0
 # =====================================================================================================
 
 # ----- Helper functions and variables ----------------------------------------------------------------
@@ -54,6 +54,10 @@ append_to_file '.gitignore' do <<-TEXT
 
 # Ignore the main environment file.
 .env
+
+# Ignore app specific folders.
+/vendor/bundle
+/public/assets/*
 TEXT
 end
 
@@ -66,7 +70,7 @@ puts
 say_status  'root', 'Creating root files...', :yellow
 puts        '-'*80, ''; sleep 0.25
 
-file '.ruby-version', '2.1.0'
+file '.ruby-version', '2.1.1'
 
 git add:    '.'
 git commit: "-m 'Add .ruby-version file for common ruby version managers'"
@@ -87,6 +91,10 @@ say_status  'root', 'Creating .env file...', :yellow
 puts        '-'*80, ''; sleep 0.25
 
 file '.env' do <<-CODE
+RAILS_ENV: development
+
+#{app_name_upper}_PROJECT_PATH: /full/path/to/your/project
+
 #{app_name_upper}_TOKEN_RAILS_SECRET: #{generate_token}
 
 #{app_name_upper}_SMTP_ADDRESS: smtp.gmail.com
@@ -110,6 +118,7 @@ file '.env' do <<-CODE
 #{app_name_upper}_CACHE_HOST: localhost
 #{app_name_upper}_CACHE_PORT: 6379
 #{app_name_upper}_CACHE_DATABASE: 0
+#{app_name_upper}_CACHE_PASSWORD: greatsecurity
 
 #{app_name_upper}_PUMA_THREADS_MIN: 0
 #{app_name_upper}_PUMA_THREADS_MAX: 1
@@ -119,10 +128,12 @@ file '.env' do <<-CODE
 CODE
 end
 
-# ----- Modify the secret token -----------------------------------------------------------------------
+# ----- Modify the secrets yaml file -----------------------------------------------------------------------
 
-gsub_file 'config/initializers/secret_token.rb', /'\w{128}'/, "ENV['#{app_name_upper}_TOKEN_RAILS_SECRET']"
+env_rails_secret_token = "<%= ENV['#{app_name_upper}_TOKEN_RAILS_SECRET'] %>"
 
+gsub_file 'config/secrets.yml', /\w{128}/, env_rails_secret_token
+gsub_file 'config/secrets.yml', '<%= ENV["SECRET_KEY_BASE"] %>', env_rails_secret_token
 
 # ----- Modify the application file -------------------------------------------------------------------
 
@@ -142,7 +153,7 @@ inject_into_file 'config/application.rb', after: "automatically loaded.\n" do <<
       :domain               => ENV['#{app_name_upper}_SMTP_DOMAIN'],
       :user_name            => ENV['#{app_name_upper}_SMTP_USERNAME'],
       :password             => ENV['#{app_name_upper}_SMTP_PASSWORD'],
-      :authentication       => ENV['#{app_name_upper}_SMTP_AUTH'].to_sym,
+      :authentication       => ENV['#{app_name_upper}_SMTP_AUTH'],
       :enable_starttls_auto => ENV['#{app_name_upper}_SMTP_STARTTTLS_AUTO'] == 'true'
     }
 
@@ -151,6 +162,7 @@ inject_into_file 'config/application.rb', after: "automatically loaded.\n" do <<
     config.cache_store = :redis_store, { host: ENV['#{app_name_upper}_CACHE_HOST'],
                                          port: ENV['#{app_name_upper}_CACHE_PORT'].to_i,
                                          db: ENV['#{app_name_upper}_CACHE_DATABASE'].to_i,
+                                         password: ENV['#{app_name_upper}_CACHE_PASSWORD'],
                                          namespace: '#{app_name}::cache'
                                        }
 CODE
@@ -206,19 +218,24 @@ end
 git add:    '.'
 git commit: "-m 'Dry up the database settings'"
 
-file 'config/puma.rb', <<-CODE
-threads ENV['#{app_name_upper}_PUMA_THREADS_MIN'].to_i,ENV['#{app_name_upper}_PUMA_THREADS_MAX'].to_i
-workers ENV['#{app_name_upper}_PUMA_WORKERS'].to_i
+file 'config/puma.rb', <<-'CODE'
+environment ENV['RAILS_ENV']
 
-pidfile '/tmp/puma.pid'
+threads ENV['app_name_upper_PUMA_THREADS_MIN'].to_i,ENV['app_name_upper_PUMA_THREADS_MAX'].to_i
+workers ENV['app_name_upper_PUMA_WORKERS'].to_i
+
+pidfile "#{ENV['app_name_upper_PROJECT_PATH']}/tmp/puma.pid"
 
 if ENV['RAILS_ENV'] == 'production'
-  bind 'unix:///tmp/puma.sock'
+  bind "unix://#{ENV['app_name_upper_PROJECT_PATH']}/tmp/puma.sock"
 else
   port '3000'
 end
 
