1
=== modified file 'README.md'
2
--- README.md	2014-04-11 13:44:05 +0000
3
+++ README.md	2014-07-21 22:01:08 +0000
4
@@ -1,7 +1,7 @@
5
1
# OwnCloud
1
# OwnCloud
6
2
2
9
3
- Author: Atul Jha <atul.jha@csscorp.com>
3
- Author: Atul Jha <koolhead17@gmail.com>
10
4
- Maintainer: Nathan Williams <nathan@nathanewilliams.com>
4
- Maintainer: José Antonio Rey <jose@ubuntu.com>
11
5
5
12
6
# Overview
6
# Overview
13
7
7
14
@@ -14,32 +14,76 @@
15
14
sqlite as a standalone server. Provides relationship hooks with NFS file
14
sqlite as a standalone server. Provides relationship hooks with NFS file
16
15
storage, MySQL Databases, and HAProxy reverse proxy charms.
15
storage, MySQL Databases, and HAProxy reverse proxy charms.
17
16
16
31
17
## Preparation:
17
# Configuration
32
18
18
33
19
1. the charm comes with port, user, password configuration options. 
19
This charm comes with different configuration options. Optional configuration
34
20
20
options include:
35
21
   if no user is provided, the administrator will be "owncloud".
21
36
22
22
`domain`: This is the domain or IP address for your ownCloud instance. If you
37
23
   if no password is provided, a random one is chosen during the
23
do not know what it is, execute `juju status` to find out the public address. If
38
24
   db-relation-joined hook. if you do this, you can obtain the auth
24
not provided, the charm will refuse to configure.
39
25
   credentials from the juju logs.
25
40
26
26
`downloadurl`: This is the download URL that the charm will use in case the src
41
27
# Usage:
27
option is set to `source`. It defaults to the 6.0.4 URL.
42
28
28
43
29
#### 1. Install
29
`sha1sum`: This is the SHA1SUM for the `downloadurl` file. It defaults to the
44
30
SHA1SUM for the 6.0.4 file.
45
31
46
32
`port`: This is the alias port that will be used for the ownCloud instance. It
47
33
will redirect to 443, which is the HTTPS port. It defaults to 80.
48
34
49
35
`src`: This is the source from which the package will be installed. You can
50
36
choose between `repo`, which will install it from a repository built by
51
37
ownCloud, or `source`, which will download the tarball and extract it. It
52
38
defaults to `repo`.
53
39
54
40
`customssl`: This charm provides default SSL support for ownCloud. This means
55
41
that if you do not provide a custom SSL key and certificate, a self-signed one
56
42
will be auto-generated for you. If you want to use a custom SSL certificate,
57
43
please set this option to `true`. It defaults to `false`.
58
44
59
45
`sslkey`: If `customssl` is set to true, this is the SSL key that will be used.
60
46
If not provided and `customssl` is true, the charm will refuse to configure.
61
47
62
48
`sslcert`: If `customssl` is set to true, this is the SSL cert that will be
63
49
used. If not provided and `customssl` is true, the charm will refuse to
64
50
configure.
65
51
66
52
`user`: This user will be used in case you want to do a setup of Shared
67
53
Instances. If not provided, it will be defaulted to `ownCloud`.
68
54
69
55
`password`: This password will be used in case you want to do a setup of
70
56
Shared Instances. If not provided, it will be randomly generated when a DB
71
57
relation is joined.
72
58
73
59
You can put any of this options in a config.yaml file and specify it at the
74
60
moment of deploying. Otherwise, you can change them by executing:
75
61
76
62
    juju set owncloud [option]=[value]
77
63
78
64
# Usage
79
65
80
66
## Standalone Instance
81
67
82
68
First, bootstrap your environment:
83
69
84
70
    juju bootstrap
85
71
86
72
Then, deploy ownCloud by executing the following command:
87
30
    
73
    
88
31
    juju deploy owncloud
74
    juju deploy owncloud
89
32
75
91
33
#### 2. Expose
76
Finally, expose the service:
92
34
77
93
35
    juju expose owncloud
78
    juju expose owncloud
94
36
79
101
37
#### 3a. Standalone Instance
80
Access OwnCloud service directly, and complete the setup, providing user
102
38
81
credentials and initializing sqlite database.
103
39
   Access OwnCloud service directly, and complete the setup, providing user
82
104
40
   credentials and initializing sqlite database.
83
## Shared Instances
105
41
84
106
42
#### 3b. Shared Instances
85
If you want to deploy shared instances, execute the following commands after
107
86
doing a Standalone Instance setup:
108
43
87
109
44
    juju deploy mysql
88
    juju deploy mysql
110
45
    juju add-relation mysql owncloud
89
    juju add-relation mysql owncloud
111
@@ -47,15 +91,14 @@
112
47
    juju deploy nfs
91
    juju deploy nfs
113
48
    juju add-relation nfs owncloud
92
    juju add-relation nfs owncloud
114
49
93
124
50
#### 4. Access 
94
We're now done! To find out the address for your ownCloud instance, execute
125
51
95
`juju status` and navigate to it.
126
52
http://$owncloud-machine-addr/.  To find out the public address of ownCloud,
96
127
53
look for it in the output of the `juju status` command.
97
# Scale out Usage
128
54
98
129
55
99
In order to do a scalabe deploy of ownCloud, execute the following commands
130
56
## Scale out Usage
100
131
57
101
    juju bootstrap
123
58
132
59
    juju deploy owncloud
102
    juju deploy owncloud
133
60
    juju deploy mysql
103
    juju deploy mysql
134
61
    juju deploy haproxy
104
    juju deploy haproxy
135
@@ -63,13 +106,47 @@
136
63
    juju add-relation haproxy owncloud
106
    juju add-relation haproxy owncloud
137
64
    juju add-unit owncloud
107
    juju add-unit owncloud
138
65
108
141
66
109
# Internet Connection Requirements
142
67
## Known Limitations
110
143
111
This charm downloads files from the Internet, and requires Internet connectivity
144
112
in order to properly install. The requirements vary for each setup type.
145
113
146
114
## When installing from the source
147
115
148
116
When installing from the source packages available for download, this charm will
149
117
connect to the following Internet sites:
150
118
151
119
 * download.owncloud.org with port 443
152
120
 * The Ubuntu repositories or a private mirror of them
153
121
154
122
## When installing from the repository
155
123
156
124
ownCloud offers the option to install from a repository. This is the default
157
125
configuration value for the charm. With this, the charm will connect to the
158
126
following Internet sites:
159
127
160
128
 * download.opensuse.org with port 80
161
129
 * download.opensuse.org as a repository
162
130
 * The Ubuntu repositories or a private mirror of them
163
131
164
132
# Known Limitations
165
68
133
166
69
If you have been using a standalone instance and want to migrate to a shared
134
If you have been using a standalone instance and want to migrate to a shared
167
70
instance, please note that adding the mysql relation will not preserve the file
135
instance, please note that adding the mysql relation will not preserve the file
168
71
structure in the database. This means that your file listing will not be
136
structure in the database. This means that your file listing will not be
169
72
available. Make sure to have this in mind when doing the migration.
137
available. Make sure to have this in mind when doing the migration.
170
73
138
171
139
Also, if you leave the `customssl` option set to false or provide a self-signed
172
140
SSL certificate, ownCloud will throw a WebDAV error after creating the admin
173
141
username and password. Ignore this error as it does not affect the working of
174
142
ownCloud (it is silently fixed), and enter your website again.
175
143
176
144
If port is different than 80, it looks like the instance throws an SSL
177
145
error when connecting. Recommendation is to set the `port` value to 80 to avoid
178
146
problems.
179
147
180
148
Finally, on the tests side, the tests will fail on the local provider due to
181
149
NFS not being able to deploy correctly (this is an NFS-related issue).
182
150
183
74
#TODO
151
#TODO
184
75
Genericize shared-fs-relation-* for non-nfs shared-fs providers
152
Genericize shared-fs-relation-* for non-nfs shared-fs providers
185
76
153
186
=== added file 'charm-helpers.yaml'
187
--- charm-helpers.yaml	1970-01-01 00:00:00 +0000
188
+++ charm-helpers.yaml	2014-07-21 22:01:08 +0000
189
@@ -0,0 +1,5 @@
190
1
destination: hooks/charmhelpers
191
2
branch: lp:charm-helpers
192
3
include:
193
4
  - contrib.ssl
194
5
  - core
195
0
6
196
=== modified file 'config.yaml'
197
--- config.yaml	2014-01-28 15:41:38 +0000
198
+++ config.yaml	2014-07-21 22:01:08 +0000
199
@@ -1,4 +1,16 @@
200
1
options:
1
options:
201
2
  domain:
202
3
    type: string
203
4
    default: ""
204
5
    description: the domain name for your owncloud server
205
6
  downloadurl:
206
7
    type: string
207
8
    default: "https://download.owncloud.org/community/owncloud-6.0.4.tar.bz2"
208
9
    description: url from which owncloud will be downloaded
209
10
  sha1sum:
210
11
    type: string
211
12
    default: "6e341aeba2cf99416de009c7862bf03d90d1b058"
212
13
    description: the sha1sum for the file in the download link
213
2
  port:
14
  port:
214
3
    type: int
15
    type: int
215
4
    default: 80
16
    default: 80
216
@@ -11,3 +23,19 @@
217
11
    type: string
23
    type: string
218
12
    default: ""
24
    default: ""
219
13
    description: default administrative password
25
    description: default administrative password
220
26
  src:
221
27
    type: string
222
28
    default: "repo"
223
29
    description: source from where the charm will install the package
224
30
  customssl:
225
31
    type: boolean
226
32
    default: false
227
33
    description: option to set if custom ssl certificates are going to be used
228
34
  sslcert:
229
35
    type: string
230
36
    default: ""
231
37
    description: ssl cert to be used if custom is on
232
38
  sslkey:
233
39
    type: string
234
40
    default: ""
235
41
    description: ssl key to be used if custom is on
236
14
42
237
=== added directory 'hooks/charmhelpers'
238
=== added file 'hooks/charmhelpers/__init__.py'
239
=== added directory 'hooks/charmhelpers/contrib'
240
=== added file 'hooks/charmhelpers/contrib/__init__.py'
241
=== added directory 'hooks/charmhelpers/contrib/ssl'
242
=== added file 'hooks/charmhelpers/contrib/ssl/__init__.py'
243
--- hooks/charmhelpers/contrib/ssl/__init__.py	1970-01-01 00:00:00 +0000
244
+++ hooks/charmhelpers/contrib/ssl/__init__.py	2014-07-21 22:01:08 +0000
245
@@ -0,0 +1,78 @@
246
1
import subprocess
247
2
from charmhelpers.core import hookenv
248
3
249
4
250
5
def generate_selfsigned(keyfile, certfile, keysize="1024", config=None, subject=None, cn=None):
251
6
    """Generate selfsigned SSL keypair
252
7
253
8
    You must provide one of the 3 optional arguments:
254
9
    config, subject or cn
255
10
    If more than one is provided the leftmost will be used
256
11
257
12
    Arguments:
258
13
    keyfile -- (required) full path to the keyfile to be created
259
14
    certfile -- (required) full path to the certfile to be created
260
15
    keysize -- (optional) SSL key length
261
16
    config -- (optional) openssl configuration file
262
17
    subject -- (optional) dictionary with SSL subject variables
263
18
    cn -- (optional) cerfificate common name
264
19
265
20
    Required keys in subject dict:
266
21
    cn -- Common name (eq. FQDN)
267
22
268
23
    Optional keys in subject dict
269
24
    country -- Country Name (2 letter code)
270
25
    state -- State or Province Name (full name)
271
26
    locality -- Locality Name (eg, city)
