X-Git-Url: https://git.openstreetmap.org/chef.git/blobdiff_plain/aeaa46f3071de018b5c5e0f5678cb5b4082e3ddc..a68381ff0b21ebe57d7cef919c34c4e31460bc45:/cookbooks/planet/recipes/replication.rb?ds=inline diff --git a/cookbooks/planet/recipes/replication.rb b/cookbooks/planet/recipes/replication.rb index 2579b511c..165b9282a 100644 --- a/cookbooks/planet/recipes/replication.rb +++ b/cookbooks/planet/recipes/replication.rb @@ -17,20 +17,23 @@ # limitations under the License. # +require "yaml" + include_recipe "accounts" include_recipe "osmosis" db_passwords = data_bag_item("db", "passwords") -package "postgresql-client" - -package "ruby" -package "ruby-dev" -package "ruby-libxml" - -package "make" -package "gcc" -package "libpq-dev" +package %w[ + postgresql-client + ruby + ruby-dev + ruby-libxml + make + gcc + libpq-dev + osmdbt +] gem_package "pg" @@ -41,7 +44,7 @@ remote_directory "/opt/flush" do mode "755" files_owner "root" files_group "root" - files_mode 0o755 + files_mode "755" end execute "/opt/flush/Makefile" do @@ -60,7 +63,14 @@ remote_directory "/usr/local/bin" do mode "755" files_owner "root" files_group "root" - files_mode 0o755 + files_mode "755" +end + +template "/usr/local/bin/replicate-minute" do + source "replicate-minute.erb" + owner "root" + group "root" + mode "755" end template "/usr/local/bin/users-agreed" do @@ -84,7 +94,7 @@ remote_directory "/store/planet/users_deleted" do mode "755" files_owner "root" files_group "root" - files_mode 0o644 + files_mode "644" end remote_directory "/store/planet/replication" do @@ -94,7 +104,7 @@ remote_directory "/store/planet/replication" do mode "755" files_owner "root" files_group "root" - files_mode 0o755 + files_mode "755" end directory "/store/planet/replication/changesets" do @@ -121,6 +131,49 @@ directory "/store/planet/replication/minute" do mode "755" end +directory "/store/planet/replication/test" do + owner "planet" + group "planet" + mode "755" +end + +directory "/store/planet/replication/test/day" do + owner "planet" + group "planet" + mode "755" +end + +directory "/store/planet/replication/test/hour" do + owner "planet" + group "planet" + mode "755" +end + +directory "/store/planet/replication/test/minute" do + owner "planet" + group "planet" + mode "755" +end + +directory "/store/replication" do + owner "planet" + group "planet" + mode "755" +end + +directory "/store/replication/minute" do + owner "planet" + group "planet" + mode "755" +end + +systemd_tmpfile "/run/replication" do + type "d" + owner "planet" + group "planet" + mode "755" +end + directory "/etc/replication" do owner "root" group "root" @@ -133,6 +186,18 @@ directory "/var/run/lock/changeset-replication/" do mode "750" end +directory "/var/lib/replication" do + owner "planet" + group "planet" + mode "755" +end + +directory "/var/lib/replication/test" do + owner "planet" + group "planet" + mode "755" +end + template "/etc/replication/auth.conf" do source "replication.auth.erb" user "root" @@ -141,6 +206,117 @@ template "/etc/replication/auth.conf" do variables :password => db_passwords["planetdiff"] end +osmdbt_config = { + "database" => { + "host" => node[:web][:database_host], + "dbname" => "openstreetmap", + "user" => "planetdiff", + "password" => db_passwords["planetdiff"], + "replication_slot" => "osmdbt" + }, + "log_dir" => "/var/lib/replication/minute", + "changes_dir" => "/store/planet/replication/test/minute", + "tmp_dir" => "/store/replication/minute", + "run_dir" => "/run/replication" +} + +file "/etc/replication/osmdbt-config.yaml" do + user "root" + group "planet" + mode "640" + content YAML.dump(osmdbt_config) +end + +systemd_service "replication-minutely" do + description "Minutely replication" + user "planet" + working_directory "/etc/replication" + exec_start "/usr/local/bin/replicate-minute" + private_tmp true + private_devices true + protect_system "full" + protect_home true + restrict_address_families %w[AF_INET AF_INET6] + no_new_privileges true +end + +systemd_timer "replication-minutely" do + description "Minutely replication" + on_boot_sec 60 + on_unit_active_sec 60 + accuracy_sec 5 +end + +directory "/var/lib/replication/test/hour" do + owner "planet" + group "planet" + mode "755" +end + +template "/var/lib/replication/test/hour/configuration.txt" do + source "replication.config.erb" + owner "planet" + group "planet" + mode "644" + variables :base => "test/minute", :interval => 3600 +end + +link "/var/lib/replication/test/hour/data" do + to "/store/planet/replication/test/hour" +end + +systemd_service "replication-hourly" do + description "Hourly replication" + user "planet" + exec_start "/usr/local/bin/osmosis -q --merge-replication-files workingDirectory=/var/lib/replication/test/hour" + private_tmp true + private_devices true + protect_system "full" + protect_home true + restrict_address_families %w[AF_INET AF_INET6] + no_new_privileges true +end + +systemd_timer "replication-hourly" do + description "Daily replication" + on_calendar "*-*-* *:02/15:00" +end + +directory "/var/lib/replication/test/day" do + owner "planet" + group "planet" + mode "755" +end + +template "/var/lib/replication/test/day/configuration.txt" do + source "replication.config.erb" + owner "planet" + group "planet" + mode "644" + variables :base => "test/hour", :interval => 86400 +end + +link "/var/lib/replication/test/day/data" do + to "/store/planet/replication/test/day" +end + +systemd_service "replication-daily" do + description "Daily replication" + user "planet" + exec_start "/usr/local/bin/osmosis -q --merge-replication-files workingDirectory=/var/lib/replication/test/day" + private_tmp true + private_devices true + protect_system "full" + protect_home true + restrict_address_families %w[AF_INET AF_INET6] + no_new_privileges true +end + +systemd_timer "replication-daily" do + description "Daily replication" + on_calendar "*-*-* *:02/15:00" +end + template "/etc/replication/changesets.conf" do source "changesets.conf.erb" user "root" @@ -157,7 +333,7 @@ template "/etc/replication/users-agreed.conf" do variables :password => db_passwords["planetdiff"] end -directory "/var/lib/replication" do +directory "/var/lib/replication/minute" do owner "planet" group "planet" mode "755" @@ -222,6 +398,18 @@ if node[:planet][:replication] == "enabled" mailto "zerebubuth@gmail.com" end + service "replication-minutely.timer" do + action [:enable, :start] + end + + service "replication-hourly.timer" do + action [:enable, :start] + end + + service "replication-daily.timer" do + action [:enable, :start] + end + cron_d "replication-minutely" do user "planet" command "/usr/local/bin/osmosis -q --replicate-apidb authFile=/etc/replication/auth.conf validateSchemaVersion=false --write-replication workingDirectory=/store/planet/replication/minute" @@ -257,6 +445,18 @@ else action :delete end + service "replication-minutely.timer" do + action [:stop, :disable] + end + + service "replication-hourly.timer" do + action [:stop, :disable] + end + + service "replication-daily.timer" do + action [:stop, :disable] + end + cron_d "replication-minutely" do action :delete end @@ -269,38 +469,3 @@ else action :delete end end - -# directory "/var/lib/replication/streaming" do -# owner "planet" -# group "planet" -# mode 0o755 -# end -# -# directory "/var/log/replication" do -# owner "planet" -# group "planet" -# mode 0o755 -# end -# -# ["streaming-replicator", "streaming-server"].each do |name| -# template "/etc/init.d/#{name}" do -# source "streaming.init.erb" -# owner "root" -# group "root" -# mode 0o755 -# variables :service => name -# end -# -# if node[:planet][:replication] == "enabled" -# service name do -# action [:enable, :start] -# supports :restart => true, :status => true -# subscribes :restart, "template[/etc/init.d/#{name}]" -# end -# else -# service name do -# action [:disable, :stop] -# supports :restart => true, :status => true -# end -# end -# end