(#39) xmpp2: set up loglist app and database

Author: ForNeVeR

Folder.DotSettings

@@ -1,4 +1,7 @@
 <wpf:ResourceDictionary xml:space="preserve" xmlns:x="http://schemas.microsoft.com/winfx/2006/xaml" xmlns:s="clr-namespace:System;assembly=mscorlib" xmlns:ss="urn:shemas-jetbrains-com:settings-storage-xaml" xmlns:wpf="http://schemas.microsoft.com/winfx/2006/xaml/presentation">
 	<s:Boolean x:Key="/Default/UserDictionary/Words/=codingteam/@EntryIndexedValue">True</s:Boolean>
 	<s:Boolean x:Key="/Default/UserDictionary/Words/=lineinfile/@EntryIndexedValue">True</s:Boolean>
+	<s:Boolean x:Key="/Default/UserDictionary/Words/=loglist/@EntryIndexedValue">True</s:Boolean>
+	<s:Boolean x:Key="/Default/UserDictionary/Words/=pgdata/@EntryIndexedValue">True</s:Boolean>
+	<s:Boolean x:Key="/Default/UserDictionary/Words/=postgre/@EntryIndexedValue">True</s:Boolean>
 	<s:Boolean x:Key="/Default/UserDictionary/Words/=sshuser/@EntryIndexedValue">True</s:Boolean></wpf:ResourceDictionary>

xmpp2/default.yml

@@ -6,3 +6,4 @@
 - import_playbook: nginx.yml
 - import_playbook: docker.yml
 - import_playbook: codingteam.org.ru.yml
+- import_playbook: loglist.yml

xmpp2/files/loglist/app.conf

@@ -0,0 +1,31 @@
+# SPDX-FileCopyrightText: 2025 Friedrich von Never <[email protected]>
+#
+# SPDX-License-Identifier: MIT
+
+play.http.secret.key = ${HTTP_SECRET_KEY}
+play.i18n.langs = ["en"]
+
+feed.limit = 30
+
+db.default.driver = org.postgresql.Driver
+db.default.url = ${DATABASE_URL}
+
+play.evolutions.autocommit = false
+play.evolutions.db.default.autoApply = ${APPLY_EVOLUTIONS_SILENTLY}
+
+recaptcha.publickey = ${RECAPTCHA_PUBLIC_KEY}
+recaptcha.privatekey = ${RECAPTCHA_PRIVATE_KEY}
+
+basicAuth.username = ${BASIC_AUTH_USERNAME}
+basicAuth.password = ${BASIC_AUTH_PASSWORD}
+
+approval.smtpHost = ${APPROVAL_SMTP_HOST}
+approval.email = ${APPROVAL_EMAIL}
+approval.emailPassword = ${APPROVAL_EMAIL_PASSWORD}
+
+play.modules.enabled += "scalikejdbc.PlayModule"
+
+play.filters.enabled += play.filters.hosts.AllowedHostsFilter
+play.filters.hosts {
+  allowed = ["loglist.xyz"]
+}

xmpp2/files/loglist/init_db.sql

@@ -0,0 +1 @@
+CREATE EXTENSION pgcrypto;

