Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

For release v1.6.0 #1172

Merged
merged 21 commits into from
Dec 5, 2024
Merged

For release v1.6.0 #1172

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
236a80c
backpu:ansible host updated, user shoumik added
alsmk Nov 26, 2024
62fcfdf
prod:ansible host updated both prod1 and prod2, all the jump stuffs a…
alsmk Nov 26, 2024
f15cc7a
QA: ansible host updated and user shoumik added
alsmk Nov 26, 2024
0817015
Staging: ansible host updated and user shoumik added
alsmk Nov 26, 2024
b71492f
Staging: removed only allow access line
alsmk Nov 26, 2024
5ed0d6f
Known hosts are been updated
alsmk Nov 26, 2024
db1e9c9
known host is updated for qa
alsmk Nov 27, 2024
3bfacbe
ensure 'file' utility is installed on linux before referring to it
rikukissa Nov 15, 2024
91a756b
known host is updated for staging
alsmk Nov 26, 2024
492332e
enable backup is set to false in staging and backup host correction made
alsmk Nov 28, 2024
a784ce9
Revert "enable backup is set to false in staging and backup host corr…
alsmk Nov 29, 2024
b19c840
enable backup is set to false in staging and backup hostname & IP cor…
alsmk Nov 29, 2024
1f41763
Revert "enable backup is set to false in staging and backup hostname …
alsmk Nov 29, 2024
cc0383f
enable backup is remain true and qa is set as backup
alsmk Nov 29, 2024
2edc168
known hosts modified for prod
alsmk Nov 29, 2024
8cae68f
backup server name correction made
alsmk Dec 2, 2024
534869d
backup server is used for backup in staging
alsmk Dec 2, 2024
6cd0aa1
known hosts modified for staging
alsmk Dec 2, 2024
321bba0
Correction: prod2 hostname
alsmk Dec 3, 2024
dd7daf5
known host edited for prod
alsmk Dec 3, 2024
e82ffd8
correction:production host name
alsmk Dec 3, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
36 changes: 36 additions & 0 deletions infrastructure/known-hosts
View file
Open in desktop
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we clean this file off of all the old IPs?

