mozilla / awsbox Goto Github PK

Long script commands can easily exceed the exec() buffer size. I think the streaming approach would fit better here.

For security reasons, it would be useful to have the option to pass user data (http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AESDG-chapter-instancedata.html) to the "create" sub-command. If this is of interest to anyone, I'll try to fit in a pull request for it.

forever is in app's path, node isn't.

Workaround: /usr/local/bin/node ~/node_modules/.bin/forever list

Currently the project uses aws-lib, which is fine. But awssum is better in terms of api coverage and simplicity. I experimented with a port and the amount of work is low, and the net change is rather small.

/cc @chilts @6a68

Node 0.10 is out and some libraries are starting to depend on it.

Would it be possible to install nvm (Node Version Manager) on the ami and configure which version of node will run during instance creation?

Log files grow without limit. How about rotating them daily and by default removing logs over seven days old?

For example, for a process foo specified in the .awsbox.json file, the setup scripts could create /etc/logrotate.d/foo with the following contents:

/home/app/var/log/foo.log {
    missingok
    notifempty
    copytruncate
    rotate 7
}

I don't know what the best way to make all these crazy parameters available through the config is. Perhaps the addition of the argument --log-rotate-days would be enough?

the 503 page mentions browserid. It should talk about awsbox instead and provide basic instructions for how to deploy via git.

with something like

awsbox create -t t1.micro foo

Should be able to list available sizes with:

awsbox create -h

After rebooting the server instance in the EC2 Management Console the app doesn't startup. the http-proxy seems to be running as I get the default 500 page.

the app log file says: "warn: Forever detected script exited with code: null"

I'd love to see this support a proxy that is http 1.1 compatible (HAProxy, node-http-proxy) - the use of nginx prohibits this from being able to use web sockets, which is a bummer.

is needed

For various external reasons, I use the official ubuntu AMIs on AWS. It would be totally awsome if awsbox was natively able to use them (including juju/upstart/APT integration)

cause it's time

I have a problem on here using the current awsbox setup with connect-assets it doesn't seem to find my css or even start my app in production.

Would it be possible to update your template AMI's cairo installation according to https://github.com/LearnBoost/node-canvas/wiki/Installation---Amazon-Linux-AMI-%28EC2%29 ? I'd love to use awsbox "out of the box" for an app using this library and currently, this fails.

The initial vm creation runs yum to install updates. It correctly resolves dependencies, but then fails when downloading packages with errors like:

http://packages.us-east-1.amazonaws.com/2012.03/updates/d7a89e5442bd/x86_64/Packages/aws-apitools-ec2-1.6.0.0-1.0.amzn1.noarch.rpm: [Errno -1] Package does not match intended download. Suggestion: run yum --enablerepo=amzn-updates clean metadata
Trying other mirror.

Not sure what it means--the packages are failing a checksum it expects from cached metadata?

Not sure what the correct behavior for awsbox is when this happens. Running the clean metadata command might fix this particular problem, but yum could fail for a number of reasons outside of awsbox's control.

The one thing I would change for sure: it would be nice to know if awsbox aborted any further commands needed to set up the vm. My terminal just has a bunch of errors from yum and that's it--I don't know what (if anything) got skipped.

like, npm install --production

?

if you've got a nodejs script under server/bin/bigtent, the push fails because path to logfile relies on subdirectories that don't exist.

I had a quick look into the code and it shouldn't be too difficult. I guess the main problem would be maintaining AMI's cross region. That may be a nightmare...

http://www.webpagetest.org/result/121010_P6_8HF/1/performance_optimization/#compress_text

(originally filed at mozilla/123done#43)

I only had a DSA key, and "awsbox create" doesn't use it. It should support DSA keys, or if there is a good reason to only support RSA, then the tutorial should tell you to make one.

On several occasions I did a destroy and create with the same name.

Sometimes awsbox removes the remote and other times it didn't. If it didn't, then git has the old IP address in .git/config.

I see code in awsbox.js and lib/git.js for cleaning up remotes, so not too sure. I didn't see any errors after the destroy command.

STR

1. ./node_modules/.bin/awsbox create -n devbigtent
2. ./node_modules/.bin/awsbox destroy devbigtent

Expected

git remote should only show my normal remotes

Actual

git remote has awsbox generated IP address.

This doesn't repro 100% of the time... try several times, maybe doing a git push to the box, etc.

Why is there lloyd's public ssh key in my ec2-user directory? I'm a little bit concerned with this.

this is not discoverable nor symmetric with how the app user works.

It would be useful to have an option to specify ports to open in addition to the defaults in awsbox. E.g., smtp.

It would be great if awsbox generated a self-signed certificate and made your node app available over https.

After initial creation, a user can easily overwrite the certs with a real SSL cert and aws won't step on it during later deployments.

Is this currently possible? Can't see anything in the docs. If not then I guess this is a feature request...

Wondering if that is in configs?