xmpp2/loglist.yml

@@ -0,0 +1,109 @@
+# SPDX-FileCopyrightText: 2025 Friedrich von Never <[email protected]>
+#
+# SPDX-License-Identifier: MIT
+
+---
+- name: Main site for codingteam.org.ru
+  hosts: xmpp2
+  become: true
+
+  vars:
+    # Container versions:
+    postgresql_version: 9.3
+    loglist_version: 2.0.1
+
+    # Paths on host:
+    host_db_init_scripts_dir: /opt/codingteam/loglist/init_db_scripts
+    host_data_dir: /opt/codingteam/loglist/data
+    host_config_dir: /opt/codingteam/loglist/config
+
+    # Paths in containers:
+    container_data_dir: /data
+
+  vars_files:
+    - secrets.yml
+
+  handlers:
+    - name: Prune Docker
+      community.docker.docker_prune:
+        containers: true
+        images: true
+        images_filters:
+          dangling: false
+        networks: true
+        volumes: true
+        builder_cache: true
+
+  tasks:
+    - name: Create directories
+      ansible.builtin.file:
+        path: '{{ item }}'
+        state: directory
+        mode: 'u=rwx,g,o=rx'
+      loop:
+        - '{{ host_db_init_scripts_dir }}'
+        - '{{ host_data_dir }}'
+        - '{{ host_config_dir }}'
+
+    - name: Create the Docker network
+      community.docker.docker_network:
+        name: loglist
+
+    - name: Copy the database initialization script
+      ansible.builtin.copy:
+        src: loglist/init_db.sql
+        dest: '{{ host_db_init_scripts_dir }}/init_db.sql'
+        mode: 'u,g,o=rx'
+
+    - name: Set up the database container
+      community.docker.docker_container:
+        name: loglist.postgresql
+        image_name_mismatch: recreate
+        image: postgres:{{ postgresql_version }}
+        published_ports:
+          - '5423'
+        env:
+          POSTGRES_DB: loglist
+          POSTGRES_USER: loglist
+          POSTGRES_PASSWORD: '{{ loglist_secrets.db_password }}'
+          PGDATA: '{{ container_data_dir }}'
+        volumes:
+          - '{{ host_db_init_scripts_dir }}/:/docker-entrypoint-initdb.d/'
+          - '{{ host_data_dir }}/:/{{ container_data_dir }}/'
+        networks:
+          - name: loglist
+        default_host_ip: ''
+      notify: Prune Docker
+
+    - name: Copy the application configuration file
+      ansible.builtin.copy:
+        src: loglist/app.conf
+        dest: '{{ host_config_dir }}/app.conf'
+        mode: 'u,g,o=rx'
+
+    - name: Set up the application container
+      community.docker.docker_container:
+        name: loglist.app
+        image_name_mismatch: recreate
+        image: codingteam/loglist:{{ loglist_version }}
+        published_ports:
+          - '9000:9000'
+        env:
+          APPLY_EVOLUTIONS_SILENTLY: 'true'
+          APPROVAL_EMAIL: '{{ loglist_secrets.approval_email.name }}'
+          APPROVAL_EMAIL_PASSWORD: '{{ loglist_secrets.approval_email.password }}'
+          APPROVAL_SMTP_HOST: '{{ loglist_secrets.approval_email.smtp_host }}'
+          BASIC_AUTH_PASSWORD: '{{ loglist_secrets.basic_auth.password }}'
+          BASIC_AUTH_USERNAME: '{{ loglist_secrets.basic_auth.username }}'
+          DATABASE_URL: 'jdbc:postgresql://loglist.postgresql/loglist?user=loglist&password={{ loglist_secrets.db_password }}'
+          JAVA_OPTS: '-Xmx200m -Xss512k -XX:+UseCompressedOops'
+          RECAPTCHA_PRIVATE_KEY: '{{ loglist_secrets.recaptcha.private_key }}'
+          RECAPTCHA_PUBLIC_KEY: '{{ loglist_secrets.recaptcha.public_key }}'
+          HTTP_SECRET_KEY: '{{ loglist_secrets.http_secret_key }}'
+        volumes:
+          - '{{ host_db_init_scripts_dir }}/:/docker-entrypoint-initdb.d/'
+          - '{{ host_data_dir }}/:/{{ container_data_dir }}/'
+        networks:
+          - name: loglist
+        default_host_ip: ''
+      notify: Prune Docker

xmpp2/vars/secrets.example.yml

@@ -4,3 +4,20 @@
 
 user_secrets:
   password_hash: '' # Use `mkpasswd --method=sha-512` to generate.
+
+loglist_secrets:
+  db_password: ''
+  http_secret_key: ''
+
+  approval_email:
+    name: ''
+    password: ''
+    smtp_host: ''
+
+  basic_auth:
+    username: ''
+    password: ''
+
+  recaptcha:
+    private_key: ''
+    public_key: ''