[ARVADOS] created: 7305149050a24e7429ff679579cd4182188a7116
git at public.curoverse.com
git at public.curoverse.com
Thu Jul 31 10:31:21 EDT 2014
at 7305149050a24e7429ff679579cd4182188a7116 (commit)
commit 7305149050a24e7429ff679579cd4182188a7116
Author: Tom Clegg <tom at curoverse.com>
Date: Thu Jul 31 10:30:59 2014 -0400
3261: Add Keep blob_signing_key configuration.
diff --git a/docker/arvdock b/docker/arvdock
index 075505c..0122fc3 100755
--- a/docker/arvdock
+++ b/docker/arvdock
@@ -285,11 +285,11 @@ function do_start {
[ -f $v/keep/.metadata.yml ] && sudo rm $v/keep/.metadata.yml
done
start_container "25107:25107" "keep_server_0" \
- "${keep_volumes[0]}:/dev/keep-0" \
+ "${keep_volumes[0]}:/keep-data" \
"api_server:api" \
"arvados/keep"
start_container "25108:25107" "keep_server_1" \
- "${keep_volumes[1]}:/dev/keep-0" \
+ "${keep_volumes[1]}:/keep-data" \
"api_server:api" \
"arvados/keep"
fi
diff --git a/docker/build_tools/Makefile b/docker/build_tools/Makefile
index 74a04df..8b5cd9e 100644
--- a/docker/build_tools/Makefile
+++ b/docker/build_tools/Makefile
@@ -73,7 +73,7 @@ DOC_DEPS = doc/Dockerfile doc/apache2_vhost
WORKBENCH_DEPS = workbench/Dockerfile \
$(WORKBENCH_GENERATED)
-KEEP_DEPS = keep/Dockerfile
+KEEP_DEPS = keep/Dockerfile $(KEEP_GENERATED)
SSO_DEPS = $(SSO_GENERATED)
@@ -87,6 +87,10 @@ COMPUTE_GENERATED = compute/generated/setup.sh
COMPUTE_GENERATED_IN = compute/setup.sh.in
+KEEP_GENERATED_IN := $(shell ls keep/*.in)
+
+KEEP_GENERATED := $(shell ls -1 $(KEEP_GENERATED_IN) | perl -pe 's:^keep:keep/generated:')
+
API_GENERATED = \
api/generated/arvados-clients.yml \
api/generated/apache2_vhost \
@@ -173,6 +177,7 @@ $(WORKBENCH_GENERATED): config.yml $(WORKBENCH_GENERATED_IN)
$(CONFIG_RB)
$(COMPUTE_GENERATED): config.yml $(COMPUTE_GENERATED_IN)
+ $(CONFIG_RB)
$(WAREHOUSE_GENERATED): config.yml $(WAREHOUSE_GENERATED_IN)
$(CONFIG_RB)
@@ -180,6 +185,9 @@ $(WAREHOUSE_GENERATED): config.yml $(WAREHOUSE_GENERATED_IN)
$(SSO_GENERATED): config.yml $(SSO_GENERATED_IN)
$(CONFIG_RB)
+$(KEEP_GENERATED): config.yml $(KEEP_GENERATED_IN)
+ $(CONFIG_RB)
+
# The docker build -q option suppresses verbose build output.
# Necessary to prevent failure on building warehouse; see
# https://github.com/dotcloud/docker/issues/3172
diff --git a/docker/keep/Dockerfile b/docker/keep/Dockerfile
index ca37f10..e342c8d 100644
--- a/docker/keep/Dockerfile
+++ b/docker/keep/Dockerfile
@@ -10,5 +10,8 @@ RUN /usr/bin/apt-get update
RUN /usr/bin/apt-get install keep
+ADD generated/run-keep /usr/local/bin/
+ADD generated/keep_signing_secret /etc/
+
# Start keep
-CMD ["/usr/bin/keep"]
+CMD ["/usr/local/bin/run-keep"]
diff --git a/docker/keep/keep_signing_secret.in b/docker/keep/keep_signing_secret.in
new file mode 100644
index 0000000..e5b39c8
--- /dev/null
+++ b/docker/keep/keep_signing_secret.in
@@ -0,0 +1 @@
+@@KEEP_SIGNING_SECRET@@
\ No newline at end of file
diff --git a/docker/keep/run-keep.in b/docker/keep/run-keep.in
new file mode 100755
index 0000000..41360d7
--- /dev/null
+++ b/docker/keep/run-keep.in
@@ -0,0 +1,11 @@
+#!/bin/sh
+
+pkf="/etc/keep_signing_secret"
+if [ -z "$pkf" ]
+then
+ permisson_key_arg=""
+else
+ permisson_key_arg="-permission-key-file=$f"
+fi
+
+exec keep $permission_key_arg -listen=":25107" -volumes="/keep-data"
commit 0264c5591acb6e2e2758de37c83423b5e4bba5b5
Author: Tom Clegg <tom at curoverse.com>
Date: Thu Jul 31 10:11:46 2014 -0400
3261: Fix condition for showing SSH usage message.
diff --git a/docker/arvdock b/docker/arvdock
index 8615545..075505c 100755
--- a/docker/arvdock
+++ b/docker/arvdock
@@ -87,7 +87,7 @@ function start_container {
echo "Unable to start container"
exit 1
fi
- if [[ "$name" == "compute" || $ENABLE_SSH ]];
+ if [[ "$name" == "compute" || "$ENABLE_SSH" != "false" ]];
then
ip=$(ip_address $container )
echo
commit 2343d25e00fe0c9416dd36f3e5f0ef21f25d245f
Author: Tom Clegg <tom at curoverse.com>
Date: Thu Jul 31 10:10:54 2014 -0400
3261: Fix alternate SSO endpoint configuration.
diff --git a/docker/api/omniauth.rb.in b/docker/api/omniauth.rb.in
index 613f72d..5636e04 100644
--- a/docker/api/omniauth.rb.in
+++ b/docker/api/omniauth.rb.in
@@ -4,7 +4,7 @@ APP_ID = '@@SSO_CLIENT_APP_ID@@'
APP_SECRET = '@@SSO_CLIENT_SECRET@@'
# Update your custom Omniauth provider URL here
-CUSTOM_PROVIDER_URL = 'https://' + ENV['SSO_PORT_443_TCP_ADDR'].to_s
+CUSTOM_PROVIDER_URL = '@@OMNIAUTH_URL@@'
# This is a development sandbox, we use self-signed certificates
OpenSSL::SSL::VERIFY_PEER = OpenSSL::SSL::VERIFY_NONE
diff --git a/docker/config.yml.example b/docker/config.yml.example
index 30fc1d4..d4cda97 100644
--- a/docker/config.yml.example
+++ b/docker/config.yml.example
@@ -66,7 +66,7 @@ API_SUPERUSER_SECRET:
# change it and don't be dumb.
POSTGRES_ROOT_PW: dummy_pw
-# The URL for this installation's Omniauth server.
+# The URL of the SSO server that you want your API server to use.
OMNIAUTH_URL: https://@@SSO_HOSTNAME@@.@@ARVADOS_DOMAIN@@
# ==============================
-----------------------------------------------------------------------
hooks/post-receive
--
More information about the arvados-commits
mailing list