272
27
    organization -- Organization Name (eg, company)
273
28
    organizational_unit -- Organizational Unit Name (eg, section)
274
29
    email -- Email Address
275
30
    """
276
31
277
32
    cmd = []
278
33
    if config:
279
34
        cmd = ["/usr/bin/openssl", "req", "-new", "-newkey",
280
35
               "rsa:{}".format(keysize), "-days", "365", "-nodes", "-x509",
281
36
               "-keyout", keyfile,
282
37
               "-out", certfile, "-config", config]
283
38
    elif subject:
284
39
        ssl_subject = ""
285
40
        if "country" in subject:
286
41
            ssl_subject = ssl_subject + "/C={}".format(subject["country"])
287
42
        if "state" in subject:
288
43
            ssl_subject = ssl_subject + "/ST={}".format(subject["state"])
289
44
        if "locality" in subject:
290
45
            ssl_subject = ssl_subject + "/L={}".format(subject["locality"])
291
46
        if "organization" in subject:
292
47
            ssl_subject = ssl_subject + "/O={}".format(subject["organization"])
293
48
        if "organizational_unit" in subject:
294
49
            ssl_subject = ssl_subject + "/OU={}".format(subject["organizational_unit"])
295
50
        if "cn" in subject:
296
51
            ssl_subject = ssl_subject + "/CN={}".format(subject["cn"])
297
52
        else:
298
53
            hookenv.log("When using \"subject\" argument you must "
299
54
                        "provide \"cn\" field at very least")
300
55
            return False
301
56
        if "email" in subject:
302
57
            ssl_subject = ssl_subject + "/emailAddress={}".format(subject["email"])
303
58
304
59
        cmd = ["/usr/bin/openssl", "req", "-new", "-newkey",
305
60
               "rsa:{}".format(keysize), "-days", "365", "-nodes", "-x509",
306
61
               "-keyout", keyfile,
307
62
               "-out", certfile, "-subj", ssl_subject]
308
63
    elif cn:
309
64
        cmd = ["/usr/bin/openssl", "req", "-new", "-newkey",
310
65
               "rsa:{}".format(keysize), "-days", "365", "-nodes", "-x509",
311
66
               "-keyout", keyfile,
312
67
               "-out", certfile, "-subj", "/CN={}".format(cn)]
313
68
314
69
    if not cmd:
315
70
        hookenv.log("No config, subject or cn provided,"
316
71
                    "unable to generate self signed SSL certificates")
317
72
        return False
318
73
    try:
319
74
        subprocess.check_call(cmd)
320
75
        return True
321
76
    except Exception as e:
322
77
        print "Execution of openssl command failed:\n{}".format(e)
323
78
        return False
324
0
79
325
=== added file 'hooks/charmhelpers/contrib/ssl/service.py'
326
--- hooks/charmhelpers/contrib/ssl/service.py	1970-01-01 00:00:00 +0000
327
+++ hooks/charmhelpers/contrib/ssl/service.py	2014-07-21 22:01:08 +0000
328
@@ -0,0 +1,267 @@
329
1
import logging
330
2
import os
331
3
from os.path import join as path_join
332
4
from os.path import exists
333
5
import subprocess
334
6
335
7
336
8
log = logging.getLogger("service_ca")
337
9
338
10
logging.basicConfig(level=logging.DEBUG)
339
11
340
12
STD_CERT = "standard"
341
13
342
14
# Mysql server is fairly picky about cert creation
343
15
# and types, spec its creation separately for now.
344
16
MYSQL_CERT = "mysql"
345
17
346
18
347
19
class ServiceCA(object):
348
20
349
21
    default_expiry = str(365 * 2)
350
22
    default_ca_expiry = str(365 * 6)
351
23
352
24
    def __init__(self, name, ca_dir, cert_type=STD_CERT):
353
25
        self.name = name
354
26
        self.ca_dir = ca_dir
355
27
        self.cert_type = cert_type
356
28
357
29
    ###############
358
30
    # Hook Helper API
359
31
    @staticmethod
360
32
    def get_ca(type=STD_CERT):
361
33
        service_name = os.environ['JUJU_UNIT_NAME'].split('/')[0]
362
34
        ca_path = os.path.join(os.environ['CHARM_DIR'], 'ca')
363
35
        ca = ServiceCA(service_name, ca_path, type)
364
36
        ca.init()
365
37
        return ca
366
38
367
39
    @classmethod
368
40
    def get_service_cert(cls, type=STD_CERT):
369
41
        service_name = os.environ['JUJU_UNIT_NAME'].split('/')[0]
370
42
        ca = cls.get_ca()
371
43
        crt, key = ca.get_or_create_cert(service_name)
372
44
        return crt, key, ca.get_ca_bundle()
373
45
374
46
    ###############
375
47
376
48
    def init(self):
377
49
        log.debug("initializing service ca")
378
50
        if not exists(self.ca_dir):
379
51
            self._init_ca_dir(self.ca_dir)
380
52
            self._init_ca()
381
53
382
54
    @property
383
55
    def ca_key(self):
384
56
        return path_join(self.ca_dir, 'private', 'cacert.key')
385
57
386
58
    @property
387
59
    def ca_cert(self):
388
60
        return path_join(self.ca_dir, 'cacert.pem')
389
61
390
62
    @property
391
63
    def ca_conf(self):
392
64
        return path_join(self.ca_dir, 'ca.cnf')
393
65
394
66
    @property
395
67
    def signing_conf(self):
396
68
        return path_join(self.ca_dir, 'signing.cnf')
397
69
398
70
    def _init_ca_dir(self, ca_dir):
399
71
        os.mkdir(ca_dir)
400
72
        for i in ['certs', 'crl', 'newcerts', 'private']:
401
73
            sd = path_join(ca_dir, i)
402
74
            if not exists(sd):
403
75
                os.mkdir(sd)
404
76
405
77
        if not exists(path_join(ca_dir, 'serial')):
406
78
            with open(path_join(ca_dir, 'serial'), 'wb') as fh:
407
79
                fh.write('02\n')
408
80
409
81
        if not exists(path_join(ca_dir, 'index.txt')):
410
82
            with open(path_join(ca_dir, 'index.txt'), 'wb') as fh:
411
83
                fh.write('')
412
84
413
85
    def _init_ca(self):
414
86
        """Generate the root ca's cert and key.
415
87
        """
416
88
        if not exists(path_join(self.ca_dir, 'ca.cnf')):
417
89
            with open(path_join(self.ca_dir, 'ca.cnf'), 'wb') as fh:
418
90
                fh.write(
419
91
                    CA_CONF_TEMPLATE % (self.get_conf_variables()))
420
92
421
93
        if not exists(path_join(self.ca_dir, 'signing.cnf')):
422
94
            with open(path_join(self.ca_dir, 'signing.cnf'), 'wb') as fh:
423
95
                fh.write(
424
96
                    SIGNING_CONF_TEMPLATE % (self.get_conf_variables()))
425
97
426
98
        if exists(self.ca_cert) or exists(self.ca_key):
427
99
            raise RuntimeError("Initialized called when CA already exists")
428
100
        cmd = ['openssl', 'req', '-config', self.ca_conf,
429
101
               '-x509', '-nodes', '-newkey', 'rsa',
430
102
               '-days', self.default_ca_expiry,
431
103
               '-keyout', self.ca_key, '-out', self.ca_cert,
432
104
               '-outform', 'PEM']
433
105
        output = subprocess.check_output(cmd, stderr=subprocess.STDOUT)
434
106
        log.debug("CA Init:\n %s", output)
435
107
436
108
    def get_conf_variables(self):
437
109
        return dict(
438
110
            org_name="juju",
439
111
            org_unit_name="%s service" % self.name,
440
112
            common_name=self.name,
441
113
            ca_dir=self.ca_dir)
442
114
443
115
    def get_or_create_cert(self, common_name):
444
116
        if common_name in self:
445
117
            return self.get_certificate(common_name)
446
118
        return self.create_certificate(common_name)
447
119
448
120
    def create_certificate(self, common_name):
449
121
        if common_name in self:
450
122
            return self.get_certificate(common_name)
451
123
        key_p = path_join(self.ca_dir, "certs", "%s.key" % common_name)
452
124
        crt_p = path_join(self.ca_dir, "certs", "%s.crt" % common_name)
453
125
        csr_p = path_join(self.ca_dir, "certs", "%s.csr" % common_name)
454
126
        self._create_certificate(common_name, key_p, csr_p, crt_p)
455
127
        return self.get_certificate(common_name)
456
128
457
129
    def get_certificate(self, common_name):
458
130
        if not common_name in self:
459
131
            raise ValueError("No certificate for %s" % common_name)
460
132
        key_p = path_join(self.ca_dir, "certs", "%s.key" % common_name)
461
133
        crt_p = path_join(self.ca_dir, "certs", "%s.crt" % common_name)
462
134
        with open(crt_p) as fh:
463
135
            crt = fh.read()
464
136
        with open(key_p) as fh:
465
137
            key = fh.read()
466
138
        return crt, key
467
139
468
140
    def __contains__(self, common_name):
469
141
        crt_p = path_join(self.ca_dir, "certs", "%s.crt" % common_name)
470
142
        return exists(crt_p)
471
143
472
144
    def _create_certificate(self, common_name, key_p, csr_p, crt_p):
473
145
        template_vars = self.get_conf_variables()
474
146
        template_vars['common_name'] = common_name
475
147
        subj = '/O=%(org_name)s/OU=%(org_unit_name)s/CN=%(common_name)s' % (
476
148
            template_vars)
477
149
478
150
        log.debug("CA Create Cert %s", common_name)
479
151
        cmd = ['openssl', 'req', '-sha1', '-newkey', 'rsa:2048',
480
152
               '-nodes', '-days', self.default_expiry,
481
153
               '-keyout', key_p, '-out', csr_p, '-subj', subj]
482
154
        subprocess.check_call(cmd)
483
155
        cmd = ['openssl', 'rsa', '-in', key_p, '-out', key_p]
484
156
        subprocess.check_call(cmd)
485
157
486
158
        log.debug("CA Sign Cert %s", common_name)
487
159
        if self.cert_type == MYSQL_CERT:
488
160
            cmd = ['openssl', 'x509', '-req',
489
161
                   '-in', csr_p, '-days', self.default_expiry,
490
162
                   '-CA', self.ca_cert, '-CAkey', self.ca_key,
491
163
                   '-set_serial', '01', '-out', crt_p]
492
164
        else:
493
165
            cmd = ['openssl', 'ca', '-config', self.signing_conf,
494
166
                   '-extensions', 'req_extensions',
495
167
                   '-days', self.default_expiry, '-notext',
496
168
                   '-in', csr_p, '-out', crt_p, '-subj', subj, '-batch']
497
169
        log.debug("running %s", " ".join(cmd))
498
170
        subprocess.check_call(cmd)
499
171
500
172
    def get_ca_bundle(self):
501
173
        with open(self.ca_cert) as fh:
502
174
            return fh.read()
503
175
504
176
505
177
CA_CONF_TEMPLATE = """
506
178
[ ca ]
507
179
default_ca = CA_default
508
180
509
181
[ CA_default ]
510
182
dir                     = %(ca_dir)s
511
183
policy                  = policy_match
512
184
database                = $dir/index.txt
513
185
serial                  = $dir/serial
514
186
certs                   = $dir/certs
515
187
crl_dir                 = $dir/crl
516
188
new_certs_dir           = $dir/newcerts
517
189
certificate             = $dir/cacert.pem
518
190
private_key             = $dir/private/cacert.key
519
191
RANDFILE                = $dir/private/.rand
520
192
default_md              = default
521
193
522
194
[ req ]
523
195
default_bits            = 1024
524
196
default_md              = sha1
525
197
526
198
prompt                  = no
527
199
distinguished_name      = ca_distinguished_name
528
200
529
201
x509_extensions         = ca_extensions
530
202
531
203
[ ca_distinguished_name ]
532
204
organizationName        = %(org_name)s
533
205
organizationalUnitName  = %(org_unit_name)s Certificate Authority
534
206
535
207
536
208
[ policy_match ]
537
209
countryName             = optional
538
210
stateOrProvinceName     = optional
539
211
organizationName        = match
540
212
organizationalUnitName  = optional
