adrian
/
schematics
1
0
Fork 0
Code Issues Pull Requests Releases Activity
A library for writing host-specific, single-binary configuration management and deployment tools
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
54 Commits
1 Branch
0 Tags
810 KiB
Tree: fd8fe9ce11
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'fd8fe9ce11'
${ noResults }
schematics/src/symbols/factory.rs

197 lines
7.4 KiB
Raw Normal View History

Update
6 years ago
Add factory
7 years ago
Update
6 years ago
Add factory
7 years ago
Update
7 years ago
Update
6 years ago
Add factory
7 years ago
Update
6 years ago
Update
6 years ago
Add factory
7 years ago
Update
6 years ago
Add factory
7 years ago
Update
6 years ago
Add factory
7 years ago
Update
6 years ago
Add factory
7 years ago
Update
6 years ago
Add factory
7 years ago
Update
7 years ago
Add PHP-related factory functions
6 years ago
Update
6 years ago
Add PHP-related factory functions
6 years ago
Update
6 years ago
Add PHP-related factory functions
6 years ago
Update
6 years ago
Add PHP-related factory functions
6 years ago
Update
6 years ago
Update
6 years ago
Update
6 years ago
Update
6 years ago
Update
6 years ago
Add factory
7 years ago
  1. use std::ops::Deref;
  2. use std::path::Path;
  4. use command_runner::{CommandRunner, SetuidCommandRunner};
  5. use storage::{SimpleStorage, Storage};
  6. use symbols::{Action, Symbol, SymbolRunner};
  7. use symbols::acme::{AcmeCert, AcmeCertChain};
  8. use symbols::file::File;
  9. use symbols::git::checkout::GitCheckout;
  10. use symbols::hook::Hook;
  11. use symbols::list::ListAction;
  12. use symbols::mariadb::{DatabaseDump, MariaDBDatabase, MariaDBUser};
  13. use symbols::nginx::server::{NginxServer, server_config};
  14. use symbols::owner::Owner;
  15. use symbols::stored_directory::{StoredDirectory, StorageDirection};
  16. use symbols::systemd::reload::ReloadService;
  17. use symbols::tls::SelfSignedTlsCert;
  19. pub trait Policy {
  20. fn user_name_for_host(&self, host_name: &'static str) -> String;
  21. }
  23. pub struct DefaultPolicy;
  25. impl Policy for DefaultPolicy {
  26. fn user_name_for_host(&self, host_name: &'static str) -> String {
  27. host_name.split('.').rev().fold(String::new(), |result, part| if result.len() > 0 { result + "_" } else { result } + part)
  28. }
  29. }
  31. pub struct SymbolFactory<'a, C: 'a + CommandRunner, R: 'a + SymbolRunner, P: 'a + Policy>{
  32. command_runner: &'a C,
  33. acme_command_runner: SetuidCommandRunner<'a, C>,
  34. symbol_runner: &'a R,
  35. policy: &'a P
  36. }
  38. impl<'b, C: 'b + CommandRunner, R: 'b + SymbolRunner, P: 'b + Policy> SymbolFactory<'b, C, R, P> {
  39. pub fn new(command_runner: &'b C, symbol_runner: &'b R, policy: &'b P) -> Self {
  40. let acme_user = "acme"; // FIXME: CONFIG
  42. let acme_command_runner = SetuidCommandRunner::new(acme_user, command_runner);
  43. SymbolFactory {
  44. command_runner: command_runner,
  45. acme_command_runner: acme_command_runner,
  46. symbol_runner: symbol_runner,
  47. policy: policy
  48. }
  49. }
  51. pub fn get_nginx_acme_server<'a, 'c: 'a, S: 'a + Symbol>(&'c self, host: &'static str, nginx_server_symbol: S) -> Box<Action + 'a> {
  52. Box::new(ListAction::new(vec![
  53. Box::new(SelfSignedTlsCert::new(
  54. host.into(),
  55. self.command_runner
  56. )).into_action(self.symbol_runner),
  57. Box::new(Hook::new(
  58. nginx_server_symbol,
  59. ReloadService::new("nginx", self.command_runner)
  60. )).into_action(self.symbol_runner),
  61. Box::new(AcmeCert::new(
  62. host.into(),
  63. &self.acme_command_runner
  64. )).into_action(self.symbol_runner),
  65. Box::new(Hook::new(
  66. AcmeCertChain::new(
  67. host.into(),
  68. &self.acme_command_runner
  69. ),
  70. ReloadService::new("nginx", self.command_runner)
  71. )).into_action(self.symbol_runner)
  72. ]))
  73. }
  74. pub fn get_nginx_acme_challenge_config<'a>(&'a self) -> Box<Action + 'a> {
  75. Box::new(File::new(
  76. "/etc/nginx/snippets/acme-challenge.conf", "location ^~ /.well-known/acme-challenge/ {
  77. alias /home/acme/challenges/;
  78. try_files $uri =404;
  79. }"
  80. )).into_action(self.symbol_runner)
  81. }
  83. fn get_php_fpm_pool_socket_path<'a>(&'a self, user_name: &str) -> String {
  84. format!("/run/php/{}.sock", user_name)
  85. }
  87. fn get_php_fpm_pool<'a>(&'a self, user_name: &str) -> Box<Action + 'a> {
  88. let socket = self.get_php_fpm_pool_socket_path(user_name);
  89. Box::new(Hook::new(
  90. File::new(
  91. format!("/etc/php/7.0/fpm/pool.d/{}.conf", user_name),
