sunzi-rails 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 7d4434d8e754ea42e09e0b32fb93d466dd8ffcb4
+  data.tar.gz: 4159fb253fdc588e033f8f8df4e1c59a85a48296
+SHA512:
+  metadata.gz: 9ead76c9956fa2747ef0ba5100b1f6d8e98ca05ec5278dd8e1845daf36ece3f57afe9f15bb49573c4cd20d8b7b3bd51c0361f5ff89ec8532c3896fae8728cf6f
+  data.tar.gz: 7358cbfbd5cee07e3a2a06dda5ec4cfe25d75d26fd905bca5356451a444e373c97005d82870cf4d86ed96b018ed70c597f8afe490df3e0bd14663639110a8a2e

data/.gitignore

@@ -0,0 +1,7 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*
+sandbox
+.ruby-version
+/compiled

data/Gemfile

@@ -0,0 +1,3 @@
+source 'http://rubygems.org'
+
+gemspec

data/README.md

@@ -0,0 +1,200 @@
+Sunzi-Rails
+===========
+
+```
+"The supreme art of war is to subdue the enemy without fighting." - Sunzi
+```
+
+Sunzi is the easiest [server provisioning](http://en.wikipedia.org/wiki/Provisioning#Server_provisioning) utility designed for mere mortals. If Chef or Puppet is driving you nuts, try Sunzi!
+
+Sunzi assumes that modern Linux distributions have (mostly) sane defaults and great package managers.
+
+Its design goals are:
+
+* **It's just shell script.** No clunky Ruby DSL involved. Most of the information about server configuration on the web is written in shell commands. Just copy-paste them, rather than translate it into an arbitrary DSL. Also, Bash is the greatest common denominator on minimum Linux installs.
+* **Focus on diff from default.** No big-bang overwriting. Append or replace the smallest possible piece of data in a config file. Loads of custom configurations make it difficult to understand what you are really doing.
+* **Always use the root user.** Think twice before blindly assuming you need a regular user - it doesn't add any security benefit for server provisioning, it just adds extra verbosity for nothing. However, it doesn't mean that you shouldn't create regular users with Sunzi - feel free to write your own recipes.
+* **Minimum dependencies.** No configuration server required. You don't even need a Ruby runtime on the remote server.
+
+Quickstart
+----------
+
+Install:
+
+```bash
+$ [sudo] gem install sunzi-rails
+```
+
+Go into your Rails project directory, then:
+
+```bash
+$ sunzi-cap create
+```
+
+It generates a `config/sunzi` folder along with subdirectories and templates. Inside `sunzi`, there are `sunzi.yml` and `install.sh`. Those two are the most important files that you mainly work on.
+
+Go into your `config/deploy.rb` and make sure to have these set: 
+
+```ruby
+set :ruby_version, IO.read("#{File.dirname(__FILE__)}/../../.ruby-version").strip
+set :admin_name, 'admin'
+set :deployer_name, 'deployer'
+```
+
+Go into your `config/deploy/[stage].rb` and make sure to have these set:
+
+```ruby
+set :server, 'example.com'
+server fetch(:server), user: fetch(:deployer_name), roles: %w[app web db]
+```
+
+Go into your `config/secrets.yml` and make sure to have these set:
+
+```
+[stage]:
+  deployer_password: password
+  deployer_public_key: "ssh-rsa ...== deployer@example.com"
+```
+
+Finally, add `/compiled` to your `.gitignore` file.
+
+All those settings can be overriden in your `sunzi.yml` file within `attributes`.
+
+Go into the project directory, then run `sunzi-cap deploy`:
+
+```bash
+$ sunzi-cap deploy staging admin --sudo
+$ sunzi-cap deploy staging deployer
+```
+
+Now, what it actually does is:
+
+1. Compile `sunzi.yml` to generate attributes and retrieve remote recipes, then copy files scoped to `admin` role into the `compiled` directory
+1. SSH to `user@example.com` defined within your Cpistrano `config/deploy/staging.rb` file
+1. Transfer the content of the `compiled` directory to the remote server and extract in `$HOME/sunzi`
+1. Run `install.sh` on the remote server with sudo mode turned on
+1. Idem for the `deployer` role, but with sudo mode turned off
+
+As you can see, all you need to do is edit `install.sh` and add some shell commands. That's it.
+
+A Sunzi project without any recipes or roles is totally fine, so that you can start small, go big as you get along.
+
+Commands
+--------
+
+```bash
+$ sunzi-cap                                  # Show command help
+$ sunzi-cap create                           # Create a new Sunzi project
+$ sunzi-cap compile [stage] [role] [--sudo]  # Compile Sunzi project
+$ sunzi-cap deploy [stage] [role] [--sudo]   # Deploy Sunzi project
+```
+
+Directory structure
+-------------------
+
+Here's the directory structure that `sunzi-cap create` automatically generates:
+
+```bash
+compiled/         # everything under this folder will be transferred to the
+                  # remote server (do not edit directly)
+config/sunzi/
+  install.sh      # main script
+  sunzi.yml       # add custom attributes and remote recipes here
+
+  recipes/        # put commonly used scripts here, referred from install.sh
+    sunzi.sh
+  roles/          # when role is specified, scripts here will be concatenated
+    db.sh         # to install.sh in the compile phase
+    web.sh
+  files/          # put any files to be transferred
+```
+
+How do you pass dynamic values?
+-------------------------------
+
+There are two ways to pass dynamic values to the script - ruby and bash.
+
+**For ruby**: In the compile phase, attributes defined in `sunzi.yml` are accessible from any files in the form of `<%= @attributes.ruby_version %>`.
+
+**For bash**: In the compile phase, attributes defined in `sunzi.yml` are split into multiple files in `compiled/attributes`, one per attribute. Now you can refer to it by `$(cat attributes/ruby_version)` in the script.
+
+For instance, given the following `install.sh`:
+
+```bash
+echo "Goodbye <%= @attributes.goodbye %>, Hello <%= @attributes.hello %>!"
+```
+
+With `sunzi.yml`:
+
+```yaml
+attributes:
+  goodbye: Chef
+  hello: Sunzi
+```
+
+Now, you get the following result.
+
+```
+Goodbye Chef, Hello Sunzi!
+```
+
+Remote Recipes
+--------------
+
+Recipes can be retrieved remotely via HTTP. Put a URL in the recipes section of `sunzi.yml`, and Sunzi will automatically load the content and put it into the `compiled/recipes` folder in the compile phase.
+
+For instance, if you have the following line in `sunzi.yml`,
+
+```yaml
+recipes:
+  rvm: https://raw.github.com/kenn/sunzi-recipes/master/ruby/rvm.sh
+```
+
+`rvm.sh` will be available and you can refer to that recipe by `source recipes/rvm.sh`.
+
+You may find sample recipes in this repository useful: https://github.com/kenn/sunzi-recipes
+
+Role-based configuration
+------------------------
+
+You probably have different configurations between **web servers** and **database servers**.
+
+No problem - how Sunzi handles role-based configuration is refreshingly simple.
+
+Shell scripts under the `roles` directory, such as `web.sh` or `db.sh`, are automatically recognized as a role. The role script will be appended to `install.sh` at deploy, so you should put common configurations in `install.sh` and role specific procedures in the role script.
+
+For instance, when you set up a new web server, deploy with a role name:
+
+```bash
+sunzi-cap deploy production web
+```
+
+It is equivalent to running `install.sh`, followed by `web.sh`.
+
+Vagrant
+-------
+
+If you're using Sunzi with [Vagrant](http://vagrantup.com/), make sure that you have a root access via SSH.
+
+An easy way is to edit `Vagrantfile`:
+
+```ruby
+Vagrant.configure("2") do |config|
+  config.vm.provision "shell",
+    inline: "sudo echo 'root:vagrant' | /usr/sbin/chpasswd"
+  end
+end
+```
+
+and now run `vagrant up`, it will change the root password to `vagrant`.
+
+Also keep in mind that you need to specify the port number 2222 within `config/deploy/vagrant.rb`.
+
+```bash
+$ sunzi-cap deploy vagrant deployer
+```
+
+Demonstration Videos
+-------
+
+You can watch video on how to deploy a Rails 4.1 app with Sunzi and Capistrano 3 at http://youtu.be/3mwupXqtkmg

