diff --git a/mywiki/tiddlers/Allergy.tid b/mywiki/tiddlers/Allergy.tid new file mode 100644 index 0000000..c12f962 --- /dev/null +++ b/mywiki/tiddlers/Allergy.tid @@ -0,0 +1,15 @@ +created: 20170711193945387 +creator: user +modified: 20170723112421841 +modifier: user +tags: +title: Allergy +type: text/vnd.tiddlywiki + +Allergie + +* http://www.matras.info/informatie-over-huisstofmijt.php + +* https://www.shop.philips.nl/huishoudelijke-artikelen/accessoires-voor-stofzuigers/filters-en-accessoires-voor-stofzuigers/s-filter-uitblaasfilter/p/FC8038_01 + +* https://www.caracair.nl \ No newline at end of file diff --git a/mywiki/tiddlers/Baseline for Front-End Developers.tid b/mywiki/tiddlers/Baseline for Front-End Developers.tid new file mode 100644 index 0000000..72923d1 --- /dev/null +++ b/mywiki/tiddlers/Baseline for Front-End Developers.tid @@ -0,0 +1,13 @@ +created: 20170811162201599 +creator: user +modified: 20171010214621235 +modifier: user +tags: +title: Baseline for Front-End Developers +type: text/vnd.tiddlywiki + +; A Baseline for Front-End Developers +: http://rmurphey.com/blog/2012/04/12/a-baseline-for-front-end-developers + +; A test-driven approach to assessing JS skills +: https://github.com/rmurphey/js-assessment diff --git a/mywiki/tiddlers/Distributed.tid b/mywiki/tiddlers/Distributed.tid new file mode 100644 index 0000000..50e7eb1 --- /dev/null +++ b/mywiki/tiddlers/Distributed.tid @@ -0,0 +1,12 @@ +created: 20171031211836537 +creator: user +modified: 20171031211950996 +modifier: user +tags: +title: Distributed +type: text/vnd.tiddlywiki + +* https://datproject.org/ +* https://beakerbrowser.com/docs/using-beaker/ +* https://discuss.ipfs.io/t/how-does-ipfs-compare-with-x/465/16 +* https://matrix.org/ diff --git a/mywiki/tiddlers/ELM language.tid b/mywiki/tiddlers/ELM language.tid index e0d4e82..f947436 100644 --- a/mywiki/tiddlers/ELM language.tid +++ b/mywiki/tiddlers/ELM language.tid @@ -1,6 +1,6 @@ created: 20170204131710165 creator: user -modified: 20170322090810261 +modified: 20171102084440393 modifier: user tags: title: ELM language @@ -40,4 +40,13 @@ type: text/vnd.tiddlywiki : https://learnxinyminutes.com/docs/elm/ ; Create Elm type aliases and decoders based on JSON input -: https://github.com/eeue56/json-to-elm \ No newline at end of file +: https://github.com/eeue56/json-to-elm + +; How JSON decoding works in Elm +: https://8thlight.com/blog/kofi-gumbs/2017/06/28/elm-json-decoding-types.html +: https://8thlight.com/blog/kofi-gumbs/2017/07/17/elm-json-decoding-data-structures.html +: https://8thlight.com/blog/kofi-gumbs/2017/08/29/elm-json-decoding-custom.html + +; Deocoding JSON in Elm +: http://elmplayground.com/decoding-json-in-elm-1 + diff --git a/mywiki/tiddlers/GitHub.tid b/mywiki/tiddlers/GitHub.tid index 6c488b4..2143c34 100644 --- a/mywiki/tiddlers/GitHub.tid +++ b/mywiki/tiddlers/GitHub.tid @@ -1,10 +1,11 @@ created: 20160405203401788 creator: user -modified: 20160509160554167 +modified: 20170811162356416 modifier: user tags: title: GitHub type: text/vnd.tiddlywiki * https://github.com/aikomastboom -* https://rawgit.com \ No newline at end of file +* https://rawgit.com +* https://developer.github.com/v3/ diff --git a/mywiki/tiddlers/Home Automation.tid b/mywiki/tiddlers/Home Automation.tid new file mode 100644 index 0000000..ea8b68e --- /dev/null +++ b/mywiki/tiddlers/Home Automation.tid @@ -0,0 +1,9 @@ +created: 20171030083459347 +creator: user +modified: 20171030083551806 +modifier: user +tags: +title: Home Automation +type: text/vnd.tiddlywiki + +* https://home-assistant.io/ diff --git a/mywiki/tiddlers/Mail.tid b/mywiki/tiddlers/Mail.tid index fad4b7d..38088f2 100644 --- a/mywiki/tiddlers/Mail.tid +++ b/mywiki/tiddlers/Mail.tid @@ -1,6 +1,6 @@ created: 20160225204139217 creator: user -modified: 20160428103455603 +modified: 20170707195044336 modifier: user tags: title: Mail @@ -16,4 +16,14 @@ type: text/vnd.tiddlywiki : http://dkimcore.org/specification.html ; aiko.sh DNS -: https://www.transip.nl/cp/domein-hosting/domeinnaam/prm/1460720/aiko.sh/ \ No newline at end of file +: https://www.transip.nl/cp/domein-hosting/domeinnaam/prm/1460720/aiko.sh/ + +; Catch-ALL Synology +``` +## Catchall email address +luser_relay = aiko +local_recipient_maps = + +/var/packages/MailServer/target/etc/template/main.template +/volume1/@appstore/MailServer/etc/main.cf +``` diff --git a/mywiki/tiddlers/PouchDB.tid b/mywiki/tiddlers/PouchDB.tid new file mode 100644 index 0000000..90de35f --- /dev/null +++ b/mywiki/tiddlers/PouchDB.tid @@ -0,0 +1,9 @@ +created: 20170505073830221 +creator: user +modified: 20170505073843805 +modifier: user +tags: +title: PouchDB +type: text/vnd.tiddlywiki + +https://pouchdb.com/ \ No newline at end of file diff --git a/mywiki/tiddlers/SSH-Keygen.tid b/mywiki/tiddlers/SSH-Keygen.tid new file mode 100644 index 0000000..5885053 --- /dev/null +++ b/mywiki/tiddlers/SSH-Keygen.tid @@ -0,0 +1,9 @@ +created: 20170324093759641 +creator: user +modified: 20170425095006358 +modifier: user +tags: ssh +title: SSH-Keygen +type: text/vnd.tiddlywiki + +`ssh-keygen -t rsa -b 2048` diff --git a/mywiki/tiddlers/Serverless.tid b/mywiki/tiddlers/Serverless.tid new file mode 100644 index 0000000..7c16560 --- /dev/null +++ b/mywiki/tiddlers/Serverless.tid @@ -0,0 +1,10 @@ +created: 20170703080120052 +creator: user +modified: 20170703080222888 +modifier: user +tags: +title: Serverless +type: text/vnd.tiddlywiki + +; Build auto-scaling, pay-per-execution, event-driven apps on AWS Lambda +: https://serverless.com \ No newline at end of file diff --git a/mywiki/tiddlers/curl timings.tid b/mywiki/tiddlers/curl timings.tid new file mode 100644 index 0000000..37f70f6 --- /dev/null +++ b/mywiki/tiddlers/curl timings.tid @@ -0,0 +1,22 @@ +created: 20171020121559129 +creator: user +modified: 20171020121704264 +modifier: user +tags: +title: curl timings +type: text/vnd.tiddlywiki + +```txt +# cat curl-format.txt +\n + time_namelookup: %{time_namelookup}\n + time_connect: %{time_connect}\n + time_appconnect: %{time_appconnect}\n + time_pretransfer: %{time_pretransfer}\n + time_redirect: %{time_redirect}\n + time_starttransfer: %{time_starttransfer}\n + ----------\n + time_total: %{time_total}\n +\n +``` +`curl -w "@curl-format.txt" ...