Original file line number Diff line number Diff line change
Expand Up @@ -25,3 +25,39 @@ farajaland-staging.opencrvs.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGfDAGFF+Jox
159.89.14.13 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPKu2YyZ2niXGic9PZU+V1HppnRUPbXLF5WiQkSKg0hlwgwSawcraziuBmtrT29xJoXs88OKm2gHIwsIH04BbKY=
159.89.14.13 ssh-rsa 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
159.89.14.13 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF+MHhrQvwDOYP1pYFZ61WaYnr4vtgXtFuimxGCy4plV
188.245.61.69 ssh-rsa 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
188.245.61.69 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCZB4NOBvOaYoVQBCMTpAWkFNA+slkroBHW4hndNRk21jUPY1x8ommbGX8cALmb6zbgWw3pgcMNc2k/QaTL6uZs=
188.245.61.69 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJTTic204SRitgcwPl3O0BM537JO3Ct15MkUUzxzqUP/
188.245.61.69 ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQDjYsDKtnQQOCDQALAnsyqbesNPui82JolfgAAr5mHYuj3dpidPvjVB6ZsHN2RbigCmH3YGrGc+g9JNdTE3+0q7zNXup9ZEdVTBvts5RsxE4ztemHpmhshB1fT3Igi40Uamw/UpUQNw3lBpoeN8PCRM5QWQKScD4uPiDtfh7Ma9PCDCbEKyBOGI4GRj9nCeiKSp9uArl7PhEQHF2zD6yY5J6Cynnvdp4TCdqKsQcKf5nJMN+BUVcwrf1/o0A6cYbDPVnGXlR2C0tPDym+ffIOTnkaj4ekY2Fh7mSGoDFjvBATNSc5Jv5TkYeTHAyrdpLL+/8TDcuggAJ3w/iLh+Sgigv/78PvGNTH98PRM4ONCrQDwlx+Lgzq3wszrFr1GYapuCdAb44yKyYD8Y+7kRE0WqNVh5ToKuz+XJ4n2Ff4NHGTg8GLDTWHyWcolEI3nCo6Pf93YMJZ3PBcq/ATa5rUOj4+GLMd/lM7/9c/iA/wouYrN5xJsDAQIIIqr8FAwDBEs=
188.245.61.69 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCZB4NOBvOaYoVQBCMTpAWkFNA+slkroBHW4hndNRk21jUPY1x8ommbGX8cALmb6zbgWw3pgcMNc2k/QaTL6uZs=
188.245.61.69 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJTTic204SRitgcwPl3O0BM537JO3Ct15MkUUzxzqUP/
farajaland-qa-new.opencrvs.org ssh-rsa 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
farajaland-qa-new.opencrvs.org ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBLM0HYX9qnFCIQEPM+Qz+/RtnkBly+YRqvHLJYSV3g0fU2RL3o+Mof9C1rtUvFKSjRYwu0TFKKaySBmZ3yc3aA=
farajaland-qa-new.opencrvs.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOCxp5U416Teyc6gXHppVle3D3k5LzLleQ+t4Q3KOBOP
5.223.46.129 ssh-rsa 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
5.223.46.129 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBLM0HYX9qnFCIQEPM+Qz+/RtnkBly+YRqvHLJYSV3g0fU2RL3o+Mof9C1rtUvFKSjRYwu0TFKKaySBmZ3yc3aA=
5.223.46.129 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOCxp5U416Teyc6gXHppVle3D3k5LzLleQ+t4Q3KOBOP
farajaland-staging-new.opencrvs.org ssh-rsa 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
farajaland-staging-new.opencrvs.org ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHTsaRzl0X0GDiqkpkLvEAyKBVnKw++meoJ2S3rxY3VuqjvjwU5t4gM3vW2F7+LkwYuDmOLDdDcqvuyUQkHjzHg=
farajaland-staging-new.opencrvs.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOWueyYkQj/JpsyqbWkR5/8ybhRhh8P1QJV7k2sV8mtS
5.223.47.53 ssh-rsa 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
5.223.47.53 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHTsaRzl0X0GDiqkpkLvEAyKBVnKw++meoJ2S3rxY3VuqjvjwU5t4gM3vW2F7+LkwYuDmOLDdDcqvuyUQkHjzHg=
5.223.47.53 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOWueyYkQj/JpsyqbWkR5/8ybhRhh8P1QJV7k2sV8mtS
farajaland-new.opencrvs.org ssh-rsa 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
farajaland-new.opencrvs.org ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBZQ2LbjmgyBA56IAMSmG+GqraKhgHt+o22KDsj7mX1rR00FbZTfmlIXjb5W5Gf+pwhIGHMfk1jyAVWb4xiahuU=
farajaland-new.opencrvs.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICogAQju3/dugNOeKJTYQJXefgjvalRPdldP8fEivC7f
188.245.160.165 ssh-rsa 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
188.245.160.165 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBZQ2LbjmgyBA56IAMSmG+GqraKhgHt+o22KDsj7mX1rR00FbZTfmlIXjb5W5Gf+pwhIGHMfk1jyAVWb4xiahuU=
188.245.160.165 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICogAQju3/dugNOeKJTYQJXefgjvalRPdldP8fEivC7f
farajaland-staging-new.opencrvs.org ssh-rsa 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
farajaland-staging-new.opencrvs.org ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHTsaRzl0X0GDiqkpkLvEAyKBVnKw++meoJ2S3rxY3VuqjvjwU5t4gM3vW2F7+LkwYuDmOLDdDcqvuyUQkHjzHg=
farajaland-staging-new.opencrvs.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOWueyYkQj/JpsyqbWkR5/8ybhRhh8P1QJV7k2sV8mtS
5.223.47.53 ssh-rsa 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
5.223.47.53 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHTsaRzl0X0GDiqkpkLvEAyKBVnKw++meoJ2S3rxY3VuqjvjwU5t4gM3vW2F7+LkwYuDmOLDdDcqvuyUQkHjzHg=
5.223.47.53 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOWueyYkQj/JpsyqbWkR5/8ybhRhh8P1QJV7k2sV8mtS
farajaland-new.opencrvs.org ssh-rsa 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
farajaland-new.opencrvs.org ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBZQ2LbjmgyBA56IAMSmG+GqraKhgHt+o22KDsj7mX1rR00FbZTfmlIXjb5W5Gf+pwhIGHMfk1jyAVWb4xiahuU=
farajaland-new.opencrvs.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICogAQju3/dugNOeKJTYQJXefgjvalRPdldP8fEivC7f
188.245.160.165 ssh-rsa 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
188.245.160.165 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBZQ2LbjmgyBA56IAMSmG+GqraKhgHt+o22KDsj7mX1rR00FbZTfmlIXjb5W5Gf+pwhIGHMfk1jyAVWb4xiahuU=
188.245.160.165 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICogAQju3/dugNOeKJTYQJXefgjvalRPdldP8fEivC7f
9 changes: 7 additions & 2 deletions infrastructure/server-setup/inventory/backup.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,8 +33,13 @@ all:
- ssh-rsa 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
state: present
sudoer: true
- name: shoumik
ssh_keys:
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINRSRTqm3vOfjyTutISEtbVp7ZddoWa9NZDZLeWZGzLy dsi@dsi-Inspiron-15-3511
state: present
sudoer: true