data/Rakefile

@@ -0,0 +1,9 @@
+require 'bundler/gem_tasks'
+require 'rake/testtask'
+
+Rake::TestTask.new do |t|
+  t.libs << 'test'
+  t.test_files = FileList['test/test*.rb']
+  t.verbose = true
+end
+task :default => :test

data/bin/sunzi-cap

@@ -0,0 +1,17 @@
+#!/usr/bin/env ruby
+
+# Abort beautifully with ctrl+c.
+Signal.trap(:INT) { abort "\nAborting." }
+
+# Load the main lib and invoke CLI.
+if ENV['RAILS_ENV'] == 'development'
+  require './lib/sunzi'
+else
+  require 'sunzi'
+end
+require 'active_support/core_ext/hash/slice'
+require 'active_support/core_ext/hash/indifferent_access'
+require 'active_support/ordered_hash'
+require 'active_support/hash_with_indifferent_access'
+
+Sunzi::Cli.start(ARGV, { destination_root: 'config' })

data/lib/sunzi/cli/capistrano.rb

@@ -0,0 +1,43 @@
+module Sunzi
+  module Cli::Capistrano
+    extend self
+
+    attr_accessor :env
+    @env = {}
+
+    def load_env(stage)
+      deploy_path = File.expand_path('config/deploy.rb')
+      stage_path = File.expand_path("config/deploy/#{stage}.rb")
+      instance_eval(File.read(deploy_path), deploy_path)
+      instance_eval(File.read(stage_path), stage_path)
+      @env = HashWithIndifferentAccess.new(@env)
+    end
+
+    def lock(version); end
+    def namespace(options = {}); end
+
+    def set(key, value)
+      @env[key] = value
+    end
+
+    def fetch(key, value = nil)
+      if @env.has_key?(key)
+        @env[key]
+      else
+        @env[key] = value
+      end
+    end
+
+    def server(name, properties = {})
+      @env[:server] = {name: name}.merge(properties)
+    end
+
+    def method_missing(name, *args, &block)
+      if caller.join.include? 'load_env'
+        # do nothing
+      else
+        super
+      end
+    end
+  end
+end

data/lib/sunzi/cli/database.rb

@@ -0,0 +1,23 @@
+module Sunzi
+  module Cli::Database
+    extend self
+
+    attr_accessor :env
+
+    def load_env(stage)
+      path = File.expand_path('config/database.yml')
+      @env = YAML.load(File.read(path))[stage]
+      scope_keys
+      @env = HashWithIndifferentAccess.new(@env)
+    end
+
+    private
+
+    def scope_keys
+      @env = @env.reduce({}) do |env, (key, value)|
+        env[:"db_#{key}"] = value
+        env
+      end
+    end
+  end
+end

data/lib/sunzi/cli/secrets.rb

@@ -0,0 +1,14 @@
+require 'active_support/hash_with_indifferent_access'
+
+module Sunzi
+  module Cli::Secrets
+    extend self
+
+    attr_accessor :env
+
+    def load_env(stage)
+      path = File.expand_path('config/secrets.yml')
+      @env = HashWithIndifferentAccess.new(YAML.load(File.read(path))[stage])
+    end
+  end
+end

data/lib/sunzi/cli.rb

@@ -0,0 +1,161 @@
+require 'open3'
+require 'ostruct'
+require 'net/ssh'
+
+module Sunzi
+  class Cli < Thor
+    include Thor::Actions
+
+    desc 'create', 'Create sunzi project'
+    def create(project = 'sunzi')
+      do_create(project)
+    end
+
+    desc 'deploy [stage] [role] [--sudo]', 'Deploy sunzi project'
+    method_options :sudo => false
+    def deploy(first, *args)
+      do_deploy(first, *args)
+    end
+
+    desc 'compile', 'Compile sunzi project'
+    def compile(first, *args)
+      do_compile(first, *args)
+    end
+
+    desc 'version', 'Show version'
+    def version
+      puts Gem.loaded_specs['sunzi'].version.to_s
+    end
+
+    no_tasks do
+      include Sunzi::Utility
+
+      def self.source_root
+        File.expand_path('../../',__FILE__)
+      end
+
+      def do_create(project)
+        copy_file 'templates/create/.gitignore',         "#{project}/.gitignore"
+        copy_file 'templates/create/sunzi.yml',          "#{project}/sunzi.yml"
+        copy_file 'templates/create/install.sh',         "#{project}/install.sh"
+        copy_file 'templates/create/recipes/sunzi.sh',   "#{project}/recipes/sunzi.sh"
+        copy_file 'templates/create/roles/db.sh',        "#{project}/roles/db.sh"
