cookbook 'gitlab_omnibus', '= 0.9.0'
gitlab_omnibus (12) Versions 0.9.0 Follow8
Installs/Configures GitLab and GitLab CI Omnibus
cookbook 'gitlab_omnibus', '= 0.9.0', :supermarket
knife supermarket install gitlab_omnibus
knife supermarket download gitlab_omnibus
Description
Install and configure GitLab and GitLab CI using GitLab Omnibus packages. GitLab
Omnibus packages contain all dependencies needed to run GitLab including Ruby,
PostgreSQL database, etc.
This cookbook is in the early stages. Please try it out and provide
feedback in the issue tracker if you have trouble.
Version 0.9.0
Works with GitLab CE 7.10.0 and greater and GitLab EE 7.11.2 or greater (when package repos
were released for each).
GitLab now maintains a Package Cloud repo for both CE and EE. This makes things considerably easier
to manage from Chef. This version of the cookbook cleans up the recipe and changes a lot of attributes.
There are potentially breaking changes to some existing users of this cookbook specifically surrounding
how the GitLab omnibus package is installed.
The current state of the cookbook is nearly ready for 1.0. If no one reports
major issues with 0.9.0 the next release will be 1.0 and no breaking changes will be released before
2.0.
No actual GitLab configuration attributes have changed (gitlab_rails, unicorn, nginx, etc.).
Attributes that no longer exist include:
node['gitlab_omnibus']['install_package_from_repo']
node['gitlab_omnibus']['package_url']
Note for Debian 7 users
The packagecloud
cookbook requires the apt-transport-https
package. During
integration testing Debian 7.8 required an apt-get update
in order to download
and install this package. If you get an error about installing this package, try
running apt-get update
and then run the recipe again. Unfortunately, there wasn't
a clean way to automatically resolve this issue.
Getting Started
By default, this cookbook does not require any attributes to be set. Simply
include this recipe in a wrapper cookbook or on a node and GitLab will be
installed and configured with external_url
set to https://#{node['fqdn']}
.
Override node['gitlab_omnibus']['external_url']
if the default doesn't fit
your needs.
GitLab CI is not enabled/configured by default. Set
node['gitlab_omnibus']['ci_external_url']
to enable GitLab CI.
All other configuration values default to the values specified in the GitLab
Omnibus package. See
gitlab.rb.template
in the GitLab Omnibus repository for default values. For each configuration
key in the template file there is a configuration hash in this cookbook. For
example, to set gitlab_rails['gitlab_ssh_host']
use
node['gitlab_omnibus']['gitlab_rails']['gitlab_ssh_host'] = ''
. Similarly,
to set unicorn['port']
use node['gitlab_omnibus']['unicorn']['port'] = 8181
.
Values represented in YAML format in gitlab.rb.template
should be transformed
into nested hashes before being passed in to attributes in this cookbook. One
example of this is the gitlab_rails['ldap_servers']
configuration key.
Backups
By default this cookbook will configure a cron job to backup GitLab daily at
3:00 am and GitLab CI at 3:30 am (if CI is configured). See attributes to configure
custom backup options.
Enterprise GitLab
This cookbook supports installation of GitLab EE in addition to CE. Enterprise
packages are now available via PackageCloud, too. Set
node['gitlab_omnibus']['edition'] = 'enterprise'
and GitLab EE will be installed.
You will need to enter a license key in the admin section to continue using GitLab.
SSL
Omnibus has some magic in it. If you set an external_url
to some value with
'https' in it Omnibus will enable SSL in Nginx configuration. By default, this
points at /etc/gitlab/ssl/#{node['fqdn']}.crt
for the certificate and
/etc/gitlab/ssl/#{node['fqdn']}.key
for the private key. Users of this
cookbook should either place SSL certificates in this location or specify
a new location for certificates with
node['gitlab_omnibus']['nginx']['ssl_certificate']
and
node['gitlab_omnibus']['nginx']['ssl_certificate_key']
. This cookbook does
not facilitate handling of SSL certificate files. See
"Things this cookbook doesn't do" below for
more information.
If GitLab CI is enabled, SSL configuration options for the CI virtual host
should be set. Set node['gitlab_omnibus']['ci_nginx']['ssl_certificate']
and
node['gitlab_omnibus']['ci_nginx']['ssl_certificate_key']
. The default
is the same as for GitLab - /etc/gitlab/ssl/#{node['fqdn']}.crt
for the
certificate and /etc/gitlab/ssl/#{node['fqdn']}.key
for the private key.
