Last active
February 20, 2017 23:31
-
-
Save netmarkjp/6472272 to your computer and use it in GitHub Desktop.
example of mozilla minion production config files. /etc/minion/frontend.json /etc/nginx/conf.d/minion.conf /etc/supervisor/conf.d/minion-*.supervisor.conf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ls /etc/minion/frontend.json /etc/nginx/conf.d/minion.conf /etc/supervisor/conf.d/minion-*.supervisor.conf | while read f; do echo ---$f ; cat $f ; done | |
| ---/etc/minion/frontend.json | |
| { | |
| "session-secret":"50131647012122764715049", | |
| "backend-api":{ | |
| "url":"http://127.0.0.1:8383" | |
| } | |
| } | |
| ---/etc/nginx/conf.d/minion.conf | |
| # This Source Code Form is subject to the terms of the Mozilla Public | |
| # License, v. 2.0. If a copy of the MPL was not distributed with this | |
| # file, You can obtain one at http://mozilla.org/MPL/2.0/. | |
| upstream minion_frontend { | |
| server 127.0.0.1:4000 fail_timeout=0; | |
| } | |
| server { | |
| listen 80; | |
| server_name localhost; | |
| rewrite ^ https://$host$request_uri? permanent; | |
| } | |
| server { | |
| listen 443; | |
| server_name localhost; | |
| access_log /var/log/nginx/minion-dev.access.log; | |
| error_log /var/log/nginx/minion-dev.error.log; | |
| ssl on; | |
| ssl_certificate /etc/ssl/private/localhost.crt; | |
| ssl_certificate_key /etc/ssl/private/localhost.key; | |
| ssl_session_timeout 5m; | |
| ssl_protocols SSLv3 TLSv1 TLSv1.1 TlSv1.2; | |
| #ssl_ciphers RC4:HIGH:!aNULL:!MD5:!LOW; | |
| ssl_ciphers ALL:!ADH:!aNULL:!PSK:!MD5:!AES:!EXPORT:+HIGH:!MEDIUM:!LOW:!SSLv2; | |
| ssl_prefer_server_ciphers on; | |
| ssl_session_cache shared:Minion:4m; | |
| add_header X-Content-Type-Options nosniff; | |
| add_header Strict-Transport-Security max-age=31536000; | |
| add_header X-Frame-Options DENY; | |
| add_header X-XSS-Protection "1; mode=block"; | |
| add_header Content-Security-Policy "default-src 'self'; script-src 'self' https://login.persona.org; frame-src https://login.persona.org"; | |
| location / { | |
| proxy_set_header X-Forwarded-Host $host; | |
| proxy_set_header X-Forwarded-Server $host; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header Host $http_host; | |
| proxy_redirect off; | |
| proxy_pass http://minion_frontend; | |
| } | |
| } | |
| ---/etc/supervisor/conf.d/minion-backend.supervisor.conf | |
| [program:minion-backend] | |
| command=/home/minion/minion/envwrapper.sh /home/minion/minion/env gunicorn -b 127.0.0.1:8383 -w 6 minion.backend.wsgi:app | |
| numprocs=1 ; number of processes copies to start (def 1) | |
| dictionary=/home/minion/minion/minion-backend | |
| umask=022 ; umask for process (default None) | |
| priority=999 ; the relative start priority (default 999) | |
| autostart=true ; start at supervisord start (default: true) | |
| autorestart=true ; retstart at unexpected quit (default: true) | |
| startsecs=3 ; number of secs prog must stay running (def. 1) | |
| startretries=3 ; max # of serial start failures (default 3) | |
| stopsignal=TERM ; signal used to kill process (default TERM) | |
| stopwaitsecs=10 ; max num secs to wait b4 SIGKILL (default 10) | |
| user=minion ; setuid to this UNIX account to run the program | |
| stdout_logfile=/var/log/supervisor/minion-backend.stdout.log | |
| stdout_logfile_maxbytes=1MB | |
| stdout_logfile_backups=10 | |
| stderr_logfile=/var/log/supervisor/minion-backend.stderr.log | |
| stderr_logfile_maxbytes=1MB | |
| stderr_logfile_backups=10 | |
| ---/etc/supervisor/conf.d/minion-frontend.supervisor.conf | |
| [program:minion-frontend-server] | |
| command=/home/minion/minion/envwrapper.sh /home/minion/minion/env gunicorn -b 127.0.0.1:4000 -w 8 minion.frontend.wsgi:app | |
| numprocs=1 ; number of processes copies to start (def 1) | |
| dictionary=/home/minion/minion/minion-frontend | |
| umask=022 ; umask for process (default None) | |
| priority=999 ; the relative start priority (default 999) | |
| autostart=true ; start at supervisord start (default: true) | |
| autorestart=true ; retstart at unexpected quit (default: true) | |
| startsecs=3 ; number of secs prog must stay running (def. 1) | |
| startretries=3 ; max # of serial start failures (default 3) | |