backups-host:
hosts:
backup:
ansible_host: '64.226.95.104'
farajaland-backup:
ansible_host: '188.245.61.69'
19 changes: 10 additions & 9 deletions infrastructure/server-setup/inventory/production.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,8 +12,6 @@ all:
# This configuration variable blocks all access to the server, including SSH, except from the IP addresses specified below.
# This should always be set when configuring a production server if there is no other firewall in front of the server.
# SSH and other services should never be exposed to the public internet.
only_allow_access_from_addresses:
- 159.89.14.13
# Enable backups
enable_backups: true
backup_server_remote_target_directory: /home/backup/backups
Expand All @@ -36,28 +34,31 @@ all:
- ssh-rsa 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
state: present
sudoer: true
- name: shoumik
ssh_keys:
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINRSRTqm3vOfjyTutISEtbVp7ZddoWa9NZDZLeWZGzLy dsi@dsi-Inspiron-15-3511
state: present
sudoer: true

docker-manager-first:
hosts:
farajaland-prod:
ansible_host: '165.22.205.62'
farajaland-prod-1:
ansible_host: '188.245.160.165'
data_label: data1
ansible_ssh_common_args: '-J [email protected] -o StrictHostKeyChecking=no'

# We recommend you add 2-4 workers for a scaled production deployment
# This should depend on the size of your country and the number of end users.
# If you are only using one production worker for very small countries or small pilot projects, replace with an empty block like so: docker-workers: {}
docker-workers:
hosts:
farajaland-prod-02:
ansible_host: '178.128.245.255'
farajaland-prod-2:
ansible_host: '49.13.124.87'
data_label: data2
ansible_ssh_common_args: '-J [email protected] -o StrictHostKeyChecking=no'