+        copy_file 'templates/create/roles/web.sh',       "#{project}/roles/web.sh"
+        copy_file 'templates/create/files/.gitkeep',     "#{project}/files/.gitkeep"
+      end
+
+      def do_deploy(first, *args)
+        # compile attributes and recipes
+        do_compile(first, *args)
+
+        # The host key might change when we instantiate a new VM, so
+        # we remove (-R) the old host key from known_hosts.
+        `ssh-keygen -R #{@host} 2> /dev/null`
+
+        remote_commands = <<-EOS
+        rm -rf ~/sunzi &&
+        mkdir ~/sunzi &&
+        cd ~/sunzi &&
+        tar xz &&
+        #{@sudo}bash install.sh
+        EOS
+
+        remote_commands.strip! << ' && rm -rf ~/sunzi' if @config['preferences'] and @config['preferences']['erase_remote_folder']
+
+        local_commands = <<-EOS
+        cd compiled
+        tar cz . | ssh -o 'StrictHostKeyChecking no' #{@user}@#{@host} -p #{@port} '#{remote_commands}'
+        EOS
+
+        Open3.popen3(local_commands) do |stdin, stdout, stderr|
+          stdin.close
+          t = Thread.new do
+            while (line = stderr.gets)
+              print line.color(:red)
+            end
+          end
+          while (line = stdout.gets)
+            print line.color(:green)
+          end
+          t.join
+        end
+      end
+
+      def do_compile(first, *args)
+        load_env(first, *args)
+
+        compile_attributes
+        copy_remote_recipes
+        copy_local_files
+        build_install
+      end
+
+      def load_env(first, *args)
+        @stage = first
+        @role = args[0]
+
+        abort_with 'You must have a sunzi folder' unless File.exists?(based("sunzi.yml"))
+        abort_with "#{@role} doesn't exist!"       unless File.exists?(based("roles/#{@role}.sh"))
+
+        cap = Capistrano.load_env(@stage)
+        if options.sudo?
+          @sudo = 'sudo '
+          @user = cap[:sys_admin]
+        else
+          @user = cap[:server][:user]
+        end
+        @host = cap[:server][:name]
+        @port = cap[:port]
+
+        @config = YAML.load(File.read(based("sunzi.yml")))
+
+        @attributes = Database.load_env(@stage)
+          .merge(cap.slice(:ruby_version, :deployer_name))
+          .merge(Secrets.load_env(@stage).slice(:deployer_password, :deployer_public_key))
+          .merge(@config['attributes'] || {})
+      end
+
+      def compile_attributes
+        # Break down attributes into individual files
+        @attributes.each {|key, value| create_file compiled("attributes/#{key}"), value }
+        @attributes = OpenStruct.new(@attributes)
+      end
+
+      def copy_remote_recipes
+        # Retrieve remote recipes via HTTP
+        cache_remote_recipes = @config['preferences'] && @config['preferences']['cache_remote_recipes']
+        (@config['recipes'] || []).each do |key, value|
+          next if cache_remote_recipes and File.exists?(compiled("recipes/#{key}.sh"))
+          get value, "compiled/recipes/#{key}.sh"
+        end
+      end
+
+      def copy_local_files
+        files = Dir["{config/sunzi/recipes,config/sunzi/roles,config/sunzi/files}/**/*"].select { |file| File.file?(file) }
+
+        files.each do |file|
+          template based(file), compiled(file)
+        end
+
+        (@config['files'] || []).each do |file|
+          template based(file), compiled("files/#{File.basename(file)}")
+        end
+      end
+
+      def build_install
+        _install_path = compiled("_install.sh")
+        template based("install.sh"), _install_path
+        content = File.binread(_install_path) << "\n" << File.binread(compiled("roles/#{@role}.sh"))
+        create_file compiled("install.sh"), content
+      end
+
+      def based(file)
+        File.expand_path("config/sunzi/#{file.sub('config/sunzi/', '')}")
+      end
+
+      def compiled(file)
+        File.expand_path("compiled/#{file.sub('config/sunzi/', '')}")
+      end
+    end
+  end
+end

