You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@airavata.apache.org by er...@apache.org on 2019/05/31 14:28:14 UTC
[airavata] branch master updated: Moving pfec-hydro/future water
gateway to Jetstream with the storage
This is an automated email from the ASF dual-hosted git repository.
eroma pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/airavata.git
The following commit(s) were added to refs/heads/master by this push:
new 74ab3d4 Moving pfec-hydro/future water gateway to Jetstream with the storage
74ab3d4 is described below
commit 74ab3d4641b9aa12cfda08aa7158203dbeae3c22
Author: Eroma Abeysinghe <er...@gmail.com>
AuthorDate: Fri May 31 10:28:02 2019 -0400
Moving pfec-hydro/future water gateway to Jetstream with the storage
---
.../pfec-hydro production/group_vars/pga/vars.yml | 74 ++++++++++++++++++++++
.../pfec-hydro production/group_vars/pga/vault.yml | 18 ++++++
.../inventories/scigap/pfec-hydro production/hosts | 21 ++++++
3 files changed, 113 insertions(+)
diff --git a/dev-tools/ansible/inventories/scigap/pfec-hydro production/group_vars/pga/vars.yml b/dev-tools/ansible/inventories/scigap/pfec-hydro production/group_vars/pga/vars.yml
new file mode 100644
index 0000000..4e7b298
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/pfec-hydro production/group_vars/pga/vars.yml
@@ -0,0 +1,74 @@
+#
+#
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+
+---
+
+user_data_dir: "/var/www/portals/gateway-user-data"
+real_user_data_dir: "/data/gateway-user-data"
+## Airavata Client related variables
+airavata_server: "tls://{{ groups['api-orch'][0] }}"
+airavata_port: "9930"
+airavata_profile_service_server: "{{ groups['api-orch'][0] }}"
+oauth_service_url: "https://iam.scigap.org/auth"
+
+pga_repo: "https://github.com/Danko-Lab/airavata-php-gateway.git"
+pga_git_branch: "dreg-gateway"
+user: "pga"
+group: "pga"
+doc_root_dir: "/var/www/portals/{{ gateway_id }}"
+vhost_servername: "dreg.dnasequence.org"
+vhost_ssl: True
+# TODO: have Ansible manage these files as well
+ssl_certificate_file: "/etc/letsencrypt/live/dreg.dnasequence.org/cert.pem"
+ssl_certificate_chain_file: "/etc/letsencrypt/live/dreg.dnasequence.org/fullchain.pem"
+ssl_certificate_key_file: "/etc/letsencrypt/live/dreg.dnasequence.org/privkey.pem"
+pga_ssl_vhost_template: "{{ inventory_dir }}/files/pga-ssl-vhost.conf.j2"
+
+## Keycloak related variables
+tenant_domain: "{{ gateway_id }}"
+admin_username: "admin"
+admin_password: "{{ vault_admin_password }}"
+oauth_client_key: "{{ vault_oauth_client_key }}"
+oauth_client_secret: "{{ vault_oauth_client_secret }}"
+oidc_discovery_url: "https://iam.scigap.org/auth/realms/{{ tenant_domain }}/.well-known/openid-configuration"
+# dREG gateway automatically gives users the gateway-user role so they don't have to wait on admin approval
+initial_role_name: "gateway-user"
+
+auth_options:
+ - name: "dREG"
+ oauth_grant_type: "password"
+oauth_callback_url: "https://{{ vhost_servername }}/callback-url"
+
+gateway_id: "cornelldna"
+# relative to document root dir
+experiment_data_dir: "{{ user_data_dir }}/cornell-dnasequence"
+gateway_data_store_resource_id: "js-156-72.jetstream-cloud.org_758cf5c0-71f4-4268-bb42-5ede23cfeea9"
+gateway_data_store_ssh_public_key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCTs6k2lSt5nn+UF3N1rAko9WjdtHZ1xLcKxCG4+4AVMdTIeng12g+1qB5hIFiDgesT/D/nzoA27EFj5nWiYanxBySNgl1Re8kR0nEqQbR0zj1dSibmfjW+vmOZzEiNSrNoLlc4KbFgqFCRGIlZ1bWZ7yHtJ3I7xxfKhvvxCTzJ4K71v1aovnDTUYophy2lUsdOcOq84Qhv3ITZafgblz3mJSwVpnnI72IepzonzDUdcf/w0lKCl70L9MgQAZ2V4e9sQZWJLI5s1VtJsqKggtgI4goPyxXROoH9PTUZFqvvYjLGW8JVS9eZKblSKil09yckPfZCSk1i/UD/uY6O7bjf"
+
+## Portal related variables
+super_admin_portal: "false"
+admin_emails: "['zw355@cornell.edu','sgrc-iu-group@iu.edu']"
+portal_email_username: "pga.airavata@gmail.com"
+portal_email_password: "{{ vault_portal_email_password }}"
+# The portal theme is included in the dreg-gateway branch of airavata-php-gateway
+portal_theme: "dreg"
+portal_title: "dREG DNA Sequencing"
+pga_google_analytics_id: "UA-111528347-3"
+...
diff --git a/dev-tools/ansible/inventories/scigap/pfec-hydro production/group_vars/pga/vault.yml b/dev-tools/ansible/inventories/scigap/pfec-hydro production/group_vars/pga/vault.yml
new file mode 100644
index 0000000..d10aef2
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/pfec-hydro production/group_vars/pga/vault.yml
@@ -0,0 +1,18 @@
+$ANSIBLE_VAULT;1.1;AES256
+30633363633061346666386462336238663331363234646631653163306264633566663239303433
+3163303835373161636632633561386362393364633963390a653133356165376562323435396237
+32646466353535383037393636643230343261346233643564363365633462623139373837666538
+6331373635663032640a376538366139303139386263333733643662356234376630366533366532
+66346632363632633837373366326638393931393036373663336463633961346364356165333635
+37303135643763356532633663326264313562646565343533393235626333333265303365663638
+61356530303235303664323765326634386562386435646130633835666461636263303138373036
+64396537356331656630313231666563346435363339613032623131373262663238363732306532
+37333734313034336531343361303834313961316632343535653864396461383230613535666435
+39613764396463616634633965643165313939336635633963646565353136653634373631313662
+64326436616137313837343339343132306234376465396165643661316331646162386465643931
+38336461353763666133303533396537626537666266363036366232363639663930393133623730
+62333834623663613030333432623631666666643836373537316536336533336635633631666234
+65356262313762616664626162396464653036616338333338363366653764383066653530613533
+36646234666431646239316437383431303361366566653962663062633530613138623263643034
+35373532633435356133343565313432666231306530356435653261656462626165393438376334
+3933
diff --git a/dev-tools/ansible/inventories/scigap/pfec-hydro production/hosts b/dev-tools/ansible/inventories/scigap/pfec-hydro production/hosts
new file mode 100644
index 0000000..3ae09d5
--- /dev/null
+++ b/dev-tools/ansible/inventories/scigap/pfec-hydro production/hosts
@@ -0,0 +1,21 @@
+---
+# inventory file : scigap production deployment
+
+[zookeeper]
+scigap02.sciencegateways.iu.edu
+
+[rabbitmq]
+scigap02.sciencegateways.iu.edu
+
+[database]
+scigap01.sciencegateways.iu.edu
+
+[api-orch]
+scigap02.sciencegateways.iu.edu
+
+[gfac]
+scigap03.sciencegateways.iu.edu
+
+[pga]
+# Hosted on Jetstream
+149.165.171.92 ansible_user=centos