Skip to content

Instantly share code, notes, and snippets.

@fcoury

fcoury/centos.sh

Created October 12, 2017 20:41
Show Gist options
  • Save fcoury/e32649b013e91938136d7596df538bed to your computer and use it in GitHub Desktop.
Save fcoury/e32649b013e91938136d7596df538bed to your computer and use it in GitHub Desktop.
Download ZIP
Raw
centos.sh
#!/bin/bash
set -e
if [ "$1" == "" ]; then
echo "usage: $0 [servername]"
echo "where: servername - the URL Raptor API is going to use"
echo " (ie, qa-raptor.teradata.com)"
exit 1
fi
# get CentOS version
OSVER=$(rpm -q --qf "%{VERSION}" $(rpm -q --whatprovides redhat-release))
# use "build" or "build:prod"
NPM_BUILD_TASK="build"
# assumes there's an SSH key added to GitHub for the repos
echo ""
echo "*** Installing dependencies..."
echo ""
# install dependencies
curl -sL https://rpm.nodesource.com/setup_6.x | sudo -E bash -
wget https://dl.yarnpkg.com/rpm/yarn.repo -O /etc/yum.repos.d/yarn.repo
yum install -y epel-release
yum install -y gcc-c++ make nodejs git yarn nginx python-pip
# excludes PostgreSQL from main repos
pip install crudini
crudini --set /etc/yum.repos.d/CentOS-Base.repo base exclude 'postgresql*'
crudini --set /etc/yum.repos.d/CentOS-Base.repo updates exclude 'postgresql*'
# prepare PostgreSQL
cd /tmp
curl -O https://download.postgresql.org/pub/repos/yum/testing/10/redhat/rhel-6-x86_64/pgdg-centos10-10-2.noarch.rpm
rpm -ivh pgdg-centos10-10-2.noarch.rpm
cd -
echo ""
echo "*** Installing and configuring PostgreSQL..."
echo ""
# installs PostgreSQL
yum install -y postgresql10-server
# configure PostgreSQL
service postgresql-10 initdb
chkconfig postgresql-10 on
sed -e '82ihost all all 127.0.0.1/32 md5' -i /var/lib/pgsql/10/data/pg_hba.conf
service postgresql-10 start
PG_ROLE_USER="raptor_role"
#PG_ROLE_PASS="$(date +%s | sha256sum | base64 | head -c 32 ; echo)"
PG_ROLE_PASS="$(openssl rand -base64 32)"
PG_USER="raptor_app"
#PG_PASS="$(date +%s | sha256sum | base64 | head -c 32 ; echo)"
PG_PASS="$(openssl rand -base64 32)"
cat > /tmp/create.sql <<-EOS
CREATE USER ${PG_ROLE_USER} WITH
LOGIN
SUPERUSER
CREATEDB
CREATEROLE
INHERIT
REPLICATION
CONNECTION LIMIT -1
PASSWORD '${PG_ROLE_PASS}';
CREATE USER ${PG_USER} WITH
LOGIN
SUPERUSER
CREATEDB
CREATEROLE
INHERIT
REPLICATION
CONNECTION LIMIT -1
PASSWORD '${PG_PASS}';
CREATE TABLESPACE raptor_ts OWNER ${PG_ROLE_USER} LOCATION '/usr/local/pgsql/data';
ALTER TABLESPACE raptor_ts OWNER TO ${PG_ROLE_USER};
CREATE DATABASE raptor_db
WITH
OWNER = ${PG_ROLE_USER}
TEMPLATE = template0
ENCODING = 'UTF8'
LC_COLLATE = 'C'
TABLESPACE = raptor_ts
CONNECTION LIMIT = -1;
EOS
cat > /tmp/database.sql <<-EOS
CREATE SCHEMA raptor_schema
AUTHORIZATION ${PG_ROLE_USER};
ALTER DEFAULT PRIVILEGES IN SCHEMA raptor_schema
GRANT ALL ON TABLES TO ${PG_USER};
ALTER DEFAULT PRIVILEGES IN SCHEMA raptor_schema
GRANT SELECT, USAGE ON SEQUENCES TO ${PG_USER};
CREATE SEQUENCE raptor_schema.user_id_sequence
INCREMENT 1
START 1
MINVALUE 1
;
ALTER SEQUENCE raptor_schema.user_id_sequence
OWNER TO ${PG_ROLE_USER};
CREATE SEQUENCE raptor_schema.pricing_table_id_sequence
INCREMENT 1
START 1
MINVALUE 1
;
ALTER SEQUENCE raptor_schema.pricing_table_id_sequence
OWNER TO ${PG_ROLE_USER};
CREATE SEQUENCE raptor_schema.configuration_id_sequence
INCREMENT 1
START 1
MINVALUE 1
;
ALTER SEQUENCE raptor_schema.configuration_id_sequence
OWNER TO ${PG_ROLE_USER};
CREATE SEQUENCE raptor_schema.configuration_spec_id_sequence
INCREMENT 1
START 1
MINVALUE 1
;
ALTER SEQUENCE raptor_schema.configuration_spec_id_sequence
OWNER TO ${PG_ROLE_USER};
-- Table: raptor_schema.users
-- DROP TABLE raptor_schema.users;
CREATE TABLE raptor_schema.users
(
id bigint NOT NULL DEFAULT nextval('raptor_schema.user_id_sequence'::regclass),
