These are Ansible playbooks (scripts) for managing an Open Food Network app server using nginx, unicorn and rails.
These are the main Ansible playbooks:
install.yml- Install the underlying software and systems needed by OFN onto a server.deploy.yml- Deploy OFN to the server by copying a git repo to the server and using ruby/rake/rails tasks to configure and migrate.rollback.yml- Rollback the database and codebase to the previous version.backup.yml- Backup database and image files on the server to the local machine.
The playbooks take information from the vars.yml file. You must create your own copy of the file and edit it to put in information that is specific to your OFN installation. Read more in the Setup section below.
You may want to use the anisble option "checkrun" to do a dry-run of the playbooks. (With this option, Ansible will run the playbooks, but not actually make changes on the server.)
These Ansible provisioning scripts will install the infrastructure needed and OFN onto a server running an apt-compatible OS (Debian or Ubuntu). It has currently been tested on Ubuntu 12.04 (64 bit) on both AWS and DigitalOcean cloud servers.
Install Ansible by following the documentation on the official Ansible site. If you are not already familiar with Ansible, check out the documentation on the site and keep it handy.
You will need to install the following additional Ansible modules before running the OFN provisioning playbooks: zzet.rbenv and mortik.nginx-rails. Install by running:
ansible-galaxy install zzet.rbenv
ansible-galaxy install mortik.nginx-rails
The playbooks use values set in the vars.yml file to accomplish their tasks. Information includes such things as the specific domain name for your OFN system, the password to the database used by OFN, file names, paths, etc. If you haven't already created a vars.yml file, copy the provided vars.yml.example to vars.yml and fill in your site-specific variables:
cp vars.yml.example vars.yml
Then you must edit the vars.yml file and put in the values that are appropriate for your system and set-up.
If you're not familiar with YAML, read more at the official YAML site.
You can validate the syntax of your vars.yml file with the Online YAML Parser.
If you don't want to use seed (initial) data specific to Australia, provide your own country, state and postcode (a.k.a. suburb or zipcode) files for your location. This is a work-around until a cleaner config process is available.
These are the files that are used for seed data:
db/default/spree/states.ymldb/default/spree/countries.ymldb/seeds.rbdb/suburb_seeds.rb- This suburbs data is not currently used but may be again in future. But don't spend too much time on it!config/initializers/spree.rb
Look at the existing files in the openfoodnetwork repo for examples of how the files are used.
Put these seed files into the files folder. (Do not put them into any subdirectories. The playbooks will simply look for the files named states.yml, countries.yml, seeds.rb, suburb_seeds.rb, and spree.rb in the files directory; the playbooks will not look for the files in any subdirectories.)
For production and staging environments, you will need SSL certificates for the OFN domain name. (The domain name is specified in the vars.yml file.) Specifically, you will need to provide these two files with these exact file names:
ssl.crtssl.key
Put these in the files folder.
- Purchase a certificate from a provider.
- Create the two text files above.
- In
ssl.crtadd the content of the certificate and chain bundle. - In
ssl.keyadd the content of the private key.
Note: the formatting of these text blocks must be that there are no spaces other than in the start/end lines and each line is 64 characters long.
The install.yml playbook includes two other playbooks:
provision.yml- install basic packages (software) and configure them as neededdeploy.yml- install and deploy OFN onto the server
This means all the software can be installed with one command.
Specifically, it installs packages such as curl and git, then installs:
This is for a staging server:
- Create a file called
staging. Add the text below:
# file: staging
[ofn_servers]
staging.openfoodnetwork.org ansible_ssh_host=<your IP here>
Change the URL as appropriate for a production or test server. This is not needed for Vagrant.
Note: ansible-playbook commands need to include -i staging to use this inventory file.
You will need to set up an instance of Ubuntu "Precise Pangolin" x64 server (a.k.a. an Ubuntu Precise 64 box), though this may work on other Debian based systems too.
For Vagrant, if you don't already have an Ubuntu Precise 64 box set up, run:
vagrant box add precise64 https://cloud-images.ubuntu.com/vagrant/precise/current/precise-server-cloudimg-amd64-vagrant-disk1.box
The DigitalOcean Ubuntu precise 64 image is solidly tested, and Amazon Ubuntu precise 64 images have also worked.
Ansible needs at least one user created on the system so that it can run and install software as that user. You specify the user name and password user in your vars.yml file. (On Ubuntu systems, it is standard practice to create a user named ubuntu for this purpose.)
On DigitalOcean servers and any system where there is no default user set up, you will need to run the user.yml playbook.
ansible-playbook -i staging user.yml
On Vagrant this is done automatically.
On standard Amazon (AWS) Ubuntu images that block root login, the user.yml playbook won't run, and doesn't need to.
Run:
ansible-playbook -i staging install.yml
(with -vvvv for full debug output)
For production and staging servers you will need to enter the site URL and SMTP details through the OFN admin interface before the site is fully functional.
This gets a copy of openfoodnetwork from a git repo that your specify (in vars.yml), put it onto the server, and then do ruby/rake/rails tasks and configuration needed so that it can run. The main tasks accomplished are:
- copy OFN from a git repo to the server
- create the database if needed
- run database migrations
- precompile assets used by OFN
- creates seed data
- creates an initial admin user
This list isn't comprehensive; those are the highlights.
Make sure that the git repo has the OFN code (e.g. by pushing code to your repo or branch, or cloning from a different repo), then run:
ansible-playbook -i staging deploy.yml
(with -vvvv for full debug output)
to deploy it onto the server(s).
There is a timestamped backup process included in deployment and a rollback version saved each time.
If the deployment script fails after the "Create a repo backup version" task you may need to roll it back to have a functional site, by running:
ansible-playbook -i staging rollback.yml
Failures before this don't need rollback, and it will not run. Just run deployment again. This could be automated at some point.
Be sure that you have specified paths for where the backups should be on your server and where they should be put on your local machine.
To backup on the server and to the local machine run:
ansible-playbook -i staging backup.yml
This doesn't clean up old backups automatically yet.
Written by Rafael Schouten.
Contributors:
- Paul Mackay
- Ashley Englund