data/lib/sunzi/logger.rb

@@ -0,0 +1,17 @@
+module Sunzi
+  module Logger
+    class << self
+      def info(text)
+        puts text.bright
+      end
+
+      def success(text)
+        puts text.color(:green).bright
+      end
+
+      def error(text)
+        puts text.color(:red).bright
+      end
+    end
+  end
+end

data/lib/sunzi/utility.rb

@@ -0,0 +1,17 @@
+module Sunzi
+  module Utility
+    def abort_with(text)
+      Logger.error text
+      abort
+    end
+
+    def exit_with(text)
+      Logger.success text
+      exit
+    end
+
+    def say(text)
+      Logger.info text
+    end
+  end
+end

data/lib/sunzi.rb

@@ -0,0 +1,25 @@
+require 'thor'
+require 'rainbow'
+require 'yaml'
+
+# Starting 2.0.0, Rainbow no longer patches string with the color method by default.
+require 'rainbow/version'
+require 'rainbow/ext/string' unless Rainbow::VERSION < '2.0.0'
+
+module Sunzi
+  if ENV['RAILS_ENV'] == 'development'
+    autoload :Capistrano, './lib/sunzi/cli/capistrano'
+    autoload :Database,   './lib/sunzi/cli/database'
+    autoload :Secrets,    './lib/sunzi/cli/secrets'
+    autoload :Cli,        './lib/sunzi/cli'
+    autoload :Logger,     './lib/sunzi/logger'
+    autoload :Utility,    './lib/sunzi/utility'
+  else
+    autoload :Capistrano, 'sunzi/cli/capistrano'
+    autoload :Database,   'sunzi/cli/database'
+    autoload :Secrets,    'sunzi/cli/secrets'
+    autoload :Cli,        'sunzi/cli'
+    autoload :Logger,     'sunzi/logger'
+    autoload :Utility,    'sunzi/utility'
+  end
+end

data/lib/templates/create/files/authorized_keys

@@ -0,0 +1 @@
+<%= @attributes.deployer_public_key %>

data/lib/templates/create/files/sudoers

@@ -0,0 +1 @@
+<%= @attributes.deployer_name %> ALL=(ALL) NOPASSWD:ALL

data/lib/templates/create/install.sh

@@ -0,0 +1,14 @@
+#!/bin/bash
+set -e
+
+# Load base utility functions like sunzi.mute() and sunzi.install()
+source recipes/sunzi.sh
+
+# This line is necessary for automated provisioning for Debian/Ubuntu.
+# Remove if you're not on Debian/Ubuntu.
+export DEBIAN_FRONTEND=noninteractive
+export TERM=linux
+
+# Add Dotdeb repository. Recommended if you're using Debian. See http://www.dotdeb.org/about/
+# source recipes/dotdeb.sh
+# source recipes/backports.sh