email character varying(255) COLLATE pg_catalog."default" NOT NULL,
username character varying(255) COLLATE pg_catalog."default" NOT NULL,
admin boolean NOT NULL,
job_title character varying(255) COLLATE pg_catalog."default",
work_phone character varying(30) COLLATE pg_catalog."default",
mobile_phone character varying(30) COLLATE pg_catalog."default",
preferred_paper_size character varying(20) COLLATE pg_catalog."default",
preferred_paper_orientation character varying(20) COLLATE pg_catalog."default",
display_name character varying(255) COLLATE pg_catalog."default" NOT NULL,
CONSTRAINT user_pkey PRIMARY KEY (id)
USING INDEX TABLESPACE raptor_ts,
CONSTRAINT user_username_key UNIQUE (username)
USING INDEX TABLESPACE raptor_ts
)
WITH (
OIDS = FALSE
)
TABLESPACE raptor_ts;
ALTER TABLE raptor_schema.users
OWNER to ${PG_ROLE_USER};
GRANT ALL ON TABLE raptor_schema.users TO ${PG_USER};
GRANT ALL ON TABLE raptor_schema.users TO ${PG_ROLE_USER};
-- Table: raptor_schema.pricing_tables
-- DROP TABLE raptor_schema.pricing_tables;
CREATE TABLE raptor_schema.pricing_tables
(
id bigint NOT NULL DEFAULT nextval('raptor_schema.pricing_table_id_sequence'::regclass),
user_id bigint NOT NULL,
filename character varying(255) COLLATE pg_catalog."default" NOT NULL,
imported_at timestamp with time zone NOT NULL,
status character varying(20) COLLATE pg_catalog."default" NOT NULL,
CONSTRAINT pricing_tables_pkey PRIMARY KEY (id)
USING INDEX TABLESPACE raptor_ts,
CONSTRAINT pricing_tables_user_id_fkey FOREIGN KEY (user_id)
REFERENCES raptor_schema.users (id) MATCH SIMPLE
ON UPDATE NO ACTION
ON DELETE NO ACTION
)
WITH (
OIDS = FALSE
)
TABLESPACE raptor_ts;
ALTER TABLE raptor_schema.pricing_tables
OWNER to ${PG_ROLE_USER};
GRANT ALL ON TABLE raptor_schema.pricing_tables TO ${PG_USER};
GRANT ALL ON TABLE raptor_schema.pricing_tables TO ${PG_ROLE_USER};
-- Table: raptor_schema.configurations
-- DROP TABLE raptor_schema.configurations;
CREATE TABLE raptor_schema.configurations
(
id bigint NOT NULL DEFAULT nextval('raptor_schema.configuration_id_sequence'::regclass),
pricing_table_id bigint NOT NULL,
sequence integer NOT NULL,
min_sequence integer NOT NULL,
max_sequence integer NOT NULL,
CONSTRAINT configurations_pkey PRIMARY KEY (id)
USING INDEX TABLESPACE raptor_ts,
CONSTRAINT configurations_pricing_table_id_fkey FOREIGN KEY (pricing_table_id)
REFERENCES raptor_schema.pricing_tables (id) MATCH SIMPLE
ON UPDATE NO ACTION
ON DELETE NO ACTION
)
WITH (
OIDS = FALSE
)
TABLESPACE raptor_ts;
ALTER TABLE raptor_schema.configurations
OWNER to ${PG_ROLE_USER};
GRANT ALL ON TABLE raptor_schema.configurations TO ${PG_USER};
GRANT ALL ON TABLE raptor_schema.configurations TO ${PG_ROLE_USER};
-- Table: raptor_schema.configuration_specs
-- DROP TABLE raptor_schema.configuration_specs;
CREATE TABLE raptor_schema.configuration_specs
(
id bigint NOT NULL DEFAULT nextval('raptor_schema.configuration_spec_id_sequence'::regclass),
configuration_id bigint NOT NULL,
spec_id integer NOT NULL,
spec_value character varying(255) COLLATE pg_catalog."default" NOT NULL,
CONSTRAINT configuration_specs_pkey PRIMARY KEY (id)
USING INDEX TABLESPACE raptor_ts,
CONSTRAINT configuration_specs_configuration_id_fkey FOREIGN KEY (configuration_id)
REFERENCES raptor_schema.configurations (id) MATCH SIMPLE
ON UPDATE NO ACTION
ON DELETE NO ACTION
)
WITH (
OIDS = FALSE
)
TABLESPACE raptor_ts;
ALTER TABLE raptor_schema.configuration_specs
OWNER to ${PG_ROLE_USER};
GRANT ALL ON TABLE raptor_schema.configuration_specs TO ${PG_USER};
GRANT ALL ON TABLE raptor_schema.configuration_specs TO ${PG_ROLE_USER};
EOS
mkdir -p /usr/local/pgsql/data
chown postgres:postgres /usr/local/pgsql/data
chmod 666 /tmp/create.sql
chmod 666 /tmp/database.sql
echo ""
echo "*** Creating PostgreSQL users..."
