YunoHost-Apps/flohmarkt_ynh
1
0
Fork 0
mirror of https://github.com/YunoHost-Apps/flohmarkt_ynh.git synced 2024-09-03 18:36:30 +02:00
Code Issues Activity Actions

Merge pull request 'ynh4: fail2ban configuration added' (#34) from logger into main

Browse source 
Reviewed-on: https://codeberg.org/flohmarkt/flohmarkt_ynh/pulls/34
closes: https://codeberg.org/flohmarkt/flohmarkt_ynh/issues/16#issuecomment-1791332
This commit is contained in:
Chris Vogel 2024-04-27 16:29:15 +00:00
commit bc8eea5e6d
6 changed files with 90 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
conf/systemd.service
View file

@ -8,7 +8,7 @@ User=__APP__
Group=__APP__ Group=__APP__
WorkingDirectory=__INSTALL_DIR__/__APP__ WorkingDirectory=__INSTALL_DIR__/__APP__
Environment="VENV_DIR=__INSTALL_DIR__/venv/" Environment="VENV_DIR=__INSTALL_DIR__/venv/"
ExecStart=__INSTALL_DIR__/venv/bin/uvicorn --host 127.0.0.1 --port __PORT__ --reload flohmarkt.web:start ExecStart=/bin/bash -c "/opt/flohmarkt/venv/bin/uvicorn --host 127.0.0.1 --port 8000 --reload flohmarkt.web:start 2>&1 | /usr/bin/ts '%%Y-%%m-%%d %%H:%%M:%%S'"
StandardOutput=append:/var/log/__APP__/__APP__.log StandardOutput=append:/var/log/__APP__/__APP__.log
StandardError=inherit StandardError=inherit

27
logger.json Normal file
View file

@ -0,0 +1,27 @@
{
"version": 1,
"disable_existing_loggers": false,
"formatters": {
"json": {
"()": "pythonjsonlogger.jsonlogger.JsonFormatter",
"fmt": "%(asctime)s %(name)s %(levelname)s %(message)s"
}
},
"handlers": {
"stderr": {
"formatter": "json",
"class": "logging.StreamHandler",
"stream": "ext://sys.stderr"
},
"stdout": {
"formatter": "json",
"class": "logging.StreamHandler",
"stream": "ext://sys.stdout"
}
},
"loggers": {
"uvicorn": {"handlers": ["stderr"], "level": "INFO", "propagate": false},
"uvicorn.error": {"level": "INFO"},
"uvicorn.access": {"handlers": ["stdout"], "level": "INFO", "propagate": false}
}
}

5
manifest.toml
View file

@ -6,7 +6,7 @@ id = "flohmarkt"
name = "flohmarkt" name = "flohmarkt"
description.en = "A decentral federated small ads platform" description.en = "A decentral federated small ads platform"
version = "0.0~ynh3" version = "0.0~ynh4"
maintainers = ["Chris Vogel"] maintainers = ["Chris Vogel"]
@ -156,7 +156,8 @@ ram.runtime = "100M"
[resources.apt] [resources.apt]
# python dependencies shall be installed in a venv using pip. # python dependencies shall be installed in a venv using pip.
packages = "python3-pip python3-full curl apt-transport-https gnupg" # moreutils is needed for `ts` used in systemd.service
packages = "python3-pip python3-full curl apt-transport-https gnupg moreutils"
# repo for couchdb - doesn't work, yet # repo for couchdb - doesn't work, yet
# extras.couchdb.repo = "deb https://apache.jfrog.io/artifactory/couchdb-deb/ __YNH_DEBIAN_VERSION__ main" # extras.couchdb.repo = "deb https://apache.jfrog.io/artifactory/couchdb-deb/ __YNH_DEBIAN_VERSION__ main"
# extras.couchdb.key = "https://couchdb.apache.org/repo/keys.asc" # extras.couchdb.key = "https://couchdb.apache.org/repo/keys.asc"

