wpp/weirsoe-party-protocol
8
0
Fork 0
Code Issues 19 Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: wpp:fix/staging-readonly-sqlite-131
Branches Tags
wpp:main wpp:feature/visual-overhaul wpp:dev/issue-310-host-transition-idempotency-v2 wpp:dev/issue-300-round-bootstrap-invariants-clean wpp:dev/issue-289-canonical-reveal-payload wpp:wpp-dev-lane-223-preflight-1772411411 wpp:dev/issue-175-shared-i18n-mainline wpp:pr-211 wpp:feat/issue-191-route-session-guards wpp:feat/issue-200-angular-host-handoff-round-sync wpp:dev/issue-175-shared-i18n-lobby wpp:pr-181 wpp:dev/issue-168-angular-api-client wpp:pr-153 wpp:review/pr-134 wpp:fix/staging-readonly-sqlite-131 wpp:release/v0.1.0
wpp:v0.1.0
..
compare: wpp:review/pr-134
Branches Tags
wpp:feature/visual-overhaul wpp:main wpp:dev/issue-310-host-transition-idempotency-v2 wpp:dev/issue-300-round-bootstrap-invariants-clean wpp:dev/issue-289-canonical-reveal-payload wpp:wpp-dev-lane-223-preflight-1772411411 wpp:dev/issue-175-shared-i18n-mainline wpp:pr-211 wpp:feat/issue-191-route-session-guards wpp:feat/issue-200-angular-host-handoff-round-sync wpp:dev/issue-175-shared-i18n-lobby wpp:pr-181 wpp:dev/issue-168-angular-api-client wpp:pr-153 wpp:review/pr-134 wpp:fix/staging-readonly-sqlite-131 wpp:release/v0.1.0
wpp:v0.1.0

2 Commits
fix/stagin ... review/pr-

Author SHA1 Message Date
Asger Geel Weirsoee
e10fc6d116 staging deploy: load .env.staging before manage.py
All checks were successful
CI / test-and-quality (push) Successful in 1m25s
Details
2026-02-28 13:01:35 +00:00
Asger Geel Weirsoee
fce18c1ee3 staging: enforce MySQL and add staging env template (#133)
All checks were successful
CI / test-and-quality (push) Successful in 1m33s
Details
CI / test-and-quality (pull_request) Successful in 1m36s
Details
2026-02-28 11:31:39 +00:00
5 changed files with 40 additions and 4 deletions
Expand all files Collapse all files

1
.gitignore vendored
View File

@@ -22,6 +22,7 @@ media/
.env
.env.*
!.env.test.example
!.env.staging.example
!.env.prod.example
# Editors/OS

12
infra/env/.env.staging.example vendored Normal file
View File

@@ -0,0 +1,12 @@
DJANGO_SECRET_KEY=change-me-staging
DJANGO_DEBUG=false
DJANGO_ALLOWED_HOSTS=staging.party.weircon.dk
DB_ENGINE=django.db.backends.mysql
DB_NAME=wpp_staging
DB_USER=wpp_staging
DB_PASSWORD=change-me
DB_HOST=127.0.0.1
DB_PORT=3306
TEST_DB_NAME=
CHANNEL_REDIS_HOST=127.0.0.1
CHANNEL_REDIS_PORT=6379

3
infra/staging/DB_SETUP.md
View File

@@ -4,15 +4,18 @@
## Databaser
- `wpp_test`
- `wpp_staging`
- `wpp_prod`
## Brugere
- `wpp_test_user` (least privilege på `wpp_test`)
- `wpp_staging_user` (least privilege på `wpp_staging`)
- `wpp_prod_user` (least privilege på `wpp_prod`)
## Secrets placering
I Secrets-repo:
- `wpp/wpp_test.env`
- `wpp/wpp_staging.env`
- `wpp/wpp_prod.env`
Forventede felter:

3
infra/staging/README.md
View File

@@ -8,6 +8,7 @@ Staging-miljø for WPP i Proxmox LXC, så release-klar kode kan deployes og smok
- App path: /opt/wpp-staging/app
- Service: wpp-staging.service
- Health endpoint: GET /healthz
- Database: MySQL (staging må ikke bruge SQLite, issue #133)
## Verifikation
Kør fra devops-shell med Proxmox-adgang:
@@ -21,6 +22,8 @@ Forventet:
- service er active
- healthz returnerer JSON med ok=true
Efter deploy vil scriptet også verificere at `DB_ENGINE` ikke er `django.db.backends.sqlite3` før migrations køres.
## Deploy (canonical execution context)
Deploy skal altid køres via Proxmox host over SSH (ikke fra lokal coder-shell med direkte sudo pct).

25
infra/staging/deploy_staging.sh
View File

@@ -17,15 +17,32 @@ rm -rf src && mkdir src
tar -xzf app.tar.gz -C src --strip-components=1
rm -rf /opt/wpp-staging/app/*
cp -a src/. /opt/wpp-staging/app/
# Ensure deploy artifact copied as root does not leave SQLite/app tree non-writable for wpp.
# Ensure deploy artifact copied as root does not leave app tree non-writable for wpp.
chown -R wpp:wpp /opt/wpp-staging/app
if [ -f /opt/wpp-staging/app/db.sqlite3 ]; then
chmod 664 /opt/wpp-staging/app/db.sqlite3
fi
# Staging must not run on SQLite (issue #133). Remove bundled sqlite artifact.
rm -f /opt/wpp-staging/app/db.sqlite3
cd /opt/wpp-staging/app
runuser -u wpp -- python3 -m venv .venv
runuser -u wpp -- .venv/bin/pip install -U pip >/dev/null
runuser -u wpp -- .venv/bin/pip install -r requirements.txt >/dev/null
STAGING_ENV_FILE=\"\"
for candidate in \
/opt/wpp-staging/app/infra/staging/.env.staging \
/opt/wpp-staging/app/infra/env/.env.staging \
/opt/wpp-staging/.env.staging; do
if [ -f \"\$candidate\" ]; then
STAGING_ENV_FILE=\"\$candidate\"
break
fi
done
if [ -z \"\$STAGING_ENV_FILE\" ]; then
echo \"[deploy] ERROR: staging env file not found (.env.staging)\" >&2
exit 1
fi
set -a
. \"\$STAGING_ENV_FILE\"
set +a
runuser -u wpp -- .venv/bin/python manage.py shell -c \"from django.conf import settings; import sys; engine = settings.DATABASES['default']['ENGINE']; print(f'DB_ENGINE={engine}'); sys.exit(0 if engine != 'django.db.backends.sqlite3' else 1)\"
runuser -u wpp -- .venv/bin/python manage.py migrate --noinput
systemctl restart wpp-staging.service
curl -fsS http://127.0.0.1:8000/healthz\""