data/lib/templates/create/recipes/libraries.sh

@@ -0,0 +1,24 @@
+if sunzi.to_be_done "install librairies"; then
+  sunzi.install "autoconf"
+  sunzi.install "bison"
+  sunzi.install "libncurses5-dev"
+  sunzi.install "libgdbm3"
+  sunzi.install "libgdbm-dev"
+
+  sunzi.install "git-core"
+  sunzi.install "zlib1g-dev"
+  sunzi.install "build-essential"
+  sunzi.install "libssl-dev"
+  sunzi.install "libreadline-dev"
+  sunzi.install "libyaml-dev"
+  sunzi.install "libsqlite3-dev"
+  sunzi.install "sqlite3"
+  sunzi.install "libxml2-dev"
+  sunzi.install "libxslt1-dev"
+  sunzi.install "libcurl4-openssl-dev"
+  sunzi.install "python-software-properties"
+  sunzi.install "libffi-dev"
+  sunzi.install "imagemagick"
+
+  sunzi.done "install librairies"
+fi

data/lib/templates/create/recipes/mysql.sh

@@ -0,0 +1,19 @@
+DB_NAME=<%= @attributes.db_database %>
+DB_USER=<%= @attributes.db_username %>
+DB_PWD=<%= @attributes.db_password %>
+DB_ROOT_PWD=<%= @attributes.mysql_root_password %>
+
+if sunzi.to_be_done "install mysql"; then
+  sudo debconf-set-selections <<< "mysql-server mysql-server/root_password password $DB_ROOT_PWD"
+  sudo debconf-set-selections <<< "mysql-server mysql-server/root_password_again password $DB_ROOT_PWD"
+  sunzi.install "mysql-server"
+  sunzi.install "mysql-client"
+  sunzi.install "libmysqlclient-dev"
+
+  sudo -u root mysql -proot -e "create database $DB_NAME;"
+  sudo -u root mysql -proot -e "create user '$DB_USER'@'localhost' identified by '$DB_PWD';"
+  sudo -u root mysql -proot -e "grant all privileges on $DB_NAME.* to '$DB_USER'@'%' identified by '$DB_PWD';"
+  sudo -u root mysql -proot -e "flush privileges;"
+
+  sunzi.done "install mysql"
+fi

data/lib/templates/create/recipes/nodejs.sh

@@ -0,0 +1,6 @@
+if sunzi.to_be_done "install nodejs"; then
+  curl -sL https://deb.nodesource.com/setup | sudo bash -
+  sunzi.install "nodejs"
+
+  sunzi.done "install nodejs"
+fi

data/lib/templates/create/recipes/passenger.sh

@@ -0,0 +1,19 @@
+DEPLOYER_NAME=<%= @attributes.deployer_name %>
+DEPLOYER_PATH=/home/$DEPLOYER_NAME
+RBENV_PATH=$DEPLOYER_PATH/.rbenv
+
+if sunzi.to_be_done "install passenger"; then
+  sunzi.mute "apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 561F9B9CAC40B2F7"
+  sunzi.install "apt-transport-https"
+  sunzi.install "ca-certificates"
+  sh -c 'echo deb https://oss-binaries.phusionpassenger.com/apt/passenger trusty main > /etc/apt/sources.list.d/passenger.list'
+  sunzi.mute "apt-get update"
+
+  sunzi.install "nginx-extras"
+  sunzi.install "passenger"
+
+  sed -i -e "s|# passenger_root|passenger_root|g" /etc/nginx/nginx.conf
+  sed -i -e "s|# passenger_ruby /usr/bin/passenger_free_ruby|passenger_ruby $RBENV_PATH/shims/ruby|g" /etc/nginx/nginx.conf
+
+  sunzi.done "install passenger"
+fi

data/lib/templates/create/recipes/postgres.sh

@@ -0,0 +1,14 @@
+DB_NAME=<%= @attributes.db_database %>
+DB_USER=<%= @attributes.db_username %>
+DB_PWD=<%= @attributes.db_password %>
+
+if sunzi.to_be_done "install postgres"; then
+  sunzi.install "postgresql"
+  sunzi.install "postgresql-contrib"
+  sunzi.install "libpq-dev"
+
+  sudo -u postgres psql -c "create user $DB_USER with password '$DB_PWD';"
+  sudo -u postgres psql -c "create database $DB_NAME owner $DB_USER;"
+
+  sunzi.done "install postgres"
+fi