541
213
commonName              = supplied
542
214
543
215
[ ca_extensions ]
544
216
basicConstraints        = critical,CA:true
545
217
subjectKeyIdentifier    = hash
546
218
authorityKeyIdentifier  = keyid:always, issuer
547
219
keyUsage                = cRLSign, keyCertSign
548
220
"""
549
221
550
222
551
223
SIGNING_CONF_TEMPLATE = """
552
224
[ ca ]
553
225
default_ca = CA_default
554
226
555
227
[ CA_default ]
556
228
dir                     = %(ca_dir)s
557
229
policy                  = policy_match
558
230
database                = $dir/index.txt
559
231
serial                  = $dir/serial
560
232
certs                   = $dir/certs
561
233
crl_dir                 = $dir/crl
562
234
new_certs_dir           = $dir/newcerts
563
235
certificate             = $dir/cacert.pem
564
236
private_key             = $dir/private/cacert.key
565
237
RANDFILE                = $dir/private/.rand
566
238
default_md              = default
567
239
568
240
[ req ]
569
241
default_bits            = 1024
570
242
default_md              = sha1
571
243
572
244
prompt                  = no
573
245
distinguished_name      = req_distinguished_name
574
246
575
247
x509_extensions         = req_extensions
576
248
577
249
[ req_distinguished_name ]
578
250
organizationName        = %(org_name)s
579
251
organizationalUnitName  = %(org_unit_name)s machine resources
580
252
commonName              = %(common_name)s
581
253
582
254
[ policy_match ]
583
255
countryName             = optional
584
256
stateOrProvinceName     = optional
585
257
organizationName        = match
586
258
organizationalUnitName  = optional
587
259
commonName              = supplied
588
260
589
261
[ req_extensions ]
590
262
basicConstraints        = CA:false
591
263
subjectKeyIdentifier    = hash
592
264
authorityKeyIdentifier  = keyid:always, issuer
593
265
keyUsage                = digitalSignature, keyEncipherment, keyAgreement
594
266
extendedKeyUsage        = serverAuth, clientAuth
595
267
"""
596
0
268
597
=== added directory 'hooks/charmhelpers/core'
598
=== added file 'hooks/charmhelpers/core/__init__.py'
599
=== added file 'hooks/charmhelpers/core/hookenv.py'
600
--- hooks/charmhelpers/core/hookenv.py	1970-01-01 00:00:00 +0000
601
+++ hooks/charmhelpers/core/hookenv.py	2014-07-21 22:01:08 +0000
602
@@ -0,0 +1,401 @@
603
1
"Interactions with the Juju environment"
604
2
# Copyright 2013 Canonical Ltd.
605
3
#
606
4
# Authors:
607
5
#  Charm Helpers Developers <juju@lists.ubuntu.com>
608
6
609
7
import os
610
8
import json
611
9
import yaml
612
10
import subprocess
613
11
import sys
614
12
import UserDict
615
13
from subprocess import CalledProcessError
616
14
617
15
CRITICAL = "CRITICAL"
618
16
ERROR = "ERROR"
619
17
WARNING = "WARNING"
620
18
INFO = "INFO"
621
19
DEBUG = "DEBUG"
622
20
MARKER = object()
623
21
624
22
cache = {}
625
23
626
24
627
25
def cached(func):
628
26
    """Cache return values for multiple executions of func + args
629
27
630
28
    For example:
631
29
632
30
        @cached
633
31
        def unit_get(attribute):
634
32
            pass
635
33
636
34
        unit_get('test')
637
35
638
36
    will cache the result of unit_get + 'test' for future calls.
639
37
    """
640
38
    def wrapper(*args, **kwargs):
641
39
        global cache
642
40
        key = str((func, args, kwargs))
643
41
        try:
644
42
            return cache[key]
645
43
        except KeyError:
646
44
            res = func(*args, **kwargs)
647
45
            cache[key] = res
648
46
            return res
649
47
    return wrapper
650
48
651
49
652
50
def flush(key):
653
51
    """Flushes any entries from function cache where the
654
52
    key is found in the function+args """
655
53
    flush_list = []
656
54
    for item in cache:
657
55
        if key in item:
658
56
            flush_list.append(item)
659
57
    for item in flush_list:
660
58
        del cache[item]
661
59
662
60
663
61
def log(message, level=None):
664
62
    """Write a message to the juju log"""
665
63
    command = ['juju-log']
666
64
    if level:
667
65
        command += ['-l', level]
668
66
    command += [message]
669
67
    subprocess.call(command)
670
68
671
69
672
70
class Serializable(UserDict.IterableUserDict):
673
71
    """Wrapper, an object that can be serialized to yaml or json"""
674
72
675
73
    def __init__(self, obj):
676
74
        # wrap the object
677
75
        UserDict.IterableUserDict.__init__(self)
678
76
        self.data = obj
679
77
680
78
    def __getattr__(self, attr):
681
79
        # See if this object has attribute.
682
80
        if attr in ("json", "yaml", "data"):
683
81
            return self.__dict__[attr]
684
82
        # Check for attribute in wrapped object.
685
83
        got = getattr(self.data, attr, MARKER)
686
84
        if got is not MARKER:
687
85
            return got
688
86
        # Proxy to the wrapped object via dict interface.
689
87
        try:
690
88
            return self.data[attr]
691
89
        except KeyError:
692
90
            raise AttributeError(attr)
693
91
694
92
    def __getstate__(self):
695
93
        # Pickle as a standard dictionary.
696
94
        return self.data
697
95
698
96
    def __setstate__(self, state):
699
97
        # Unpickle into our wrapper.
700
98
        self.data = state
701
99
702
100
    def json(self):
703
101
        """Serialize the object to json"""
704
102
        return json.dumps(self.data)
705
103
706
104
    def yaml(self):
707
105
        """Serialize the object to yaml"""
708
106
        return yaml.dump(self.data)
709
107
710
108
711
109
def execution_environment():
712
110
    """A convenient bundling of the current execution context"""
713
111
    context = {}
714
112
    context['conf'] = config()
715
113
    if relation_id():
716
114
        context['reltype'] = relation_type()
717
115
        context['relid'] = relation_id()
718
116
        context['rel'] = relation_get()
719
117
    context['unit'] = local_unit()
720
118
    context['rels'] = relations()
721
119
    context['env'] = os.environ
722
120
    return context
723
121
724
122
725
123
def in_relation_hook():
726
124
    """Determine whether we're running in a relation hook"""
727
125
    return 'JUJU_RELATION' in os.environ
728
126
729
127
730
128
def relation_type():
731
129
    """The scope for the current relation hook"""
732
130
    return os.environ.get('JUJU_RELATION', None)
733
131
734
132
735
133
def relation_id():
736
134
    """The relation ID for the current relation hook"""
737
135
    return os.environ.get('JUJU_RELATION_ID', None)
738
136
739
137
740
138
def local_unit():
741
139
    """Local unit ID"""
742
140
    return os.environ['JUJU_UNIT_NAME']
743
141
744
142
745
143
def remote_unit():
746
144
    """The remote unit for the current relation hook"""
747
145
    return os.environ['JUJU_REMOTE_UNIT']
748
146
749
147
750
148
def service_name():
751
149
    """The name service group this unit belongs to"""
752
150
    return local_unit().split('/')[0]
753
151
754
152
755
153
def hook_name():
756
154
    """The name of the currently executing hook"""
757
155
    return os.path.basename(sys.argv[0])
758
156
759
157
760
158
@cached
761
159
def config(scope=None):
762
160
    """Juju charm configuration"""
763
161
    config_cmd_line = ['config-get']
764
162
    if scope is not None:
765
163
        config_cmd_line.append(scope)
766
164
    config_cmd_line.append('--format=json')
767
165
    try:
768
166
        return json.loads(subprocess.check_output(config_cmd_line))
769
167
    except ValueError:
770
168
        return None
771
169
772
170
773
171
@cached
774
172
def relation_get(attribute=None, unit=None, rid=None):
775
173
    """Get relation information"""
776
174
    _args = ['relation-get', '--format=json']
777
175
    if rid:
778
176
        _args.append('-r')
779
177
        _args.append(rid)
780
178
    _args.append(attribute or '-')
781
179
    if unit:
782
180
        _args.append(unit)
783
181
    try:
784
182
        return json.loads(subprocess.check_output(_args))
785
183
    except ValueError:
786
184
        return None
787
185
    except CalledProcessError, e:
788
186
        if e.returncode == 2:
789
187
            return None
790
188
        raise
791
189
792
190
793
191
def relation_set(relation_id=None, relation_settings={}, **kwargs):
794
192
    """Set relation information for the current unit"""
795
193
    relation_cmd_line = ['relation-set']
796
194
    if relation_id is not None:
797
195
        relation_cmd_line.extend(('-r', relation_id))
798
196
    for k, v in (relation_settings.items() + kwargs.items()):
799
197
        if v is None:
800
198
            relation_cmd_line.append('{}='.format(k))
801
199
        else:
802
200
            relation_cmd_line.append('{}={}'.format(k, v))
803
201
    subprocess.check_call(relation_cmd_line)
804
202
    # Flush cache of any relation-gets for local unit
805
203
    flush(local_unit())
806
204
807
205
808
206
@cached
809
207
def relation_ids(reltype=None):
810
208
    """A list of relation_ids"""
811
209
    reltype = reltype or relation_type()
812
210
    relid_cmd_line = ['relation-ids', '--format=json']
813
211
    if reltype is not None:
814
212
        relid_cmd_line.append(reltype)
815
213
        return json.loads(subprocess.check_output(relid_cmd_line)) or []
816
214
    return []
817
215
818
216
819
217
@cached
820
218
def related_units(relid=None):
821
219
    """A list of related units"""
822
220
    relid = relid or relation_id()
823
221
    units_cmd_line = ['relation-list', '--format=json']
824
222
    if relid is not None:
825
223
        units_cmd_line.extend(('-r', relid))
826
224
    return json.loads(subprocess.check_output(units_cmd_line)) or []
827
225
828
226
829
227
@cached
830
228
def relation_for_unit(unit=None, rid=None):
831
229
    """Get the json represenation of a unit's relation"""
832
230
    unit = unit or remote_unit()
833
231
    relation = relation_get(unit=unit, rid=rid)
834
232
    for key in relation:
835
233
        if key.endswith('-list'):
836
234
            relation[key] = relation[key].split()
837
235
    relation['__unit__'] = unit
838
236
    return relation
839
237
840
238
841
239
@cached
842
240
def relations_for_id(relid=None):
843
241
    """Get relations of a specific relation ID"""
844
242
    relation_data = []
845
243
    relid = relid or relation_ids()
846
244
    for unit in related_units(relid):
847
245
        unit_data = relation_for_unit(unit, relid)
848
246
        unit_data['__relid__'] = relid
849
247
        relation_data.append(unit_data)
850
248
    return relation_data
851
249
852
250
853
251
@cached
854
252
def relations_of_type(reltype=None):
855
253
    """Get relations of a specific type"""
856
254
    relation_data = []
857
255
    reltype = reltype or relation_type()
858
256
    for relid in relation_ids(reltype):
859
257
        for relation in relations_for_id(relid):
860
258
            relation['__relid__'] = relid
861
259
            relation_data.append(relation)
862
260
    return relation_data
863
261
864
262
865
263
@cached
866
264
def relation_types():
867
265
    """Get a list of relation types supported by this charm"""
868
266
    charmdir = os.environ.get('CHARM_DIR', '')
869
267
    mdf = open(os.path.join(charmdir, 'metadata.yaml'))
870
268
    md = yaml.safe_load(mdf)
871
269
    rel_types = []
872
270
    for key in ('provides', 'requires', 'peers'):
873
271
        section = md.get(key)
