No description
Find a file
2020-05-16 15:12:07 +02:00
ansible Wagtail setup in Ansible 2020-05-16 15:12:07 +02:00
bin Project name 2016-12-09 06:13:01 +01:00
docs Added screenshot 2019-05-16 14:44:47 +02:00
feedler Fix BaseAPIEndpoint deprecation 2020-05-15 21:53:31 +02:00
publichealth Fully privacy links in footer 2020-05-15 21:53:44 +02:00
tests Wagtail 2 support 2019-06-14 22:02:15 +02:00
vagrant Clean up ruby install 2019-08-09 15:19:50 +02:00
.bowerrc Bootstrap SASS theme 2016-12-12 23:43:20 +01:00
.buildpacks Buildpacks 2017-03-27 23:51:01 +02:00
.dockerfile Python 3.6.3 2018-05-16 15:05:16 +02:00
.dockerignore Deployment optimized 2019-09-09 19:38:13 +02:00
.editorconfig Bootstrap SASS theme 2016-12-12 23:43:20 +01:00
.gitignore Migrated from bower to yarn and from ruby-sass to node-sass 2019-08-09 15:17:25 +02:00
ansible.cfg Wagtail setup in Ansible 2020-05-16 15:12:07 +02:00
bitbucket-pipelines.yml bitbucket-pipelines.yml added 2017-01-18 14:26:48 +00:00
CHANGELOG.md Updated to Wagtail 1.13 2017-10-23 09:42:52 +02:00
fabfile.py Project name 2016-12-09 06:13:01 +01:00
Gruntfile.js Migrated from bower to yarn and from ruby-sass to node-sass 2019-08-09 15:17:25 +02:00
LICENSE.md Added license, updated README 2017-05-05 16:10:24 +02:00
Makefile backup-data script 2020-05-15 21:53:01 +02:00
manage.py Wagtail 2 support 2019-06-14 22:02:15 +02:00
package.json Migrated from bower to yarn and from ruby-sass to node-sass 2019-08-09 15:17:25 +02:00
Pipfile Bump django from 2.1.15 to 2.2.10 2020-02-11 23:05:28 +00:00
Pipfile.lock Updated libraries, Wagtail 2.9 2020-05-15 21:52:40 +02:00
Procfile Db config 2017-03-28 00:43:55 +02:00
README.md Wagtail setup in Ansible 2020-05-16 15:12:07 +02:00
requirements-test.txt Updated deps 2020-02-18 17:01:31 +01:00
requirements.txt Updated libraries, Wagtail 2.9 2020-05-15 21:52:40 +02:00
runtime.txt Python version 2017-03-27 23:32:32 +02:00
stellar.yaml Project name 2016-12-09 06:13:01 +01:00
Vagrantfile Project name 2016-12-09 06:13:01 +01:00
yarn.lock Update frontend reqs 2019-09-09 18:59:07 +02:00

Public Health Schweiz

Website of the Swiss Society for Public Health, developed by datalets,ch using the open source, Django-based Wagtail CMS. The frontend is implemented by moving water using Bootstrap framework.

This project is open source under the MIT License.

Dependency Status

Development environment

The easiest way to set up your machine would be to use Vagrant, then in the project folder in the terminal type: vagrant up. Then when it is ready, follow instructions for publichealth/static/org/archive-message.html#Database setup.

To set up a full development environment, follow all these instructions.

Frontend setup

Make sure a recent version of node.js (we recommend using nave.sh), then:

npm install -g yarn grunt-cli
yarn install

The first command (..install -g..) may require sudo if you installed node.js as a system package. Afterwards, to compile the frontend, you should be able to run:

grunt

If you are only working on the frontend, you can start a local webserver and work on frontend assets without the backend setup described below. There is a grunt browser-sync setup for working with frontend assets.

(In a Vagrant shell, use the alias watch)

Backend setup

If not using Vagrant: after installing Python 3, from the project folder, deploy system packages and create a virtual environment as detailed (for Ubuntu users) below:

sudo apt-get install python3-venv python3-dev libjpeg-dev

pyvenv env
. env/bin/activate

pip install -U pip
pip install -r requirements.txt

At this point your backup is ready to be deployed.

Database setup

Once your installation is ready, you can get a blank database set up and add a user to login with.

If you are using Vagrant, enter the shell of your virtual machine now with vagrant ssh

Run these commands:

./manage.py migrate
./manage.py createsuperuser

You will be asked a few questions to create an administrator account.

Starting up

If you have one installed, also start your local redis server (service redis start).

After completing setup, you can use:

./manage.py runserver

(In a Vagrant shell, just use djrun)

Now access the admin panel with the user account you created earlier: http://localhost:8000/admin/

Troubleshooting

  • Issues with migrating database tables in SQLite during development? Try ./manage.py migrate --fake

Production notes

We use Ansible and Docker Compose for automated deployment.

To use Docker Compose to manually deploy the site, copy ansible/roles/web/templates/docker-compose.j2 to /docker-compose.yml and fill in all {{ variables }}. This can also be done automatically in Ansible.

Install or update the following roles from Ansible Galaxy to use our scripts:

ansible-galaxy install \
   dev-sec.nginx-hardening \
   dev-sec.ssh-hardening \
   dev-sec.os-hardening \
   geerlingguy.nodejs

To check that the scripts and roles are correctly installed, use this command to do a "dry run":

ansible-playbook ansible/*.yaml -i ansible/inventories/production --list-tasks

If you only want to run a certain set of actions, subset the tags which you see in the output above. For example, to only update the NGINX configuration:

ansible-playbook ansible/web.yaml -i ansible/inventories/production --tags "nginx_template_config"

To do production deployments, you need to obtain SSH and vault keys from your system administrator (who has followed the Ansible guide to set up a vault..), and place these in a .keys folder. To deploy a site:

ansible-playbook ansible/*.yaml -i ansible/inventories/production

For an update release with a specific version (tag or branch), use (the -v parameter showing output of commands):

ansible-playbook ansible/site.yaml -i ansible/inventories/production --tags release -v -e gitversion=<v*.*.*>

Once the basic system set up, i.e. you have an ansible user in the sudoers and docker group, you are ready to run the playbook.

The typical order of deployment is:

  • internet.yaml
  • docker.yaml
  • node.yaml
  • web.yaml
  • wagtail.yaml

Production releases

For further deployment and system maintenance we have a Makefile which automates Docker Compose tasks. This should be converted to use Ansible Container. In the meantime, start a release with Ansible, then complete it using make, i.e.:

ansible-playbook -i ansible/inventories/production --tags release ansible/site.yaml
ssh -i .keys/ansible.pem ansible@<server-ip> "cd <release_dir> && make release"

This is already part of the normal release cycle, but if you wish to update the Docker images to the latest versions separately, use:

make upgrade

Restoring a data backup

For development, it's handy to have access to a copy of the production data. To delete your local database and restore from a file backup, run:

rm publichealth-dev.sqlite3
python manage.py migrate
python manage.py loaddata publichealth.home.json

You might want to createsuperuser again at this point.