55
run-uvicorn.example Normal file
View file

@ -0,0 +1,55 @@
/opt/flohmarkt/venv/bin/uvicorn --host 127.0.0.1 --port 8000 --reload --log-config logger.json flohmarkt.web:start
Fehler:
Traceback (most recent call last):
File "/usr/lib/python3.9/logging/config.py", line 385, in resolve
found = self.importer(used)
ModuleNotFoundError: No module named 'pythonjsonlogger'
The above exception was the direct cause of the following exception:
Traceback (most recent call last):
File "/usr/lib/python3.9/logging/config.py", line 543, in configure
formatters[name] = self.configure_formatter(
File "/usr/lib/python3.9/logging/config.py", line 655, in configure_formatter
result = self.configure_custom(config)
File "/usr/lib/python3.9/logging/config.py", line 470, in configure_custom
c = self.resolve(c)
File "/usr/lib/python3.9/logging/config.py", line 398, in resolve
raise v
File "/usr/lib/python3.9/logging/config.py", line 385, in resolve
found = self.importer(used)
ValueError: Cannot resolve 'pythonjsonlogger.jsonlogger.JsonFormatter': No module named 'pythonjsonlogger'
The above exception was the direct cause of the following exception:
Traceback (most recent call last):
File "/opt/flohmarkt/venv/bin/uvicorn", line 8, in <module>
sys.exit(main())
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/click/core.py", line 1157, in __call__
return self.main(*args, **kwargs)
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/click/core.py", line 1078, in main
rv = self.invoke(ctx)
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/click/core.py", line 1434, in invoke
return ctx.invoke(self.callback, **ctx.params)
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/click/core.py", line 783, in invoke
return __callback(*args, **kwargs)
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/uvicorn/main.py", line 404, in main
run(
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/uvicorn/main.py", line 506, in run
config = Config(
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/uvicorn/config.py", line 299, in __init__
self.configure_logging()
File "/opt/flohmarkt/venv/lib/python3.9/site-packages/uvicorn/config.py", line 411, in configure_logging
logging.config.dictConfig(loaded_config)
File "/usr/lib/python3.9/logging/config.py", line 809, in dictConfig
dictConfigClass(config).configure()
File "/usr/lib/python3.9/logging/config.py", line 546, in configure
raise ValueError('Unable to configure '
ValueError: Unable to configure formatter 'json'
(venv) root@yt:/opt/flohmarkt/flohmarkt# pip install python-json-logger
Requirement already satisfied: python-json-logger in /usr/lib/python3.9/site-packages (2.0.7)
Ausgabe in json will ich eigentlich auch nicht falls das in der config steht. Der Kram ist aber so dokumentiert, dass ich ihn nicht verstehe...

5
scripts/install
View file

@ -122,8 +122,7 @@ chmod 640 "/var/log/$app/$app.log"
ynh_systemd_action --service_name=$app --action="start" ynh_systemd_action --service_name=$app --action="start"
# SETUP FAIL2BAN # SETUP FAIL2BAN
# @@ todo ynh_script_progression --message="Configuring Fail2Ban..." --weight=3
# ynh_script_progression --message="Configuring Fail2Ban..." --weight=3 ynh_add_fail2ban_config --logpath="/var/log/$app/$app.log" --failregex='INFO: +<HOST>:\d+ - "POST /token HTTP/\d+\.\d+" 403 Forbidden' --max_retry=5
# ynh_add_fail2ban_config --logpath="/var/log/$app/$app.log" --failregex="<HOST>:" --max_retry=5
ynh_script_progression --message="Installation of $app completed" --last ynh_script_progression --message="Installation of $app completed" --last

5
scripts/upgrade
View file

@ -93,9 +93,8 @@ ynh_script_progression --message="Upgrading NGINX web server configuration..." -
ynh_add_nginx_config ynh_add_nginx_config
# UPGRADE FAIL2BAN # UPGRADE FAIL2BAN
# ynh_script_progression --message="Reconfiguring Fail2Ban..." --weight=3 ynh_script_progression --message="Reconfiguring Fail2Ban..." --weight=3
# Create a dedicated Fail2Ban config ynh_add_fail2ban_config --logpath="/var/log/$app/$app.log" --failregex='INFO: +<HOST>:\d+ - "POST /token HTTP/\d+\.\d+" 403 Forbidden' --max_retry=5
# ynh_add_fail2ban_config --logpath="/var/log/couchdb/couchdb.log" --failregex="[warning] .*couch_httpd_auth: Authentication failed for user .+ from <HOST>" --max_retry=5
# start flohmarkt # start flohmarkt
ynh_script_progression --message="Starting flohmarkt..." --weight=3 ynh_script_progression --message="Starting flohmarkt..." --weight=3