  92. format!(
  93. "[{0}]
  95. user = {0}
  96. group = www-data
  97. listen = {1}
  98. listen.owner = www-data
  99. pm = ondemand
  100. pm.max_children = 10"
  101. , user_name, socket)),
  102. ReloadService::new("php7.0-fpm", self.command_runner)
  103. )).into_action(self.symbol_runner)
  104. }
  106. pub fn serve_php<'a>(&'a self, host_name: &'static str, root_dir: &'static str) -> Box<Action + 'a> {
  107. let user_name = self.policy.user_name_for_host(host_name);
  108. let socket = self.get_php_fpm_pool_socket_path(&user_name);
  109. Box::new(ListAction::new(vec![
  110. self.get_php_fpm_pool(&user_name),
  111. self.get_nginx_acme_server(host_name,
  112. NginxServer::new_php(
  113. host_name,
  114. socket.into(),
  115. root_dir,
  116. self.command_runner
  117. )
  118. )
  119. ]))
  120. }
  122. pub fn serve_dokuwiki<'a>(&'a self, host_name: &'static str, root_dir: &'static str) -> Box<Action + 'a> {
  123. let user_name = self.policy.user_name_for_host(host_name);
  124. let socket = self.get_php_fpm_pool_socket_path(&user_name);
  125. Box::new(ListAction::new(vec![
  126. self.get_php_fpm_pool(&user_name),
  127. self.get_nginx_acme_server(host_name,
  128. NginxServer::new(
  129. host_name,
  130. server_config("hostname", &format!("
  131. root {};
  132. index doku.php;
  133. location ~ [^/]\\.php(/|$) {{
  134. fastcgi_pass unix:{};
  135. include \"snippets/fastcgi-php.conf\";
  136. }}
  138. location ~ /(data/|conf/|bin/|inc/|install.php) {{ deny all; }}
  140. location / {{ try_files $uri $uri/ @dokuwiki; }}
  142. location @dokuwiki {{
  143. # rewrites \"doku.php/\" out of the URLs if you set the userewrite setting to .htaccess in dokuwiki config page
  144. rewrite ^/_media/(.*) /lib/exe/fetch.php?media=$1 last;
  145. rewrite ^/_detail/(.*) /lib/exe/detail.php?media=$1 last;
  146. rewrite ^/_export/([^/]+)/(.*) /doku.php?do=export_$1&id=$2 last;
  147. rewrite ^/(.*) /doku.php?id=$1&$args last;
  148. }}
  149. ",
  150. root_dir,
  151. socket)),
  152. self.command_runner
  153. ))
  154. ]))
  155. }
  157. pub fn serve_redir<'a>(&'a self, host_name: &'static str, target: &'static str) -> Box<Action + 'a> {
  158. self.get_nginx_acme_server(host_name, NginxServer::new_redir(host_name, target, self.command_runner))
  159. }
  161. pub fn serve_static<'a>(&'a self, host_name: &'static str, dir: &'a str) -> Box<Action + 'a> {
  162. self.get_nginx_acme_server(host_name, NginxServer::new_static(host_name, dir, self.command_runner))
  163. }
  165. pub fn get_stored_directory<'a, T: Into<String>>(&'a self, storage_name: &'static str, target: T) -> (Box<Action + 'a>, Box<Action + 'a>) {
  166. let data = SimpleStorage::new("/root/data".to_string(), storage_name.to_string());
  167. let string_target = target.into();
  168. (
  169. Box::new(StoredDirectory::new(string_target.clone().into(), data.clone(), StorageDirection::Save, self.command_runner)).into_action(self.symbol_runner),
  170. Box::new(StoredDirectory::new(string_target.into(), data.clone(), StorageDirection::Load, self.command_runner)).into_action(self.symbol_runner)
  171. )
  172. }
  174. pub fn get_mariadb_database<'a>(&'a self, name: &'static str) -> Box<Action + 'a> {
  175. let db_dump = SimpleStorage::new("/root/data".to_string(), format!("{}.sql", name));
  176. Box::new(ListAction::new(vec![
  177. Box::new(MariaDBDatabase::new(name.into(), db_dump.read_filename().unwrap().into(), self.command_runner)).into_action(self.symbol_runner),
  178. Box::new(DatabaseDump::new(name, db_dump, self.command_runner)).into_action(self.symbol_runner)
  179. ]))
  180. }
  182. pub fn get_mariadb_user<'a>(&'a self, user_name: &'static str) -> Box<Action + 'a> {
  183. Box::new(MariaDBUser::new(user_name.into(), self.command_runner)).into_action(self.symbol_runner)
  184. }
  186. pub fn get_git_checkout<'a, T: 'a + AsRef<str>>(&'a self, target: T, source: &'a str, branch: &'a str) -> Box<Action + 'a> {
  187. Box::new(GitCheckout::new(target, source, branch, self.command_runner)).into_action(self.symbol_runner)
  188. }
  190. pub fn get_owner<'a, F: 'a + AsRef<str>>(&'a self, file: F, user: &'a str) -> Box<Action + 'a> {
  191. Box::new(Owner::new(file, user.into(), self.command_runner)).into_action(self.symbol_runner)
  192. }
  194. pub fn get_file<'a, F: 'a + Deref<Target=str>, Q: 'a + AsRef<Path>>(&'a self, path: Q, content: F) -> Box<Action + 'a> {
  195. Box::new(File::new(path, content)).into_action(self.symbol_runner)
  196. }
  197. }