projects / discourse_docker.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Bump base image
[discourse_docker.git] / templates / web.template.yml
1 env:
2 # You can have redis on a different box
3 RAILS_ENV: 'production'
4 UNICORN_WORKERS: 3
5 UNICORN_SIDEKIQS: 1
6 # this gives us very good cache coverage, 96 -> 99
7 # in practice it is 1-2% perf improvement
8 RUBY_GLOBAL_METHOD_CACHE_SIZE: 131072
9 # stop heap doubling in size so aggressively, this conserves memory
10 RUBY_GC_HEAP_GROWTH_MAX_SLOTS: 40000
11 RUBY_GC_HEAP_INIT_SLOTS: 400000
12 RUBY_GC_HEAP_OLDOBJECT_LIMIT_FACTOR: 1.5
13
14 DISCOURSE_DB_SOCKET: /var/run/postgresql
15 DISCOURSE_DB_HOST:
16 DISCOURSE_DB_PORT:
17
18
19 params:
20 version: tests-passed
21
22 home: /var/www/discourse
23 upload_size: 10m
24
25 run:
26 - exec: thpoff echo "thpoff is installed!"
27 - exec: /usr/local/bin/ruby -e 'if ENV["DISCOURSE_SMTP_ADDRESS"] == "smtp.example.com"; puts "Aborting! Mail is not configured!"; exit 1; end'
28 - exec: /usr/local/bin/ruby -e 'if ENV["DISCOURSE_HOSTNAME"] == "discourse.example.com"; puts "Aborting! Domain is not configured!"; exit 1; end'
29 - exec: /usr/local/bin/ruby -e 'if (ENV["DISCOURSE_CDN_URL"] || "")[0..1] == "//"; puts "Aborting! CDN must have a protocol specified. Once fixed you should rebake your posts now to correct all posts."; exit 1; end'
30 - exec: chown -R discourse /home/discourse
31 # TODO: move to base image (anacron can not be fired up using rc.d)
32 - exec: rm -f /etc/cron.d/anacron
33 - file:
34 path: /etc/cron.d/anacron
35 contents: |
36 SHELL=/bin/sh
37 PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
38
39 30 7 * * * root /usr/sbin/anacron -s >/dev/null
40 - file:
41 path: /etc/runit/1.d/copy-env
42 chmod: "+x"
43 contents: |
44 #!/bin/bash
45 env > ~/boot_env
46 conf=/var/www/discourse/config/discourse.conf
47
48 # find DISCOURSE_ env vars, strip the leader, lowercase the key
49 /usr/local/bin/ruby -e 'ENV.each{|k,v| puts "#{$1.downcase} = '\''#{v}'\''" if k =~ /^DISCOURSE_(.*)/}' > $conf
50
51 - file:
52 path: /etc/service/unicorn/run
53 chmod: "+x"
54 contents: |
55 #!/bin/bash
56 exec 2>&1
57 # redis
58 # postgres
59 cd $home
60 chown -R discourse:www-data /shared/log/rails
61 LD_PRELOAD=$RUBY_ALLOCATOR HOME=/home/discourse USER=discourse exec thpoff chpst -u discourse:www-data -U discourse:www-data bundle exec config/unicorn_launcher -E production -c config/unicorn.conf.rb
62
63 - file:
64 path: /etc/service/nginx/run
65 chmod: "+x"
66 contents: |
67 #!/bin/sh
68 exec 2>&1
69 exec /usr/sbin/nginx
70
71 - file:
72 path: /etc/runit/3.d/01-nginx
73 chmod: "+x"
74 contents: |
75 #!/bin/bash
76 sv stop nginx
77
78 - file:
79 path: /etc/runit/3.d/02-unicorn
80 chmod: "+x"
81 contents: |
82 #!/bin/bash
83 sv stop unicorn
84
85 - exec:
86 cd: $home
87 hook: code
88 cmd:
89 - git reset --hard
90 - git clean -f
91 - git remote set-branches --add origin master
92 - git pull
93 - git fetch origin $version
94 - git checkout $version
95 - mkdir -p tmp/pids
96 - mkdir -p tmp/sockets
97 - touch tmp/.gitkeep
98 - mkdir -p /shared/log/rails
99 - bash -c "touch -a /shared/log/rails/{production,production_errors,unicorn.stdout,unicorn.stderr,sidekiq}.log"
100 - bash -c "ln -s /shared/log/rails/{production,production_errors,unicorn.stdout,unicorn.stderr,sidekiq}.log $home/log"
101 - bash -c "mkdir -p /shared/{uploads,backups}"
102 - bash -c "ln -s /shared/{uploads,backups} $home/public"
103 - bash -c "mkdir -p /shared/tmp/{backups,restores}"
104 - bash -c "ln -s /shared/tmp/{backups,restores} $home/tmp"
105 - chown -R discourse:www-data /shared/log/rails /shared/uploads /shared/backups /shared/tmp
106
107 - exec:
108 cmd:
109 - "cp $home/config/nginx.sample.conf /etc/nginx/conf.d/discourse.conf"
110 - "rm /etc/nginx/sites-enabled/default"
111 - "mkdir -p /var/nginx/cache"
112
113 - replace:
114 filename: /etc/nginx/nginx.conf
115 from: pid /run/nginx.pid;
116 to: daemon off;
117
118 - replace:
119 filename: "/etc/nginx/conf.d/discourse.conf"
120 from: /upstream[^\}]+\}/m
121 to: "upstream discourse {
122 server 127.0.0.1:3000;
123 }"
124
125 - replace:
126 filename: "/etc/nginx/conf.d/discourse.conf"
127 from: /server_name.+$/
128 to: server_name _ ;
129
130 - replace:
131 filename: "/etc/nginx/conf.d/discourse.conf"
132 from: /client_max_body_size.+$/
133 to: client_max_body_size $upload_size ;
134
135 - exec:
136 cmd: echo "done configuring web"
137 hook: web_config
138
139 - exec:
140 cd: $home
141 hook: web
142 cmd:
143 # ensure we are on latest bundler
144 - gem update bundler
145 - find $home ! -user discourse -exec chown discourse {} \+
146
147 - exec:
148 cd: $home
149 hook: bundle_exec
150 cmd:
151 - su discourse -c 'bundle install --deployment --retry 3 --jobs 4 --verbose --without test development'
152 - exec:
153 cd: $home
154 hook: db_migrate
155 cmd:
156 - su discourse -c 'bundle exec rake db:migrate'
157 - exec:
158 cd: $home
159 hook: assets_precompile
160 cmd:
161 - su discourse -c 'bundle exec rake assets:precompile'
162 - file:
163 path: /usr/local/bin/discourse
164 chmod: +x
165 contents: |
166 #!/bin/bash
167 (cd /var/www/discourse && RAILS_ENV=production sudo -H -E -u discourse bundle exec script/discourse "$@")
168
169 - file:
170 path: /usr/local/bin/rails
171 chmod: +x
172 contents: |
173 #!/bin/bash
174 # If they requested a console, load pry instead
175 if [ "$*" == "c" -o "$*" == "console" ]
176 then
177 (cd /var/www/discourse && RAILS_ENV=production sudo -H -E -u discourse bundle exec pry -r ./config/environment)
178 else
179 (cd /var/www/discourse && RAILS_ENV=production sudo -H -E -u discourse bundle exec script/rails "$@")
180 fi
181
182 - file:
183 path: /usr/local/bin/rake
184 chmod: +x
185 contents: |
186 #!/bin/bash
187 (cd /var/www/discourse && RAILS_ENV=production sudo -H -E -u discourse bundle exec bin/rake "$@")
188
189 - file:
190 path: /usr/local/bin/rbtrace
191 chmod: +x
192 contents: |
193 #!/bin/bash
194 (cd /var/www/discourse && RAILS_ENV=production sudo -H -E -u discourse bundle exec rbtrace "$@")
195
196 - file:
197 path: /usr/local/bin/stackprof
198 chmod: +x
199 contents: |
200 #!/bin/bash
201 (cd /var/www/discourse && RAILS_ENV=production sudo -H -E -u discourse bundle exec stackprof "$@")
202
203 - file:
204 path: /etc/update-motd.d/10-web
205 chmod: +x
206 contents: |
207 #!/bin/bash
208 echo
209 echo Use: rails, rake or discourse to execute commands in production
210 echo
211
212 - file:
213 path: /etc/logrotate.d/rails
214 contents: |
215 /shared/log/rails/*.log
216 {
217 rotate 7
218 dateext
219 daily
220 missingok
221 delaycompress
222 compress
223 postrotate
224 sv 1 unicorn
225 endscript
226 }
227
228 - file:
229 path: /etc/logrotate.d/nginx
230 contents: |
231 /var/log/nginx/*.log {
232 daily
233 missingok
234 rotate 7
235 compress
236 delaycompress
237 create 0644 www-data www-data
238 sharedscripts
239 postrotate
240 sv 1 nginx
241 endscript
242 }
243
244 # move state out of the container this fancy is done to support rapid rebuilds of containers,
245 # we store anacron and logrotate state outside the container to ensure its maintained across builds
246 # later move this snipped into an intialization script
247 # we also ensure all the symlinks we need to /shared are in place in the correct structure
248 # this allows us to bootstrap on one machine and then run on another
249 - file:
250 path: /etc/runit/1.d/00-ensure-links
251 chmod: +x
252 contents: |
253 #!/bin/bash
254 if [[ ! -L /var/lib/logrotate ]]; then
255 rm -fr /var/lib/logrotate
256 mkdir -p /shared/state/logrotate
257 ln -s /shared/state/logrotate /var/lib/logrotate
258 fi
259 if [[ ! -L /var/spool/anacron ]]; then
260 rm -fr /var/spool/anacron
261 mkdir -p /shared/state/anacron-spool
262 ln -s /shared/state/anacron-spool /var/spool/anacron
263 fi
264 if [[ ! -d /shared/log/rails ]]; then
265 mkdir -p /shared/log/rails
266 chown -R discourse:www-data /shared/log/rails
267 fi
268 if [[ ! -d /shared/uploads ]]; then
269 mkdir -p /shared/uploads
270 chown -R discourse:www-data /shared/uploads
271 fi
272 if [[ ! -d /shared/backups ]]; then
273 mkdir -p /shared/backups
274 chown -R discourse:www-data /shared/backups
275 fi
276
277 rm -rf /shared/tmp/{backups,restores}
278 mkdir -p /shared/tmp/{backups,restores}
279 chown -R discourse:www-data /shared/tmp/{backups,restores}
280
281 # change login directory to Discourse home
282 - file:
283 path: /root/.bash_profile
284 chmod: 644
285 contents: |
286 cd $home