874
272
        if section:
875
273
            rel_types.extend(section.keys())
876
274
    mdf.close()
877
275
    return rel_types
878
276
879
277
880
278
@cached
881
279
def relations():
882
280
    """Get a nested dictionary of relation data for all related units"""
883
281
    rels = {}
884
282
    for reltype in relation_types():
885
283
        relids = {}
886
284
        for relid in relation_ids(reltype):
887
285
            units = {local_unit(): relation_get(unit=local_unit(), rid=relid)}
888
286
            for unit in related_units(relid):
889
287
                reldata = relation_get(unit=unit, rid=relid)
890
288
                units[unit] = reldata
891
289
            relids[relid] = units
892
290
        rels[reltype] = relids
893
291
    return rels
894
292
895
293
896
294
@cached
897
295
def is_relation_made(relation, keys='private-address'):
898
296
    '''
899
297
    Determine whether a relation is established by checking for
900
298
    presence of key(s).  If a list of keys is provided, they
901
299
    must all be present for the relation to be identified as made
902
300
    '''
903
301
    if isinstance(keys, str):
904
302
        keys = [keys]
905
303
    for r_id in relation_ids(relation):
906
304
        for unit in related_units(r_id):
907
305
            context = {}
908
306
            for k in keys:
909
307
                context[k] = relation_get(k, rid=r_id,
910
308
                                          unit=unit)
911
309
            if None not in context.values():
912
310
                return True
913
311
    return False
914
312
915
313
916
314
def open_port(port, protocol="TCP"):
917
315
    """Open a service network port"""
918
316
    _args = ['open-port']
919
317
    _args.append('{}/{}'.format(port, protocol))
920
318
    subprocess.check_call(_args)
921
319
922
320
923
321
def close_port(port, protocol="TCP"):
924
322
    """Close a service network port"""
925
323
    _args = ['close-port']
926
324
    _args.append('{}/{}'.format(port, protocol))
927
325
    subprocess.check_call(_args)
928
326
929
327
930
328
@cached
931
329
def unit_get(attribute):
932
330
    """Get the unit ID for the remote unit"""
933
331
    _args = ['unit-get', '--format=json', attribute]
934
332
    try:
935
333
        return json.loads(subprocess.check_output(_args))
936
334
    except ValueError:
937
335
        return None
938
336
939
337
940
338
def unit_private_ip():
941
339
    """Get this unit's private IP address"""
942
340
    return unit_get('private-address')
943
341
944
342
945
343
class UnregisteredHookError(Exception):
946
344
    """Raised when an undefined hook is called"""
947
345
    pass
948
346
949
347
950
348
class Hooks(object):
951
349
    """A convenient handler for hook functions.
952
350
953
351
    Example:
954
352
        hooks = Hooks()
955
353
956
354
        # register a hook, taking its name from the function name
957
355
        @hooks.hook()
958
356
        def install():
959
357
            ...
960
358
961
359
        # register a hook, providing a custom hook name
962
360
        @hooks.hook("config-changed")
963
361
        def config_changed():
964
362
            ...
965
363
966
364
        if __name__ == "__main__":
967
365
            # execute a hook based on the name the program is called by
968
366
            hooks.execute(sys.argv)
969
367
    """
970
368
971
369
    def __init__(self):
972
370
        super(Hooks, self).__init__()
973
371
        self._hooks = {}
974
372
975
373
    def register(self, name, function):
976
374
        """Register a hook"""
977
375
        self._hooks[name] = function
978
376
979
377
    def execute(self, args):
980
378
        """Execute a registered hook based on args[0]"""
981
379
        hook_name = os.path.basename(args[0])
982
380
        if hook_name in self._hooks:
983
381
            self._hooks[hook_name]()
984
382
        else:
985
383
            raise UnregisteredHookError(hook_name)
986
384
987
385
    def hook(self, *hook_names):
988
386
        """Decorator, registering them as hooks"""
989
387
        def wrapper(decorated):
990
388
            for hook_name in hook_names:
991
389
                self.register(hook_name, decorated)
992
390
            else:
993
391
                self.register(decorated.__name__, decorated)
994
392
                if '_' in decorated.__name__:
995
393
                    self.register(
996
394
                        decorated.__name__.replace('_', '-'), decorated)
997
395
            return decorated
998
396
        return wrapper
999
397
1000
398
1001
399
def charm_dir():
1002
400
    """Return the root directory of the current charm"""
1003
401
    return os.environ.get('CHARM_DIR')
1004
0
402
1005
=== added file 'hooks/charmhelpers/core/host.py'
1006
--- hooks/charmhelpers/core/host.py	1970-01-01 00:00:00 +0000
1007
+++ hooks/charmhelpers/core/host.py	2014-07-21 22:01:08 +0000
1008
@@ -0,0 +1,297 @@
1009
1
"""Tools for working with the host system"""
1010
2
# Copyright 2012 Canonical Ltd.
1011
3
#
1012
4
# Authors:
1013
5
#  Nick Moffitt <nick.moffitt@canonical.com>
1014
6
#  Matthew Wedgwood <matthew.wedgwood@canonical.com>
1015
7
1016
8
import os
1017
9
import pwd
1018
10
import grp
1019
11
import random
1020
12
import string
1021
13
import subprocess
1022
14
import hashlib
1023
15
1024
16
from collections import OrderedDict
1025
17
1026
18
from hookenv import log
1027
19
1028
20
1029
21
def service_start(service_name):
1030
22
    """Start a system service"""
1031
23
    return service('start', service_name)
1032
24
1033
25
1034
26
def service_stop(service_name):
1035
27
    """Stop a system service"""
1036
28
    return service('stop', service_name)
1037
29
1038
30
1039
31
def service_restart(service_name):
1040
32
    """Restart a system service"""
1041
33
    return service('restart', service_name)
1042
34
1043
35
1044
36
def service_reload(service_name, restart_on_failure=False):
1045
37
    """Reload a system service, optionally falling back to restart if reload fails"""
1046
38
    service_result = service('reload', service_name)
1047
39
    if not service_result and restart_on_failure:
1048
40
        service_result = service('restart', service_name)
1049
41
    return service_result
1050
42
1051
43
1052
44
def service(action, service_name):
1053
45
    """Control a system service"""
1054
46
    cmd = ['service', service_name, action]
1055
47
    return subprocess.call(cmd) == 0
1056
48
1057
49
1058
50
def service_running(service):
1059
51
    """Determine whether a system service is running"""
1060
52
    try:
1061
53
        output = subprocess.check_output(['service', service, 'status'])
1062
54
    except subprocess.CalledProcessError:
1063
55
        return False
1064
56
    else:
1065
57
        if ("start/running" in output or "is running" in output):
1066
58
            return True
1067
59
        else:
1068
60
            return False
1069
61
1070
62
1071
63
def adduser(username, password=None, shell='/bin/bash', system_user=False):
1072
64
    """Add a user to the system"""
1073
65
    try:
1074
66
        user_info = pwd.getpwnam(username)
1075
67
        log('user {0} already exists!'.format(username))
1076
68
    except KeyError:
1077
69
        log('creating user {0}'.format(username))
1078
70
        cmd = ['useradd']
1079
71
        if system_user or password is None:
1080
72
            cmd.append('--system')
1081
73
        else:
1082
74
            cmd.extend([
1083
75
                '--create-home',
1084
76
                '--shell', shell,
1085
77
                '--password', password,
1086
78
            ])
1087
79
        cmd.append(username)
1088
80
        subprocess.check_call(cmd)
1089
81
        user_info = pwd.getpwnam(username)
1090
82
    return user_info
1091
83
1092
84
1093
85
def add_user_to_group(username, group):
1094
86
    """Add a user to a group"""
1095
87
    cmd = [
1096
88
        'gpasswd', '-a',
1097
89
        username,
1098
90
        group
1099
91
    ]
1100
92
    log("Adding user {} to group {}".format(username, group))
1101
93
    subprocess.check_call(cmd)
1102
94
1103
95
1104
96
def rsync(from_path, to_path, flags='-r', options=None):
1105
97
    """Replicate the contents of a path"""
1106
98
    options = options or ['--delete', '--executability']
1107
99
    cmd = ['/usr/bin/rsync', flags]
1108
100
    cmd.extend(options)
1109
101
    cmd.append(from_path)
1110
102
    cmd.append(to_path)
1111
103
    log(" ".join(cmd))
1112
104
    return subprocess.check_output(cmd).strip()
1113
105
1114
106
1115
107
def symlink(source, destination):
1116
108
    """Create a symbolic link"""
1117
109
    log("Symlinking {} as {}".format(source, destination))
1118
110
    cmd = [
1119
111
        'ln',
1120
112
        '-sf',
1121
113
        source,
1122
114
        destination,
1123
115
    ]
1124
116
    subprocess.check_call(cmd)
1125
117
1126
118
1127
119
def mkdir(path, owner='root', group='root', perms=0555, force=False):
1128
120
    """Create a directory"""
1129
121
    log("Making dir {} {}:{} {:o}".format(path, owner, group,
1130
122
                                          perms))
1131
123
    uid = pwd.getpwnam(owner).pw_uid
1132
124
    gid = grp.getgrnam(group).gr_gid
1133
125
    realpath = os.path.abspath(path)
1134
126
    if os.path.exists(realpath):
1135
127
        if force and not os.path.isdir(realpath):
1136
128
            log("Removing non-directory file {} prior to mkdir()".format(path))
1137
129
            os.unlink(realpath)
1138
130
    else:
1139
131
        os.makedirs(realpath, perms)
1140
132
    os.chown(realpath, uid, gid)
1141
133
1142
134
1143
135
def write_file(path, content, owner='root', group='root', perms=0444):
1144
136
    """Create or overwrite a file with the contents of a string"""
1145
137
    log("Writing file {} {}:{} {:o}".format(path, owner, group, perms))
1146
138
    uid = pwd.getpwnam(owner).pw_uid
1147
139
    gid = grp.getgrnam(group).gr_gid
1148
140
    with open(path, 'w') as target:
1149
141
        os.fchown(target.fileno(), uid, gid)
1150
142
        os.fchmod(target.fileno(), perms)
1151
143
        target.write(content)
1152
144
1153
145
1154
146
def mount(device, mountpoint, options=None, persist=False):
1155
147
    """Mount a filesystem at a particular mountpoint"""
1156
148
    cmd_args = ['mount']
1157
149
    if options is not None:
1158
150
        cmd_args.extend(['-o', options])
1159
151
    cmd_args.extend([device, mountpoint])
1160
152
    try:
1161
153
        subprocess.check_output(cmd_args)
1162
154
    except subprocess.CalledProcessError, e:
1163
155
        log('Error mounting {} at {}\n{}'.format(device, mountpoint, e.output))
1164
156
        return False
1165
157
    if persist:
1166
158
        # TODO: update fstab
1167
159
        pass
1168
160
    return True
1169
161
1170
162
1171
163
def umount(mountpoint, persist=False):
1172
164
    """Unmount a filesystem"""
1173
165
    cmd_args = ['umount', mountpoint]
1174
166
    try:
1175
167
        subprocess.check_output(cmd_args)
1176
168
    except subprocess.CalledProcessError, e:
1177
169
        log('Error unmounting {}\n{}'.format(mountpoint, e.output))
1178
170
        return False
1179
171
    if persist:
1180
172
        # TODO: update fstab
1181
173
        pass
1182
174
    return True
1183
175
1184
176
1185
177
def mounts():
1186
178
    """Get a list of all mounted volumes as [[mountpoint,device],[...]]"""
1187
179
    with open('/proc/mounts') as f:
1188
180
        # [['/mount/point','/dev/path'],[...]]
1189
181
        system_mounts = [m[1::-1] for m in [l.strip().split()
1190
182
                                            for l in f.readlines()]]
1191
183
    return system_mounts
1192
184
1193
185
1194
186
def file_hash(path):
1195
187
    """Generate a md5 hash of the contents of 'path' or None if not found """
1196
188
    if os.path.exists(path):
1197
189
        h = hashlib.md5()
1198
190
        with open(path, 'r') as source:
1199
191
            h.update(source.read())  # IGNORE:E1101 - it does have update
1200
192
        return h.hexdigest()
1201
193
    else:
1202
194
        return None
1203
195
1204
196
1205
197
def restart_on_change(restart_map, stopstart=False):
1206
198
    """Restart services based on configuration files changing
1207
199
1208
200
    This function is used a decorator, for example
1209
201
1210
202
        @restart_on_change({
1211
203
            '/etc/ceph/ceph.conf': [ 'cinder-api', 'cinder-volume' ]
1212
204
            })
1213
205
        def ceph_client_changed():
1214
206
            ...
1215
207
1216
208
    In this example, the cinder-api and cinder-volume services
1217
209
    would be restarted if /etc/ceph/ceph.conf is changed by the
1218
210
    ceph_client_changed function.
1219
211
    """
1220
212
    def wrap(f):
1221
213
        def wrapped_f(*args):
1222
214
            checksums = {}
1223
215
            for path in restart_map:
1224
216
                checksums[path] = file_hash(path)
1225
217
            f(*args)
1226
218
            restarts = []
1227
219
            for path in restart_map:
1228
220
                if checksums[path] != file_hash(path):
1229
221
                    restarts += restart_map[path]
1230
222
            services_list = list(OrderedDict.fromkeys(restarts))
1231
223
            if not stopstart:
1232
224
                for service_name in services_list:
1233
225
                    service('restart', service_name)
1234
226
            else:
1235
227
                for action in ['stop', 'start']:
1236
228
                    for service_name in services_list:
1237
229
                        service(action, service_name)
1238
230
        return wrapped_f
1239
231
    return wrap
1240
232
1241
233
1242
234
def lsb_release():
1243
235
    """Return /etc/lsb-release in a dict"""
1244
236
    d = {}
1245
237
    with open('/etc/lsb-release', 'r') as lsb:
1246
238
        for l in lsb:
1247
239
            k, v = l.split('=')
1248
240
            d[k.strip()] = v.strip()
1249
241
    return d
1250
242
1251
243
1252
244
def pwgen(length=None):
1253
245
    """Generate a random pasword."""
1254
246
    if length is None:
1255
247
        length = random.choice(range(35, 45))
1256
248
    alphanumeric_chars = [
1257
249
        l for l in (string.letters + string.digits)
1258
250
        if l not in 'l0QD1vAEIOUaeiou']
1259
251
    random_chars = [
1260
252
        random.choice(alphanumeric_chars) for _ in range(length)]
1261
253
    return(''.join(random_chars))
1262
254
1263
255
1264
256
def list_nics(nic_type):
1265
257
    '''Return a list of nics of given type(s)'''
1266
258
    if isinstance(nic_type, basestring):
1267
259
        int_types = [nic_type]
1268
260
    else:
1269
261
        int_types = nic_type
1270
262
    interfaces = []
1271
263
    for int_type in int_types:
1272
264
        cmd = ['ip', 'addr', 'show', 'label', int_type + '*']
1273
265
        ip_output = subprocess.check_output(cmd).split('\n')
1274
266
        ip_output = (line for line in ip_output if line)
1275
267
        for line in ip_output:
1276
268
            if line.split()[1].startswith(int_type):
1277
269
                interfaces.append(line.split()[1].replace(":", ""))
1278
270
    return interfaces
1279
271
1280
272
1281
273
def set_nic_mtu(nic, mtu):
1282
274
    '''Set MTU on a network interface'''
1283
275
    cmd = ['ip', 'link', 'set', nic, 'mtu', mtu]
1284
276
    subprocess.check_call(cmd)
1285
277
1286
278
1287
279
def get_nic_mtu(nic):
1288
280
    cmd = ['ip', 'addr', 'show', nic]
1289
281
    ip_output = subprocess.check_output(cmd).split('\n')
1290
282
    mtu = ""
1291
283
    for line in ip_output:
1292
284
        words = line.split()
1293
285
        if 'mtu' in words:
1294
286
            mtu = words[words.index("mtu") + 1]
1295
287
    return mtu
1296
288
1297
289
1298
290
def get_nic_hwaddr(nic):
1299
291
    cmd = ['ip', '-o', '-0', 'addr', 'show', nic]
1300
292
    ip_output = subprocess.check_output(cmd)
1301
293
    hwaddr = ""
1302
294
    words = ip_output.split()
1303
295
    if 'link/ether' in words:
1304
296
        hwaddr = words[words.index('link/ether') + 1]
1305
297
    return hwaddr
1306
0
298
1307
=== modified file 'hooks/config-changed'
1308
--- hooks/config-changed	2012-07-21 19:08:52 +0000
1309
+++ hooks/config-changed	2014-07-21 22:01:08 +0000
1310
@@ -1,25 +1,153 @@
1311
1
#!/bin/bash
1
#!/bin/bash
1312
2
2
1314
3
set -e
3
set -ex
1315
4
1316
5
DOMAIN=`config-get domain`
1317
6
1318
7
if [ -z "$DOMAIN" ]; then
1319
8
    DOMAIN=`unit-get public-address`
1320
9
fi
1321
10
1322
11
if [ `cat .src` != `config-get src` ]; then
1323
12
    if [ `cat .src` == source ]; then
1324
13
        apt-get remove charm-helper-sh apache2 libapache2-mod-php5 php5-gd php5-mysql php5-sqlite curl libcurl3 php5-curl rpcbind nfs-common mysql-client -y
1325
14
    elif [ `cat .src` == repo ]; then
1326
15
        apt-get remove owncloud mysql-client -y
1327
16
        apt-get autoremove -y
1328
17
    fi
1329
18
    hooks/install
1330
19
fi
1331
20
1332
21
if [ `config-get customssl` == True ] && [ -z `config-get sslkey` ]; then
1333
22
    juju-log "If you want to use a custom SSL cert, the key needs to be set. Exiting silently."
1334
23
    exit 0
1335
24
elif [ `config-get customssl` == True ] && [ -z `config-get sslcert` ]; then
1336
25
    juju-log "If you want to use a custom SSL cert, the cert needs to be set. Exiting silently."
1337
26
    exit 0
1338
27
fi
1339
28
1340
4
# Write the apache config
29
# Write the apache config
1341
5
owncloud_vhost="/etc/apache2/sites-available/owncloud"
30
owncloud_vhost="/etc/apache2/sites-available/owncloud"
1342
6
port=`config-get port`
31
port=`config-get port`
1343
7
juju-log "Writing apache config file: ${owncloud_vhost}"
32
juju-log "Writing apache config file: ${owncloud_vhost}"
1344
8
cat > $owncloud_vhost <<EOF
33
cat > $owncloud_vhost <<EOF
1352
9
<VirtualHost *:$port>
34
<VirtualHost *:$port> 
1353
10
  DocumentRoot /var/www/owncloud
35
RewriteEngine on
1354
11
  Options All
36
ReWriteCond %{SERVER_PORT} !^443$
1355
12
  ErrorLog /var/log/apache2/owncloud-error.log
37
RewriteRule ^/(.*) https://%{HTTP_HOST}/$1 [NC,R,L]
1356
13
  TransferLog /var/log/apache2/owncloud-access.log
38
DocumentRoot /var/www/owncloud/
1357
14
  RewriteEngine On
39
<Directory /var/www/owncloud>
1358
15
</VirtualHost>
40
    Options Indexes FollowSymLinks MultiViews
1359
41
    AllowOverride All
1360
42
</Directory>
1361
43
</VirtualHost>
1362
44
 
1363
45
<VirtualHost *:443>
1364
46
SSLEngine on
1365
47
SSLCertificateFile /home/ubuntu/$DOMAIN.cert
1366
48
SSLCertificateKeyFile /home/ubuntu/$DOMAIN.key
1367
49
DocumentRoot /var/www/owncloud/
1368
50
<Directory /var/www/owncloud>
1369
51
    Options Indexes FollowSymLinks MultiViews
1370
52
    AllowOverride All
1371
53
</Directory>
1372
54
RewriteEngine on
1373
55
</VirtualHost>
1374
56
1375
16
EOF
57
EOF
1376
17
58
1377
59
if [ -f .customssl ] && [ `cat .customssl` != `config-get customssl` ]; then
1378
60
    rm /home/ubuntu/*.cert
1379
61
    rm /home/ubuntu/*.key
1380
62
    rm .customssl
1381
63
fi
1382
64
1383
65
if [ -f .domain ] && [ `cat .domain` != "$DOMAIN" ]; then
1384
66
    rm /home/ubuntu/*.cert
1385
67
    rm /home/ubuntu/*.key
1386
68
    rm .customssl
1387
69
fi
1388
70
1389
71
if [ ! -f .customssl ] && [ `config-get customssl` == "False" ]; then
1390
72
    hooks/ssl
1391
73
    echo "False" > .customssl
1392
74
elif [ `config-get customssl` == "True" ]; then
1393
75
    CERT=`config-get sslcert`
1394
76
    KEY=`config-get sslkey`
1395
77
    echo "$CERT" > /home/ubuntu/$DOMAIN.cert
1396
78
    echo "$KEY" > /home/ubuntu/$DOMAIN.key
1397
79
    echo "True" > .customssl
1398
80
fi
1399
81
1400
82
echo "$DOMAIN" > .domain
1401
83
1402
84
1403
18
chmod 0644 $owncloud_vhost
85
chmod 0644 $owncloud_vhost
1404
19
86
1405
87
if [ "$port" != "80" ] && [ ! -f .not80 ]; then
1406
88
    sed -i "s/NameVirtualHost\ \*\:80/NameVirtualHost\ \*\:$port/" /etc/apache2/ports.conf
1407
89
    sed -i "s/Listen\ 80/Listen\ $port/" /etc/apache2/ports.conf
1408
90
    echo "$port" > .not80
1409
91
elif [ "$port" != "80" ] && [ -f .not80 ]; then
1410
92
    not=`cat .not80`
1411
93
    sed -i "s/NameVirtualHost\ \*\:$not/NameVirtualHost\ \*\:$port/" /etc/apache2/ports.conf
1412
94
    sed -i "s/Listen\ $not/Listen\ $port/" /etc/apache2/ports.conf
1413
95
    echo "$port" > .not80
1414
96
elif [ "$port" == 80 ] && [ -f .not80 ]; then
1415
97
    not=`cat .not80`
1416
98
    sed -i "s/NameVirtualHost\ \*\:$not/NameVirtualHost\ \*\:80/" /etc/apache2/ports.conf
1417
99
    sed -i "s/Listen\ $not/Listen\ 80/" /etc/apache2/ports.conf
1418
100
    rm .not80
1419
101
fi
1420
102
1421
103
if [ -f .port ] && [ `cat .port` != "$port" ]; then
1422
104
    currentport=`cat .port`
1423
105
    juju-log "Closing old port, opening new port"
1424
106
    close-port "$currentport"/tcp
1425
107
    open-port "$port"/tcp
1426
108
    echo "$port" > .port
1427
109
elif [ ! -f .port ]; then
1428
110
    open-port $port/tcp
1429
111
    echo "$port" > .port
1430
112
fi
1431
113
1432
114
if [ -f .dbset ]; then
1433
115
    USER=`cat .user`
1434
116
    PASSWORD=`cat .password`
1435
117
    HOST=`cat .host`
1436
118
    DB=`cat .database`
1437
119
    if [ `cat .admin` != `config-get user` ]; then
1438
120
        OLDADMIN=`cat .admin`
1439
121
        ADMIN=`config-get user`
1440
122
        mysql -u $USER -p$PASSWORD -h $HOST $DB -e "UPDATE oc_users SET uid = '$ADMIN' WHERE uid = '$OLDADMIN';"
1441
123
        mv /var/www/owncloud/data/$OLDADMIN /var/www/owncloud/data/$ADMIN
1442
124
        echo "$ADMIN" > .admin
1443
125
    fi
1444
126
    if [ `cat .adm_pass` != `config-get password` ]; then
1445
127
        NEWPASS=`config-get password`
1446
128
        OCUSER=`config-get user`
1447
129
        if [ ! -f .passwordchanged ]; then
1448
130
            SALT=`cat /var/www/owncloud/config/config.php | grep passwordsalt | awk '{print $3}'`
1449
131
            sed -i "s/$t_hasher = new PasswordHash(8, FALSE)/$t_hasher = new PasswordHash(8, CRYPT_BLOWFISH!=1)/" /var/www/owncloud/3rdparty/phpass/test.php
1450
132
            sed -i "s/'test12345';/'$NEWPASS'.$SALT/" /var/www/owncloud/3rdparty/phpass/test.php
1451
133
            sed -i "s/',/';/" /var/www/owncloud/3rdparty/phpass/test.php
1452
134
            HASH=`php /var/www/owncloud/3rdparty/phpass/test.php | awk 'NR<2{ print $2 }'`
1453
135
            mysql -u $USER -p$PASSWORD -h $HOST $DB -e "UPDATE oc_users SET password = '$HASH' WHERE uid = '$OCUSER';"
1454
136
            echo "$NEWPASS" > .adm_pass
1455
137
            touch .passwordchanged
1456
138
        else
1457
139
            OLDPASS=`cat .adm_pass`
1458
140
            sed -i "s/'$OLDPASS'./'$NEWPASS'./" /var/www/owncloud/3rdparty/phpass/test.php
1459
141
            HASH=`php /var/www/owncloud/3rdparty/phpass/test.php | awk 'NR<2{ print $2 }'`
1460
142
            mysql -u $USER -p$PASSWORD -h $HOST $DB -e "UPDATE oc_users SET password = '$HASH' WHERE uid = '$OCUSER';"
1461
143
            echo "$NEWPASS" > .adm_pass
1462
144
        fi
1463
145
    fi
1464
146
fi
1465
147
1466
148
1467
20
# Optimize PHP for large files
149
# Optimize PHP for large files
1468
21
juju-log "Increasing upload limit and maximum POST size"
150
juju-log "Increasing upload limit and maximum POST size"
1469
22
sed -i 's/;upload_max_filesize/;upload_max_filesize/g' /etc/php5/apache2/php.ini
1470
23
sed -i 's/^post_max_size/;post_max_size/g' /etc/php5/apache2/php.ini
151
sed -i 's/^post_max_size/;post_max_size/g' /etc/php5/apache2/php.ini
1471
24
152
1472
25
cat > /etc/php5/conf.d/owncloud.ini <<EOF
153
cat > /etc/php5/conf.d/owncloud.ini <<EOF
1473
@@ -31,6 +159,7 @@
1474
31
juju-log "Enabling Apache modules: rewrite, headers, vhost_alias"
159
juju-log "Enabling Apache modules: rewrite, headers, vhost_alias"
1475
32
a2enmod rewrite
160
a2enmod rewrite
1476
33
a2enmod headers
161
a2enmod headers
1477
162
a2enmod ssl
1478
34
163
1479
35
# Enable Apache vhost
164
# Enable Apache vhost
1480
36
juju-log "Enabling ownCloud Apache vhost"
165
juju-log "Enabling ownCloud Apache vhost"
1481
@@ -40,3 +169,18 @@
1482
40
juju-log "Reloading Apache configuration"
169
juju-log "Reloading Apache configuration"
1483
41
service apache2 start || :
170
service apache2 start || :
1484
42
service apache2 reload
171
service apache2 reload
1485
172
1486
173
1487
174
1488
175
if [ ! -f .443 ]; then
1489
176
    open-port 443
1490
177
    touch .443
1491
178
fi
1492
179
1493
180
if [ ! -f .configured ]; then
1494
181
    touch .configured
1495
182
fi
1496
183
1497
184
if [ ! -f .started ]; then
1498
185
    hooks/start
1499
186
fi
1500
43
187
1501
=== modified file 'hooks/db-relation-changed'
1502
--- hooks/db-relation-changed	2012-07-21 16:20:15 +0000
1503
+++ hooks/db-relation-changed	2014-07-21 22:01:08 +0000
1504
@@ -12,6 +12,11 @@
1505
12
password=`relation-get password`
12
password=`relation-get password`
1506
13
host=`relation-get private-address`
13
host=`relation-get private-address`
1507
14
14
1508
15
echo "$database" > .database
1509
16
echo "$password" > .password
1510
17
echo "$user" > .user
1511
18
echo "$host" > .host
1512
19
1513
15
# Prepare for sqlite->mysql migration if configured
20
# Prepare for sqlite->mysql migration if configured
1514
16
if [ -f "/var/www/owncloud/config/config.php" ]; then
21
if [ -f "/var/www/owncloud/config/config.php" ]; then
1515
17
    if grep -qs "sqlite" /var/www/owncloud/config/config.php; then
22
    if grep -qs "sqlite" /var/www/owncloud/config/config.php; then
1516
@@ -35,6 +40,9 @@
1517
35
    adm_pass=`cat /dev/urandom | tr -dc [:alnum:] | head -c 10`
40
    adm_pass=`cat /dev/urandom | tr -dc [:alnum:] | head -c 10`
1518
36
fi
41
fi
1519
37
42
1520
43
echo "$admin" > .admin
1521
44
echo "$adm_pass" > .adm_pass
1522
45
1523
38
if [ -f "/var/www/owncloud/config/config.php" ]; then
46
if [ -f "/var/www/owncloud/config/config.php" ]; then
1524
39
    # Update config settings
47
    # Update config settings
1525
40
    cat > /var/www/owncloud/config/config.php <<EOF
48
    cat > /var/www/owncloud/config/config.php <<EOF
1526
@@ -80,3 +88,4 @@
1527
80
fi
88
fi
1528
81
89
1529
82
chmod 0644 /var/www/owncloud/config/*
90
chmod 0644 /var/www/owncloud/config/*
1530
91
touch .dbset
1531
83
92
1532
=== added file 'hooks/db-relation-departed'
1533
--- hooks/db-relation-departed	1970-01-01 00:00:00 +0000
1534
+++ hooks/db-relation-departed	2014-07-21 22:01:08 +0000
1535
@@ -0,0 +1,13 @@
1536
1
#!/bin/bash
1537
2
1538
3
set -eux
1539
4
1540
5
mv /var/www/owncloud/config/config.php{,.bakmysql}
1541
6
1542
7
if [ -f "/var/www/owncloud/config/config.bak" ]; then
1543
8
    if grep -qs "mysql" /var/www/owncloud/config/config.bak; then
1544
9
        mv /var/www/owncloud/config/config.bak{,.php}
1545
10
    fi
1546
11
fi
1547
12
1548
13
chmod 0644 /var/www/owncloud/config/*
1549
0
14
1550
=== modified file 'hooks/install'
1551
--- hooks/install	2014-04-11 03:48:08 +0000
1552
+++ hooks/install	2014-07-21 22:01:08 +0000
1553
@@ -1,30 +1,52 @@
1554
1
#!/bin/bash
1
#!/bin/bash
1555
2
2
1557
3
set -eu # -x for verbose logging to ensemble debug-log
3
set -eu
1558
4
4
1559
5
juju-log "Installing all components"
5
juju-log "Installing all components"
1560
6
6
1580
7
add-apt-repository -y ppa:charmers/charm-helpers
7
if [ `config-get src` == "source" ]; then
1581
8
apt-get update
8
    
1582
9
apt-get install -qqy charm-helper-sh apache2 libapache2-mod-php5 \
9
    add-apt-repository -y ppa:charmers/charm-helpers
1583
10
                     php5-gd php5-mysql php5-sqlite curl libcurl3 \
10
    apt-get update
1584
11
                     php5-curl rpcbind nfs-common
11
    apt-get install -qqy charm-helper-sh apache2 libapache2-mod-php5 php5-gd php5-mysql php5-sqlite curl libcurl3 php5-curl rpcbind nfs-common mysql-client
1585
12
12
1586
13
juju-log "Downloading and validating ownCloud"
13
    juju-log "Downloading and validating ownCloud"
1587
14
# Load charm helper and download owncloud
14
    # Load charm helper and download owncloud
1588
15
. /usr/share/charm-helper/sh/net.sh
15
    . /usr/share/charm-helper/sh/net.sh
1589
16
LURL="http://download.owncloud.org/community/owncloud-6.0.2.tar.bz2"
16
    LURL=`config-get downloadurl`
1590
17
17
1591
18
LHASH="a5a194ad07fca7cbf158b660cc098c6364590bdd15d086069221faf4386b713f"
18
    LHASH=`config-get sha1sum`
1592
19
source_file=`ch_get_file $LURL $LHASH`
19
    source_file=`ch_get_file $LURL $LHASH`
1593
20
20
1594
21
juju-log "Downloaded"
21
    juju-log "Downloaded"
1595
22
22
1596
23
# Prepare files
23
    # Prepare files
1597
24
juju-log "Creating ownCloud DocRoot"
24
    juju-log "Creating ownCloud DocRoot"
1598
25
tar -xjf $source_file --directory /var/www
25
    tar -xjf $source_file --directory /var/www
1599
26
    
1600
27
elif [ `config-get src` == "repo" ]; then
1601
28
1602
29
    apt-get install -y mysql-client
1603
30
1604
31
    sh -c "echo 'deb http://download.opensuse.org/repositories/isv:/ownCloud:/community/xUbuntu_12.04/ /' >> /etc/apt/sources.list.d/owncloud.list"
1605
32
    wget http://download.opensuse.org/repositories/isv:/ownCloud:/community/xUbuntu_12.04/Release.key
1606
33
1607
34
    if [ `sha1sum Release.key | awk '{print $1}'` != "c76c49ca044d9547648f1d8313777ed7d55df6b2" ]; then
1608
35
        juju-log "Apt key verification failed, failing hook."
