Added scigap pga config; for testing using SSL on beta subdomains
Project: http://git-wip-us.apache.org/repos/asf/airavata/repo Commit: http://git-wip-us.apache.org/repos/asf/airavata/commit/22e97985 Tree: http://git-wip-us.apache.org/repos/asf/airavata/tree/22e97985 Diff: http://git-wip-us.apache.org/repos/asf/airavata/diff/22e97985 Branch: refs/heads/develop Commit: 22e979857078313c3dfdb53da52241a1e491a9a5 Parents: 67eed40 Author: Marcus Christie <[email protected]> Authored: Wed Apr 5 16:55:54 2017 -0400 Committer: Marcus Christie <[email protected]> Committed: Wed Apr 5 16:55:54 2017 -0400 ---------------------------------------------------------------------- .../production/pga_config/scigap/vars.yml | 59 ++++++++++++++++++++ .../production/pga_config/scigap/vault.yml | 18 ++++++ .../production/pga_config/seagrid/vars.yml | 13 +++-- .../production/pga_config/testdrive/vars.yml | 14 +++-- dev-tools/ansible/pga-scigap-prod.yml | 1 + 5 files changed, 95 insertions(+), 10 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/airavata/blob/22e97985/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml ---------------------------------------------------------------------- diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml new file mode 100644 index 0000000..5e77eea --- /dev/null +++ b/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vars.yml @@ -0,0 +1,59 @@ +# +# +# Licensed to the Apache Software Foundation (ASF) under one +# or more contributor license agreements. See the NOTICE file +# distributed with this work for additional information +# regarding copyright ownership. The ASF licenses this file +# to you under the Apache License, Version 2.0 (the +# "License"); you may not use this file except in compliance +# with the License. You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, +# software distributed under the License is distributed on an +# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY +# KIND, either express or implied. See the License for the +# specific language governing permissions and limitations +# under the License. +# + +--- +pga_repo: "https://github.com/apache/airavata-php-gateway.git"; +git_branch: "master" +user: "pga" +group: "pga" +doc_root_dir: "/var/www/portals/scigap" +#vhost_servername: "scigap.org" +vhost_servername: "beta.scigap.org" +vhost_ssl: True +# TODO: have Ansible manage these files as well +#ssl_certificate_file: "/etc/pki/tls/certs/scigap_org_cert.cer" +#ssl_certificate_chain_file: "/etc/pki/tls/certs/scigap_org_interm.cer" +#ssl_certificate_key_file: "/etc/pki/tls/private/scigap.key" +ssl_certificate_file: "/etc/letsencrypt/live/beta.scigap.org/cert.pem" +ssl_certificate_chain_file: "/etc/letsencrypt/live/beta.scigap.org/fullchain.pem" +ssl_certificate_key_file: "/etc/letsencrypt/live/beta.scigap.org/privkey.pem" + +## WSO2 IS related variables +tenant_domain: "" +admin_username: "scigap_admin" +admin_password: "{{ vault_admin_password }}" +oauth_client_key: "{{ vault_oauth_client_key }}" +oauth_client_secret: "{{ vault_oauth_client_secret }}" + +gateway_id: "scigap" +# relative to document root dir +experiment_data_dir: "{{ user_data_dir }}/scigap" +# TODO: this is only for testing, we'll need to update this again during the real migration +gateway_data_store_resource_id: "gf4.ucs.indiana.edu_71a8409a-0713-4a45-985f-22847f63df4e" + +## Portal related variables +super_admin_portal: "true" +admin_emails: "['[email protected]','[email protected]','[email protected]']" +portal_email_username: "[email protected]" +portal_email_password: "{{ vault_portal_email_password }}" +portal_theme: "scigap" +portal_theme_repo: "https://github.com/SciGaP/scigap-portal-theme"; +portal_title: "SciGaP Admin Portal" +... http://git-wip-us.apache.org/repos/asf/airavata/blob/22e97985/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vault.yml ---------------------------------------------------------------------- diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vault.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vault.yml new file mode 100644 index 0000000..a30ba69 --- /dev/null +++ b/dev-tools/ansible/inventories/scigap/production/pga_config/scigap/vault.yml @@ -0,0 +1,18 @@ +$ANSIBLE_VAULT;1.1;AES256 +64653833663230383465353266623839636163316364356431373837653638306130616130383963 +3132323230336531646162616464633061623830653462640a663263373436653831643063616638 +31383336306438613732613839396336626566313737316363636430393136633632613130326237 +6539306131633433660a633734643961633161323161643433613938626166343961663337376266 +63323163343633666330313666306234373663303738303033343662366139636534646162663230 +66343034666431326666626261303061343334643461343633663436616430323339613732306437 +31633431613463666139646638643037336435346564383631653664633135333734356434373461 +35373963313361393331656463386234383962663039636164626239393465333137333839616439 +38356531643032363839363862376263336565396464623332336533333837333937623635636366 +61313532633161336631363561353139376637623562346438623865343332643232653036303536 +62333865396439633435333533623338323664326231623136383761316336653334653464336363 +31313261366162386533646365386230646338646466623730306166366235623466323066656239 +66306166363630633733303261616335383839323163313239393330363730663262616133613737 +30363537623061333030363162316138353361326430636534313034613032653433326130393134 +37636364633533363263363833626237613639313638383536643637303435663831613735343261 +36363937356332313237343563356134366162633338616263613338393736646561303135383362 +35616562353739343661306330376334376361396266646230373065326364336662 http://git-wip-us.apache.org/repos/asf/airavata/blob/22e97985/dev-tools/ansible/inventories/scigap/production/pga_config/seagrid/vars.yml ---------------------------------------------------------------------- diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/seagrid/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/seagrid/vars.yml index 046a119..60e7cc6 100644 --- a/dev-tools/ansible/inventories/scigap/production/pga_config/seagrid/vars.yml +++ b/dev-tools/ansible/inventories/scigap/production/pga_config/seagrid/vars.yml @@ -27,12 +27,15 @@ doc_root_dir: "/var/www/portals/{{ gateway_id }}" # TODO: disable SSL temporarily for testing #vhost_servername: "seagrid.org" #vhost_serveralias: "www.portal.seagrid.org" -vhost_servername: "gf4.ucs.indiana.edu" -vhost_ssl: False +vhost_servername: "beta.seagrid.org" +vhost_ssl: True # TODO: have Ansible manage these files as well -ssl_certificate_file: "/etc/pki/tls/certs/seagrid_org_cert.cer" -ssl_certificate_chain_file: "/etc/pki/tls/certs/seagrid_org_interm.cer" -ssl_certificate_key_file: "/etc/pki/tls/private/portal.seagrid.key" +#ssl_certificate_file: "/etc/pki/tls/certs/seagrid_org_cert.cer" +#ssl_certificate_chain_file: "/etc/pki/tls/certs/seagrid_org_interm.cer" +#ssl_certificate_key_file: "/etc/pki/tls/private/portal.seagrid.key" +ssl_certificate_file: "/etc/letsencrypt/live/beta.seagrid.org/cert.pem" +ssl_certificate_chain_file: "/etc/letsencrypt/live/beta.seagrid.org/fullchain.pem" +ssl_certificate_key_file: "/etc/letsencrypt/live/beta.seagrid.org/privkey.pem" ## WSO2 IS related variables tenant_domain: "prod.seagrid" http://git-wip-us.apache.org/repos/asf/airavata/blob/22e97985/dev-tools/ansible/inventories/scigap/production/pga_config/testdrive/vars.yml ---------------------------------------------------------------------- diff --git a/dev-tools/ansible/inventories/scigap/production/pga_config/testdrive/vars.yml b/dev-tools/ansible/inventories/scigap/production/pga_config/testdrive/vars.yml index 0b6b715..2ce43c1 100644 --- a/dev-tools/ansible/inventories/scigap/production/pga_config/testdrive/vars.yml +++ b/dev-tools/ansible/inventories/scigap/production/pga_config/testdrive/vars.yml @@ -24,13 +24,17 @@ git_branch: "master" user: "pga" group: "pga" doc_root_dir: "/var/www/portals/testdrive" -vhost_servername: "testdrive.airavata.org" -vhost_serveralias: "www.testdrive.airavata.org" +#vhost_servername: "testdrive.airavata.org" +#vhost_serveralias: "www.testdrive.airavata.org" +vhost_servername: "beta.testdrive.airavata.org" vhost_ssl: True # TODO: have Ansible manage these files as well -ssl_certificate_file: "/etc/pki/tls/certs/testdrive_airavata_org_cert.cer" -ssl_certificate_chain_file: "/etc/pki/tls/certs/testdrive_airavata_org_interm.cer" -ssl_certificate_key_file: "/etc/pki/tls/private/testdrive-airavata.key" +#ssl_certificate_file: "/etc/pki/tls/certs/testdrive_airavata_org_cert.cer" +#ssl_certificate_chain_file: "/etc/pki/tls/certs/testdrive_airavata_org_interm.cer" +#ssl_certificate_key_file: "/etc/pki/tls/private/testdrive-airavata.key" +ssl_certificate_file: "/etc/letsencrypt/live/beta.testdrive.airavata.org/cert.pem" +ssl_certificate_chain_file: "/etc/letsencrypt/live/beta.testdrive.airavata.org/fullchain.pem" +ssl_certificate_key_file: "/etc/letsencrypt/live/beta.testdrive.airavata.org/privkey.pem" ## WSO2 IS related variables tenant_domain: "prod.testdrive" http://git-wip-us.apache.org/repos/asf/airavata/blob/22e97985/dev-tools/ansible/pga-scigap-prod.yml ---------------------------------------------------------------------- diff --git a/dev-tools/ansible/pga-scigap-prod.yml b/dev-tools/ansible/pga-scigap-prod.yml index e40417c..0e58808 100644 --- a/dev-tools/ansible/pga-scigap-prod.yml +++ b/dev-tools/ansible/pga-scigap-prod.yml @@ -21,5 +21,6 @@ --- - include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/seagrid" - include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/testdrive" +- include: pga-single-vhost.yml vars_dir="{{ inventory_dir }}/pga_config/scigap" ...
