jev/jev-charms
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: jev:f9954e3b52355793a7fc61ef640a33b5f7f2e8bd
Branches Tags
jev:master
..
compare: jev:85f19e68327b9b3fd7b3227150e74cc9f24e3aef
Branches Tags
jev:master

7 Commits
f9954e3b52 ... 85f19e6832

Author SHA1 Message Date
Valentin Lab
85f19e6832 new: [opensem] add automatic database migration 2025-10-11 05:06:14 +02:00
Valentin Lab
aed1449a19 chg: dev: [opensem] move php dir creation from `publish-dir to php-fpm` 2025-10-11 05:06:14 +02:00
Valentin Lab
e7f71e7b40 fix: [opensem] remove the need to care about leading zeroes in rank 2025-10-11 05:06:14 +02:00
Valentin Lab
1e6a92f7a7 new: doc: [opensem] add some `README.org` information 2025-10-11 05:06:14 +02:00
Valentin Lab
b2c688656f new: [opensem] upgrade to 1.0.0-rc.5 2025-10-11 05:06:14 +02:00
Valentin Lab
ec7a6cb3cb new: [opensem] upgrade to 1.0.0-rc.4 2025-10-11 05:04:47 +02:00
Valentin Lab
26a4470432 new: [opensem] add `paybox-system` relation 2025-10-11 05:04:07 +02:00
5 changed files with 73 additions and 80 deletions
Expand all files Collapse all files

2
opensem/README.org
View File

@@ -37,7 +37,7 @@ opensem:
paybox-system: paybox-system:
paybox: paybox:
test: true test: true
rank: "001" ## keep the double-quotes ! rank: 1 ## no need for zeroes before !
site: 2XXXX9 site: 2XXXX9
id: 2XXXXX4 id: 2XXXXX4
hmac-key: "FFAXXXXX...XXXXX" hmac-key: "FFAXXXXX...XXXXX"

4
opensem/hooks/paybox_system-relation-joined
View File

@@ -22,6 +22,8 @@ hmac_key=$(relation-get hmac-key) || {
exit 1 exit 1
} }
rank=$(printf "%03d" "$rank")
[ -n "$test" ] && opensem:config-set PAYBOX_TEST "$test" [ -n "$test" ] && opensem:config-set PAYBOX_TEST "$test"
opensem:config-set PAYBOX_SITE "$site" opensem:config-set PAYBOX_SITE "$site"
opensem:config-set PAYBOX_RANK "$rank" opensem:config-set PAYBOX_RANK "$rank"
@@ -40,7 +42,7 @@ if ! [ -f "$paybox_pubkey_path" ]; then
fi fi
## and create the mount point also: ## and create the mount point also:
paybox_mount_dir="$SERVICE_CONFIGSTORE/opt/apps/$SERVICE_NAME/storage/paybox" paybox_mount_dir="$SERVICE_CONFIGSTORE/opt/apps/opensem/storage/paybox"
if ! [ -d "$paybox_mount_dir" ]; then if ! [ -d "$paybox_mount_dir" ]; then
mkdir -p "$paybox_mount_dir" || { mkdir -p "$paybox_mount_dir" || {
err "Could not create directory $paybox_mount_dir" err "Could not create directory $paybox_mount_dir"

66
opensem/hooks/php_fpm-relation-joined Executable file
View File

@@ -0,0 +1,66 @@
#!/bin/bash
. lib/common
set -e
uid_gid=$(get_service_base_image_dir_uid_gid "$MASTER_TARGET_SERVICE_NAME" /var/www/html) || {
err "Could not determine uid:gid for $MASTER_TARGET_SERVICE_NAME of dir /var/www/html"
exit 1
}
gid="${uid_gid#* }"
dirs=(
/var/cache/opensem/bootstrap
/var/cache/opensem/framework
/var/cache/opensem/views
/var/lib/opensem/sessions
/var/lib/opensem/app
/var/lib/opensem/app/public
/var/log/opensem
)
to_create=()
volumes=""
for d in "${dirs[@]}"; do
fdir="${SERVICE_DATASTORE}$d"
if [ -d "$fdir" ]; then
find "$fdir" \! -gid "$gid" -print0 | while read-0 f; do
chgrp -v "$gid" "$f" || return 1
done
find "$fdir" \! -perm -g+rwx -print0 | while read-0 f; do
chmod -v g+rwx "$f" || return 1
done
else
to_create+=("$fdir")
fi
done
if [ "${#to_create[@]}" -gt 0 ]; then
mkdir -p "${to_create[@]}" || return 1
chgrp -v "${gid}" "${to_create[@]}" || return 1
chmod g+rwx "${to_create[@]}" || return 1
fi
dev=$(options-get dev 2>/dev/null) || true
if [ -n "$dev" ]; then
# if ! [ -d "$dev" ]; then
# err "The 'dev' option is set to '$dev' but this is not a directory."
# exit 1
# fi
OPENSEM_CODE="$dev"
fi
service:docker-compose:directive-merge "$MASTER_TARGET_SERVICE_NAME" <<EOF
volumes:
- $OPENSEM_CODE:/opt/apps/$SERVICE_NAME:ro
- $SERVICE_DATASTORE/var/cache/opensem/bootstrap:/opt/apps/$SERVICE_NAME/bootstrap/cache:rw
- $SERVICE_DATASTORE/var/cache/opensem/framework:/opt/apps/$SERVICE_NAME/storage/framework/cache:rw
- $SERVICE_DATASTORE/var/cache/opensem/views:/opt/apps/$SERVICE_NAME/storage/framework/views:rw
- $SERVICE_DATASTORE/var/lib/opensem/sessions:/opt/apps/$SERVICE_NAME/storage/framework/sessions:rw
## Required to give PHP write access to this dir
- $SERVICE_DATASTORE/var/lib/opensem/app:/opt/apps/$SERVICE_NAME/storage/app:rw
- $SERVICE_DATASTORE/var/lib/opensem/app/public:/opt/apps/$SERVICE_NAME/storage/app/public:rw
EOF

