Merge pull request #5209 from Budibase/labday/single-docker

Single docker file lab-day
2022-04-05 12:16:09 +01:00 · 2022-04-05 12:16:09 +01:00 · 130a02889a
parent 476386f35a 6dd50eb25a
commit 130a02889a
12 changed files with 303 additions and 3 deletions
--- a/.dockerignore
+++ b/.dockerignore
@ -0,0 +1,9 @@
 packages/server/node_modules
 packages/builder
 packages/frontend-core
 packages/backend-core
 packages/worker/node_modules
 packages/cli
 packages/client
 packages/bbui
 packages/string-templates
--- a/hosting/docker-compose.yaml
+++ b/hosting/docker-compose.yaml
@ -117,7 +117,6 @@ services:
    labels:
      - "com.centurylinklabs.watchtower.enable=false"
 volumes:
  couchdb3_data:
    driver: local
--- a/hosting/single/Dockerfile
+++ b/hosting/single/Dockerfile
@ -0,0 +1,97 @@
 FROM couchdb
 ENV COUCHDB_PASSWORD=budibase
 ENV COUCHDB_USER=budibase
 ENV COUCH_DB_URL=http://budibase:budibase@localhost:5984
 ENV BUDIBASE_ENVIRONMENT=PRODUCTION
 ENV MINIO_URL=http://localhost:9000
 ENV REDIS_URL=localhost:6379
 ENV WORKER_URL=http://localhost:4002
 ENV INTERNAL_API_KEY=budibase
 ENV JWT_SECRET=testsecret
 ENV MINIO_ACCESS_KEY=budibase
 ENV MINIO_SECRET_KEY=budibase
 ENV SELF_HOSTED=1
 ENV CLUSTER_PORT=10000
 ENV REDIS_PASSWORD=budibase
 ENV ARCHITECTURE=amd
 ENV APP_PORT=4001
 ENV WORKER_PORT=4002
 RUN apt-get update
 RUN apt-get install software-properties-common wget nginx -y
 RUN apt-add-repository 'deb http://security.debian.org/debian-security stretch/updates main'
 RUN apt-get update
 # setup nginx
 ADD hosting/single/nginx.conf /etc/nginx
 RUN mkdir /etc/nginx/logs
 RUN useradd www
 RUN touch /etc/nginx/logs/error.log
 RUN touch /etc/nginx/logs/nginx.pid
 # install java
 RUN apt-get install openjdk-8-jdk -y
 # setup nodejs
 WORKDIR /nodejs
 RUN curl -sL https://deb.nodesource.com/setup_16.x -o /tmp/nodesource_setup.sh
 RUN bash /tmp/nodesource_setup.sh
 RUN apt-get install nodejs
 RUN npm install --global yarn
 RUN npm install --global pm2
 # setup redis
 RUN apt install redis-server -y
 # setup server
 WORKDIR /app
 ADD packages/server .
 RUN ls -al
 RUN yarn
 RUN yarn build
 # Install client for oracle datasource
 RUN apt-get install unzip libaio1
 RUN /bin/bash -e scripts/integrations/oracle/instantclient/linux/x86-64/install.sh
 # setup worker
 WORKDIR /worker
 ADD packages/worker .
 RUN yarn
 RUN yarn build
 # setup clouseau
 WORKDIR /
 RUN wget https://github.com/cloudant-labs/clouseau/releases/download/2.21.0/clouseau-2.21.0-dist.zip
 RUN unzip clouseau-2.21.0-dist.zip
 RUN mv clouseau-2.21.0 /opt/clouseau
 RUN rm clouseau-2.21.0-dist.zip
 WORKDIR /opt/clouseau
 RUN mkdir ./bin
 ADD hosting/single/clouseau ./bin/
 ADD hosting/single/log4j.properties .
 ADD hosting/single/clouseau.ini .
 RUN chmod +x ./bin/clouseau
 # setup CouchDB
 WORKDIR /opt/couchdb
 ADD hosting/single/vm.args ./etc/
 # setup minio
 WORKDIR /minio
 RUN wget https://dl.min.io/server/minio/release/linux-${ARCHITECTURE}64/minio
 RUN chmod +x minio
 # setup runner file
 WORKDIR /
 ADD hosting/single/runner.sh .
 RUN chmod +x ./runner.sh
 EXPOSE 10000
 VOLUME /opt/couchdb/data
 VOLUME /minio
 # must set this just before running
 ENV NODE_ENV=production
 CMD ["./runner.sh"]
--- a/hosting/single/clouseau
+++ b/hosting/single/clouseau
@ -0,0 +1,12 @@
 #!/bin/sh
 /usr/bin/java -server \
     -Xmx2G \
     -Dsun.net.inetaddr.ttl=30 \
     -Dsun.net.inetaddr.negative.ttl=30 \
     -Dlog4j.configuration=file:/opt/clouseau/log4j.properties \
     -XX:OnOutOfMemoryError="kill -9 %p" \
     -XX:+UseConcMarkSweepGC \
     -XX:+CMSParallelRemarkEnabled \
     -classpath '/opt/clouseau/*' \
     com.cloudant.clouseau.Main \
     /opt/clouseau/clouseau.ini
--- a/hosting/single/clouseau.ini
+++ b/hosting/single/clouseau.ini
@ -0,0 +1,13 @@
 [clouseau]
 ; the name of the Erlang node created by the service, leave this unchanged
 name=clouseau@127.0.0.1
 ; set this to the same distributed Erlang cookie used by the CouchDB nodes
 cookie=monster
 ; the path where you would like to store the search index files
 dir=/opt/couchdb/data/search
 ; the number of search indexes that can be open simultaneously
 max_indexes_open=500
--- a/hosting/single/log4j.properties
+++ b/hosting/single/log4j.properties
@ -0,0 +1,4 @@
 log4j.rootLogger=debug, CONSOLE
 log4j.appender.CONSOLE=org.apache.log4j.ConsoleAppender
 log4j.appender.CONSOLE.layout=org.apache.log4j.PatternLayout
 log4j.appender.CONSOLE.layout.ConversionPattern=%d{ISO8601} %c [%p] %m%n
--- a/hosting/single/nginx.conf
+++ b/hosting/single/nginx.conf
@ -0,0 +1,116 @@
 user                 www www;
 error_log            /etc/nginx/logs/error.log;
 pid                  /etc/nginx/logs/nginx.pid;
 worker_processes     auto;
 worker_rlimit_nofile 8192;
 events {
  worker_connections  1024;
 }
 http {
  limit_req_zone $binary_remote_addr zone=ratelimit:10m rate=20r/s;
  proxy_set_header Host $host;
  charset utf-8;
  sendfile on;
  tcp_nopush on;
  tcp_nodelay on;
  server_tokens off;
  types_hash_max_size 2048;
  # buffering
  client_header_buffer_size 1k;
  client_max_body_size 20M;
  ignore_invalid_headers off;
  proxy_buffering off;
  log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                    '$status $body_bytes_sent "$http_referer" '
                    '"$http_user_agent" "$http_x_forwarded_for"';
  map $http_upgrade $connection_upgrade {
    default     "upgrade";
  }
  server {
    listen       10000 default_server;
    listen  [::]:10000 default_server;
    server_name  _;
    client_max_body_size 1000m;
    ignore_invalid_headers off;
    proxy_buffering off;
    # port_in_redirect off;
    location /app {
      proxy_pass      http://127.0.0.1:4001;
    }
    location = / {
      proxy_pass      http://127.0.0.1:4001;
    }
    location ~ ^/(builder|app_) {
      proxy_http_version  1.1;
      proxy_set_header    Connection          $connection_upgrade;
      proxy_set_header    Upgrade             $http_upgrade;
      proxy_set_header    X-Real-IP           $remote_addr;
      proxy_set_header    X-Forwarded-For     $proxy_add_x_forwarded_for;
      proxy_pass      http://127.0.0.1:4001;
    }
    location ~ ^/api/(system|admin|global)/ {
      proxy_pass      http://127.0.0.1:4002;
    }
    location /worker/ {
      proxy_pass      http://127.0.0.1:4002;
      rewrite ^/worker/(.*)$ /$1 break;
    }
    location /api/ {
      # calls to the API are rate limited with bursting
      limit_req zone=ratelimit burst=20 nodelay;
      # 120s timeout on API requests
      proxy_read_timeout 120s;
      proxy_connect_timeout 120s;
      proxy_send_timeout 120s;
      proxy_http_version  1.1;
      proxy_set_header    Connection          $connection_upgrade;
      proxy_set_header    Upgrade             $http_upgrade;
      proxy_set_header    X-Real-IP           $remote_addr;
      proxy_set_header    X-Forwarded-For     $proxy_add_x_forwarded_for;
      proxy_pass      http://127.0.0.1:4001;
    }
    location /db/ {
      proxy_pass      http://127.0.0.1:5984;
      rewrite ^/db/(.*)$ /$1 break;
    }
    location / {
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-Forwarded-Proto $scheme;
      proxy_connect_timeout 300;
      proxy_http_version 1.1;
      proxy_set_header Connection "";
      chunked_transfer_encoding off;
      proxy_pass      http://127.0.0.1:9000;
    }
    client_header_timeout 60;
    client_body_timeout   60;
    keepalive_timeout     60;
    # gzip
    gzip on;
    gzip_vary on;
    gzip_proxied any;
    gzip_comp_level 6;
    gzip_types text/plain text/css text/xml application/json application/javascript application/rss+xml application/atom+xml image/svg+xml;
  }
 }
--- a/hosting/single/runner.sh
+++ b/hosting/single/runner.sh
@ -0,0 +1,16 @@
 redis-server --requirepass $REDIS_PASSWORD &
 /opt/clouseau/bin/clouseau &
 /minio/minio server /minio &
 /docker-entrypoint.sh /opt/couchdb/bin/couchdb &
 /etc/init.d/nginx restart
 pushd app
 pm2 start --name app "yarn run:docker"
 popd
 pushd worker
 pm2 start --name worker "yarn run:docker"
 popd
 sleep 10
 URL=http://${COUCHDB_USER}:${COUCHDB_PASSWORD}@localhost:5984
 curl -X PUT ${URL}/_users
 curl -X PUT ${URL}/_replicator
 sleep infinity
--- a/hosting/single/vm.args
+++ b/hosting/single/vm.args
@ -0,0 +1,32 @@
 # Licensed under the Apache License, Version 2.0 (the "License"); you may not
 # use this file except in compliance with the License. You may obtain a copy of
 # the License at
 #
 #   http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 # License for the specific language governing permissions and limitations under
 # the License.
 # erlang cookie for clouseau security
 -name couchdb@127.0.0.1
 -setcookie monster
 # Ensure that the Erlang VM listens on a known port
 -kernel inet_dist_listen_min 9100
 -kernel inet_dist_listen_max 9100
 # Tell kernel and SASL not to log anything
 -kernel error_logger silent
 -sasl sasl_error_logger false
 # Use kernel poll functionality if supported by emulator
 +K true
 # Start a pool of asynchronous IO threads
 +A 16
 # Comment this line out to enable the interactive Erlang shell on startup
 +Bd -noinput
--- a/package.json
+++ b/package.json
@ -58,6 +58,8 @@
    "build:docker:develop": "node scripts/pinVersions && lerna run build:docker && npm run build:docker:proxy:compose && cd hosting/scripts/linux/ && ./release-to-docker-hub.sh develop && cd -",
    "build:docker:airgap": "node hosting/scripts/airgapped/airgappedDockerBuild",
    "build:digitalocean": "cd hosting/digitalocean && ./build.sh && cd -",
    "build:docker:single:image": "docker build -f hosting/single/Dockerfile -t budibase:latest .",
    "build:docker:single": "lerna run build && lerna run predocker && npm run build:docker:single:image",
    "build:docs": "lerna run build:docs",
    "release:helm": "node scripts/releaseHelmChart",
    "env:multi:enable": "lerna run env:multi:enable",
--- a/packages/server/src/environment.js
+++ b/packages/server/src/environment.js
@ -28,7 +28,7 @@ let inThread = false
 module.exports = {
  // important
-  PORT: process.env.PORT,
+  PORT: process.env.PORT || process.env.APP_PORT,
  JWT_SECRET: process.env.JWT_SECRET,
  COUCH_DB_URL: process.env.COUCH_DB_URL,
  MINIO_URL: process.env.MINIO_URL,
--- a/packages/worker/src/environment.js
+++ b/packages/worker/src/environment.js
@ -19,7 +19,7 @@ if (!LOADED && isDev() && !isTest()) {
 module.exports = {
  NODE_ENV: process.env.NODE_ENV,
  SELF_HOSTED: !!parseInt(process.env.SELF_HOSTED),
-  PORT: process.env.PORT,
+  PORT: process.env.PORT || process.env.WORKER_PORT,
  CLUSTER_PORT: process.env.CLUSTER_PORT,
  MINIO_ACCESS_KEY: process.env.MINIO_ACCESS_KEY,
  MINIO_SECRET_KEY: process.env.MINIO_SECRET_KEY,