Inicio Explorar Ayuda
Iniciar sesión
wangb
/
flexmeasures-main
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 9658719b43
Ramas Etiquetas
flexmeasures...
/
documentation
/
dev
/
ci.rst

ci.rst 6.2 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111 
  1. .. _continuous_integration:
    2. 

  2. 

  3. Continuous integration
    4. 

  4. ======================
    5. 

  5. 

  6. 

  7. Automate deployment via Github actions and Git
    8. 

  8. ------------------------------------------------
    9. 

  9. 

  10. At FlexMeasures headquarters, we implemented a specific workflow to automate our deployment. It uses the Github action workflow (see the ``.github/workflows`` directory), which pushes to a remote upstream repository. We use this workflow to build and deploy the project to our staging server.
    11. 

  11. 

  12. Documenting this might be useful for self-hosters, as well.
    13. 

  13. The GitHub Actions workflows are triggered by commits being pushed to the repository, but it can also inspire your custom deployment script.
    14. 

  14. 

  15. We'll refer to Github Actions as our "CI environment" and our staging server as the "deployment server". 
    16. 

  16. 

  17. 

  18. * 
    19. 

  19.   In ``lint-and-test.yml``\ , we set up the app, then run the tests and linters.
    20. 

  20.   If testing succeeds and if the commit was on the ``main`` branch, ``deploy.yml`` deploys the code from the CI environment to the deployment server.
    21. 

  21. 

  22. * 
    23. 

  23.   Of course, the CI environment needs to properly authenticate at the deployment server. 
    24. 

  24. 

  25. * 
    26. 

  26.   With the hooks functionality of Git, a post-receive script can then (re-)start the FlexMeasures app on the deployment server.
    27. 

  27. 

  28. Let's review these three steps in detail:
    29. 

  29. 

  30. 

  31. Using git to deploy code (remote upstream)
    32. 

  32. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    33. 

  33. 

  34. We support deployment of the FlexMeasures project on a staging server via Git checkout.
    35. 

  35. 

  36. The deployment uses git's ability to push code to a remote upstream repository. This repository needs to be installed on your staging server.
    37. 

  37. 

  38. We trigger this deployment in ``deploy.yml`` and it's being done in ``DEPLOY.sh``. There, we add the remote and then push the current branch to it.
    39. 

  39. 

  40. We thus need to tell the deployment environment two things:
    41. 

  41. 

  42. 

  43. * Add the setting ``STAGING_REMOTE_REPO`` as an environment variable on the CI environment (e.g. ``deploy.yml`` expects it in the Github repository secrets). An example value is ``seita@ssh.our-server.com:/home/seita/flexmeasures-staging/flexmeasures.git``. So in this case, ``ssh.our-server.com`` is the deployment server, which we'll also use below. `seita` needs to become your ssh username on that server and the rest is the path to where you want to check out the repo.
    44. 

  44. * Make sure the env variable ``BRANCH_NAME`` is set, e.g. to "main", so that the CI environment knows what exact code to push to your deployment server.
    45. 

  45. 

  46. 

  47. Authenticate at the deployment server (with an ssh key)
    48. 

  48. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    49. 

  49. 

  50. For CI environment and deployment server to interact securely, we of course need to put in place some authentication measures.  
    51. 

  51. 

  52. First, they need to know each other. Let the deployment server know it's okay to talk to the CI environment, by adding an entry to ``~/.ssh/known_hosts``. Similarly, you might need to let the CI environment know it's okay to talk to the deployment server (e.g. in our Github Actions config, ``deploy.yml`` expects this entry in the Github repository secrets as ``KNOWN_DEPLOYMENT_HOSTS``\ ).
    53. 

  53. 

  54. You can create these entries with ``ssh-keyscan -t rsa <your host>``, where host might be `github.com` or `ssh.our-server.com` (see above).
    55. 

  55. 