| stopsignal=TERM ; signal used to kill process (default TERM) | |
| stopwaitsecs=10 ; max num secs to wait b4 SIGKILL (default 10) | |
| stopasgroup=true ; stop parent and children processes | |
| killasgroup=true ; kill parent and children porcesses | |
| user=minion ; setuid to this UNIX account to run the program | |
| stdout_logfile=/var/log/supervisor/minion-frontend-server.stdout.log | |
| stdout_logfile_maxbytes=1MB | |
| stdout_logfile_backups=10 | |
| stderr_logfile=/var/log/supervisor/minion-frontend-server.stderr.log | |
| stderr_logfile_maxbytes=1MB | |
| stderr_logfile_backups=10 | |
| ---/etc/supervisor/conf.d/minion-plugin-worker.supervisor.conf | |
| [program:minion-plugin-worker] | |
| command=/home/minion/minion/envwrapper.sh /home/minion/minion/env minion-plugin-worker | |
| numprocs=1 ; number of processes copies to start (def 1) | |
| directory=/tmp/ ; directory to cwd to before exec (def no cwd) | |
| umask=022 ; umask for process (default None) | |
| priority=999 ; the relative start priority (default 999) | |
| autostart=true ; start at supervisord start (default: true) | |
| autorestart=true ; retstart at unexpected quit (default: true) | |
| startsecs=3 ; number of secs prog must stay running (def. 1) | |
| startretries=3 ; max # of serial start failures (default 3) | |
| stopsignal=TERM ; signal used to kill process (default TERM) | |
| stopwaitsecs=10 ; max num secs to wait b4 SIGKILL (default 10) | |
| user=minion ; setuid to this UNIX account to run the program | |
| stdout_logfile=/var/log/supervisor/minion-plugin-worker.stdout.log | |
| stdout_logfile_maxbytes=1MB | |
| stdout_logfile_backups=10 | |
| stderr_logfile=/var/log/supervisor/minion-plugin-worker.stderr.log | |
| stderr_logfile_maxbytes=1MB | |
| stderr_logfile_backups=10 | |
| ---/etc/supervisor/conf.d/minion-scan-worker.supervisor.conf | |
| [program:minion-scan-worker] | |
| command=/home/minion/minion/envwrapper.sh /home/minion/minion/env minion-scan-worker | |
| numprocs=1 ; number of processes copies to start (def 1) | |
| directory=/tmp/ ; directory to cwd to before exec (def no cwd) | |
| umask=022 ; umask for process (default None) | |
| priority=999 ; the relative start priority (default 999) | |
| autostart=true ; start at supervisord start (default: true) | |
| autorestart=true ; retstart at unexpected quit (default: true) | |
| startsecs=3 ; number of secs prog must stay running (def. 1) | |
| startretries=3 ; max # of serial start failures (default 3) | |
| stopsignal=TERM ; signal used to kill process (default TERM) | |
| stopwaitsecs=10 ; max num secs to wait b4 SIGKILL (default 10) | |
| user=minion ; setuid to this UNIX account to run the program | |
| stdout_logfile=/var/log/supervisor/minion-scan-worker.stdout.log | |
| stdout_logfile_maxbytes=1MB | |
| stdout_logfile_backups=10 | |
| stderr_logfile=/var/log/supervisor/minion-scan-worker.stderr.log | |
| stderr_logfile_maxbytes=1MB | |
| stderr_logfile_backups=10 | |
| ---/etc/supervisor/conf.d/minion-state-worker.supervisor.conf | |
| [program:minion-state-worker] | |
| command=/home/minion/minion/envwrapper.sh /home/minion/minion/env minion-state-worker | |
| numprocs=1 ; number of processes copies to start (def 1) | |
| directory=/tmp/ ; directory to cwd to before exec (def no cwd) | |
| umask=022 ; umask for process (default None) | |
| priority=999 ; the relative start priority (default 999) | |
| autostart=true ; start at supervisord start (default: true) | |
| autorestart=true ; retstart at unexpected quit (default: true) | |
| startsecs=3 ; number of secs prog must stay running (def. 1) | |
| startretries=3 ; max # of serial start failures (default 3) | |
| stopsignal=TERM ; signal used to kill process (default TERM) | |
| stopwaitsecs=10 ; max num secs to wait b4 SIGKILL (default 10) | |
| user=minion ; setuid to this UNIX account to run the program | |
| stdout_logfile=/var/log/supervisor/minion-state-worker.stdout.log | |
| stdout_logfile_maxbytes=1MB | |
| stdout_logfile_backups=10 | |
| stderr_logfile=/var/log/supervisor/minion-state-worker.stderr.log | |
| stderr_logfile_maxbytes=1MB | |
| stderr_logfile_backups=10 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment