diff --git a/.gitignore b/.gitignore old mode 100644 new mode 100755 diff --git a/.ruby-version b/.ruby-version new file mode 100755 index 0000000..75a22a2 --- /dev/null +++ b/.ruby-version @@ -0,0 +1 @@ +3.0.3 diff --git a/README.MD b/README.MD old mode 100644 new mode 100755 diff --git a/base_images/README.MD b/base_images/README.MD old mode 100644 new mode 100755 diff --git a/base_images/ruby_2_4/Dockerfile b/base_images/ruby_2_4/Dockerfile old mode 100644 new mode 100755 diff --git a/base_images/ruby_2_5/Dockerfile b/base_images/ruby_2_5/Dockerfile old mode 100644 new mode 100755 diff --git a/base_images/ruby_2_6/Dockerfile b/base_images/ruby_2_6/Dockerfile old mode 100644 new mode 100755 diff --git a/base_images/ruby_2_7/Dockerfile b/base_images/ruby_2_7/Dockerfile old mode 100644 new mode 100755 diff --git a/base_images/ruby_3_0/Dockerfile b/base_images/ruby_3_0/Dockerfile old mode 100644 new mode 100755 diff --git a/base_images/ruby_3_0/releaseable/Dockerfile b/base_images/ruby_3_0/releaseable/Dockerfile old mode 100644 new mode 100755 diff --git a/docker-compose.yml b/docker-compose.yml old mode 100644 new mode 100755 index c488509..f294de4 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -22,6 +22,73 @@ services: restart: always depends_on: - db + + eid: + tty: true + stdin_open: true + image: eid + build: + context: ./../eid_manager + links: + - db + environment: + - APP_DBHOST=db + - REDIS_URL=redis://redis:6379/12 + - PARALLEL_WORKERS=1 + volumes: + - ./../eid_manager:/opt/webapps/app + - ./shared/ca:/opt/ca + - tmp:/opt/webapps/app/tmp/ + - ./../:/shared + command: bash -c "rm -f tmp/pids/server.pid && bundle exec rails server -b 0.0.0.0" + restart: always + depends_on: + - db + + eis_billing_system: + tty: true + stdin_open: true + image: eis_billing_system + build: + context: ./../eis_billing_system + links: + - db + - registry + environment: + - APP_DBHOST=db + - PARALLEL_WORKERS=1 + volumes: + - ./../eis_billing_system:/opt/webapps/app + - ./shared/ca:/opt/ca + - tmp:/opt/webapps/app/tmp/ + - ./../:/shared + command: bash -c "rm -f tmp/pids/server.pid && bundle exec rails server -b 0.0.0.0" + restart: always + depends_on: + - db + + accreditation_center: + tty: true + stdin_open: true + image: accreditation_center + build: + context: ./../accreditation_center + links: + - db + - registry + environment: + - APP_DBHOST=db + - REDIS_URL=redis://redis:6379/12 + - PARALLEL_WORKERS=1 + volumes: + - ./../accreditation_center:/opt/webapps/app + - ./shared/ca:/opt/ca + - tmp:/opt/webapps/app/tmp/ + - ./../:/shared + command: bash -c "rm -f tmp/pids/server.pid && bundle exec rails server -b 0.0.0.0" + restart: always + depends_on: + - db redis: image: redis @@ -167,6 +234,16 @@ services: POSTGRES_DB: "db" POSTGRES_HOST_AUTH_METHOD: "trust" + ngrok: + image: shkoliar/ngrok:latest + ports: + - 4551:4551 + links: + - eis_billing_system + environment: + - DOMAIN=eis_billing_system + - PORT=3000 + volumes: pg: tmp: diff --git a/nginx/nginx.conf b/nginx/nginx.conf old mode 100644 new mode 100755 diff --git a/nginx/sites-enabled/accreditation_center.test b/nginx/sites-enabled/accreditation_center.test new file mode 100755 index 0000000..11c31aa --- /dev/null +++ b/nginx/sites-enabled/accreditation_center.test @@ -0,0 +1,39 @@ +upstream accreditation_center { + server accreditation_center:3000; +} + +server { + listen 80; + server_name accreditation_center.test; + + location / { + return 301 https://$host$request_uri; + } +} + +server { + listen 443 ssl http2; + server_name accreditation_center.test; + + ssl_certificate /opt/ca/certs/apache.crt; + ssl_certificate_key /opt/ca/private/apache.key; + + try_files $uri/index.html $uri @app; + + gzip on; + gzip_vary on; + gzip_min_length 500; + gzip_proxied expired no-cache no-store private auth; + gzip_types text/plain text/css text/xml text/javascript application/x-javascript application/xml; + gzip_disable "MSIE [1-6]\."; + + location @app { + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_redirect off; + proxy_pass http://accreditation_center; + break; + } +} diff --git a/nginx/sites-enabled/auction.test b/nginx/sites-enabled/auction.test old mode 100644 new mode 100755 diff --git a/nginx/sites-enabled/eid.test b/nginx/sites-enabled/eid.test new file mode 100755 index 0000000..04d2795 --- /dev/null +++ b/nginx/sites-enabled/eid.test @@ -0,0 +1,42 @@ +upstream eid { + server eid:3000; +} + +server { + listen 80; + server_name eid.test; + + location / { + return 301 https://$host$request_uri; + } +} + +server { + listen 443 ssl http2; + server_name eid.test; + + ssl_certificate /opt/ca/certs/apache.crt; + ssl_certificate_key /opt/ca/private/apache.key; + + try_files $uri/index.html $uri @app; + + gzip on; + gzip_vary on; + gzip_min_length 500; + gzip_proxied expired no-cache no-store private auth; + gzip_types text/plain text/css text/xml text/javascript application/x-javascript application/xml; + gzip_disable "MSIE [1-6]\."; + + location @app { + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_redirect off; + proxy_pass http://eid; + + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "Upgrade"; + break; + } +} diff --git a/nginx/sites-enabled/eis_billing_system.test b/nginx/sites-enabled/eis_billing_system.test new file mode 100755 index 0000000..1083221 --- /dev/null +++ b/nginx/sites-enabled/eis_billing_system.test @@ -0,0 +1,39 @@ +upstream eis_billing_system { + server eis_billing_system:3000; +} + +server { + listen 80; + server_name eis_billing_system.test; + + location / { + return 301 https://$host$request_uri; + } +} + +server { + listen 443 ssl http2; + server_name eis_billing_system.test; + + ssl_certificate /opt/ca/certs/apache.crt; + ssl_certificate_key /opt/ca/private/apache.key; + + try_files $uri/index.html $uri @app; + + gzip on; + gzip_vary on; + gzip_min_length 500; + gzip_proxied expired no-cache no-store private auth; + gzip_types text/plain text/css text/xml text/javascript application/x-javascript application/xml; + gzip_disable "MSIE [1-6]\."; + + location @app { + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_redirect off; + proxy_pass http://eis_billing_system; + break; + } +} diff --git a/nginx/sites-enabled/registrar.test b/nginx/sites-enabled/registrar.test old mode 100644 new mode 100755 diff --git a/nginx/sites-enabled/registry.test b/nginx/sites-enabled/registry.test old mode 100644 new mode 100755 diff --git a/nginx/sites-enabled/rest-whois.test b/nginx/sites-enabled/rest-whois.test old mode 100644 new mode 100755 diff --git a/setup.sh b/setup.sh old mode 100644 new mode 100755 diff --git a/shared/ca/certs/.gitkeep b/shared/ca/certs/.gitkeep old mode 100644 new mode 100755 diff --git a/shared/ca/crl/.gitkeep b/shared/ca/crl/.gitkeep old mode 100644 new mode 100755 diff --git a/shared/ca/csrs/.gitkeep b/shared/ca/csrs/.gitkeep old mode 100644 new mode 100755 diff --git a/shared/ca/newcerts/.gitkeep b/shared/ca/newcerts/.gitkeep old mode 100644 new mode 100755 diff --git a/shared/ca/openssl.cnf b/shared/ca/openssl.cnf old mode 100644 new mode 100755 diff --git a/shared/ca/private/.gitkeep b/shared/ca/private/.gitkeep old mode 100644 new mode 100755 diff --git a/shared/ca/server.csr.cnf b/shared/ca/server.csr.cnf old mode 100644 new mode 100755 diff --git a/shared/ca/v3.ext b/shared/ca/v3.ext old mode 100644 new mode 100755