` \ No newline at end of file diff --git a/mywiki/tiddlers/deploy to LIVE.tid b/mywiki/tiddlers/deploy to LIVE.tid new file mode 100644 index 0000000..5777f66 --- /dev/null +++ b/mywiki/tiddlers/deploy to LIVE.tid @@ -0,0 +1,57 @@ +created: 20171113142528313 +creator: user +modified: 20171116221552388 +modifier: user +tags: +title: deploy to LIVE +type: text/vnd.tiddlywiki + +! bronnen +* https://docs.google.com/document/d/1v6bZ_sbYht6MMaFAsiFaO_6f8uzVxK4nRpqey77PTLg/edit + + + +! auth +```sh +mkdir .dobi/live.auth +unzip -d .dobi/live.auth ~/Downloads/auth-productie.zip # taken from LastPass + +export KEY_DIRECTORY_PATH=`pwd`/.dobi/live.auth + +VERSION=3.1.8-509d6a3802 DB_PASSWORD=JKkqy78987df98sf982h3kj2hkjPwkjdbfkjwbfssj ./operations/deployment/deploy.auth.digitalefactuur.nl.sh +VERSION=3.1.8-509d6a3802 DB_PASSWORD=JKkqy78987df98sf982h3kj2hkjPwkjdbfkjwbfssj ./operations/deployment/deploy.auth.vrendly.nl.sh + + +``` +* https://auth.vrendly.nl/info/version +* https://auth.digitalefactuur.nl/info/version + + +! genifer + +```sh +# export KEY_DIRECTORY_PATH=/Users/fruit/Development/df-genifer-auth/.dobi/live.auth + + +VERSION=0.3.37-9c80990b77 APP_KEY=base64:4MYL3w/bnFCUePRpkReFoWQghPgVVKMfc19ehBCyVks= DB_PASSWORD=JKjkshfwehufy2dwegf723gewJJsjgcgsi84345345 TOKEN_SECRET=2AYMLm7sx8PbrrFs9PD88z9zGr8bJ49q ./operations/deployment/deploy.portal.genifer.xyz.sh +``` +* https://portal.genifer.xyz/api/version + +! victor + +Config is read from disk for LIVE deployment. You need to put contents of ''LASTPASS "portal-api.vrendly live victor config"'' secret note into `./operations/deployment/portal-api.vrendly.nl.json` + +```sh +VERSION=3.0.74-39acb24894 DB_PASSWORD=Hjf729hvkjlller7cg37rgllhukKhfjdkkskHdf839 TOKEN_SECRET=dowkfMsUrknjkGegnwguGwEiQqr4NW6Q ./operations/deployment/deploy.portal-api.vrendly.nl.sh + +``` +* https://portal-api.vrendly.nl/site/version + +! vrendly +```sh +VERSION=2.0.60-22f135a730./operations/deployment/deploy.acceptatie.vrendly.bjoola.com.sh + +``` +* https://acceptatie.vrendly.bjoola.com + + diff --git a/mywiki/tiddlers/deploy to acceptatie-monolith.tid b/mywiki/tiddlers/deploy to acceptatie-monolith.tid new file mode 100644 index 0000000..7fde2e0 --- /dev/null +++ b/mywiki/tiddlers/deploy to acceptatie-monolith.tid @@ -0,0 +1,70 @@ +created: 20171027093032805 +creator: user +modified: 20171116175642313 +modifier: user +tags: +title: deploy to acceptatie-monolith +type: text/vnd.tiddlywiki + +``` +Host acceptatie-monolith + Hostname 192.168.0.216 + User www-data + +``` + + + +! auth +```sh +mkdir .dobi/acceptatie.auth.bjoola.com +unzip -d .dobi/acceptatie.auth.bjoola.com ~/Downloads/auth-acceptatie.zip # taken from LastPass + +export KEY_DIRECTORY_PATH=`pwd`/.dobi/acceptatie.auth.bjoola.com + +VERSION=3.1.8-509d6a3802 DB_PASSWORD=j203hfkdkfjsdkf ./operations/deployment/deploy.acceptatie.auth.bjoola.com.sh + +``` +* https://acceptatie.auth.bjoola.com/info/version + + +! genifer + +```sh +# export KEY_DIRECTORY_PATH=/Users/fruit/Development/df-genifer-auth/.dobi/acceptatie.auth.bjoola.com + + +VERSION=0.4.3-6775fead6d APP_KEY=base64:+sPD7qv0Ry3RPFbhsFKZoKYATLd30YIPS4G6D5CSVWA= DB_PASSWORD=Bcd98992221 TOKEN_SECRET=gKnm7iwCaDfWzG84hCR37C4EH3YH662Y ./operations/deployment/deploy.acceptatie.genifer.bjoola.com.sh +``` +* https://acceptatie.genifer.bjoola.com/api/version + +! victor +```sh +# Vrendly +VERSION=3.1.17-115c925513 DB_PASSWORD=234kjhkjHJ TOKEN_SECRET=xPDp763hJvRy732ETXHyUAj8f8VNcs27 ./operations/deployment/deploy.acceptatie.vrendly-api.bjoola.com.sh + +``` +* https://acceptatie.vrendly-api.bjoola.com/site/version + +```sh +# CreditForce +VERSION=3.1.20-ebc55aa393 DB_PASSWORD=4dAssfds221 TOKEN_SECRET=dg2o29MZLEBNA3dJ99Rvu8mr63eH6iUk ./operations/deployment/deploy.acceptatie.creditforce-api.bjoola.com.sh + +``` +* https://acceptatie.creditforce-api.bjoola.com/site/version + + + +! vrendly +```sh +VERSION=2.0.79-bfcfce5ad4 ./operations/deployment/deploy.acceptatie.vrendly.bjoola.com.sh + +``` +* https://acceptatie.vrendly.bjoola.com + +! creditForce +```sh +VERSION=2.0.80-cf-4b452877e5 ./operations/deployment/deploy.acceptatie.creditforce.bjoola.com.sh + +``` +* https://acceptatie.creditforce.bjoola.com diff --git a/mywiki/tiddlers/deploy to dev-monolith.tid b/mywiki/tiddlers/deploy to dev-monolith.tid new file mode 100644 index 0000000..b2bd4ea --- /dev/null +++ b/mywiki/tiddlers/deploy to dev-monolith.tid @@ -0,0 +1,69 @@ +created: 20171026101610571 +creator: user +modified: 20171123170341054 +modifier: user +tags: +title: deploy to dev-monolith +type: text/vnd.tiddlywiki + +``` +Host dev-monolith + Hostname 192.168.0.215 + User www-data +``` + + +! auth +```sh +mkdir .dobi/dev.auth.bjoola.com +cd .dobi/dev.auth.bjoola.com +unzip ~/Downloads/auth-development.zip # taken from LastPass +export KEY_DIRECTORY_PATH=`pwd`/.dobi/dev.auth.bjoola.com + +#git checkout hash with correct version +VERSION=3.1.8-509d6a3802 DB_PASSWORD=Hkskskppapa1 ./operations/deployment/deploy.dev.auth.bjoola.com.sh dev-monolith dev.auth.bjoola.com `pwd`/.dobi/dev.auth.bjoola.com + +# version: "3.1.8-509d6a3802" +``` +* https://dev.auth.bjoola.com/info/version + + +! genifer + +```sh +# export KEY_DIRECTORY_PATH=/Users/fruit/Development/df-genifer-auth/.dobi/dev.auth.bjoola.com + +VERSION=0.4.4-ee19b0d147 APP_KEY=base64:fV8Ff5D3qKUWkM0wm5kUBN2I/TwMPRg4Bfqj0K7+xIQ= DB_PASSWORD=VBbakidofsdooos ./operations/deployment/deploy.dev.genifer.bjoola.com.sh + +``` +* https://dev.genifer.bjoola.com/api/version + +! victor +```sh +# Vrendly +VERSION=3.1.20-ebc55aa393 DB_PASSWORD=HJkj234ouoa TOKEN_SECRET=secret ./operations/deployment/deploy.dev.vrendly-api.bjoola.com.sh +``` +* https://dev.vrendly-api.bjoola.com/site/version + +```sh +# CreditForce +VERSION=3.1.20-ebc55aa393 DB_PASSWORD=4sdf2As221 TOKEN_SECRET=secret ./operations/deployment/deploy.dev.creditforce-api.bjoola.com.sh +``` +* https://dev.creditforce-api.bjoola.com/site/version + + + +! vrendly +```sh +VERSION=2.0.79-94499ddca7 ./operations/deployment/deploy.dev.vrendly.bjoola.com.sh + +``` +* https://dev.vrendly.bjoola.com + +! creditForce +```sh +VERSION=2.0.80-cf-4b452877e5 ./operations/deployment/deploy.dev.creditforce.bjoola.com.sh + +``` +* https://dev.creditforce.bjoola.com + diff --git a/mywiki/tiddlers/deploy to staging-monolith.tid b/mywiki/tiddlers/deploy to staging-monolith.tid new file mode 100644 index 0000000..990f63a --- /dev/null +++ b/mywiki/tiddlers/deploy to staging-monolith.tid @@ -0,0 +1,69 @@ +created: 20171113135400229 +creator: user +modified: 20171116154511509 +modifier: user +tags: +title: deploy to staging-monolith +type: text/vnd.tiddlywiki + +``` +Host staging-monolith + Hostname 192.168.0.231 + User www-data +``` + +! auth +```sh +mkdir .dobi/staging.auth.bjoola.com +unzip -d .dobi/staging.auth.bjoola.com ~/Downloads/auth-staging.zip # taken from LastPass + +export KEY_DIRECTORY_PATH=`pwd`/.dobi/staging.auth.bjoola.com + +VERSION=3.1.8-509d6a3802 DB_PASSWORD=Pofsdfd2sf ./operations/deployment/deploy.staging.auth.bjoola.com.sh + +``` +* https://staging.auth.bjoola.com/info/version + + +! genifer + +```sh +# export KEY_DIRECTORY_PATH=/Users/fruit/Development/df-genifer-auth/.dobi/staging.auth.bjoola.com + + +VERSION=0.4.3-6775fead6d APP_KEY=base64:lM5B4Ubh8Bux1i0xn1h3mCI2acUuSo5qVMaQwPSOuVI= DB_PASSWORD=FGHaghasgakj1 TOKEN_SECRET=6aydxXKh8AX3Veq38txB3kXRK6KD979H ./operations/deployment/deploy.staging.genifer.bjoola.com.sh +``` +* https://staging.genifer.bjoola.com/api/version + +! victor +```sh +# Vrendly +VERSION=3.1.17-115c925513 DB_PASSWORD=KJHjhk2dkjdsfs TOKEN_SECRET=7Pt68FV3JHhj3jFN77kbj8cWxVW89zRM ./operations/deployment/deploy.staging.vrendly-api.bjoola.com.sh +``` +* https://staging.vrendly-api.bjoola.com/site/version + + +```sh +# CreditForce +VERSION=3.1.17-115c925513 DB_PASSWORD=4434As221 TOKEN_SECRET=3HJhvyhZpQoYnD3JVwLC976e6a84Xh38 ./operations/deployment/deploy.staging.creditforce-api.bjoola.com.sh + +VERSION=3.1.17-115c925513 DB_PASSWORD=4434As221 TOKEN_SECRET=3HJhvyhZpQoYnD3JVwLC976e6a84Xh38 ./operations/deployment/deploy.staging.creditforce-cycle.bjoola.com.sh + +``` +* https://staging.creditforce-api.bjoola.com/site/version +* https://staging.creditforce-cycle.bjoola.com/site/version + + +! vrendly +```sh +VERSION=2.0.79-bfcfce5ad4 ./operations/deployment/deploy.staging.vrendly.bjoola.com.sh +``` +* https://staging.vrendly.bjoola.com + + +! creditForce +```sh +VERSION=2.0.80-cf-4b452877e5 ./operations/deployment/deploy.staging.creditforce.bjoola.com.sh + +``` +* https://staging.creditforce.bjoola.com \ No newline at end of file diff --git a/mywiki/tiddlers/deploy to staging.vrendly.com.tid b/mywiki/tiddlers/deploy to staging.vrendly.com.tid new file mode 100644 index 0000000..0560861 --- /dev/null +++ b/mywiki/tiddlers/deploy to staging.vrendly.com.tid @@ -0,0 +1,50 @@ +created: 20171030164257059 +creator: user +modified: 20171101213055586 +modifier: user +tags: +title: deploy to staging.vrendly.com +type: text/vnd.tiddlywiki + +; https://beakerbrowser.com/ +: [ext[dat://64b9541fc8e331ce43bb175a10b2a1acf870645399b51fd51a0365965fd55557/deployments.html]] + +! auth +```sh +# NOTE: current staging deployment of auth server uses keys from development, redeployment requires redeploy of genifer too (to keep keys in sync) +#mkdir .dobi/auth-staging.bjoola.nl +#export KEY_DIRECTORY_PATH=`pwd`/.dobi/auth-staging.bjoola.nl +#unzip -d .dobi/auth-staging.bjoola.nl ~/Downloads/staging-acceptatie.zip # taken from LastPass +# + +# !!uses local generated config.json !! see above NOTE +VERSION=3.1.7-2dac593e31 ./operations/deployment/deploy.auth-staging.bjoola.nl.sh +``` +* https://auth-staging.bjoola.nl/info/version + + +! genifer + +```sh +# see NOTE above.. genifer development keys are used and should be in sync with auth. +# export KEY_DIRECTORY_PATH=/Users/fruit/Development/df-genifer-auth/.dobi/auth-staging.bjoola.nl + + +VERSION=0.3.37-9c80990b77 APP_KEY=base64:fV8Ff5D3qKUWkM0wm5kUBN2I/TwMPRg4Bfqj0K7+xIQ= AUTH_SERVER_BASE_URL=https://auth-staging.bjoola.nl ./operations/deployment/deploy.sh staging-monolith.bjoola.nl staging.genifer.bjoola.nl +``` +* https://staging.genifer.bjoola.nl/api/version + +! victor +```sh +VERSION=3.0.74-718c5dfa1a ./operations/deployment/deploy.staging-api.vrendly.nl.sh + +``` +* https://staging-api.vrendly.nl/site/version + +! vrendly +```sh +VERSION=2.0.55-e1575a640e ./operations/deployment/deploy.staging.vrendly.nl.sh + +``` +* https://staging.vrendly.nl + diff --git a/mywiki/tiddlers/genifer test.tid b/mywiki/tiddlers/genifer test.tid new file mode 100644 index 0000000..2888636 --- /dev/null +++ b/mywiki/tiddlers/genifer test.tid @@ -0,0 +1,12 @@ +created: 20171106154044727 +creator: user +modified: 20171106154121607 +modifier: user +tags: +title: genifer test +type: text/vnd.tiddlywiki + +``` +VERSION=0.3.37-9c80990b77 APP_KEY=base64:fV8Ff5D3qKUWkM0wm5kUBN2I/TwMPRg4Bfqj0K7+xIQ= KEY_DIRECTORY_PATH=${KEY_DIRECTORY_PATH} AUTH_SERVER_BASE_URL=https://dev.auth.bjoola.com ./operations/deployment/deploy.sh dev-monolith dev2.genifer.bjoola.com + +VERSION=0.3.44-6e9410d4e5 APP_KEY=base64:fV8Ff5D3qKUWkM0wm5kUBN2I/TwMPRg4Bfqj0K7+xIQ= KEY_DIRECTORY_PATH=${KEY_DIRECTORY_PATH} AUTH_SERVER_BASE_URL=https://dev.auth.bjoola.com ./operations/deployment/deploy.sh dev2-monolith dev2.genifer.bjoola.com diff --git a/mywiki/tiddlers/new monolith.tid b/mywiki/tiddlers/new monolith.tid new file mode 100644 index 0000000..9905c9b --- /dev/null +++ b/mywiki/tiddlers/new monolith.tid @@ -0,0 +1,108 @@ +created: 20171106135117587 +creator: user +modified: 20171113115745353 +modifier: user +tags: +title: new monolith +type: text/vnd.tiddlywiki + +! Configure forward.bjoola.com +edit `/etc/stunnel.conf` + +``` +[ssldevX] +connect = 213.125.205.3:PPP +accept = 127.0.0.1:PPP +``` +edit or create `/etc/nginx/site-enabled/devX.vrendly.nl` + +`certbot certonly -d devX.vrendly.bjoola.com -d devX.auth.bjoola.com -d devX.genifer.bjoola.com -d devX.vrendly-api.bjoola.com` + +! Create monolith on server2 +```sh +ssh server2 +lxc-copy -n docker-default -N monolith-devX +lxc-start -n monolith-devX +lxc-attach -n monolith-devX + ifconfig |grep 192 + # inet addr:192.168.Y.Z Bcast:192.168.255.255 Mask:255.255.0.0 + vi /home/www/.ssh/authorized_keys + # add your id_rsa.pub + vi /root/provision.sh + # insert provision script +``` + [[provision monolith]] + +``` + bash /root/provision.sh +``` +!! stunnel +``` + mkdir /etc/stunnel/keys + vi /etc/stunnel/keys/stunnel.pem +``` +paste pem from other monolith (or from server2) + +``` + vi /etc/stunnel/stunnel.conf +``` +``` +cert = /etc/stunnel/keys/stunnel.pem +[ssl] +accept = 192.168.Y.Z:PPP +connect = 127.0.0.1:80 +``` +``` + vi /etc/default/stunnel4 +``` +``` +ENABLED=1 +``` +!! iptables +``` + vi /etc/iptables/rules.v4 +``` +``` +# Generated by iptables-save v1.4.21 on Tue Oct 17 11:39:15 2017 +*filter +:INPUT DROP [5:676] +:FORWARD ACCEPT [0:0] +:OUTPUT ACCEPT [18:1232] +-A INPUT -i lo -j ACCEPT +-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT +-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT +-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT +-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT +-A INPUT -p tcp -m tcp --dport 443 -j ACCEPT +-A INPUT -p tcp -m tcp --dport PPP -j ACCEPT +COMMIT +# Completed on Tue Oct 17 11:39:15 2017 +``` +``` + exit +exit +``` + +! configure local machine + +edit `~/.ssh/config` + +``` +Host devX-monolith + Hostname 192.168.Y.Z + User www-data +``` + +! configure docker registry +``` +ssh devX-monolith +docker login docker-registry.bjoola.nl +``` + +!Install proxy + +``` +# ~/Development/ci-operations from https://github.com/kantoor-f12/ci-operations.git +$ ./operations/deployment/sync.proxy.sh devX-monolith +``` +Done.. devX should now be ready to get deployed to. \ No newline at end of file diff --git a/mywiki/tiddlers/provision monolith.tid b/mywiki/tiddlers/provision monolith.tid new file mode 100644 index 0000000..322f44d --- /dev/null +++ b/mywiki/tiddlers/provision monolith.tid @@ -0,0 +1,75 @@ +created: 20171106140502612 +creator: user +modified: 20171108122139230 +modifier: user +tags: +title: provision monolith +type: text/vnd.tiddlywiki + +```bash +#!/usr/bin/env bash + +set -e +set -x +apt-get update +apt-get autoremove -y +apt-get upgrade -y +(echo "Europe/Amsterdam" | tee /etc/timezone ; dpkg-reconfigure --frontend noninteractive tzdata) +locale-gen nl_NL.UTF-8 +locale-gen en_US.UTF-8 +update-locale LANG=en_US.UTF-8 LC_ALL=en_US.UTF-8 LANGUAGE=en_US.UTF-8 LC_MONETARY=nl_NL.UTF-8 +export LANG=en_US.UTF-8 +export LC_ALL=en_US.UTF-8 +export LANGUAGE=en_US.UTF-8 +export LC_MONETARY=nl_NL.UTF-8 +apt-get install -y vim rsync htop byobu nmap curl ntp git \ + python-dev libxml2-dev