frappe_docker/build/common/commands/new.py

import os
import frappe
import semantic_version

from frappe.commands.site import _new_site
from frappe.installer import update_site_config
from check_connection import get_config, get_site_config, COMMON_SITE_CONFIG_FILE


def get_password(env_var, default=None):
    return os.environ.get(env_var) or _get_password_from_secret(f"{env_var}_FILE") or default


def _get_password_from_secret(env_var):
    """Fetches the secret value from the docker secret file
    usually located inside /run/secrets/
    Arguments:
        env_var {str} -- Name of the environment variable
        containing the path to the secret file.
    Returns:
        [str] -- Secret value
    """
    passwd = None
    secret_file_path = os.environ.get(env_var)
    if secret_file_path:
        with open(secret_file_path) as secret_file:
            passwd = secret_file.read().strip()

    return passwd


def main():
    config = get_config()
    db_type = 'mariadb'
    db_port = config.get('db_port', 3306)
    db_host = config.get('db_host')
    site_name = os.environ.get("SITE_NAME", 'site1.localhost')
    mariadb_root_username = os.environ.get("DB_ROOT_USER", 'root')
    mariadb_root_password = get_password("MYSQL_ROOT_PASSWORD", 'admin')
    postgres_root_password = get_password("POSTGRES_PASSWORD")

    if postgres_root_password:
        db_type = 'postgres'
        db_host = os.environ.get("POSTGRES_HOST")
        db_port = 5432
        if not db_host:
            db_host = config.get('db_host')
            print('Environment variable POSTGRES_HOST not found.')
            print('Using db_host from common_site_config.json')

        sites_path = os.getcwd()
        common_site_config_path = os.path.join(sites_path, COMMON_SITE_CONFIG_FILE)
        update_site_config("root_login", mariadb_root_username, validate = False, site_config_path = common_site_config_path)
        update_site_config("root_password", postgres_root_password, validate = False, site_config_path = common_site_config_path)

    force = True if os.environ.get("FORCE", None) else False
    install_apps = os.environ.get("INSTALL_APPS", None)
    install_apps = install_apps.split(',') if install_apps else []
    frappe.init(site_name, new_site=True)

    if semantic_version.Version(frappe.__version__).major > 11:
        _new_site(
            None,
            site_name,
            mariadb_root_username=mariadb_root_username,
            mariadb_root_password=mariadb_root_password,
            admin_password=get_password("ADMIN_PASSWORD", 'admin'),
            verbose=True,
            install_apps=install_apps,
            source_sql=None,
            force=force,
            db_type=db_type,
            reinstall=False,
            db_host=db_host,
            db_port=db_port,
        )
    else:
        _new_site(
            None,
            site_name,
            mariadb_root_username=mariadb_root_username,
            mariadb_root_password=mariadb_root_password,
            admin_password=get_password("ADMIN_PASSWORD", 'admin'),
            verbose=True,
            install_apps=install_apps,
            source_sql=None,
            force=force,
            reinstall=False,
        )


    if db_type == "mariadb":
        site_config = get_site_config(site_name)

        mysql_command = 'mysql -h{db_host} -u{mariadb_root_username} -p{mariadb_root_password} -e '.format(
            db_host=config.get('db_host'),
            mariadb_root_username=mariadb_root_username,
            mariadb_root_password=mariadb_root_password
        )

        # update User's host to '%' required to connect from any container
        command = mysql_command + "\"UPDATE mysql.user SET Host = '%' where User = '{db_name}'; FLUSH PRIVILEGES;\"".format(
            db_name=site_config.get('db_name')
        )
        os.system(command)

        # Set db password
        command = mysql_command + "\"ALTER USER '{db_name}'@'%' IDENTIFIED BY '{db_password}'; FLUSH PRIVILEGES;\"".format(
            db_name=site_config.get('db_name'),
            db_password=site_config.get('db_password')
        )
        os.system(command)

        # Grant permission to database
        command = mysql_command + "\"GRANT ALL PRIVILEGES ON \`{db_name}\`.* TO '{db_name}'@'%'; FLUSH PRIVILEGES;\"".format(
            db_name=site_config.get('db_name')
        )
        os.system(command)

    if frappe.redis_server:
        frappe.redis_server.connection_pool.disconnect()

    exit(0)


if __name__ == "__main__":
    main()
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00			`import os`
			`import frappe`
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`import semantic_version`
feat: docker production images 2020-02-10 08:00:54 +00:00
			`from frappe.commands.site import _new_site`
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`from frappe.installer import update_site_config`
			`from check_connection import get_config, get_site_config, COMMON_SITE_CONFIG_FILE`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`def get_password(env_var, default=None):`
			`return os.environ.get(env_var) or _get_password_from_secret(f"{env_var}_FILE") or default`


			`def _get_password_from_secret(env_var):`
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00			`"""Fetches the secret value from the docker secret file`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`usually located inside /run/secrets/`
			`Arguments:`
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00			`env_var {str} -- Name of the environment variable`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`containing the path to the secret file.`
			`Returns:`
			`[str] -- Secret value`
			`"""`
			`passwd = None`
			`secret_file_path = os.environ.get(env_var)`
			`if secret_file_path:`
			`with open(secret_file_path) as secret_file:`
			`passwd = secret_file.read().strip()`

			`return passwd`


fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`def main():`
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`config = get_config()`
feat: optional site level db connection 2020-06-30 01:02:46 +00:00			`db_type = 'mariadb'`
			`db_port = config.get('db_port', 3306)`
			`db_host = config.get('db_host')`
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`site_name = os.environ.get("SITE_NAME", 'site1.localhost')`
			`mariadb_root_username = os.environ.get("DB_ROOT_USER", 'root')`
Support for reading Mariadb and Admin password from file when using docker secrets With this PR, password can be read from docker secrets in both compose as well as swarm environment. ```YAML secrets: mariadb-root-password: file: mariadb-root-password.txt erpnext-admin-password: file: erpnext-admin-password.txt services: erpnext: image: frappe/erpnext-worker:${ERPNEXT_VERSION:-v12.5.2} environment: - SITE_NAME=example.com - DB_ROOT_USER=root - MARIADB_HOST=mariadb - INSTALL_APPS=erpnext - FORCE=1 - REDIS_CACHE=redis-cache:6379 - REDIS_QUEUE=redis-queue:6379 - REDIS_SOCKETIO=redis-socketio:6379 - SOCKETIO_PORT=9000 - AUTO_MIGRATE=1 - ADMIN_PASSWORD_FILE=/run/secrets/erpnext-admin-password - MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mariadb-root-password secrets: - erpnext-admin-password - mariadb-root-password restart: on-failure volumes: - erpnext-data:/home/frappe/frappe-bench/sites - assets-data:/home/frappe/frappe-bench/sites/assets links: - redis-cache - redis-queue - redis-socketio - mariadb depends_on: - mariadb - redis-cache - redis-queue - redis-socketio networks: - erpnext-net ``` Reference: [Addind docker secrets in to your images](https://docs.docker.com/engine/swarm/secrets/#build-support-for-docker-secrets-into-your-images) Changes to be committed: modified: ../../README.md modified: ../common/commands/new.py modified: ../common/commands/restore_backup.py modified: ../erpnext-nginx/docker-entrypoint.sh 2020-04-16 06:19:40 +00:00			`mariadb_root_password = get_password("MYSQL_ROOT_PASSWORD", 'admin')`
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`postgres_root_password = get_password("POSTGRES_PASSWORD")`

			`if postgres_root_password:`
			`db_type = 'postgres'`
			`db_host = os.environ.get("POSTGRES_HOST")`
feat: optional site level db connection 2020-06-30 01:02:46 +00:00			`db_port = 5432`
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`if not db_host:`
feat: optional site level db connection 2020-06-30 01:02:46 +00:00			`db_host = config.get('db_host')`
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`print('Environment variable POSTGRES_HOST not found.')`
			`print('Using db_host from common_site_config.json')`

			`sites_path = os.getcwd()`
			`common_site_config_path = os.path.join(sites_path, COMMON_SITE_CONFIG_FILE)`
			`update_site_config("root_login", mariadb_root_username, validate = False, site_config_path = common_site_config_path)`
			`update_site_config("root_password", postgres_root_password, validate = False, site_config_path = common_site_config_path)`

fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`force = True if os.environ.get("FORCE", None) else False`
			`install_apps = os.environ.get("INSTALL_APPS", None)`
			`install_apps = install_apps.split(',') if install_apps else []`
			`frappe.init(site_name, new_site=True)`
feat: docker production images 2020-02-10 08:00:54 +00:00
feat: add postgres support to frappe-worker 2020-06-29 17:58:10 +00:00			`if semantic_version.Version(frappe.__version__).major > 11:`
			`_new_site(`
			`None,`
			`site_name,`
			`mariadb_root_username=mariadb_root_username,`
			`mariadb_root_password=mariadb_root_password,`
			`admin_password=get_password("ADMIN_PASSWORD", 'admin'),`
			`verbose=True,`
			`install_apps=install_apps,`
			`source_sql=None,`
			`force=force,`
			`db_type=db_type,`
			`reinstall=False,`
			`db_host=db_host,`
			`db_port=db_port,`
			`)`
			`else:`
			`_new_site(`
			`None,`
			`site_name,`
			`mariadb_root_username=mariadb_root_username,`
			`mariadb_root_password=mariadb_root_password,`
			`admin_password=get_password("ADMIN_PASSWORD", 'admin'),`
			`verbose=True,`
			`install_apps=install_apps,`
			`source_sql=None,`
			`force=force,`
			`reinstall=False,`
			`)`


			`if db_type == "mariadb":`
			`site_config = get_site_config(site_name)`

			`mysql_command = 'mysql -h{db_host} -u{mariadb_root_username} -p{mariadb_root_password} -e '.format(`
			`db_host=config.get('db_host'),`
			`mariadb_root_username=mariadb_root_username,`
			`mariadb_root_password=mariadb_root_password`
			`)`

			`# update User's host to '%' required to connect from any container`
			`command = mysql_command + "\"UPDATE mysql.user SET Host = '%' where User = '{db_name}'; FLUSH PRIVILEGES;\"".format(`
			`db_name=site_config.get('db_name')`
			`)`
			`os.system(command)`

			`# Set db password`
			`command = mysql_command + "\"ALTER USER '{db_name}'@'%' IDENTIFIED BY '{db_password}'; FLUSH PRIVILEGES;\"".format(`
			`db_name=site_config.get('db_name'),`
			`db_password=site_config.get('db_password')`
			`)`
			`os.system(command)`

			`# Grant permission to database`
			command = mysql_command + "\"GRANT ALL PRIVILEGES ON \`{db_name}\`.* TO '{db_name}'@'%'; FLUSH PRIVILEGES;\"".format(
			`db_name=site_config.get('db_name')`
			`)`
			`os.system(command)`

			`if frappe.redis_server:`
			`frappe.redis_server.connection_pool.disconnect()`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`exit(0)`
feat: docker production images 2020-02-10 08:00:54 +00:00
fix: make semantic changes to commands * add missing __main__ call to commands.py * remove unnecessary imports * fix backup WITH_FILES logic * follow python semantics (?) Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2020-04-28 20:15:59 +00:00
fix: make python commands modular and reusable 2020-03-20 15:26:23 +00:00			`if __name__ == "__main__":`
			`main()`