data/lib/templates/create/recipes/ruby.sh

@@ -0,0 +1,28 @@
+DEPLOYER_NAME=<%= @attributes.deployer_name %>
+DEPLOYER_PATH=/home/$DEPLOYER_NAME
+RBENV_PATH=$DEPLOYER_PATH/.rbenv
+PLUGINS_PATH=$RBENV_PATH/plugins
+PROFILE=$DEPLOYER_PATH/.bashrc
+RUBY_VERSION=<%= @attributes.ruby_version %>
+RBENV_EXPORT_PATH="export PATH=\"$RBENV_PATH/bin:$PLUGINS_PATH/ruby-build/bin:$PATH\""
+RBENV_INIT='eval "$(rbenv init -)"'
+
+if sunzi.to_be_done "install ruby"; then
+  git clone git://github.com/sstephenson/rbenv.git $RBENV_PATH
+  git clone git://github.com/sstephenson/ruby-build.git $PLUGINS_PATH/ruby-build
+  git clone git://github.com/sstephenson/rbenv-gem-rehash.git $PLUGINS_PATH/rbenv-gem-rehash
+  git clone git://github.com/dcarley/rbenv-sudo.git $PLUGINS_PATH/rbenv-sudo
+
+  eval $RBENV_EXPORT_PATH
+  eval $RBENV_INIT
+  echo $RBENV_EXPORT_PATH >> $PROFILE
+  echo $RBENV_INIT >> $PROFILE
+
+  rbenv install $RUBY_VERSION
+  rbenv global $RUBY_VERSION
+  echo 'gem: --no-ri --no-rdoc' > $DEPLOYER_PATH/.gemrc
+  gem install bundler
+  gem install backup
+
+  sunzi.done "install ruby"
+fi

data/lib/templates/create/recipes/setup.sh

@@ -0,0 +1,11 @@
+if sunzi.to_be_done "setup system"; then
+  sunzi.mute "apt-get update"
+  yes | apt-get upgrade
+  sunzi.mute "timedatectl set-timezone <%= @attributes.timezone %>"
+  sunzi.mute "locale-gen <%= @attributes.locales %>"
+  sunzi.mute "dpkg-reconfigure locales"
+  sunzi.install "curl"
+  sunzi.install "ntp"
+
+  sunzi.done "setup system"
+fi

data/lib/templates/create/recipes/sunzi.sh

@@ -0,0 +1,99 @@
+# This file is used to define functions under the sunzi.* namespace.
+
+# Set $sunzi_pkg to "apt-get" or "yum", or abort.
+#
+if which apt-get >/dev/null 2>&1; then
+  export sunzi_pkg=apt-get
+elif which yum >/dev/null 2>&1; then
+  export sunzi_pkg=yum
+fi
+
+if [ "$sunzi_pkg" = '' ]; then
+  echo 'sunzi only supports apt-get or yum!' >&2
+  exit 1
+fi
+
+# Mute STDOUT and STDERR
+#
+function sunzi.mute() {
+  echo "Running \"$@\""
+  `$@ >/dev/null 2>&1`
+  return $?
+}
+
+function sunzi.sudo_mute() {
+  echo "Running \"$@\""
+  `sudo $@ >/dev/null 2>&1`
+  return $?
+}
+
+# Installer
+#
+function sunzi.installed() {
+  if [ "$sunzi_pkg" = 'apt-get' ]; then
+    dpkg -s $@ >/dev/null 2>&1
+  elif [ "$sunzi_pkg" = 'yum' ]; then
+    rpm -qa | grep $@ >/dev/null
+  fi
+  return $?
+}
+
+# When there's "set -e" in install.sh, sunzi.install should be used with if statement,
+# otherwise the script may exit unexpectedly when the package is already installed.
+#
+function sunzi.install() {
+  if sunzi.installed "$@"; then
+    echo "$@ already installed"
+  else
+    echo "No packages found matching $@. Installing..."
+    sunzi.mute "$sunzi_pkg -y install $@"
+  fi
+  return 0
+}
+
+function sunzi.sudo_install() {
+  if sunzi.installed "$@"; then
+    echo "$@ already installed"
+  else
+    echo "No packages found matching $@. Installing..."
+    sunzi.sudo_mute "$sunzi_pkg -y install $@"
+  fi
+  return 0
+}
+
+function sunzi.setup_progress() {
+  if [[ -e "$HOME/sunzi_progress.txt" ]]; then
+    echo "Provisioning already started"
+  else
+    echo "New provisioning"
+    touch "$HOME/sunzi_progress.txt"
+  fi
+  return 0
+}
+
+function sunzi.to_be_done() {
+  if [[ -z $(grep -Fx "Done $@" "$HOME/sunzi_progress.txt") ]]; then
+    echo "Executing $@"
+    return 0
+  else
+    echo "Done $@"
+    return 1
+  fi
+}
+
+function sunzi.done() {
+  echo "Done $@" | tee -a "$HOME/sunzi_progress.txt"
+  return 0
+}
+
+function sunzi.start_time() {
+  echo $(date -u +"%s")
+}
+
+function sunzi.elapsed_time() {
+  start=$1
+  finish=$(date -u +"%s")
+  elapsed_time=$(($finish-$start))
+  echo "$(($elapsed_time / 60)) minutes and $(($elapsed_time % 60)) seconds elapsed."
+  return 0
+}

