frappe_docker/build/common/commands/new.py

import os
import frappe

from frappe.commands.site import _new_site
from check_connection import get_config, get_site_config


def get_password(env_var, default=None):
    return os.environ.get(env_var) or _get_password_from_secret(f"{env_var}_FILE") or default


def _get_password_from_secret(env_var):
    """Fetches the secret value from the docker secret file
    usually located inside /run/secrets/
    Arguments:
        env_var {str} -- Name of the environment variable
        containing the path to the secret file.
    Returns:
        [str] -- Secret value
    """
    passwd = None
    secret_file_path = os.environ.get(env_var)
    if secret_file_path:
        with open(secret_file_path) as secret_file:
            passwd = secret_file.read().strip()

    return passwd


def main():
    site_name = os.environ.get("SITE_NAME", 'site1.localhost')
    mariadb_root_username = os.environ.get("DB_ROOT_USER", 'root')
    mariadb_root_password = get_password("MYSQL_ROOT_PASSWORD", 'admin')
    force = True if os.environ.get("FORCE", None) else False
    install_apps = os.environ.get("INSTALL_APPS", None)
    install_apps = install_apps.split(',') if install_apps else []
    frappe.init(site_name, new_site=True)

    _new_site(
        None,
        site_name,
        mariadb_root_username=mariadb_root_username,
        mariadb_root_password=mariadb_root_password,
        admin_password=get_password("ADMIN_PASSWORD", 'admin'),
        verbose=True,
        install_apps=install_apps,
        source_sql=None,
        force=force,
        reinstall=False,
    )

    config = get_config()

    site_config = get_site_config(site_name)

    mysql_command = 'mysql -h{db_host} -u{mariadb_root_username} -p{mariadb_root_password} -e '.format(
        db_host=config.get('db_host'),
        mariadb_root_username=mariadb_root_username,
        mariadb_root_password=mariadb_root_password
    )

    # update User's host to '%' required to connect from any container
    command = mysql_command + "\"UPDATE mysql.user SET Host = '%' where User = '{db_name}'; FLUSH PRIVILEGES;\"".format(
        db_name=site_config.get('db_name')
    )
    os.system(command)

    # Set db password
    command = mysql_command + "\"UPDATE mysql.user SET authentication_string = PASSWORD('{db_password}') WHERE User = \'{db_name}\' AND Host = \'%\';\"".format(
        db_name=site_config.get('db_name'),
        db_password=site_config.get('db_password')
    )
    os.system(command)

    # Grant permission to database
    command = mysql_command + "\"GRANT ALL PRIVILEGES ON \`{db_name}\`.* TO '{db_name}'@'%'; FLUSH PRIVILEGES;\"".format(
        db_name=site_config.get('db_name')
    )
    os.system(command)
    exit(0)


if __name__ == "__main__":
    main()
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00			`import os`
			`import frappe`
feat: docker production images 2020-02-10 08:00:54 +00:00
			`from frappe.commands.site import _new_site`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`from check_connection import get_config, get_site_config`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`def get_password(env_var, default=None):`
			`return os.environ.get(env_var) or _get_password_from_secret(f"{env_var}_FILE") or default`


			`def _get_password_from_secret(env_var):`
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00			`"""Fetches the secret value from the docker secret file`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`usually located inside /run/secrets/`
			`Arguments:`
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00			`env_var {str} -- Name of the environment variable`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`containing the path to the secret file.`
			`Returns:`
			`[str] -- Secret value`
			`"""`
			`passwd = None`
			`secret_file_path = os.environ.get(env_var)`
			`if secret_file_path:`
			`with open(secret_file_path) as secret_file:`
			`passwd = secret_file.read().strip()`

			`return passwd`


fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`def main():`
			`site_name = os.environ.get("SITE_NAME", 'site1.localhost')`
			`mariadb_root_username = os.environ.get("DB_ROOT_USER", 'root')`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`mariadb_root_password = get_password("MYSQL_ROOT_PASSWORD", 'admin')`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`force = True if os.environ.get("FORCE", None) else False`
			`install_apps = os.environ.get("INSTALL_APPS", None)`
			`install_apps = install_apps.split(',') if install_apps else []`
			`frappe.init(site_name, new_site=True)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`_new_site(`
			`None,`
			`site_name,`
			`mariadb_root_username=mariadb_root_username,`
			`mariadb_root_password=mariadb_root_password,`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`admin_password=get_password("ADMIN_PASSWORD", 'admin'),`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`verbose=True,`
			`install_apps=install_apps,`
			`source_sql=None,`
			`force=force,`
			`reinstall=False,`
			`)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`config = get_config()`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`site_config = get_site_config(site_name)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: backup and restore new command FORCE=1 error fixed only push backups if exists prepare and process db restore 2020-03-27 10:37:12 +00:00			`mysql_command = 'mysql -h{db_host} -u{mariadb_root_username} -p{mariadb_root_password} -e '.format(`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`db_host=config.get('db_host'),`
			`mariadb_root_username=mariadb_root_username,`
			`mariadb_root_password=mariadb_root_password`
			`)`
fix: backup and restore new command FORCE=1 error fixed only push backups if exists prepare and process db restore 2020-03-27 10:37:12 +00:00
			`# update User's host to '%' required to connect from any container`
			`command = mysql_command + "\"UPDATE mysql.user SET Host = '%' where User = '{db_name}'; FLUSH PRIVILEGES;\"".format(`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`db_name=site_config.get('db_name')`
			`)`
			`os.system(command)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`# Set db password`
fix: backup and restore new command FORCE=1 error fixed only push backups if exists prepare and process db restore 2020-03-27 10:37:12 +00:00			`command = mysql_command + "\"UPDATE mysql.user SET authentication_string = PASSWORD('{db_password}') WHERE User = \'{db_name}\' AND Host = \'%\';\"".format(`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`db_name=site_config.get('db_name'),`
			`db_password=site_config.get('db_password')`
			`)`
			`os.system(command)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`# Grant permission to database`
chore: escape backticks on db commands Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-29 06:14:58 +00:00			command = mysql_command + "\"GRANT ALL PRIVILEGES ON \`{db_name}\`.* TO '{db_name}'@'%'; FLUSH PRIVILEGES;\"".format(
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`db_name=site_config.get('db_name')`
			`)`
			`os.system(command)`
			`exit(0)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`if __name__ == "__main__":`
			`main()`