The Joyent Community

joshpeek · 2006-02-08 03:01:21

I want to make my source for my site open for everyone to check out but I don't want them downloading my database password and other private information. I don't want to setup two repos, one for deploying and one for the public. It seems like to much work. I want everyone to be able to access everything but a couple of files.

Any ideas?

cch · 2006-02-08 03:04:37

if you're accessing via http(s) you can set permissions per directory.

you should probably keep your database.yml off the repository. (keep a safe sample there, but customize it on deployment)

joshpeek · 2006-02-08 03:06:55

cch wrote:
if you're accessing via http(s) you can set permissions per directory.

you should probably keep your database.yml off the repository. (keep a safe sample there, but customize it on deployment)

I am... I was just worried about the database.yml and my switchtower recipe. Does this even NEED to be in the repo or even in the production app at all?

cch · 2006-02-08 03:32:48

i don't know about switchtower. but if you keep it in some other dir just block access to it.

joshpeek · 2006-02-08 03:52:34

Shoot. I'm using ssh+svn. Hmmmm... to "customize it on deployment" work require a fancy switchtower method right? I'll try that.

joshpeek · 2006-02-08 04:09:18

Do you think this would work?

Code:

task :write_database_config, :roles => :app do
  buffer = render(:template => <<DATABASE_CONFIG)
  production:
    adapter: sqlite3
    database: /path/to/my/database.db
  DATABASE_CONFIG
  
  put buffer, "#{release_path}/config/database.yml"

end

Works, I'm half way there

Last edited by joshpeek (2006-02-08 04:49:01)

jason · 2006-02-08 06:25:49

For some reason I think it just takes leaving it blank, like we do

[dev:/railsapphosting/scripts/TextSamurai.rb]
@readonly = r

to make something readable in a private repository

And for some reason I'm thinking that

[repos:/path/to/file.rb]

=
Make the file.rb unreadable in an open repos
...

joshpeek · 2006-02-08 12:39:29

I've just set an ignore on database.yml and deploy.rb. That works for me. Now I need to recreate the repo (because of versions w/ my passwords are up there) and move to https.

mrmachine · 2006-02-08 13:37:51

just make database.yml.default in the repos and tell people to rename and edit it in their working copy.

joshpeek · 2006-02-08 22:01:37

I can't get switchtower to deploy over https.

It stalls here.

Code:

out :: joshpeek.com (R)eject, accept (t)emporarily or accept (p)ermanently?

Plus lighttpd doesn't wana start from switchtower. I have to manually start it up from shell access.

Code:

Bad Gateway

The proxy server received an invalid response from an upstream server.

Last edited by joshpeek (2006-02-08 22:08:30)

joshpeek · 2006-02-08 22:25:01

Its done.

http://www.joshpeek.com/blog/2006/02/08/steal-my-blog

I'm stilling have those problems with https and switchtower restarting lighttpd.

Last edited by joshpeek (2006-02-08 22:25:22)

mcornick · 2006-02-08 23:44:34

FWIW, here's what I do to have my database.yml installed after Switchtower does its thing:

Code:

desc "After symlinking current version, install database.yml"

task :after_symlink do
  run "cp /home/#{user}/etc/#{application}-database.yml #{deploy_to}/current/config/database.yml"

end

Though your way would work too, of course...

joshpeek · 2006-02-09 00:23:10

mcornick wrote:
FWIW, here's what I do to have my database.yml installed after Switchtower does its thing:
Code:
desc "After symlinking current version, install database.yml"

task :after_symlink do
  run "cp /home/#{user}/etc/#{application}-database.yml #{deploy_to}/current/config/database.yml"

end
Though your way would work too, of course...

I actually like that way better. But why not just symlink to it instead of copying.

Here is my modification.

Code:

desc "After symlinking current version, install database.yml"
task :after_symlink do

run "ln -nfs #{shared_dir}/config/database.yml #{release_path}/config/database.yml"
end

Last edited by joshpeek (2006-02-09 00:41:44)

mcornick · 2006-02-09 01:06:34

joshpeek wrote:
I actually like that way better. But why not just symlink to it instead of copying.

Why not, indeed. Changed my code accordingly.

I'm also having issues w/ restarting lighttpd from switchtower, though. Much like explained here: http://wrath.rubyonrails.org/pipermail/ … 12244.html Every time I think I've fixed it, it fails again within a few deployments, so I've just avoided the frustration and manually restart lighttpd after every deployment (which unfortunately ruins the real reason for using switchtower, as far as I'm concerned, but whatever...)

joshpeek · 2006-02-09 01:22:54

Yea, its a weird thing. It seems like everytime I have my txd shell open ready to restart lighty, its fine. If I don't it fails. LOL.

The Joyent Community

#1 2006-02-08 03:01:21

Hide certain files from the public

#2 2006-02-08 03:04:37

Re: Hide certain files from the public

#3 2006-02-08 03:06:55

Re: Hide certain files from the public

cch wrote:

#4 2006-02-08 03:32:48

Re: Hide certain files from the public

#5 2006-02-08 03:52:34

Re: Hide certain files from the public

#6 2006-02-08 04:09:18

Re: Hide certain files from the public

Code:

#7 2006-02-08 06:25:49

Re: Hide certain files from the public

#8 2006-02-08 12:39:29

Re: Hide certain files from the public

#9 2006-02-08 13:37:51

Re: Hide certain files from the public

#10 2006-02-08 22:01:37

Re: Hide certain files from the public

Code:

Code:

#11 2006-02-08 22:25:01

Re: Hide certain files from the public

#12 2006-02-08 23:44:34

Re: Hide certain files from the public

Code:

#13 2006-02-09 00:23:10

Re: Hide certain files from the public

mcornick wrote:

Code:

Code:

#14 2006-02-09 01:06:34

Re: Hide certain files from the public

joshpeek wrote:

#15 2006-02-09 01:22:54

Re: Hide certain files from the public

Board footer

Technology

Services

Resources

About

Partners

Developer Center