-restart_command 'bundle exec puma'
+# https://github.com/puma/puma/blob/master/examples/config.rb#L125
+prune_bundler
+
+restart_command 'bundle exec bin/puma'
 
 on_worker_boot do
   require 'active_record'
@@ -229,12 +246,14 @@ on_worker_boot do
 end
 CODE
 
+gsub_file 'config/puma.rb', 'app_name_upper', app_name_upper
+
 git add:    '.'
 git commit: "-m 'Add the puma config'"
 
 file 'config/sidekiq.yml', <<-CODE
 ---
-:pidfile: /tmp/sidekiq.pid
+:pidfile: <%= ENV['#{app_name_upper}_PROJECT_PATH'] %>/tmp/sidekiq.pid
 :concurrency: <%= ENV['#{app_name_upper}_SIDEKIQ_CONCURRENCY'].to_i %>
 :queues:
   - default

data/lib/orats/templates/includes/Gemfile

@@ -1,44 +1,45 @@
 source 'https://rubygems.org'
 
-gem 'rails', '4.0.3'
-gem 'turbolinks', '~> 1.3.1'
-gem 'jquery-rails', '~> 3.0.4'
-gem 'jquery-turbolinks', '~> 2.0.1'
-gem 'bootstrap-sass', '~> 3.0.1'
-gem 'font-awesome-rails', '~> 4.0.3.1'
+gem 'rails', '~> 4.1.1'
+gem 'turbolinks', '~> 2.2.2'
+gem 'jquery-rails', '~> 3.1.0'
+gem 'jquery-turbolinks', '~> 2.0.2'
+gem 'bootstrap-sass', '~> 3.1.1'
+gem 'font-awesome-rails', '~> 4.0.3'
 
-gem 'custom_configuration'
+gem 'custom_configuration', '~> 0.0.2'
 
-gem 'pg'
+gem 'pg', '~> 0.17.1'
 gem 'redis-rails', '~> 4.0.0'
 
-gem 'puma', '~> 2.7.1'
-gem 'sidekiq', '~> 2.17.4'
-gem 'sinatra', '>= 1.3.0', require: false
-gem 'whenever', require: false
+gem 'puma', '~> 2.8.2'
+gem 'sidekiq', '~> 3.0.0'
+gem 'sinatra', '>= 1.4.5', require: false
+gem 'whenever', '~> 0.9.2', require: false
 #gem 'jbuilder'
 
 gem 'kaminari', '~> 0.15.1'
 
-gem 'sitemap_generator', '~> 4.3.1'
-gem 'favicon_maker', '~> 1.1.0'
+gem 'sitemap_generator', '~> 5.0.2'
+gem 'favicon_maker', '~> 1.1.2'
 
 group :development do
-  gem 'foreman', '>= 0.63.0', require: false
-  gem 'rack-mini-profiler'
-  gem 'bullet', '~> 4.7.1'
-  gem 'meta_request'
+  gem 'spring', '~> 1.1.2'
+  gem 'foreman', require: false
+  gem 'rack-mini-profiler', '~> 0.9.1'
+  gem 'bullet', '~> 4.8.0'
+  gem 'meta_request', '~> 0.3.0'
   gem 'railroady', '~> 1.1.1', require: false
 end
 
 group :development, :test do
-  gem 'dotenv-rails', '~> 0.9.0'
+  gem 'dotenv-rails', '~> 0.7.0'
 end
 
 group :assets do
   gem 'sass-rails', '~> 4.0.1'
   gem 'coffee-rails', '~> 4.0.1'
-  gem 'uglifier', '~> 2.4.0'
+  gem 'uglifier', '~> 2.5.0'
 end
 