  56. Second, the CI environment needs to authenticate at the deployment server using an SSH key pair. 
    57. 

  57. 

  58. Use ``ssh-keygen`` to create one, using no password.
    59. 

  59. 

  60. * Add the private part of this ssh key pair to the CI environment, so that the deployment server can accept the pushed code. (e.g. as ``~/.ssh/id_rsa``\ ). In ``deploy.yml``\ , we expect it as the secret ``SSH_DEPLOYMENT_KEY``\ , which adds the key for us.
    61. 

  61. * Finally, the public part of the key pair should be in ``~/.ssh/authorized_keys`` on your deployment server.
    62. 

  62. 

  63. 

  64. (Re-)start FlexMeasures on the deployment server (install Post-Receive Hook)
    65. 

  65. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    66. 

  66. 

  67. Only pushing the code will not actually deploy the updated FlexMeasures into a usable web app on the deployment server. For this, we need to trigger a script.
    68. 

  68. 

  69. Log on to the deployment server (via SSH) and install a script to (re-)start FlexMeasures as a Git Post Receive Hook in the remote repo where we deployed the code (see above). This hook will be triggered whenever a push is received from the deployment environment.
    70. 

  70. 

  71. The example script below can be a Post Receive Hook (save as ``hooks/post-receive`` in your remote origin repo and update paths).
    72. 

  72. It will force a checkout of the main branch into our working directory, update dependencies, upgrade the database structure and finally touch the wsgi.py file.
    73. 

  73. 

  74. .. note:: Note that we are not installing FlexMeasures itself (that would require ``make install-flexmeasures``, which essentially is ``python setup.py develop``), as that is not needed for our base requirement here: to run this checked-out code with a web server that uses a WSGI file to define the app. Running CLI commands will not work without installation. Also, installing FlexMeasures requires a version, which is gotten from the git status (via setuptool_scm). We are working on a checked-out copy of the git code here without git meta information, so installing would fail anyways.
    75. 

  75. 

  76. The last step, touching a wsgi.py file, is often used as a way to soft-restart the running application ― here you need to adapt to your circumstances.
    77. 

  77. 

  78. .. code-block:: bash
    79. 

  79. 

  80.     #!/bin/bash
    81. 

  81. 

  82.    PATH_TO_GIT_WORK_TREE=/path/to/where/you/want/to/checkout/code/to
    83. 

  83.    ACTIVATE_VENV="command-to-activate-your-venv"
    84. 

  84.    PATH_TO_WSGI=/path/to/wsgi/script/for/the/app
    85. 

  85. 

  86.    echo "CHECKING OUT CODE TO GIT WORK TREE ($PATH_TO_GIT_WORK_TREE) ..."
    87. 

  87.    GIT_WORK_TREE=$PATH_TO_GIT_WORK_TREE git checkout -f
    88. 

  88. 

  89.    cd $PATH_TO_GIT_WORK_TREE
    90. 

  90.    PATH=$PATH_TO_VENV/bin:$PATH
    91. 

  91. 

  92.    echo "INSTALLING DEPENDENCIES ..."
    93. 

  93.    make install-deps
    94. 

  94. 

  95.    echo "UPGRADING DATABASE STRUCTURE ..."
    96. 

  96.    make upgrade-db
    97. 

  97. 

  98.    echo "RESTARTING APPLICATION ..."
    99. 

  99.    touch $PATH_TO_WSGI
    100. 

  100. 

  101. 

  102. A WSGI file can do various things, as well, but the simplest form is shown below.
    103. 

  103. 

  104. .. code-block:: python
    105. 

  105. 

  106.   from flexmeasures.app import create as create_app
    107. 

  107. 

  108.   application = create_app()
    109. 

  109. 

  110. 

  111. The web server is told about the WSGI script, but also about the object which represents the application. For instance, if this script is called ``wsgi.py``, then the relevant argument to the gunicorn server is ``wsgi:application``.
    112.