echo ""
su - postgres -c 'psql -a -f /tmp/create.sql'
echo ""
echo "*** Creating PostgreSQL database..."
echo ""
su - postgres -c 'psql -d raptor_db -a -f /tmp/database.sql'
shopt -s checkwinsize
echo ""
echo "*** Downloading RAPTOR..."
echo ""
# configure the server
if [ ! -d ${HOME}/raptor ]; then
touch ${HOME}/.ssh/known_hosts
chmod 0644 ${HOME}/.ssh/known_hosts
ssh-keyscan github.com >> ${HOME}/.ssh/known_hosts
git clone git@github.com:gistia/teradata-raptor.git raptor
fi
echo ""
echo "*** Building RAPTOR..."
echo ""
cd ${HOME}/raptor
yarn
cd ${HOME}/raptor/server
yarn
cd -
if [ "${NPM_BUILD_TASK}" == "build" ]; then
sed -i "s|http\://localhost\:3001||" src/environments/environment.ts
fi
yarn run ${NPM_BUILD_TASK}
cat <<-EOS > ${HOME}/update.sh
#!/bin/bash
cd ${HOME}/raptor
git pull
cd ${HOME}/raptor
yarn
cd ${HOME}/raptor/server
yarn
cd -
yarn run ${NPM_BUILD_TASK}
rm -fR /usr/share/nginx/raptor/
mkdir -p /usr/share/nginx/raptor
cp -r dist/* /usr/share/nginx/raptor
EOS
if [ "${OSVER}" == "7" ]; then
cat <<-EOS >> ${HOME}/update.sh
service raptor restart
EOS
else
cat <<-EOS >> ${HOME}/update.sh
/etc/init.d/raptor restart
EOS
fi
chmod +x ${HOME}/update.sh
# configure upstart
if [ "${OSVER}" == "7" ]; then
cat <<-EOS > /lib/systemd/system/raptor.service
[Unit]
Description=Raptor Backend Server
[Service]
Type=simple
WorkingDirectory=${HOME}/raptor
ExecStart=/usr/bin/npm run server
Environment=PGUSER=${PG_USER}
Environment=PGHOST=localhost
Environment=PGPASSWORD=${PG_PASS}
Environment=PGDATABASE=raptor_db
Environment=PGPORT=5432
[Install]
WantedBy=multi-user.target
EOS
else
cd ${HOME}/raptor
sed -e "s|%pg_user%|${PG_USER}|" -e "s|%pg_password%|${PG_PASS}|" scripts/deploy/raptor > /etc/init.d/raptor
chmod +x /etc/init.d/raptor
chkconfig --add raptor
cd -
fi
# configure nginx
cd ${HOME}/raptor
mkdir -p /usr/share/nginx/raptor
cp -r dist/* /usr/share/nginx/raptor
setenforce 0 || :
if [ "${OSVER}" == "7" ]; then
sudo openssl dhparam -out /progenity/ssl/dhparam.pem 4096
firewall-cmd --zone=public --add-port=80/tcp --permanent
firewall-cmd --zone=public --add-port=443/tcp --permanent
firewall-cmd --reload
fi
cat <<-EOS > /etc/nginx/conf.d/raptor.conf
upstream raptor-api {
server 0.0.0.0:3001;
}
server {
listen 80;
server_name $1;
location / {
root /usr/share/nginx/raptor;
try_files \$uri /index.html;
}
location /api/v1 {
proxy_pass http://raptor-api;
proxy_set_header Host \$http_host; # required for docker client's sake
proxy_set_header X-Real-IP \$remote_addr; # pass on real client's IP
proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto \$scheme;
proxy_set_header Connection keep-alive;
proxy_read_timeout 900;
}
}
EOS
echo ""
echo "*** Starting RAPTOR..."
echo ""
if [ "${OSVER}" == "7" ]; then
service raptor start
service nginx start
else
/etc/init.d/raptor start
/etc/init.d/nginx start
fi
echo ""
echo "All done! Visit http://$1 to access RAPTOR."
echo ""
echo "RAPTOR Database Users:"
echo " ${PG_USER} ${PG_PASS}"
echo " ${PG_ROLE_USER} ${PG_ROLE_PASS}"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment