propellor/src/Propellor/Property/SiteSpecific/GitAnnexBuilder.hs

module Propellor.Property.SiteSpecific.GitAnnexBuilder where

import Propellor
import qualified Propellor.Property.Apt as Apt
import qualified Propellor.Property.User as User
import qualified Propellor.Property.Cron as Cron
import Propellor.Property.Cron (CronTimes)

builduser :: UserName
builduser = "builder"

homedir :: FilePath
homedir = "/home/builder"

gitbuilderdir :: FilePath
gitbuilderdir = homedir </> "gitbuilder"

builddir :: FilePath
builddir = gitbuilderdir </> "build"

builder :: Architecture -> CronTimes -> Bool -> Property
builder arch crontimes rsyncupload = combineProperties "gitannexbuilder"
	[ Apt.stdSourcesList Unstable
	, Apt.buildDep ["git-annex"]
	, Apt.installed ["git", "rsync", "moreutils", "ca-certificates",
		"liblockfile-simple-perl", "cabal-install", "vim", "less"]
	, Apt.serviceInstalledRunning "cron"
	, User.accountFor builduser
	, check (not <$> doesDirectoryExist gitbuilderdir) $ userScriptProperty builduser
		[ "git clone git://git.kitenet.net/gitannexbuilder " ++ gitbuilderdir
		, "cd " ++ gitbuilderdir
		, "git checkout " ++ arch
		]
		`describe` "gitbuilder setup"
	, check (not <$> doesDirectoryExist builddir) $ userScriptProperty builduser
		[ "git clone git://git-annex.branchable.com/ " ++ builddir
		]
	, "git-annex source build deps installed" ==> Apt.buildDepIn builddir
	, Cron.niceJob "gitannexbuilder" crontimes builduser gitbuilderdir "git pull ; ./autobuild"
	-- The builduser account does not have a password set,
	-- instead use the password privdata to hold the rsync server
	-- password used to upload the built image.
	, property "rsync password" $ do
		let f = homedir </> "rsyncpassword"
		if rsyncupload 
			then withPrivData (Password builduser) $ \p -> do
				oldp <- liftIO $ catchDefaultIO "" $
					readFileStrict f
				if p /= oldp
					then makeChange $ writeFile f p
					else noChange
			else do
				ifM (liftIO $ doesFileExist f)
					( noChange
					, makeChange $ writeFile f "no password configured"
					)
	]
various improvements 2014-04-01 20:58:11 +00:00			`module Propellor.Property.SiteSpecific.GitAnnexBuilder where`

			`import Propellor`
			`import qualified Propellor.Property.Apt as Apt`
			`import qualified Propellor.Property.User as User`
propellor spin 2014-04-01 22:06:02 +00:00			`import qualified Propellor.Property.Cron as Cron`
various improvements 2014-04-01 20:58:11 +00:00			`import Propellor.Property.Cron (CronTimes)`

			`builduser :: UserName`
			`builduser = "builder"`

propellor spin 2014-04-08 05:42:59 +00:00			`homedir :: FilePath`
			`homedir = "/home/builder"`

			`gitbuilderdir :: FilePath`
			`gitbuilderdir = homedir </> "gitbuilder"`

various improvements 2014-04-01 20:58:11 +00:00			`builddir :: FilePath`
propellor spin 2014-04-08 05:42:59 +00:00			`builddir = gitbuilderdir </> "build"`
various improvements 2014-04-01 20:58:11 +00:00
generalized git-annex autobuilder to not need a rsync password 2014-04-02 22:36:42 +00:00			`builder :: Architecture -> CronTimes -> Bool -> Property`
			`builder arch crontimes rsyncupload = combineProperties "gitannexbuilder"`
propellor spin 2014-04-01 21:08:48 +00:00			`[ Apt.stdSourcesList Unstable`
			`, Apt.buildDep ["git-annex"]`
propellor spin 2014-04-01 22:15:21 +00:00			`, Apt.installed ["git", "rsync", "moreutils", "ca-certificates",`
propellor spin 2014-04-03 00:26:38 +00:00			`"liblockfile-simple-perl", "cabal-install", "vim", "less"]`
serviceInstalledRunning 2014-04-08 23:31:03 +00:00			`, Apt.serviceInstalledRunning "cron"`
various improvements 2014-04-01 20:58:11 +00:00			`, User.accountFor builduser`
propellor spin 2014-04-08 05:42:59 +00:00			`, check (not <$> doesDirectoryExist gitbuilderdir) $ userScriptProperty builduser`
			`[ "git clone git://git.kitenet.net/gitannexbuilder " ++ gitbuilderdir`
			`, "cd " ++ gitbuilderdir`
changed Arch to String type 2014-04-02 03:49:15 +00:00			`, "git checkout " ++ arch`
various improvements 2014-04-01 20:58:11 +00:00			`]`
			`describe` "gitbuilder setup"
propellor spin 2014-04-08 05:42:59 +00:00			`, check (not <$> doesDirectoryExist builddir) $ userScriptProperty builduser`
			`[ "git clone git://git-annex.branchable.com/ " ++ builddir`
propellor spin 2014-04-01 21:08:48 +00:00			`]`
propellor spin 2014-04-08 05:42:59 +00:00			`, "git-annex source build deps installed" ==> Apt.buildDepIn builddir`
			`, Cron.niceJob "gitannexbuilder" crontimes builduser gitbuilderdir "git pull ; ./autobuild"`
various improvements 2014-04-01 20:58:11 +00:00			`-- The builduser account does not have a password set,`
			`-- instead use the password privdata to hold the rsync server`
			`-- password used to upload the built image.`
get rid of AttrProperty Now both Property and RevertableProperty can influence Attr on their own. 2014-04-18 07:59:06 +00:00			`, property "rsync password" $ do`
propellor spin 2014-04-08 05:42:59 +00:00			`let f = homedir </> "rsyncpassword"`
generalized git-annex autobuilder to not need a rsync password 2014-04-02 22:36:42 +00:00			`if rsyncupload`
			`then withPrivData (Password builduser) $ \p -> do`
Propellor monad is a Reader for HostAttr So far, the hostname is only used to improve a message in withPrivData, but I anticipate using HostAttr for a lot more. 2014-04-10 21:22:32 +00:00			`oldp <- liftIO $ catchDefaultIO "" $`
			`readFileStrict f`
generalized git-annex autobuilder to not need a rsync password 2014-04-02 22:36:42 +00:00			`if p /= oldp`
			`then makeChange $ writeFile f p`
			`else noChange`
			`else do`
Propellor monad is a Reader for HostAttr So far, the hostname is only used to improve a message in withPrivData, but I anticipate using HostAttr for a lot more. 2014-04-10 21:22:32 +00:00			`ifM (liftIO $ doesFileExist f)`
generalized git-annex autobuilder to not need a rsync password 2014-04-02 22:36:42 +00:00			`( noChange`
			`, makeChange $ writeFile f "no password configured"`
			`)`
various improvements 2014-04-01 20:58:11 +00:00			`]`