 group :doc do

data/lib/orats/templates/includes/inventory/group_vars/all.yml

@@ -0,0 +1,95 @@
+---
+# the user name used to make a connection to the server
+ansible_ssh_user: deploy
+
+# the user created on the system
+user_name: "{{ ansible_ssh_user }}"
+
+# load all passwords from a local location outside of version control
+secrets_load_path: ~/tmp/testproj/secrets/
+
+secrets_postgres_password: "{{ lookup('password', secrets_load_path + 'postgres_password') }}"
+secrets_redis_password: "{{ lookup('password', secrets_load_path + 'redis_password') }}"
+secrets_mail_password: "{{ lookup('password', secrets_load_path + 'mail_password') }}"
+secrets_rails_token: "{{ lookup('password', secrets_load_path + 'rails_token') }}"
+secrets_devise_token: "{{ lookup('password', secrets_load_path + 'devise_token') }}"
+secrets_devise_pepper_token: "{{ lookup('password', secrets_load_path + 'devise_pepper_token') }}"
+
+
+# postgres login credentials
+postgres_user: "{{ user_name }}"
+postgres_password: "{{ secrets_postgres_password }}"
+
+# redis configuration
+redis_bind: 0.0.0.0
+redis_port: 6379
+redis_version: 2.8.9
+redis_install_dir: /usr/local
+redis_dir: /usr/local/redis
+redis_password: false # must be set to true if you want to use a password
+
+# rails application configuration
+rails_deploy_app_name: testproj
+rails_deploy_user: "{{ user_name }}"
+
+rails_deploy_ssh_keypair_local_path: "{{ secrets_load_path }}"
+
+rails_deploy_git_url: "git@bitbucket.org:yourname/testproj.git"
+
+# you may have 1 or 100 app servers but you only want the migration
+# to be ran on a single app server. The server you specify as the
+# rails_deploy_migrate_master_host will be the server that the
+# migration gets ran on
+
+# the default value is the first server listed under your [app] group
+rails_deploy_migrate_master_host: "{{ groups['app'][0] }}"
+
+# environment variables for the rails application
+# edit this list to account for any variables your app needs
+rails_deploy_env:
+  RAILS_ENV: production
+
+  TESTPROJ_PROJECT_PATH: "{{ rails_deploy_path }}"
+
+  TESTPROJ_DATABASE_HOST: localhost
+  TESTPROJ_DATABASE_NAME: "{{ rails_deploy_app_name }}"
+  TESTPROJ_DATABASE_USERNAME: "{{ postgres_user }}"
+  TESTPROJ_DATABASE_PASSWORD: "{{ postgres_password }}"
+  TESTPROJ_DATABASE_POOL: 25
+  TESTPROJ_DATABASE_TIMEOUT: 5000
+
+  TESTPROJ_CACHE_HOST: "{{ redis_bind }}"
+  TESTPROJ_CACHE_PORT: "{{ redis_port }}"
+  TESTPROJ_CACHE_DATABASE: 0
+  TESTPROJ_CACHE_PASSWORD: "{{ secrets_redis_password }}"
+
+  TESTPROJ_TOKEN_RAILS_SECRET: "{{ secrets_rails_token }}"
+  TESTPROJ_TOKEN_DEVISE_SECRET: "{{ secrets_devise_token }}"
+  TESTPROJ_TOKEN_DEVISE_PEPPER: "{{ secrets_devise_pepper_token }}"
+
+  TESTPROJ_SMTP_ADDRESS: smtp.testproj.com
+  TESTPROJ_SMTP_PORT: 25
+  TESTPROJ_SMTP_DOMAIN: testproj.com
+  TESTPROJ_SMTP_USERNAME: info@testproj.com
+  TESTPROJ_SMTP_PASSWORD: "{{ secrets_mail_password }}"
+  TESTPROJ_SMTP_AUTH: plain
+  TESTPROJ_SMTP_STARTTTLS_AUTO: true
+
+  TESTPROJ_ACTION_MAILER_HOST: www.testproj.com
+  TESTPROJ_ACTION_MAILER_DEFAULT_EMAIL: info@testproj.com
+  TESTPROJ_ACTION_MAILER_DEVISE_DEFAULT_EMAIL: info@testproj.com
+
+  TESTPROJ_PUMA_THREADS_MIN: 0
+  TESTPROJ_PUMA_THREADS_MAX: 16
+
+  # ensure there are always at least 2 workers so puma can properly do phased restarts
+  TESTPROJ_PUMA_WORKERS: "{{ ansible_processor_cores if ansible_processor_cores > 1 else 2 }}"
+
+  TESTPROJ_SIDEKIQ_CONCURRENCY: 25
+
+# nginx configuration
+nginx_base_domain: 0.0.0.0
+nginx_upstream_name: "{{ rails_deploy_app_name }}"
+nginx_upstream_server: unix://{{ rails_deploy_path }}/tmp/puma.sock
+nginx_root_path: /home/{{ rails_deploy_user }}/{{ rails_deploy_app_name }}.git/public
+nginx_ssl_local_path: "{{ secrets_load_path }}"

data/lib/orats/templates/includes/inventory/hosts

@@ -0,0 +1,8 @@
+[app]
+192.168.1.2
+
+[cache]
+192.168.1.2
+
+[database]
+192.168.1.2

data/lib/orats/templates/includes/secrets/sslcert.crt

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/lib/orats/templates/includes/secrets/sslkey.key