data/lib/templates/create/recipes/sysstat.sh

@@ -0,0 +1,8 @@
+if sunzi.to_be_done "install sysstat"; then
+  sunzi.install "sysstat"
+
+  sed -i 's/ENABLED="false"/ENABLED="true"/' /etc/default/sysstat
+  /etc/init.d/sysstat restart
+
+  sunzi.done "install sysstat"
+fi

data/lib/templates/create/recipes/update.sh

@@ -0,0 +1,2 @@
+sunzi.mute "apt-get update"
+yes | apt-get upgrade

data/lib/templates/create/recipes/user.sh

@@ -0,0 +1,23 @@
+DEPLOYER_NAME=<%= @attributes.deployer_name %>
+DEPLOYER_PWD=<%= @attributes.deployer_password %>
+DEPLOYER_PATH=/home/$DEPLOYER_NAME
+
+if sunzi.to_be_done "create deployer"; then
+  adduser $DEPLOYER_NAME --gecos "First Last,RoomNumber,WorkPhone,HomePhone" --disabled-password
+  echo "$DEPLOYER_NAME:$DEPLOYER_PWD" | sudo chpasswd
+  adduser $DEPLOYER_NAME sudo
+
+  mkdir $DEPLOYER_PATH/.ssh
+  chmod 700 $DEPLOYER_PATH/.ssh
+
+  mv files/authorized_keys $DEPLOYER_PATH/.ssh/authorized_keys
+  chmod 644 $DEPLOYER_PATH/.ssh/authorized_keys
+
+  chown -R $DEPLOYER_NAME:$DEPLOYER_NAME $DEPLOYER_PATH
+
+	mv files/sudoers /etc/sudoers.d/$DEPLOYER_NAME
+	chown root:root /etc/sudoers.d/$DEPLOYER_NAME
+	chmod 0440 /etc/sudoers.d/$DEPLOYER_NAME
+
+  sunzi.done "create deployer"
+fi

data/lib/templates/create/roles/admin.sh

@@ -0,0 +1,16 @@
+sunzi.setup_progress
+
+start=$(sunzi.start_time)
+
+source recipes/setup.sh
+source recipes/libraries.sh
+source recipes/nodejs.sh
+source recipes/postgres.sh
+# source recipes/mysql.sh
+source recipes/passenger.sh
+source recipes/user.sh
+# source recipes/sysstat.sh
+
+sunzi.elapsed_time $start
+
+reboot

data/lib/templates/create/roles/deployer.sh

@@ -0,0 +1,7 @@
+sunzi.setup_progress
+
+start=$(sunzi.start_time)
+
+source recipes/ruby.sh
+
+sunzi.elapsed_time $start

data/lib/templates/create/roles/updater.sh

@@ -0,0 +1,5 @@
+start=$(sunzi.start_time)
+
+source recipes/update.sh
+
+sunzi.elapsed_time $start

data/lib/templates/create/sunzi.yml

@@ -0,0 +1,26 @@
+---
+# Dynamic variables here will be compiled to individual files in compiled/attributes.
+attributes:
+  timezone: America/New_York
+  locales: en_US en_US.UTF-8
+  # mysql_root_password: secret
+
+# Remote recipes here will be downloaded to compiled/recipes.
+recipes:
+  # rvm: https://raw.githubusercontent.com/kenn/sunzi-recipes/master/ruby/rvm.sh
+  # dotdeb: https://raw.githubusercontent.com/kenn/sunzi-recipes/master/debian/dotdeb-wheezy.sh
+  # backports: https://raw.githubusercontent.com/kenn/sunzi-recipes/master/debian/backports-wheezy.sh
+  # mongodb-10gen: https://raw.githubusercontent.com/kenn/sunzi-recipes/master/debian/mongodb-10gen.sh
+
+# Files specified here will be copied to compiled/files.
+# files:
+#   - ~/.ssh/id_rsa.pub
+
+# Fine tune how Sunzi should work.
+preferences:
+  # Erase the generated folder on the server after deploy.
+  erase_remote_folder: false
+
+  # Skip retrieving remote recipes when local copies already exist. This setting helps
+  # iterative deploy testing considerably faster, when you have a lot of remote recipes.
+  cache_remote_recipes: false

data/sunzi.gemspec

@@ -0,0 +1,25 @@
+# coding: utf-8
+
+Gem::Specification.new do |spec|
+  spec.name          = 'sunzi-rails'
+  spec.version       = '0.1.0' # retrieve this value by: Gem.loaded_specs['sunzi'].version.to_s
+  spec.authors       = ['Kenn Ejima', 'Patrice Lebel']
+  spec.email         = ['kenn.ejima@gmail.com']
+  spec.homepage      = 'http://github.com/o2web/sunzi-rails'
+  spec.summary       = %q{Server provisioning utility for minimalists}
+  spec.description   = %q{Server provisioning utility for minimalists}
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files`.split($/)
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.require_paths = ['lib']
+
+  spec.add_runtime_dependency 'thor'
+  spec.add_runtime_dependency 'rainbow'
+  spec.add_runtime_dependency 'net-ssh'
+  spec.add_runtime_dependency 'rails', "~> 4.2", ">= 4.2.0"
+
+  spec.add_development_dependency 'rake'
+  spec.add_development_dependency 'minitest'
+end