1609
36
        exit 1
1610
37
    fi
1611
38
1612
39
    apt-key add - < Release.key 
1613
40
    apt-get update
1614
41
    apt-get install -y owncloud
1615
42
1616
43
fi
1617
44
1618
26
chown www-data:www-data -R /var/www/owncloud
45
chown www-data:www-data -R /var/www/owncloud
1619
27
46
1623
28
#Make ownCloud publicly visible
47
sed -i "s/        \$curlSettings = array(/        \$curlSettings = array(\n            CURLOPT_SSL_VERIFYPEER => 0,\n            CURLOPT_SSL_VERIFYHOST => 0,/" /var/www/owncloud/3rdparty/Sabre/DAV/Client.php
1624
29
port=`config-get port`
48
1625
30
open-port $port/tcp
49
SRC=`config-get src`
1626
50
echo $SRC > .src
1627
51
1628
52
service apache2 restart
1629
31
53
1630
=== added file 'hooks/ssl'
1631
--- hooks/ssl	1970-01-01 00:00:00 +0000
1632
+++ hooks/ssl	2014-07-21 22:01:08 +0000
1633
@@ -0,0 +1,19 @@
1634
1
#!/usr/bin/python
1635
2
1636
3
import os
1637
4
import sys
1638
5
1639
6
sys.path.insert(0, os.environ['CHARM_DIR'])
1640
7
1641
8
from charmhelpers.contrib import ssl
1642
9
from charmhelpers.core import hookenv
1643
10
from charmhelpers.core.hookenv import unit_get
1644
11
1645
12
DOMAIN = hookenv.config('domain')
1646
13
1647
14
if DOMAIN == "":
1648
15
    DOMAIN = unit_get('public-address')
1649
16
1650
17
key_file = '/home/ubuntu/' + DOMAIN + '.key'
1651
18
cert_file = '/home/ubuntu/' + DOMAIN + '.cert'
1652
19
ssl.generate_selfsigned(key_file, cert_file, cn=DOMAIN)
1653
0
20
1654
=== modified file 'hooks/start'
1655
--- hooks/start	2012-07-21 00:54:38 +0000
1656
+++ hooks/start	2014-07-21 22:01:08 +0000
1657
@@ -1,4 +1,8 @@
1658
1
#!/bin/bash
1
#!/bin/bash
1659
2
set -eu
2
set -eu
1662
3
juju-log "Starting apache for owncloud"
3
1663
4
service apache2 start || service apache2 restart
4
if [ -f .configured ]; then
1664
5
    juju-log "Starting apache for owncloud"
1665
6
    service apache2 start || service apache2 restart
1666
7
    touch .started
1667
8
fi
1668
5
9
1669
=== modified file 'hooks/upgrade-charm'
1670
--- hooks/upgrade-charm	2014-04-11 03:47:03 +0000
1671
+++ hooks/upgrade-charm	2014-07-21 22:01:08 +0000
1672
@@ -5,43 +5,47 @@
1673
5
# Pause during upgrade
5
# Pause during upgrade
1674
6
hooks/stop
6
hooks/stop
1675
7
7
1686
8
#we are under active migration, dont do anything more than once
8
if [ -f /usr/share/charm-helper/sh/net.sh ]; then
1687
9
if [ ! -f $CHARM_DIR/.migrating ]; then
9
    #we are under active migration, dont do anything more than once
1688
10
10
    if [ ! -f $CHARM_DIR/.migrating ]; then
1689
11
    # Excise old installation data
11
    
1690
12
    find /var/www -mindepth 2 -maxdepth 2 -type d -name 'data'\
12
        # Excise old installation data
1691
13
     -exec mv {} /var/tmp/ \;
13
        find /var/www -mindepth 2 -maxdepth 2 -type d -name 'data'\
1692
14
    find /var/www -mindepth 2 -maxdepth 2 -type d -name 'config'\
14
        -exec mv {} /var/tmp/ \;
1693
15
     -exec mv {} /var/tmp/ \;
15
        find /var/www -mindepth 2 -maxdepth 2 -type d -name 'config'\
1694
16
    touch $CHARM_DIR/.migrating
16
         -exec mv {} /var/tmp/ \;
1695
17
17
        touch $CHARM_DIR/.migrating
1696
18
    
1697
19
    fi
1698
20
    
1699
21
    # Deleting all traces of the old ownCloud install
1700
22
    rm -rf /var/www/owncloud/
1701
23
    
1702
24
    cd /var/www/
1703
25
    
1704
26
    # Getting new ownCloud version and MD5 checking it
1705
27
    wget download.owncloud.org/community/owncloud-6.0.3.tar.bz2
1706
28
    
1707
29
    if [ `sha1sum owncloud-6.0.3.tar.bz2 | awk '{print $1}'` != "df1e272c208376117a8c00619079cee25a22f784" ]; then
1708
30
        juju-log "Download verification failed. Exiting."
1709
31
        exit 1
1710
32
    fi
1711
33
    
1712
34
    tar xfj owncloud-6.0.3.tar.bz2
1713
35
    cd $CHARM_DIR
1714
36
1715
37
    # Migrating data
1716
38
    mkdir /var/www/owncloud/data
1717
39
    rm -rf /var/www/owncloud/config
1718
40
    mkdir /var/www/owncloud/config
1719
41
    cp -pr /var/tmp/data/* /var/www/owncloud/data/
1720
42
    cp -pr /var/tmp/config/* /var/www/owncloud/config/
1721
43
    sudo chown -R www-data:www-data /var/www/owncloud
1722
44
    rm $CHARM_DIR/.migrating
1723
45
1724
46
    # Finish upgrade
1725
47
    hooks/config-changed
1726
48
else
1727
49
    apt-get update
1728
50
    apt-get upgrade -y
1729
18
fi
51
fi
1730
19
1731
20
# Deleting all traces of the old ownCloud install
1732
21
rm -rf /var/www/owncloud/
1733
22
cd /var/www/
1734
23
1735
24
# Getting new ownCloud version and MD5 checking it
1736
25
wget download.owncloud.org/community/owncloud-6.0.2.tar.bz2
1737
26
wget download.owncloud.org/community/owncloud-6.0.2.tar.bz2.md5
1738
27
1739
28
while [ `md5sum owncloud-6.0.2.tar.bz2 | awk '{print $1}'` != `cat owncloud-6.0.2.tar.bz2.md5 | awk '{print $1}'` ]; do
1740
29
    rm owncloud-6.0.2.tar.bz2
1741
30
    wget download.owncloud.org/community/owncloud-6.0.2.tar.bz2
1742
31
done
1743
32
1744
33
tar xfj owncloud-6.0.2.tar.bz2
1745
34
cd $CHARM_DIR
1746
35
1747
36
# Migrating data
1748
37
mkdir /var/www/owncloud/data
1749
38
rm -rf /var/www/owncloud/config
1750
39
mkdir /var/www/owncloud/config
1751
40
cp -pr /var/tmp/data/* /var/www/owncloud/data/
1752
41
cp -pr /var/tmp/config/* /var/www/owncloud/config/
1753
42
sudo chown -R www-data:www-data /var/www/owncloud
1754
43
1755
44
# Finish upgrade
1756
45
hooks/config-changed
1757
46
1758
47
rm $CHARM_DIR/.migrating
1759
48
52
1760
=== modified file 'hooks/website-relation-joined'
1761
--- hooks/website-relation-joined	2012-07-21 16:20:15 +0000
1762
+++ hooks/website-relation-joined	2014-07-21 22:01:08 +0000
1763
@@ -1,4 +1,3 @@
1764
1
#!/bin/sh
1
#!/bin/sh
1765
2
port=`config-get port`
1766
3
pub_addr=`unit-get private-address`
2
pub_addr=`unit-get private-address`
1768
4
relation-set port=$port hostname=$pub_addr
3
relation-set port=443 hostname=$pub_addr
1769
5
4
1770
=== modified file 'metadata.yaml'
1771
--- metadata.yaml	2014-01-24 16:01:17 +0000
1772
+++ metadata.yaml	2014-07-21 22:01:08 +0000
1773
@@ -6,7 +6,7 @@
1774
6
 storage, MySQL Databases, and HAProxy reverse proxy charms. 
6
 storage, MySQL Databases, and HAProxy reverse proxy charms. 
1775
7
categories:
7
categories:
1776
8
    - file-servers
8
    - file-servers
1778
9
maintainer: "Nathan Williams <nathan@nathanewilliams.com>"
9
maintainer: "Jose Antonio Rey <jose@ubuntu.com>"
1779
10
requires:
10
requires:
1780
11
  db:
11
  db:
1781
12
    interface: mysql
12
    interface: mysql
1782
13
13
1783
=== modified file 'tests/00_setup.sh' (properties changed: -x to +x)
1784
=== added file 'tests/100-deploy.py'
1785
--- tests/100-deploy.py	1970-01-01 00:00:00 +0000
1786
+++ tests/100-deploy.py	2014-07-21 22:01:08 +0000
1787
@@ -0,0 +1,116 @@
1788
1
#!/usr/bin/env python3
1789
2
# The format of this test was shamelessly ripped from Cory Johns awesome
1790
3
# tests that resemble nosetests in the Apache Allura charm. <3
1791
4
# http://bazaar.launchpad.net/~johnsca/charms/precise/apache-allura/
1792
5
1793
6
import amulet
1794
7
import requests
1795
8
1796
9
1797
10
class TestDeploy(object):
1798
11
1799
12
    def __init__(self, time=2500):
1800
13
        # Attempt to load the deployment topology from a bundle.
1801
14
        self.deploy = amulet.Deployment()
1802
15
1803
16
        # If something errored out, attempt to continue by
1804
17
        # manually specifying a standalone deployment
1805
18
        self.deploy.add('owncloud')
1806
19
        self.deploy.add('mysql')
1807
20
        self.deploy.add('nfs')
1808
21
        self.deploy.configure('owncloud', {'user': 'tom',
1809
22
                                           'password': 'swordfish'})
1810
23
        self.deploy.relate('owncloud:db', 'mysql:db')
1811
24
        self.deploy.relate('owncloud:shared-fs', 'nfs:nfs')
1812
25
        self.deploy.expose('owncloud')
1813
26
1814
27
        try:
1815
28
            self.deploy.setup(time)
1816
29
            self.deploy.sentry.wait(time)
1817
30
        except:
1818
31
            amulet.raise_status(amulet.FAIL, msg="Environment standup timeout")
1819
32
        sentry = self.deploy.sentry
1820
33
1821
34
        self.domain = sentry.unit['owncloud/0'].info['public-address']
1822
35
        self.mysql_unit = self.deploy.sentry.unit['mysql/0']
1823
36
        self.nfs_unit = self.deploy.sentry.unit['nfs/0']
1824
37
        self.app_unit = self.deploy.sentry.unit['owncloud/0']
1825
38
1826
39
    def run(self):
1827
40
        for test in dir(self):
1828
41
            if test.startswith('test_'):
1829
42
                getattr(self, test)()
1830
43
1831
44
    def test_standalone_http(self):
1832
45
1833
46
        # r = requests.get("http://%s/" % domain, data, headers=h)
1834
47
        r = requests.get("https://%s/index.php" % self.domain, verify=False)
1835
48
        r.raise_for_status()
1836
49
1837
50
        search_string = 'web services under your control'
1838
51
        if r.text.find(search_string) is -1:
1839
52
            amulet.raise_status(amulet.FAIL, msg="Unable to verify login page")
1840
53
1841
54
    def test_database_relationship(self):
1842
55
1843
56
        sent_config = self.mysql_unit.relation('db', 'owncloud:db')