libxslt-dev python-pip sudo wget \ + unattended-upgrades stunnel iptables-persistent +dpkg-reconfigure unattended-upgrades +apt-get install -y software-properties-common +wget -qO- https://get.docker.com/ | sh + +#curl -L "https://github.com/docker/compose/releases/download/1.11.1/docker-compose-$(uname -s)-$(uname -m)" > /usr/local/bin/docker-compose +#chmod +x /usr/local/bin/docker-compose + +pip install --upgrade pip +pip install --upgrade docker-compose + +# make www-data user have homedir and use that account to manage all staging installs + +mkdir -p /home/www +usermod -m -d /home/www www-data || true +usermod -s /bin/bash www-data || true + +# www-data in docker groep + +usermod -aG sudo www-data +usermod -aG docker www-data + +# alles lees/schrijfbaar www-data groep + +chmod -R g+w /home/www + +# SSH +mkdir -p /home/www/.ssh +chmod 700 /home/www/.ssh +cp /root/.ssh/authorized_keys /home/www/.ssh + +# certbot-auto + +#cd /home/www +#wget https://dl.eff.org/certbot-auto +#chmod a+x certbot-auto +#./certbot-auto || true + + +chown -R www-data:www-data /home/www + + +#export EDITOR=vi +#visudo + +# /ect/sudoers +# Allow members of group sudo to execute any command +# %sudo ALL=(ALL:ALL) NOPASSWD:ALL +``` diff --git a/mywiki/tiddlers/syslog-ng.tid b/mywiki/tiddlers/syslog-ng.tid new file mode 100644 index 0000000..18d2d00 --- /dev/null +++ b/mywiki/tiddlers/syslog-ng.tid @@ -0,0 +1,11 @@ +created: 20170706160118607 +creator: user +modified: 20170706160254990 +modifier: user +tags: +title: syslog-ng +type: text/vnd.tiddlywiki + +* https://github.com/phusion/baseimage-docker/blob/master/image/services/syslog-ng/syslog-ng.conf +* https://pzolee.blogs.balabit.com/2011/02/syslog-ng-performance-tuning/ +* https://www.balabit.com/documents/syslog-ng-ose-latest-guides/en/syslog-ng-ose-guide-admin/html/reference-options.html diff --git a/mywiki/tiddlers/use usb stick with docker.tid b/mywiki/tiddlers/use usb stick with docker.tid index 028acd9..a7294b8 100644 --- a/mywiki/tiddlers/use usb stick with docker.tid +++ b/mywiki/tiddlers/use usb stick with docker.tid @@ -1,6 +1,6 @@ created: 20150511071117085 creator: user -modified: 20161112214708856 +modified: 20171002210116759 modifier: user tags: docker [[raspberry pi]] title: use usb stick with docker @@ -106,4 +106,17 @@ vi /etc/systemd/journald.conf [Journal] Storage=none #Storage=auto -``` \ No newline at end of file +``` + +!! Backup + +``` +HypriotOS/armv7: pirate@pi47.aiko.sh in ~ +$ cat /etc/cron.daily/backup +#!/usr/bin/env bash + +docker run --rm=true --env-file=/mnt/usb/pi/aws.env -e SILO=pi47_data -e BACKUP_PATH=/data --volume=/mnt/usb/pi/data:/data:ro aiko/backup >> /var/log/cron.log +#docker run -i -t --rm=true --env-file=/mnt/usb/pi/aws.env -e SILO=pi47_data -e BACKUP_PATH=/data --volume=/mnt/usb/pi/data:/data:ro aiko/backup >> /var/log/cron.log + +# docker run -d --env-file=/mnt/usb/pi/aws.env -e SILO=pi47_data -e BACKUP_PATH=/data --volume=/mnt/usb/pi/data:/data:ro aiko/backup +```