Age | Commit message (Collapse) | Author |
|
While the share is technically writable from the container, the
service was running as an unprivileged user, and thus could not write
to the data-directory. This commit changes the ownership of the
data-directory to the same user that runs the service.
|
|
|
|
|
|
|
|
|
|
|
|
source code for development. See
topics/systems/debug-and-developing-code-with-genenetwork-system-container.gmi
|
|
|
|
* genenetwork/services/genenetwork.scm (<gn-uploader-configuration>):
New type.
(gn-uploader-activation, gn-uploader-gunicorn-app,
gn-uploader-nginx-server-block): New functions.
(gn-uploader-service-type): New variable.
* uploader.scm, uploader-deploy.sh: New files.
Signed-off-by: Arun Isaac <arunisaac@systemreboot.net>
|
|
|
|
gn-auth runs as the gunicorn-gn-auth user, not the genenetwork user.
* genenetwork/services/genenetwork.scm (genenetwork-activation): Let
the gunicorn-gn-auth user own the auth database.
Reported-by: Frederick M. Muriithi <fredmanglis@protonmail.com>
|
|
This is useful to enable building URIs with the correct scheme in the
application. These URIs are important when redirection to and from
external services such as the gn-auth service.
|
|
* genenetwork/services/genenetwork.scm (genenetwork-gunicorn-apps):
Set AUTH_SERVER_URL on production genenetwork2.
|
|
*
genenetwork/services/genenetwork.scm (<genenetwork-configuration>)[gn-auth-server-name]:
New field.
*
genenetwork/services/genenetwork.scm (genenetwork-nginx-server-block):
Rename to ...
(genenetwork-nginx-server-blocks): ... this. Return list of reverse
proxy blocks including one for gn-auth.
* genenetwork/services/genenetwork.scm (genenetwork-service-type): Use
genenetwork-nginx-server-blocks instead of
genenetwork-nginx-server-block.
*
production.scm (operating-system)[services]{genenetwork-service-type}:
Add gn-auth-server-name.
|
|
* genenetwork/services/genenetwork.scm (genenetwork-activation): Set
owner-only permissions on secrets files.
|
|
* genenetwork/services/genenetwork.scm (genenetwork-activation): Set
ownership of secrets files.
* production-deploy.sh: Mount secrets files read-write.
|
|
* genenetwork/services/genenetwork.scm: Import gn-auth from (gn
packages genenetwork).
*
genenetwork/services/genenetwork.scm (<genenetwork-configuration>)[gn-auth,
gn-auth-port, gn-auth-secrets]: New fields.
* genenetwork/services/genenetwork.scm (genenetwork-gunicorn-apps):
Add gn-auth gunicorn app.
|
|
* genenetwork/services/genenetwork.scm (genenetwork-gunicorn-apps):
Increase gunicorn timeout for genenetwork3 to 1200 seconds.
|
|
* genenetwork-development.scm (genenetwork3-cd-gexp): Increase
gunicorn timeout to 1200 seconds.
* genenetwork/services/genenetwork.scm (genenetwork-gunicorn-apps):
Add TODO note to increase gunicorn timeout to 1200 seconds.
|
|
* genenetwork/services/genenetwork.scm: New file.
|