propellor/Propellor/Property/SiteSpecific/GitAnnexBuilder.hs

module Propellor.Property.SiteSpecific.GitAnnexBuilder where

import Propellor
import qualified Propellor.Property.Apt as Apt
import qualified Propellor.Property.User as User
import qualified Propellor.Property.Cron as Cron
import Propellor.Property.Cron (CronTimes)

builduser :: UserName
builduser = "builder"

builddir :: FilePath
builddir = "gitbuilder"

builder :: Architecture -> CronTimes -> Bool -> Property
builder arch crontimes rsyncupload = combineProperties "gitannexbuilder"
	[ Apt.stdSourcesList Unstable
	, Apt.buildDep ["git-annex"]
	, Apt.installed ["git", "rsync", "moreutils", "ca-certificates",
		"liblockfile-simple-perl", "cabal-install", "vim", "less"]
	, serviceRunning "cron" `requires` Apt.installed ["cron"]
	, User.accountFor builduser
	, check (lacksdir builddir) $ userScriptProperty builduser
		[ "git clone git://git.kitenet.net/gitannexbuilder " ++ builddir
		, "cd " ++ builddir
		, "git checkout " ++ arch
		]
		`describe` "gitbuilder setup"
	, check (lacksdir $ builddir </> "build") $ userScriptProperty builduser
		[ "cd " ++ builddir
		, "git clone git://git-annex.branchable.com/ build"
		]
	, Property "git-annex source build deps installed" $ do
		d <- homedir
		ensureProperty $ Apt.buildDepIn (d </> builddir </> "build")
	, Cron.niceJob "gitannexbuilder" crontimes builduser ("~/" ++ builddir) "git pull ; ./autobuild"
	-- The builduser account does not have a password set,
	-- instead use the password privdata to hold the rsync server
	-- password used to upload the built image.
	, Property "rsync password" $ do
		d <- homedir
		let f = d </> "rsyncpassword"
		if rsyncupload 
			then withPrivData (Password builduser) $ \p -> do
				oldp <- catchDefaultIO "" $ readFileStrict f
				if p /= oldp
					then makeChange $ writeFile f p
					else noChange
			else do
				ifM (doesFileExist f)
					( noChange
					, makeChange $ writeFile f "no password configured"
					)
	]
  where
  	homedir = fromMaybe ("/home/" ++ builduser) <$> User.homedir builduser
	lacksdir d = do
		h <- homedir
		not <$> doesDirectoryExist (h </> d)
various improvements 2014-04-01 20:58:11 +00:00			`module Propellor.Property.SiteSpecific.GitAnnexBuilder where`

			`import Propellor`
			`import qualified Propellor.Property.Apt as Apt`
			`import qualified Propellor.Property.User as User`
propellor spin 2014-04-01 22:06:02 +00:00			`import qualified Propellor.Property.Cron as Cron`
various improvements 2014-04-01 20:58:11 +00:00			`import Propellor.Property.Cron (CronTimes)`

			`builduser :: UserName`
			`builduser = "builder"`

			`builddir :: FilePath`
			`builddir = "gitbuilder"`

generalized git-annex autobuilder to not need a rsync password 2014-04-02 22:36:42 +00:00			`builder :: Architecture -> CronTimes -> Bool -> Property`
			`builder arch crontimes rsyncupload = combineProperties "gitannexbuilder"`
propellor spin 2014-04-01 21:08:48 +00:00			`[ Apt.stdSourcesList Unstable`
			`, Apt.buildDep ["git-annex"]`
propellor spin 2014-04-01 22:15:21 +00:00			`, Apt.installed ["git", "rsync", "moreutils", "ca-certificates",`
propellor spin 2014-04-03 00:26:38 +00:00			`"liblockfile-simple-perl", "cabal-install", "vim", "less"]`
various improvements 2014-04-01 20:58:11 +00:00			, serviceRunning "cron" `requires` Apt.installed ["cron"]
			`, User.accountFor builduser`
propellor spin 2014-04-01 21:08:48 +00:00			`, check (lacksdir builddir) $ userScriptProperty builduser`
propellor spin 2014-04-01 22:31:04 +00:00			`[ "git clone git://git.kitenet.net/gitannexbuilder " ++ builddir`
			`, "cd " ++ builddir`
changed Arch to String type 2014-04-02 03:49:15 +00:00			`, "git checkout " ++ arch`
various improvements 2014-04-01 20:58:11 +00:00			`]`
			`describe` "gitbuilder setup"
propellor spin 2014-04-01 22:35:46 +00:00			`, check (lacksdir $ builddir </> "build") $ userScriptProperty builduser`
propellor spin 2014-04-01 22:31:04 +00:00			`[ "cd " ++ builddir`
propellor spin 2014-04-01 22:34:01 +00:00			`, "git clone git://git-annex.branchable.com/ build"`
propellor spin 2014-04-01 21:08:48 +00:00			`]`
propellor spin 2014-04-03 00:26:38 +00:00			`, Property "git-annex source build deps installed" $ do`
			`d <- homedir`
			`ensureProperty $ Apt.buildDepIn (d </> builddir </> "build")`
propellor spin 2014-04-01 22:31:04 +00:00			`, Cron.niceJob "gitannexbuilder" crontimes builduser ("~/" ++ builddir) "git pull ; ./autobuild"`
various improvements 2014-04-01 20:58:11 +00:00			`-- The builduser account does not have a password set,`
			`-- instead use the password privdata to hold the rsync server`
			`-- password used to upload the built image.`
			`, Property "rsync password" $ do`
			`d <- homedir`
			`let f = d </> "rsyncpassword"`
generalized git-annex autobuilder to not need a rsync password 2014-04-02 22:36:42 +00:00			`if rsyncupload`
			`then withPrivData (Password builduser) $ \p -> do`
			`oldp <- catchDefaultIO "" $ readFileStrict f`
			`if p /= oldp`
			`then makeChange $ writeFile f p`
			`else noChange`
			`else do`
			`ifM (doesFileExist f)`
			`( noChange`
			`, makeChange $ writeFile f "no password configured"`
			`)`
various improvements 2014-04-01 20:58:11 +00:00			`]`
			`where`
			`homedir = fromMaybe ("/home/" ++ builduser) <$> User.homedir builduser`
propellor spin 2014-04-01 21:08:48 +00:00			`lacksdir d = do`
			`h <- homedir`
			`not <$> doesDirectoryExist (h </> d)`