SSH
GitLab requires OpenSSH. I suggest the
openssh cookbook for managing
SSH. Installing and configuring SSH is outside the scope of this cookbook. See
"Things this cookbook doesn't do" below for
more information.
Postfix
GitLab requires Postfix to send email. I recommend the
postfix cookbook for managing
Postfix. Installing and configuring Postfix is outside the scope of this
cookbook. See
"Things this cookbook doesn't do" below for
more information.
Requirements
Platform:
- Centos (>= 6.5)
- Debian (>= 7.1)
- Ubuntu (>= 12.04)
Cookbooks:
- poise (~> 1.0)
- packagecloud (< 1.0)
Attributes
-
node['packagecloud']['base_url']
- Override packagecloud base url. Defaults tohttps://packages.gitlab.com
. -
node['packagecloud']['base_repo_url']
- Override packagecloud base repo url. Defaults tohttps://packages.gitlab.com/install/repositories/
. -
node['packagecloud']['gpg_key_url']
- Override packagecloud gpg key url. Defaults tohttps://packages.gitlab.com/gpg.key
. -
node['gitlab_omnibus']['use_packagecloud']
- Use GitLab packagecloud repo. Defaults totrue
. -
node['gitlab_omnibus']['package_name']
- The name of the GitLab Omnibus package. Determined automatically when using packagecloud but can be customized if using an internal package repository. Defaults togitlab-ce
. -
node['gitlab_omnibus']['edition']
- GitLab edition to install.community
orenterprise
. Defaults tocommunity
. -
node['gitlab_omnibus']['version']
- Specify GitLab version to install. By default use latest version available at install time. If GitLab is already installed and a higher version is specified the package will be upgraded. Defaults tonil
. -
node['gitlab_omnibus']['action']
-:install
or:upgrade
? Beware,:upgrade
will install the newest version as soon as it becomes available. Defaults to:install
. -
node['gitlab_omnibus']['external_url']
- URL where GitLab will be accessible. Defaults tohttps://#{node['fqdn']}
. -
node['gitlab_omnibus']['gitlab_rails']
- Configuration matchinggitlab_rails['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['user']
- Configuration matchinguser['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['unicorn']
- Configuration matchingunicorn['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['sidekiq']
- Configuration matchingsidekiq['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['gitlab_shell']
- Configuration matchinggitlab_shell['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['postgresql']
- Configuration matchingpostgresql['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['redis']
- Configuration matchingredis['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['web_server']
- Configuration matchingweb_server['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['nginx']
- Configuration matchingnginx['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['logging']
- Configuration matchinglogging['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['logrotate']
- Configuration matchinglogrotate['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['omnibus_gitconfig']
- Configuration matchingomnibus_gitconfig['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['high_availability']
- Configuration matchinghigh_availability['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['ci_external_url']
- URL where GitLab CI will be accessible. Setting this value enables/configures GitLab CI. Defaults tonil
. -
node['gitlab_omnibus']['gitlab_ci']
- Configuration matchinggitlab_ci['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['ci_unicorn']
- Configuration matchingci_unicorn['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['ci_sidekiq']
- Configuration matchingci_sidekiq['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['ci_redis']
- Configuration matchingci_redis['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['ci_nginx']
- Configuration matchingci_nginx['config_key']
fromgitlab.rb.template
. Defaults to{ ... }
. -
node['gitlab_omnibus']['backup']['enable']
- Configure a cron job to backup GitLab (does NOT backup GitLab CI) By default GitLab Omnibus keeps backups forever. Set node['gitlab_omnibus']['gitlab_rails']['backup_keep_time'] = '604800' (in seconds). Defaults totrue
. -
node['gitlab_omnibus']['backup']['command']
- The command to create a backup. CRON=1 suppresses output unless there are errors. Defaults toCRON=1 /opt/gitlab/bin/gitlab-rake gitlab:backup:create
. -
node['gitlab_omnibus']['backup']['user']
- The user to run the backup command as. Defaults toroot
. -
node['gitlab_omnibus']['backup']['minute']
- The cron minute. Defaults to0
. -
node['gitlab_omnibus']['backup']['hour']
- The cron hour. Defaults to3
. -
node['gitlab_omnibus']['backup']['day']
- The cron day of the week. Defaults to*
. -
node['gitlab_omnibus']['backup']['month']
- The cron month. Defaults to*
. -
node['gitlab_omnibus']['backup']['weekday']
- The cron day of the week. Defaults to*
. -
node['gitlab_omnibus']['ci_backup']['enable']
- Configure a cron job to backup GitLab CI. Only enable this if you setnode['gitlab_omnibus']['ci_external_url']
. Defaults totrue
. -
node['gitlab_omnibus']['ci_backup']['command']
- The command to create a backup. CRON=1 suppresses output unless there are errors. Defaults toCRON=1 /opt/gitlab/bin/gitlab-ci-rake backup:create
. -
node['gitlab_omnibus']['ci_backup']['user']
- The user to run the backup command as. Defaults toroot
. -
node['gitlab_omnibus']['ci_backup']['minute']
- The cron minute. Defaults to30
. -
node['gitlab_omnibus']['ci_backup']['hour']
- The cron hour. Defaults to3
. -
node['gitlab_omnibus']['ci_backup']['day']
- The cron day of the week. Defaults to*
. -
node['gitlab_omnibus']['ci_backup']['month']
- The cron month. Defaults to*
. -
node['gitlab_omnibus']['ci_backup']['weekday']
- The cron day of the week. Defaults to*
.
Recipes
- gitlab_omnibus::default
Things this cookbook doesn't do:
- Manage a firewall
- Install SSH or Postfix
- Manage secrets (database passwords, SSL keys/certs, etc)
Why not?
This is a library/application cookbook. It's sole purpose is installation
and configuration of GitLab and/or GitLab CI. The goal is to be forward
compatible with future versions of GitLab and avoid assumptions about how
users like to use Chef. Therefore, it does not validate whether configuration
hash values are valid for GitLab Omnibus, it does not require any data bags,
manage secrets, install SSL certificates, or anything else of that nature.
This leaves users free to wrap the cookbook and add those bits that work for
their environment.
Roadmap
- Support GitLab CI Runners
Testing
Code Style
To run style tests (Rubocop and Foodcritic):
rake style
If you want to run either Rubocop or Foodcritic separately, specify the style
test type (Rubocop = ruby, Foodcritic = chef)
rake style:chef
or
rake style:ruby
RSpec tests
Run RSpec unit tests
rake spec
Test Kitchen
Run Test Kitchen tests (these tests take quite a bit of time)
rake integration:vagrant
License and Maintainer
Maintainer:: Drew Blessing (drew.blessing@mac.com)
License:: Apache 2.0
Dependent cookbooks
poise ~> 1.0 |
packagecloud < 1.0 |
Contingent cookbooks
There are no cookbooks that are contingent upon this one.
Changelog
0.9.0
- Breaking changes: Lots has changed. The changes were to facilitate the new GitLab package server. See the README for more information on attributes.
- Use new GitLab package server (APT/YUM)
- Clean up recipe
- Add new service resource to add
reconfigure
action - Clean up tests
- Change backup cron time to 3:00. (2:00 is when daylight savings time rolls over so it's a bad time to do tasks)
- Add GitLab CI backup cron
- Change service commands to use /opt/gitlab/bin to avoid issue where symlink may have been deleted.
0.3.0
- Feature: Configure backup cron.
- Bump default version to 7.9.2
0.2.1
- Bug: Chef client 12.1.0 broke yum package install from source for CentOS. Change to RPM provider. See issue #6
0.2.0
- Bug: Fix handling of various configuration values (nil, hash, array, etc)
- Feature: Install package from yum/apt repo instead of remote file download
0.1.0
- Initial release
Foodcritic Metric
0.9.0 failed this metric
FC031: Cookbook without metadata file: /tmp/cook/430e32cef73acd72ec806ae7/gitlab_omnibus/metadata.rb:1
FC045: Consider setting cookbook name in metadata: /tmp/cook/430e32cef73acd72ec806ae7/gitlab_omnibus/metadata.rb:1
0.9.0 failed this metric
FC045: Consider setting cookbook name in metadata: /tmp/cook/430e32cef73acd72ec806ae7/gitlab_omnibus/metadata.rb:1