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

data/lib/orats/templates/play.rb

@@ -0,0 +1,172 @@
+# =====================================================================================================
+# Template for generating an ansible playbook
+# =====================================================================================================
+
+# ----- Helper functions and variables ----------------------------------------------------------------
+
+require 'securerandom'
+
+def generate_token
+  SecureRandom.hex(64)
+end
+
+def git_config(field)
+  command = "git config --global user.#{field}"
+  git_field_value = run(command, capture: true).gsub("\n", '')
+  default_value = "YOUR_#{field.upcase}"
+
+  git_field_value.to_s.empty? ? default_value : git_field_value
+end
+
+app_name_upper = app_name.upcase
+app_name_class = app_name.humanize
+
+author_name = git_config 'name'
+author_email = git_config 'email'
+
+# ----- Nuke all of the rails code --------------------------------------------------------------------
+
+puts
+say_status  'shell', 'Removing all of the generated rails code...', :yellow
+puts        '-'*80, ''; sleep 0.25
+
+run 'rm -rf * .git .gitignore'
+
+# ----- Create playbook -------------------------------------------------------------------------------
+
+puts
+say_status  'init', 'Creating playbook...', :yellow
+puts        '-'*80, ''; sleep 0.25
+
+run "mkdir -p #{app_name}"
+
+# ----- Move playbook back one directory --------------------------------------------------------------
+
+puts
+say_status  'shell', 'Moving playbook back one directory...', :yellow
+puts        '-'*80, ''; sleep 0.25
+
+run "mv #{app_name}/* ."
+run "rm -rf #{app_name}"
+
+# ----- Create the git repo ---------------------------------------------------------------------------
+
+puts
+say_status  'git', 'Creating initial commit...', :yellow
+puts        '-'*80, ''; sleep 0.25
+
+git :init
+git add: '.'
+git commit: "-m 'Initial commit'"
+
+# ----- Create the license ----------------------------------------------------------------------------
+
+puts
+say_status  'root', 'Creating the license', :yellow
+puts        '-'*80, ''; sleep 0.25
+
+run 'rm -rf LICENSE'
+
+file 'LICENSE' do <<-TEXT
+The MIT License (MIT)
+
+Copyright (c) #{Time.now.year} #{author_name} <#{author_email}>
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+'Software'), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+TEXT
+end
+
+git add: '.'
+git commit: "-m 'Add MIT license'"
+
+# ----- Create the site file --------------------------------------------------------------------------
+
+puts
+say_status  'root', 'Creating the site yaml file', :yellow
+puts        '-'*80, ''; sleep 0.25
+
+file 'site.yml' do <<-TEXT
+---
+- name: ensure all servers are commonly configured
+  hosts: all
+  sudo: true
+
+  roles:
+    - { role: nickjj.user, tags: [common, user] }
+
+- name: ensure database servers are configured
+  hosts: database
+  sudo: true
+
+  roles:
+    - role: nickjj.security
+      tags: [database, security]
+      security_ufw_ports:
+        - rule: deny
+          port: 80
+          proto: tcp
+    - { role: nickjj.postgres, tags: [database, postgres] }
+
+- name: ensure cache servers are configured
+  hosts: cache
+  sudo: true
+
+  roles:
+    - role: nickjj.security
+      tags: [cache, security]
+      security_ufw_ports:
+        - rule: deny
+          port: 80
+          proto: tcp
+    - { role: DavidWittman.redis, tags: [cache, redis] }
+
+- name: ensure app servers are configured
+  hosts: app
+  sudo: true
+
+  roles:
+    - role: nickjj.security
+      tags: [app, security]
+      security_ufw_ports:
+        - rule: allow
+          port: 80
+          proto: tcp
+    - { role: nickjj.ruby, tags: [app, ruby] }
+    - { role: nickjj.nodejs, tags: [app, nodejs] }
+    - { role: nickjj.nginx, tags: [app, nginx] }
+    - { role: nickjj.rails, tags: [app, rails] }
+TEXT
+end
+
+git add: '.'
+git commit: "-m 'Add site.yml file'"
+
+# ----- Installation complete message -----------------------------------------------------------------
+
+puts
+say_status  'success', "\e[1m\Everything has been setup successfully\e[0m", :cyan
+puts
+say_status  'question', 'Are most of your apps similar?', :yellow
+say_status  'answer', 'You only need to generate one playbook and you just did', :white
+say_status  'answer', 'Use the inventory in each project to customize certain things', :white
+puts
+say_status  'question', 'Are you new to ansible?', :yellow
+say_status  'answer', 'http://docs.ansible.com/intro_getting_started.html', :white
+puts        '-'*80