SSL seems to be enabled even though the box was created with --ssl disable, and needs a manual restart for it to kick in.

something like

awsbox create -u http://123done.org 123done

this url should then be available to deployment in environment

Had some trouble tearing down the translate environment this afternoon, @lloyd suspected it was an awsbox DNS bug:

jareds-partybus-2:mozilla-browserid jhirsch$ ./scripts/deploy.js destroy translate
awsbox cmd: node_modules/.bin/awsbox destroy translate
trying to destroy VM for translate: failed: no such vm

Meanwhile, I saw the entry in the list of active awsbox nodes:

jareds-partybus-2:mozilla-browserid jhirsch$ ./scripts/deploy.js list
awsbox cmd: node_modules/.bin/awsbox list

... 

  translate {i-60be6301}:   
    23.20.197.43, c1.medium, launched 6 days ago

...

So I used the ID, which unset the DNS, curiously enough:

jareds-partybus-2:mozilla-browserid jhirsch$ ./scripts/deploy.js destroy i-60be6301
awsbox cmd: node_modules/.bin/awsbox destroy i-60be6301
trying to destroy VM for i-60be6301: done
trying to remove git remote: failed: no such remote
trying to remove DNS: translate.personatest.org
deleting translate.personatest.org: done

IIUC, the base awsbox AMI is currently a binary blob, built by hand. It would be great if the details of re-creating this image could be reified in the code, both to document what exactly is on there and to enable re-creating the image if it's accidentally lost.

Some puppet or chef recipes would be ideal, but even just a bash script that does all the configuration would be very useful.

because people do.

we should configure nginx by default to serve /ver.txt so as a user of awsbox you get this feature for free.

Perhaps this will cause issues I haven't thought through, but current when I ssh into an awsbox hostname is something like 'domU-12-30-37-0E-C5-52'.

It would be more useful if awsbox did hostname myname.personatest.org, so when I'm looking through multiple terminal windows I can see which one is which.

This is because the ENV in which we run npm install has a GIT_DIR var in it which breaks things.

STR

1. clone mozilla private repo with ssh keys
2. clone 123done.org
3. npm install
4. ./node_modules/.bin/awsbox create -u http://native-persona.123done.org --ssl disable -n native-persona -t m1.small --keydir ~/identity-pubkeys/

Expected:
Magick

Actual:
At the end of the deploy... boom:

   ... reading public keys from /home/ozten/identity-pubkeys/

fs.js:381
  var r = binding.read(fd, buffer, offset, length, position);
                  ^
Error: EISDIR, illegal operation on a directory
    at Object.fs.readSync (fs.js:381:19)
    at Object.fs.readFileSync (fs.js:208:28)
    at /home/ozten/123done/node_modules/awsbox/lib/key.js:64:24
    at Array.forEach (native)
    at exports.addKeysFromDirectory (/home/ozten/123done/node_modules/awsbox/lib/key.js:61:11)
    at Object.oncomplete (fs.js:297:15)

Rather than calling the executable from node_modules, allow a global installation of the executable?

http://pastebin.mozilla.org/1648943

Actual:
noname in .git/config

Expected:
temporary_oauth_bigtent

currently there are some features to automatically set up DNS. it would be useful to move them off of zerigo and onto route53 - given that users of awsbox already have an amazon account.

Not sure what I'm asking for exactly....

Use case: I need to update 10.0.4.21 and that is running codebase X.

I stumble around in the X repo trying to remember which steps to do.

I inevitably read my .git/config to figure out 10.0.4.21 and then remember to git push env-X master:master.

The text shown on first deploy is super helpful. I guess I want that printed again, as well as a list of active deployments for this repo.

./node_modules/.bin/awsbox list shows me {} right now, filed Issue #18.

I'll try to come up with an actual feature request ;) but maybe ./node_modules/.bin/awsbox list and ./node_modules/.bin/awsbox help where help is repo specific.

I could be going completely insane, but I don't think submodules are being initialized by awsbox.

Steps to Reproduce

1. ./node_modules/.bin/awsbox create --help

Actual

A nameless VM is launched

Expected

Help specific to the create command or an error message

-g option has been added to awsbox per
#49

But I do not see it here:
awsbox create -help

We need to document it's use here...
;-)

I haven't touched a deployment in several weeks.

I do

ozten@nutria:~/bigtent$ git push temporary_bigtent master:master
... lots of output, looks good
ozten@nutria:~/bigtent$  ./node_modules/.bin/awsbox list
{}

Hitting 23.20.195.22 I see the app.

That's probably not a good idea because it means awsbox would be Persona-specific, but the initial push takes a really long time and it would be nice if it could be made smaller.

If the AMI had some snapshot of the browserid repo already loaded, it would mean that the first push wouldn't have so many commits to push.

(This is a half-baked idea, but I figured I'd write it down while I'm waiting for my push to finish...)

when you git push, the post-update.js hook currently buffers output of subprocesses and dumps all at once. This sucks. We should incrementally display output on the terminal.