data/test/test_cli.rb

@@ -0,0 +1,52 @@
+require 'sunzi'
+require 'minitest/autorun'
+
+class TestCli < Minitest::Test
+  def setup
+    @cli = Sunzi::Cli.new
+  end
+
+  def test_parse_target
+    assert_equal ['user', 'example.com', '2222'], @cli.parse_target('user@example.com:2222')
+    assert_equal ['root', 'example.com', '2222'], @cli.parse_target('example.com:2222')
+    assert_equal ['user', 'example.com', '22'],   @cli.parse_target('user@example.com')
+    assert_equal ['root', 'example.com', '22'],   @cli.parse_target('example.com')
+    assert_equal ['root', '192.168.0.1', '22'],   @cli.parse_target('192.168.0.1')
+  end
+
+  def test_parse_target_with_ssh_config
+    ssh_config = lambda do |host|
+      if host == 'example.com'
+        { :host_name => "buzz.example.com", :user => "foobar", :port => 2222 }
+      else
+        {}
+      end
+    end
+
+    Net::SSH::Config.stub(:for, ssh_config) do
+      assert_equal ['foobar', 'buzz.example.com', '2222'], @cli.parse_target('example.com')
+      assert_equal ['foobar', 'buzz.example.com', '8080'], @cli.parse_target('example.com:8080')
+      assert_equal ['piyo', 'buzz.example.com', '2222'], @cli.parse_target('piyo@example.com')
+      assert_equal ['piyo', 'buzz.example.com', '8080'], @cli.parse_target('piyo@example.com:8080')
+      assert_equal ['root', '192.168.0.1', '22'], @cli.parse_target('192.168.0.1')
+    end
+  end
+
+  def test_create
+    @cli.create 'sandbox'
+    assert File.exist?('sandbox/sunzi.yml')
+    FileUtils.rm_rf 'sandbox'
+  end
+
+  def test_copy_local_files
+    pwd = Dir.pwd
+    Dir.chdir('test/sunzi_test_dir')
+
+    @cli.copy_local_files({}, :copy_file)
+    assert File.exists?('compiled/files/nginx/nginx.conf')
+    assert File.exists?('compiled/recipes/nginx.sh')
+    FileUtils.rm_rf 'compiled'
+
+    Dir.chdir(pwd)
+  end
+end

metadata

@@ -0,0 +1,174 @@
+--- !ruby/object:Gem::Specification
+name: sunzi-rails
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Kenn Ejima
+- Patrice Lebel
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-01-17 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rainbow
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: net-ssh
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 4.2.0
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Server provisioning utility for minimalists
+email:
+- kenn.ejima@gmail.com
+executables:
+- sunzi-cap
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- README.md
+- Rakefile
+- bin/sunzi-cap
+- lib/sunzi.rb
+- lib/sunzi/cli.rb
+- lib/sunzi/cli/capistrano.rb
+- lib/sunzi/cli/database.rb
+- lib/sunzi/cli/secrets.rb
+- lib/sunzi/logger.rb
+- lib/sunzi/utility.rb
+- lib/templates/create/files/authorized_keys
+- lib/templates/create/files/sudoers
+- lib/templates/create/install.sh
+- lib/templates/create/recipes/libraries.sh
+- lib/templates/create/recipes/mysql.sh
+- lib/templates/create/recipes/nodejs.sh
+- lib/templates/create/recipes/passenger.sh
+- lib/templates/create/recipes/postgres.sh
+- lib/templates/create/recipes/ruby.sh
+- lib/templates/create/recipes/setup.sh
+- lib/templates/create/recipes/sunzi.sh
+- lib/templates/create/recipes/sysstat.sh
+- lib/templates/create/recipes/update.sh
+- lib/templates/create/recipes/user.sh
+- lib/templates/create/roles/admin.sh
+- lib/templates/create/roles/deployer.sh
+- lib/templates/create/roles/updater.sh
+- lib/templates/create/sunzi.yml
+- sunzi.gemspec
+- test/sunzi_test_dir/files/nginx/nginx.conf
+- test/sunzi_test_dir/recipes/nginx.sh
+- test/test_cli.rb
+homepage: http://github.com/o2web/sunzi-rails
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5.1
+signing_key: 
+specification_version: 4
+summary: Server provisioning utility for minimalists
+test_files:
+- test/sunzi_test_dir/files/nginx/nginx.conf
+- test/sunzi_test_dir/recipes/nginx.sh
+- test/test_cli.rb
+has_rdoc: