gnunet-svn
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[taler-grid5k] 11/48: add auditor config files

From: gnunet
Subject: [taler-grid5k] 11/48: add auditor config files
Date: Sat, 28 May 2022 12:11:31 +0200 
This is an automated email from the git hooks/post-receive script.

marco-boss pushed a commit to branch master
in repository grid5k.

commit 93dcf2fb28d34e34a9d1e94cc5f5ea8297168e60
Author: Boss Marco <bossm8@bfh.ch>
AuthorDate: Thu May 12 16:32:26 2022 +0200

    add auditor config files
---
 additional/recover/run.sh                          | 21 ++++++++++++---
 configs/etc/nginx/sites-available/auditor          | 30 ++++++++++++++++++++++
 configs/etc/taler/conf.d/auditor.conf              | 14 ++++++++++
 configs/etc/taler/conf.d/fake-bank.conf            |  1 +
 .../lib/systemd/system/taler-auditor-httpd.service | 12 +++++++++
 5 files changed, 74 insertions(+), 4 deletions(-)

diff --git a/additional/recover/run.sh b/additional/recover/run.sh
index 2af439f..1565ef0 100755
--- a/additional/recover/run.sh
+++ b/additional/recover/run.sh
@@ -1,8 +1,15 @@
 #!/bin/bash
-
+set -e
 # Script to run a local instance of grafana, loki and prometheus
 # with a data (prometheus and loki) snapshot of an experiment
 
+function fail() {
+  echo -e "$1"
+  exit 1
+}
+
+docker-compose version &> /dev/null || fail "need docker-compose"
+
 if [[ -z ${1} ]]; then
   echo "Usage: run.sh EXPERIMENT_ARCHIVE || EXPERIMENT_DATA_FOLDER"
   exit 1
@@ -10,10 +17,14 @@ fi
 
 TMP_BASEDIR=/tmp/taler-perf
 rm -rf ${TMP_BASEDIR} || true
+mkdir -p ${TMP_BASEDIR}
 
 export LOKI_DATA="${TMP_BASEDIR}/loki"
 export PROMETHEUS_DATA="${TMP_BASEDIR}/prometheus"
 export DASHBOARDS_DIR="${TMP_BASEDIR}/dashboards"
+mkdir -p ${LOKI_DATA}
+mkdir -p ${PROMETHEUS_DATA}
+mkdir -p ${DASHBOARDS_DIR}
 
 EXP_DATA=${1}
 
@@ -29,10 +40,12 @@ else
   cp -r ${EXP_DATA} ${TMP_BASEDIR}
 fi
 
-mkdir ${DASHBOARDS_DIR} || true
 
 # load the times to adjust the grafana dashboards
-source "${TMP_BASEDIR}/times.env"
+source "${TMP_BASEDIR}/times.env" || fail \
+"Archive does not contain times.env,
+make sure to pass an uncomressed tar archive created with persist.sh or the 
unpacked exp-data folder"
+ 
 
 START=$(date --date=@${EXPERIMENT_START} +"%F %T")
 END=$(date --date=@${SNAPSHOT_TIME} +"%F %T")
@@ -73,7 +86,7 @@ trap ctrl_c INT
 
 startup
 while ! wget -q http://localhost:8080; do
-  sleep 2
+  sleep 2 || exit 1
 done
 echo "Instances running, please head to http://localhost:8080";
 xdg-open http://localhost:8080 || true
diff --git a/configs/etc/nginx/sites-available/auditor 
b/configs/etc/nginx/sites-available/auditor
new file mode 100644
index 0000000..30ce411
--- /dev/null
+++ b/configs/etc/nginx/sites-available/auditor
@@ -0,0 +1,30 @@
+log_format taler 'm=$request_method uri=$uri s=$status '
+                 'uct=$upstream_connect_time '
+                 'urt=$upstream_response_time '
+                 'rt=$request_time '
+                 'rl=$request_length '
+                 'bs=$bytes_sent';
+
+server {
+  listen 80;
+  listen 443 ssl;
+
+  ssl_certificate /etc/ssl/auditor.cert.pem;
+  ssl_certificate_key /etc/ssl/auditor.key.pem;
+
+  server_name 0.0.0.0;
+
+  allow 172.16.0.0/12;
+  allow 127.0.0.1/32;
+  deny all;
+
+  access_log 
syslog:server=localhost,facility=user,tag=taler_auditor_proxy,severity=info 
taler;
+
+  location / {
+     proxy_pass http://unix:/var/run/taler/auditor-httpd/auditor.sock;
+     proxy_redirect off;
+     proxy_set_header Host $host;
+     proxy_set_header X-Forwarded-Host $remote_addr;
+     proxy_set_header X-Forwarded-Proto $scheme;
+  }
+}
diff --git a/configs/etc/taler/conf.d/auditor.conf 
b/configs/etc/taler/conf.d/auditor.conf
new file mode 100644
index 0000000..7836769
--- /dev/null
+++ b/configs/etc/taler/conf.d/auditor.conf
@@ -0,0 +1,14 @@
+[auditor]
+
+BASE_URL = <AUDITOR_DOMAIN_HERE>
+
+PUB_KEY = <AUDITOR_PUB_KEY_HERE>
+
+DB = postgres
+
+SERVE = unix
+UNIXPATH = /var/run/taler/auditor-httpd/auditor.sock
+
+[auditordb-postgres]
+
+CONFIG = <AUDITOR_DB_URL_HERE>
diff --git a/configs/etc/taler/conf.d/fake-bank.conf 
b/configs/etc/taler/conf.d/fake-bank.conf
index 223a389..9561e70 100644
--- a/configs/etc/taler/conf.d/fake-bank.conf
+++ b/configs/etc/taler/conf.d/fake-bank.conf
@@ -3,3 +3,4 @@ SERVE = http
 PORT = 8082
 MAX_DEBT = KUDOS:100000000000.0
 MAX_DEBT_BANK = KUDOS:1000000000000000.0
+RAM_LIMIT = 10000
diff --git a/configs/usr/lib/systemd/system/taler-auditor-httpd.service 
b/configs/usr/lib/systemd/system/taler-auditor-httpd.service
new file mode 100644
index 0000000..9aefab6
--- /dev/null
+++ b/configs/usr/lib/systemd/system/taler-auditor-httpd.service
@@ -0,0 +1,12 @@
+[Unit]
+Description=GNU Taler payment system auditor REST API
+After=postgres.service network.target
+
+[Service]
+User=taler-auditor-httpd
+Type=simple
+Restart=on-failure
+ExecStart=/usr/bin/taler-auditor-httpd -c /etc/taler/taler.conf
+
+[Install]
+WantedBy=multi-user.target

-- 
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]