71
opensem/hooks/publish_dir-relation-joined
View File

@@ -9,80 +9,9 @@ url=$(relation-get url) || exit 1
location=$CONFIGSTORE/$BASE_SERVICE_NAME/var/www/$domain location=$CONFIGSTORE/$BASE_SERVICE_NAME/var/www/$domain
php_fpm_service=$(service:traverse "$SERVICE_NAME":php-fpm) || {
err "Could not find php-fpm service for $SERVICE_NAME"
exit 1
}
uid_gid=$(get_service_base_image_dir_uid_gid "$php_fpm_service" /var/www/html) || {
err "Could not determine uid:gid for $php_fpm_service of dir /var/www/html"
exit 1
}
gid="${uid_gid#* }"
dirs=(
/var/cache/opensem/bootstrap
/var/cache/opensem/framework
/var/cache/opensem/views
/var/lib/opensem/sessions
/var/lib/opensem/app
/var/lib/opensem/app/public
/var/log/opensem
)
to_create=()
volumes=""
for d in "${dirs[@]}"; do
fdir="${SERVICE_DATASTORE}$d"
if [ -d "$fdir" ]; then
find "$fdir" \! -gid "$gid" -print0 | while read-0 f; do
chgrp -v "$gid" "$f" || return 1
done
find "$fdir" \! -perm -g+rwx -print0 | while read-0 f; do
chmod -v g+rwx "$f" || return 1
done
else
to_create+=("$fdir")
fi
done
if [ "${#to_create[@]}" -gt 0 ]; then
mkdir -p "${to_create[@]}" || return 1
chgrp -v "${gid}" "${to_create[@]}" || return 1
chmod g+rwx "${to_create[@]}" || return 1
fi
opensem:config-set APP_URL "$url" opensem:config-set APP_URL "$url"
dev=$(options-get dev 2>/dev/null) || true
if [ -n "$dev" ]; then
# if ! [ -d "$dev" ]; then
# err "The 'dev' option is set to '$dev' but this is not a directory."
# exit 1
# fi
OPENSEM_CODE="$dev"
fi
service:docker-compose:directive-merge "$MASTER_TARGET_SERVICE_NAME" <<EOF service:docker-compose:directive-merge "$MASTER_TARGET_SERVICE_NAME" <<EOF
volumes: volumes:
- $SERVICE_DATASTORE/var/lib/opensem/app/public:/var/www/$domain/storage:ro - $SERVICE_DATASTORE/var/lib/opensem/app/public:/var/www/$domain/storage:ro
EOF EOF
config-add "
services:
$php_fpm_service:
volumes:
# - $OPENSEM_CODE/public:/var/www/$domain:ro
- $OPENSEM_CODE:/opt/apps/$SERVICE_NAME:ro
- $SERVICE_DATASTORE/var/cache/opensem/bootstrap:/opt/apps/$SERVICE_NAME/bootstrap/cache:rw
- $SERVICE_DATASTORE/var/cache/opensem/framework:/opt/apps/$SERVICE_NAME/storage/framework/cache:rw
- $SERVICE_DATASTORE/var/cache/opensem/views:/opt/apps/$SERVICE_NAME/storage/framework/views:rw
- $SERVICE_DATASTORE/var/lib/opensem/sessions:/opt/apps/$SERVICE_NAME/storage/framework/sessions:rw
## Required to give PHP write access to this dir
- $SERVICE_DATASTORE/var/lib/opensem/app:/opt/apps/$SERVICE_NAME/storage/app:rw
- $SERVICE_DATASTORE/var/lib/opensem/app/public:/opt/apps/$SERVICE_NAME/storage/app/public:rw
"

10
opensem/lib/common
View File

@@ -111,16 +111,12 @@ artisan() {
export COMPOSE_IGNORE_ORPHANS=true export COMPOSE_IGNORE_ORPHANS=true
php_fpm_service=$(service:traverse "$SERVICE_NAME":php-fpm) || return 1 php_fpm_service=$(service:traverse "$SERVICE_NAME":php-fpm) || return 1
## We don't want post deploy that is doing the final http initialization. launch_docker_compose run \
compose --debug -q --no-init --no-post-deploy --no-pre-deploy \
--without-relation="$SERVICE_NAME":publish-dir \
run \
"${artisan_docker_run_opts[@]}" \
-T --rm -w /opt/apps/"$SERVICE_NAME" \ -T --rm -w /opt/apps/"$SERVICE_NAME" \
--entrypoint php \ --entrypoint php \
-u www-data "$php_fpm_service" artisan "$@" | cat -u www-data "$php_fpm_service" artisan "$@"
return "${PIPESTATUS[0]}" return "$?"
} }
dotenv:quote() { dotenv:quote() {