1844
57
        # I'm sorry this is gross, and repeats itself. This is a dirty hack
1845
58
        # around owncloud not normalizing quotations, and field names.
1846
59
        try:
1847
60
            filepath = "/var/www/owncloud/config/autoconfig.php"
1848
61
            cfg = self.deploy.sentry.unit['owncloud/0'].file_contents(filepath)
1849
62
            cfg_to_check = {'dbuser': 'user', 'dbpass': 'password',
1850
63
                            'dbhost': 'host'}
1851
64
            for c_key, j_key in cfg_to_check.items():
1852
65
                if cfg.find('"%s" => "%s"' % (c_key, sent_config[j_key])) == -1:
1853
66
                    amulet.raise_status(amulet.FAIL,
1854
67
                                        msg="Unable to validate db cfg %s" % j_key)
1855
68
        except:
1856
69
            filepath = "/var/www/owncloud/config/config.php"
1857
70
            cfg = self.deploy.sentry.unit['owncloud/0'].file_contents(filepath)
1858
71
            cfg_to_check = {'dbuser': 'user', 'dbpassword': 'password',
1859
72
                            'dbhost': 'host'}
1860
73
            for c_key, j_key in cfg_to_check.items():
1861
74
                if cfg.find("'%s' => '%s'" % (c_key, sent_config[j_key])) == -1:
1862
75
                    amulet.raise_status(amulet.FAIL,
1863
76
                                        msg="Unable to validate db cfg %s" % j_key)
1864
77
1865
78
    def term_search(self, output, term):
1866
79
        if output.find(term) == -1:
1867
80
            amulet.raise_status(amulet.FAIL,
1868
81
                                msg="Unable to validate NFS config %s" % term)
1869
82
1870
83
    def test_nfs_relationship(self):
1871
84
        # Cache Relationship details
1872
85
        nfs_relation = self.nfs_unit.relation('nfs', 'owncloud:shared-fs')
1873
86
1874
87
        # Leverage Amulet's exception handling if directory doesnt exist
1875
88
        # to check for the directory, as a cheap quick fail test.
1876
89
        try:
1877
90
            self.app_unit.directory('/var/lib/owncloud')
1878
91
        except:
1879
92
            amulet.raise_status(amulet.FAIL, msg="NFS Directory not found")
1880
93
1881
94
        #Fetch the contents of mtab for data validation
1882
95
        mtab_contents = self.app_unit.file_contents('/etc/mtab')
1883
96
1884
97
        self.term_search(mtab_contents, nfs_relation['private-address'])
1885
98
        self.term_search(mtab_contents, nfs_relation['fstype'])
1886
99
        self.term_search(mtab_contents, nfs_relation['mountpoint'])
1887
100
        self.term_search(mtab_contents, nfs_relation['options'])
1888
101
1889
102
    def test_nfs_write_pipeline(self):
1890
103
        # Validate file write pipeline
1891
104
        #Build a $block_size file, and ship it via NFS
1892
105
        cmd_builder = "dd if=/dev/zero of=/var/lib/owncloud/amulet-file-test bs=8M count=1"
1893
106
        self.app_unit.run(cmd_builder)
1894
107
1895
108
        filepath = '/srv/data/relation-sentry/amulet-file-test'
1896
109
        file_test = self.nfs_unit.file(filepath)
1897
110
        if file_test['size'] < 8000000:
1898
111
            amulet.raise_status(amulet.FAIL, 'File size constraint not met')
1899
112
1900
113
1901
114
if __name__ == '__main__':
1902
115
    runner = TestDeploy()
1903
116
    runner.run()
1904
0
117
1905
=== removed file 'tests/100_deploy.test'
1906
--- tests/100_deploy.test	2014-02-10 21:49:21 +0000
1907
+++ tests/100_deploy.test	1970-01-01 00:00:00 +0000
1908
@@ -1,142 +0,0 @@
1909
1
#!/usr/bin/env python3
1910
2
1911
3
import amulet
1912
4
import requests
1913
5
1914
6
##########################################
1915
7
# Config Options
1916
8
##########################################
1917
9
scale = 2
1918
10
seconds = 1200
1919
11
user = 'tom'
1920
12
password = 'swordfish'
1921
13
block_size = "8M"
1922
14
verify_size = 8000000
1923
15
1924
16
###########################################################
1925
17
#Deployment Setup
1926
18
############################################################
1927
19
d = amulet.Deployment()
1928
20
1929
21
d.add('owncloud', units=scale)
1930
22
d.add('mysql')
1931
23
d.add('haproxy')
1932
24
d.add('nfs')
1933
25
d.configure('owncloud', {'user': user, 'password': password})
1934
26
d.relate('owncloud:db', 'mysql:db')
1935
27
d.relate('owncloud:website', 'haproxy:reverseproxy')
1936
28
d.relate('owncloud:shared-fs', 'nfs:nfs')
1937
29
d.expose('owncloud')
1938
30
d.expose('haproxy')
1939
31
1940
32
1941
33
#perform deployment
1942
34
try:
1943
35
    d.setup(timeout=seconds)
1944
36
except amulet.helpers.TimeoutError:
1945
37
    message = 'The environment did not setup in %d seconds.', seconds
1946
38
    amulet.raise_status(amulet.SKIP, msg=message)
1947
39
except:
1948
40
    raise
1949
41
1950
42
1951
43
#############################################################
1952
44
# Check presence of HTTP services
1953
45
#############################################################
1954
46
def validate_status_interface():
1955
47
    h = {'User-Agent': 'Mozilla/5.0 Gecko/20100101 Firefox/12.0',
1956
48
         'Content-Type': 'application/x-www-form-urlencoded',
1957
49
         'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*',
1958
50
         'Accept-Encoding': 'gzip, deflate'}
1959
51
1960
52
    data = {'user': 'tom', 'password': 'swordfish'}
1961
53
1962
54
    #validate the Owncloud login screen is present
1963
55
    r = requests.post("http://{}".format(
1964
56
        d.sentry.unit['owncloud/0'].info['public-address']),
1965
57
        data, headers=h)
1966
58
    r.raise_for_status()
1967
59
1968
60
    #validate the HAProxy daemon is forwarding as expected
1969
61
    r = requests.get("http://{}".format(
1970
62
        d.sentry.unit['haproxy/0'].info['public-address']))
1971
63
    r.raise_for_status
1972
64
1973
65
1974
66
#############################################################
1975
67
# Validate that each service is running
1976
68
#############################################################
1977
69
def validate_running_services():
1978
70
    output, code = d.sentry.unit['owncloud/0'].run('service apache2 status')
1979
71
    if code != 0:
1980
72
        message = "Failed to find running Apache instance on host owncloud/0"
1981
73
        amulet.raise_status(amulet.SKIP, msg=message)
1982
74
    output, code = d.sentry.unit['mysql/0'].run('service mysql status')
1983
75
    if code != 0:
1984
76
        message = "Failed to find running MYSQL instance on host mysql/0"
1985
77
        amulet.raise_status(amulet.SKIP, msg=message)
1986
78
1987
79
1988
80
#############################################################
1989
81
# Validate that each service is running
1990
82
#############################################################
1991
83
def validate_owncloud_files():
1992
84
    index_status = d.sentry.unit['owncloud/0'].file_stat('/var/www/owncloud/index.php')
1993
85
    if index_status['size'] <= 0:
1994
86
        message = "Failed to find owncloud index.php"
1995
87
        amulet.raise_status(amulet.SKIP, msg=message)
1996
88
1997
89
1998
90
#############################################################
1999
91
# Validate database relationship
2000
92
#############################################################
2001
93
def validate_database_relationship():
2002
94
    #Connect to the sentrys and fetch the transmitted details
2003
95
    sent_config = d.sentry.unit['mysql/0'].relation('db', 'owncloud:db')
2004
96
    #Connect to owncloud's sentry and read the configuration PHP file
2005
97
    prod_config = d.sentry.unit['owncloud/0'].file_contents('/var/www/owncloud/config/config.php')
2006
98
    cfg_to_check = {'dbuser': 'user', 'dbpassword': 'password', 'dbhost': 'host'}
2007
99
2008
100
    #Search the return string of the config for the transmit values
2009
101
    for cfg_file_key, juju_cfg_key in cfg_to_check.items():
2010
102
        if prod_config.find("'%s' => '%s'" % (cfg_file_key, sent_config[juju_cfg_key])) == -1:
2011
103
                amulet.raise_status(amulet.SKIP, msg="Unable to validate db sent %s" % juju_cfg_key)
2012
104
2013
105
2014
106
# Utility Method for searching output
2015
107
def nfs_term_search(output, term):
2016
108
    if output.find(term) == -1:
2017
109
        amulet.raise_status(amulet.FAIL, msg="Unable to validate NFS export mounted with %s" % term)
2018
110
2019
111
2020
112
###########################################################
2021
113
# Validate NFS FileSystem Existence
2022
114
###########################################################
2023
115
def validate_nfs_relationship():
2024
116
    # Cache Relationship details
2025
117
    nfs_relation = d.sentry.unit['nfs/0'].relation('nfs', 'owncloud:shared-fs')
2026
118
    # Raises an error if the directory does not exist
2027
119
    d.sentry.unit['owncloud/0'].directory('/var/lib/owncloud')
2028
120
    #Fetch the contents of mtab for data validation
2029
121
    mtab_contents = d.sentry.unit['owncloud/0'].file_contents('/etc/mtab')
2030
122
2031
123
    nfs_term_search(mtab_contents, nfs_relation['private-address'])
2032
124
    nfs_term_search(mtab_contents, nfs_relation['fstype'])
2033
125
    nfs_term_search(mtab_contents, nfs_relation['mountpoint'])
2034
126
    nfs_term_search(mtab_contents, nfs_relation['options'])
2035
127
2036
128
    # Validate file write pipeline
2037
129
    #Build a $block_size file, and ship it via NFS
2038
130
    cmd_builder = "dd if=/dev/zero of=/var/lib/owncloud/amulet-file-test bs=%s count=1" % block_size
2039
131
    d.sentry.unit['owncloud/0'].run(cmd_builder)
2040
132
2041
133
    file_test = d.sentry.unit['nfs/0'].file('/srv/data/relation-sentry/amulet-file-test')
2042
134
    if file_test['size'] < verify_size:
2043
135
        amulet.raise_status(amulet.FAIL, 'File size constraint not met')
2044
136
2045
137
2046
138
validate_status_interface()
2047
139
validate_running_services()
2048
140
validate_owncloud_files()
2049
141
validate_database_relationship()
2050
142
validate_nfs_relationship()
Reviewer	Date Requested	Status
Charles Butler (community)	2014-05-16	Approve on 2014-07-22
Matt Bruzek (community)	2014-04-12	Needs Fixing on 2014-06-20
Review via email: mp+215527@code.launchpad.net