[gnome-build-meta.wiki] Add openqa deployment info
- From: Sam Thursfield <sthursfield src gnome org>
- To: commits-list gnome org
- Cc:
- Subject: [gnome-build-meta.wiki] Add openqa deployment info
- Date: Mon, 9 Aug 2021 16:15:10 +0000 (UTC)
commit 29706d524c3338ff846bef73fd4db179ac90d872
Author: Sam Thursfield <sam afuera me uk>
Date: Mon Aug 9 18:14:56 2021 +0200
Add openqa deployment info
Infrastructure.md | 2 +
openqa/Deployment.md | 120 +++++++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 122 insertions(+)
---
diff --git a/Infrastructure.md b/Infrastructure.md
index 2e2362b..8c4f88d 100644
--- a/Infrastructure.md
+++ b/Infrastructure.md
@@ -7,3 +7,5 @@
| 147.75.74.6 | runner | packet.net | aarch64(armv7) | infra team, jjardon | c1.large.arm.xda machine
Donated by https://www.codethink.co.uk/ |
| openqa.gnome.org | OpenQA web UI | GNOME | x86_64 | jjardon, av, Codethink | |
+
+See also: [OpenQA deployment](../openqa/Deployment)
diff --git a/openqa/Deployment.md b/openqa/Deployment.md
new file mode 100644
index 0000000..ff4c91b
--- /dev/null
+++ b/openqa/Deployment.md
@@ -0,0 +1,120 @@
+# openqa.gnome.org deployment
+
+This server was manually deployed with the following steps:
+
+## Install docker
+
+dnf install dnf-plugins-core
+dnf config-manager --add-repo https://download.docker.com/linux/fedora/docker-ce.repo
+dnf install docker-ce docker-ce-cli containerd.io
+
+## Downgrade containerd.io
+
+dnf install containerd.io-1.4.6-3.1.fc34
+
+## Get the SSL
+
+cd ssl_cert
+docker run -it --rm --privileged -p80:80 -v $PWD:/root debian:bullseye-slim /bin/bash
+
+## Inside the docker:
+apt-get update && apt-get install curl socat
+cd /root/.acme.sh/
+./acme.sh --issue --standalone -d openqa.gnome.org
+exit
+
+## In Host:
+cd /root
+mkdir openqa
+cd openqa/
+git clone https://github.com/os-autoinst/openQA.git
+mkdir -p workdir/data/factory/{iso,hdd,other,tmp} workdir/data/tests workdir/data/testresults
workdir/data/certs/ssl.{key,crt} workdir/data/conf
+chmod 0777 workdir/data/testresults
+cp -r openQA/container/openqa_data/data.template/conf/* workdir/data/conf/
+cp openQA/container/webui/conf/database.ini workdir/data/conf/
+sed -i 's/#base_url = http://FIXME/base_url = http://openqa.gnome.org//' workdir/data/conf/openqa.ini
+sed -i 's/httpsonly = 0//' workdir/data/conf/openqa.ini
+cat <> workdir/data/conf/openqa.ini
+[oauth2]
+provider = custom
+unique_name = gitlab
+key = XXXXXXX
+secret = XXXXXXXX
+authorize_url = https://gitlab.com/oauth/authorize?response_type=code
+token_url = https://gitlab.com/oauth/token
+user_url = https://gitlab.com/api/v4/user
+token_scope = read_user
+token_label = Bearer
+nickname_from = username
+EOF
+
+## change provider to appropriate provider and update key and secret
+
+cp ../ssl_cert/.acme.sh/openqa.gnome.org/ca.cer workdir/data/certs/ssl.crt/ca.crt
+cp ../ssl_cert/.acme.sh/openqa.gnome.org/openqa.gnome.org.key workdir/data/certs/ssl.key/server.key
+cp ../ssl_cert/.acme.sh/openqa.gnome.org/openqa.gnome.org.cer workdir/data/certs/ssl.crt/server.crt
+docker network create openqa
+mkdir ~/openqa/dockerfile
+cat <<EOF >> ~/openqa/dockerfile/Dockerfile
+FROM registry.opensuse.org/devel/openqa/containers15.2/openqa_webui:latest
+RUN zypper --no-gpg-checks ref && zypper --no-gpg-checks update -y && zypper --no-gpg-checks in -y
'perl(Mojolicious::Plugin::OAuth2)'
+RUN usermod -d /var/lib/openqa -s /bin/bash geekotest
+COPY files /root/files
+RUN cp /root/files/gnomeos.png /usr/share/openqa/assets/images/gnomeos.png && \
+ mkdir -p /usr/share/openqa/templates/webapi/branding/gnomeOS && \
+ cp /root/files/*html* /usr/share/openqa/templates/webapi/branding/gnomeOS/. && \
+ rm -rf /root/files && chown geekotest /usr/share/openqa/assets/images/gnomeos.png && \
+ echo -e "\n! gnomeos.png\n< images/gnomeos.png" >> /usr/share/openqa/assets/assetpack.def
+EOF
+
+## Copy `files` folder containing the logo and the sponsor html
+
+cd dockerfile/
+docker build -t openqa_webui:test .
+cd ..
+cd ~/openqa/workdir/data/tests
+git clone https://gitlab.com/jamesthomas/gnome-tests.git gnomeos
+cd gnomeos
+git clone https://gitlab.com/jamesthomas/gnome-needles needles
+cd /root/openqa
+docker run -d --rm --network openqa -e POSTGRES_PASSWORD=openqa -e POSTGRES_USER=openqa -e
POSTGRES_DB=openqa -v$(pwd)/workdir/db:/var/lib/postgresql/data --name=db postgres:latest
+docker run --network openqa -d --rm --privileged -v $(pwd)/workdir/data:/data/ -v
$(pwd)/workdir/data/certs/ssl.crt:/etc/apache2/ssl.crt -v
$(pwd)/workdir/data/certs/ssl.key:/etc/apache2/ssl.key -p80:80 -p443:443 --name openqa_webui
openqa_webui:test
+
+## openqa will give admin access to the first user who loggedin. To give additional users admin access
+docker exec -it db /bin/bash
+psql -U openqa -d openqa
+select * from users;
+update users set is_admin=1, is_operator=1 where id=4;
+
+## change id to the id of the user who needs to have admin access
+
+
+## To stop the webui use `stop.sh` in /root/openqa and `start.sh` to start it.
+
+## stop.sh
+```
+#!/bin/bash
+
+BACKUP_DIR="backup-$(date +%Y%m%d_%H%M)"
+mkdir -p $BACKUP_DIR
+
+docker cp -a openqa_webui:/var/lib/openqa/images ${BACKUP_DIR}/.
+docker stop openqa_webui
+
+rm -f backup-latest
+ln -sf $BACKUP_DIR backup-latest
+```
+
+## start.sh
+```
+#!/bin/bash
+
+set -e
+
+docker run --network openqa -d --rm --privileged -v $(pwd)/workdir/data:/data/ -v
$(pwd)/workdir/data/certs/ssl.crt:/etc/apache2/ssl.crt -v
$(pwd)/workdir/data/certs/ssl.key:/etc/apache2/ssl.key -p80:80 -p443:443 --name openqa_webui
openqa_webui:test
+
+if [ -d backup-latest/images ]; then
+ docker cp -a backup-latest/images openqa_webui:/var/lib/openqa/.
+ docker exec openqa_webui chown -R geekotest /var/lib/openqa/images
+fi
+```
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
