-
Notifications
You must be signed in to change notification settings - Fork 38
Deploying the CVE Server with Capistrano and Ngnix
Alejandro Juárez edited this page Nov 1, 2018
·
3 revisions
-
Create a user for the deployment in your production machine.
sudo adduser -c 'CVE Server deployer' deployer -
Install RVM, Ruby, MongoDB and Gninx in your production machine.
gpg --keyserver hkp://keys.gnupg.net --recv-keys 409B6B1796C275462A1703113804BB82D39DC0E3 curl -sSL https://get.rvm.io | bash -s stable rvm install ruby-2.2.3 apt-get install nginx mongodb -
Edit the capistrano files under the config directory in your local repository.
vi config/deploy.rb vi config/deploy/production.rb -
Run the deployment commands.
export RACK_ENV=production cap production deploy cap production deploy:download_nvd_reports cap production deploy:seed -
Configure the ngnix server in your production machine.
upstream cve_server { server unix://home/deployer/cve_server/shared/tmp/sockets/puma.sock; } server { listen 80 default_server; root /home/deployer/cve_server/current/public; server_name localhost; location / { proxy_pass http://cve_server; proxy_set_header Host $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_buffering off; } } -
Add puma as a daemon service in your production machine.
https://github.com/puma/puma/tree/master/tools/jungle/init.d -
Save this script to update your database from the cron using your deployment user.
vi /home/deployer/bin/cve_server_update.sh #!/bin/bash [ -s "$HOME/.rvm/scripts/rvm" ] && source "$HOME/.rvm/scripts/rvm" app="/home/deployer/cve_server/current" cd $app; bundle exec ./bin/nvd_downloader; bundle exec ./bin/seed RACK_ENV=production chmod u+x /home/deployer/bin/cve_server_update.sh -
Add the following line into the crontab of the deployment user to execute this every day at 2:00 am.
0 2 * * * /home/deployer/bin/cve_server_update.sh