Startsida Utforska Hjälp
Logga in
mastodon
/
mastodon-ansible
spegling av https://github.com/tootsuite/mastodon-ansible
Bevaka 2
Stjärnmärk 0
Fork 0
Filer Ärenden 0 Wiki
Träd: 3f08b5af1f
Grenar Taggar
mastodon-ans...
/
goss.yaml

goss.yaml 3.3 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117 
  1. file:
    2. 

  2.   /etc/os-release:
    3. 

  3.     exists: true
    4. 

  4.     contains:
    5. 

  5.       - {{getEnv "TARGET" "ubuntu"}}
    6. 

  6.   /home/mastodon/.bashrc:
    7. 

  7.     exists: true
    8. 

  8.     owner: "mastodon"
    9. 

  9.     group: "mastodon"
    10. 

  10.     filetype: "file"
    11. 

  11.     contains: ["rbenv init -", "PATH="]
    12. 

  12.   /usr/bin/node:
    13. 

  13.     exists: true
    14. 

  14.     filetype: "file"
    15. 

  15.     mode: "0755"
    16. 

  16.   /etc/letsencrypt/live/mastodon.local/fullchain.pem:
    17. 

  17.     exists: true
    18. 

  18.     filetype: "symlink"
    19. 

  19.     mode: "0777"
    20. 

  20.   /etc/letsencrypt/live/mastodon.local/privkey.pem:
    21. 

  21.     exists: true
    22. 

  22.     filetype: "symlink"
    23. 

  23.     mode: "0777" 
    24. 

  24.   /home/mastodon/.rbenv/plugins/ruby-build/bin/ruby-build:
    25. 

  25.     exists: true
    26. 

  26.     filetype: "file"
    27. 

  27. {{- if eq (getEnv "TARGET" "ubuntu") "rhel" }}
    28. 

  28.     mode: "0755"
    29. 

  29. {{- else }}
    30. 

  30.     mode: "0775"
    31. 

  31. {{- end }}
    32. 

  32.     owner: "mastodon"
    33. 

  33.   /home/mastodon/live:
    34. 

  34.     exists: true
    35. 

  35.     filetype: "directory"
    36. 

  36.     owner: "mastodon"
    37. 

  37. {{- if eq (getEnv "TARGET" "ubuntu") "rhel" -}}
    38. 

  38. {{- $nginxConfigLocation := "conf.d"}}
    39. 

  39.   /etc/nginx/{{- $nginxConfigLocation }}/mastodon.conf:
    40. 

  40.     exists: true
    41. 

  41.     filetype: "file"
    42. 

  42. {{- else -}}
    43. 

  43. {{- $nginxConfigLocation := "sites-available"}}
    44. 

  44. {{- $nginxConfigEnabled := "sites-enabled"}}
    45. 

  45.   /etc/nginx/{{- $nginxConfigLocation }}/mastodon.conf:
    46. 

  46.     exists: true
    47. 

  47.     filetype: "file"
    48. 

  48.   /etc/nginx/{{- $nginxConfigEnabled }}/mastodon.conf:
    49. 

  49.     exists: true
    50. 

  50.     filetype: "symlink"
    51. 

  51. {{- end -}}
    52. 

  52. {{range .Vars.service_files }}
    53. 

  53.   {{.}}:
    54. 

  54.     exists: true
    55. 

  55.     filetype: "file"
    56. 

  56. {{end}}
    57. 

  57. service:
    58. 

  58. {{range .Vars.services }}
    59. 

  59.   {{.}}:
    60. 

  60.     enabled: true
    61. 

  61.     running: true
    62. 

  62. {{end}}
    63. 

  63. 

  64. command:
    65. 

  65.   ruby:
    66. 

  66.   #Previous implementation was directly checking against a fixed version and required manual update every time mastodon updated it's ruby version
    67. 

  67.   #With this current implementation, we directly check against the ruby version requested by Mastodon against what eventually got installed
    68. 

  68.   #Also can't use True or False as stdout output because Ubuntu is doing something funny and turning the string into a boolean and it fails the test. No I don't know why.
    69. 

  69.     exit-status: 0
    70. 

  70.     exec: >-
    71. 

  71.         [[ "$(sudo -u mastodon -i cat /home/mastodon/live/.ruby-version)" == "$(sudo -u mastodon -i ruby -v | sed 's/^.*[^0-9]\([0-9]*\.[0-9]*\.[0-9]*\).*$/\1/')" ]] && echo "Match" || echo "No Match"
    72. 

  72.     stdout:
    73. 

  73.       - "Match" 
    74. 

  74.   crontab:
    75. 

  75.     exit-status: 0
    76. 

  76.     exec: "sudo crontab -l -u mastodon"
    77. 

  77.     stdout:
    78. 

  78.       - "15 1 * * * /bin/bash -c 'export PATH=\"$HOME/.rbenv/bin:$PATH\"; eval \"$(rbenv init -)\"; cd /home/mastodon/live && RAILS_ENV=production ./bin/tootctl media remove'"
    79. 

  79. {{if eq .Env.TARGET "ubuntu"}}
    80. 

  80.   ufw:
    81. 

  81.     exit-status: 0
    82. 

  82.     exec: "ufw status"
    83. 

  83.     stdout:
    84. 

  84. {{range .Vars.firewall_open_ports }}
    85. 

  85.       - "/{{.}}/tcp \\s* ALLOW \\s* Anywhere/"
    86. 

  86.       - "/{{.}}/tcp \\(v6\\) \\s* ALLOW \\s* Anywhere \\(v6\\)/"
    87. 

  87. {{end}}
    88. 

  88. {{end}}
    89. 

  89.   postgres:
    90. 

  90.     exit-status: 0
    91. 

  91.     exec: "PGPASSWORD=CHANGEME psql -d mastodon_instance -h 127.0.0.1 -U mastodon -c 'CREATE TABLE test (v varchar(20)); DROP TABLE test;'"
    92. 

  92.   jemalloc:
    93. 

  93.     exit-status: 0
    94. 

  94.     exec: "sudo -u mastodon -i bash -c 'ldd $(rbenv which ruby) | grep -q libjemalloc'"
    95. 

  95. 

  96. http:
    97. 

  97.   https://mastodon.local/:
    98. 

  98.     status: 200
    99. 

  99.     allow-insecure: true
    100. 

  100.     no-follow-redirects: false
    101. 

  101.     body: [ mastodon.local ]
    102. 

  102. 

  103. user:
    104. 

  104.   mastodon:
    105. 

  105.     exists: true
    106. 

  106.     groups:
    107. 

  107.       - mastodon
    108. 

  108.     home: /home/mastodon
    109. 

  109.     shell: /bin/bash
    110. 

  110. package:
    111. 

  111. {{if eq .Env.TARGET "ubuntu"}}
    112. 

  112. {{range .Vars.packages.ubuntu }}
    113. 

  113.   {{.}}:
    114. 

  114.     installed: true
    115. 

  115. {{end}}
    116. 

  116. {{end}}
    117. 

  117.