backups:
hosts:
farajaland-backup:
ansible_host: '64.226.95.104'
ansible_host: '188.245.61.69'
# Written by provision pipeline. Assumes "backup" environment
# exists in Github environments
ansible_ssh_private_key_file: /tmp/backup_ssh_private_key
7 changes: 6 additions & 1 deletion infrastructure/server-setup/inventory/qa.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,6 +58,11 @@ all:
- ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQCWQihdKkwxTItN+rwYAX1vBg+8sv59sFsjYoVaO2mzS01rARfh+M+UVqpEv3zFT/3v6Dr5Z5VhzYvvbH8akiGQxURqie9quEi1iBCqcq+LApkMZxNm7yyvexlFsbkKMHsSZyVCzjE2Wt+6fwR1NqkMQgJjZS+b4CB+CUTNP2i6ytUTmck9K5iAOp1Gpm+Xgyvz6ZEJPkAJ16gV7gzNJUt/DSCkCyV8G2BqYLWeR2QxAbKyuf3LzO5i4XZdiZi9o60QAt3A6KGGLazd0UuYdehQDqVwXzwimLeeuZbaPNmwoAy7DeatOdurrWbnL7ytaiPvAbwai6Grt3PhhM41qO+uojnqTdnFdSOEPVIYMR7+mYu9tuwHZcMJIbbvMPD6EvKumD5Ndn5OxiLY/zQF5PuG89pBdTkTzzREvbV1Dkh2hwAIvgavlZl3P64On+4+FAgjrAx5U55khoRAe2FbEvB+EUGwro0bRffiM2NmxkUBraEuT2Xt5K01ZoBU6F4feO0= [email protected]
state: present
sudoer: true
- name: shoumik
ssh_keys:
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINRSRTqm3vOfjyTutISEtbVp7ZddoWa9NZDZLeWZGzLy dsi@dsi-Inspiron-15-3511
state: present
sudoer: true
# If the machine is repurposed to also be the backup host, we need to add more keys to the authorized_keys file so that
# when the application servers get provisioned, the provision user of this machine can be used.
additional_keys_for_provisioning_user:
Expand All @@ -66,7 +71,7 @@ all:
docker-manager-first:
hosts:
farajaland-qa:
ansible_host: '165.22.110.53'
ansible_host: '5.223.46.129'
data_label: data1

# QA and staging servers are not configured to use workers.
Expand Down
14 changes: 8 additions & 6 deletions infrastructure/server-setup/inventory/staging.yml
View file
Open in desktop
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@rikukissa Do we really need to make a backup of the staging server? Does it bring any benefits to us?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No, I don't think we do. As long as staging restores backups from prod we're solid

Original file line number Diff line number Diff line change
Expand Up @@ -13,8 +13,6 @@ all:
# OpenCRVS should never be exposed to the public internet. If this is not possible to organise,
# then this should always be set when configuring a production server if there is no other firewall in front of the server.
# BE CAREFUL! This will block all SSH traffic except from the IP addresses listed here.
only_allow_access_from_addresses:
- 159.89.14.13
# Enable backups but write them to a different location from where production writes them
enable_backups: true
backup_server_remote_target_directory: /home/backup/staging-backups
Expand Down Expand Up @@ -64,19 +62,23 @@ all:
- ssh-rsa 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 [email protected]
state: present
sudoer: true
- name: shoumik
ssh_keys:
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINRSRTqm3vOfjyTutISEtbVp7ZddoWa9NZDZLeWZGzLy dsi@dsi-Inspiron-15-3511
state: present
sudoer: true
docker-manager-first:
hosts:
farajaland-staging:
ansible_host: '167.172.105.70'
ansible_host: '5.223.47.53'
data_label: data1
ansible_ssh_common_args: '-J [email protected] -o StrictHostKeyChecking=no'

# QA and staging servers are not configured to use workers.
docker-workers: {}
backups:
hosts:
farajaland-qa:
ansible_host: '64.226.95.104'
farajaland-backup:
ansible_host: '188.245.61.69'
# Written by provision pipeline. Assumes "backup" environment
# exists in Github environments
ansible_ssh_private_key_file: /tmp/backup_ssh_private_key
7 changes: 7 additions & 0 deletions infrastructure/server-setup/tasks/swap.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,13 @@
tags:
- swap.file.permissions

- name: Ensure 'file' utility is installed
ansible.builtin.package:
name: file
state: present
tags:
- swap.file.mkswap

- name: 'Check swap file type'
command: file {{ swap_file_path }}
register: swapfile
Expand Down
Loading