| Code Block |
|---|
# Find the disk using
lsblk
# Optionally remove previous version of roost-enterprise.sh script
rm -f /var/tmp/Roost/bin/roost-enterprise.sh |
# Fetch the necessary roost script and configuration files
...
Roost Enterprise setup command
Eaas Setup command
| Code Block |
|---|
curl -s https://roost-stable.s3.us-west-2.amazonaws.com/enterprise/roost.sh | SETUP=1 DISK=nvme1n1 CUSTOMER=commencis<> bash - |
Edit the Roost config file to reflect organisation specific values
vi /var/tmp/Roost/config.json
| Code Block |
|---|
{
"enterprise_name": "Commencis Roost",
"enterprise_logo": "https://roost.ai/hubfs/logos/Roost.ai-logo-gold.svg",
"enterprise_email_domain": "commencis.com",
"enterprise_dns": "commencis.tryroost.link",
"admin_email": "divyesh@zb.io",
"ecs_mode": "true",
"email_sender": "",
"email_sender_pass": "",
"email_smtp_host": "",
"email_smtp_port": "",
"enterprise_ssl_certificate_path": "",
"enterprise_ssl_certificate_key_path": "",
"ENV_SERVER": {
"GOOGLE_CLIENT_ID": "",
"GOOGLE_CLIENT_SECRET": "",
"AZURE_CLIENT_ID": "",
"AZURE_CLIENT_SECRET": "",
"GITHUB_CLIENT_ID": "",
"GITHUB_CLIENT_SECRET": "",
"LINKEDIN_CLIENT_ID": "",
"LINKEDIN_CLIENT_SECRET": "",
"OKTA_CLIENT_ISSUER": "https://dev-53854943.okta.com/oauth2/default",
"OKTA_CLIENT_ID": "0oa3x8katznHWlHeD5d7",
"OKTA_CLIENT_SECRET": "7WtBP5NPtqx_VQlEFQms6Gf2cRS-n58pIJ-nifvc",
"AZURE_ADFS_CLIENT_ISSUER": "",
"AZURE_ADFS_CLIENT_ID": "",
"AZURE_ADFS_CLIENT_SECRET": ""
},
"is_own_sql": "false",
"ENV_DATABASE": {
"DB_HOST_TYPE": "mysql",
"DB_HOST": "mysqldb_host_url",
"DB_PORT": 3306,
"DB_USERNAME": "Roost",
"DB_PASSWORD": "Roost#123",
"DB_ROOT_PASSWORD": "Admin#123",
"DB_SCHEMA_NAME": "roostio"
}
} |
Note :- DB_HOST can be defaulted to 127.0.0.1 if we want to use local database.
Execute for launching Roost Stack
| Code Block |
|---|
breakoutMode | wide |
|---|
ROOST_VER=v1.1.24 /var/tmp/Roost/bin/roost-enterprise.sh -c /var/tmp/Roost/config.json -i roost |
Allow the TCP/HTTPS traffic into the server
| Code Block |
|---|
TCP/ (5000 - for docker host port 5005) - Docker Host/Registry ports
HTTPS/443 - for Roost UI access
TCP/(60001 - 60006) - Roost Services ports
TCP/(30000 - 32767) - docker containers external ports
(30070 is the Roost service fitness port) |
Stage SSL Certs for the domain as mentioned inenterprise_dns
Copy the certs to following location unless provided in the config.json
| Code Block |
|---|
ls -l /var/tmp/Roost/certs/server.cer
ls -l /var/tmp/Roost/certs/server.key |
How to generate certificate using Certbot and use in Nginx?
https://certbot.eff.org/instructions?ws=nginx&os=ubuntufocal
| Code Block |
|---|
sudo snap install core; sudo snap refresh core
sudo snap install --classic certbot
sudo ln -s /snap/bin/certbot /usr/bin/certbot
sudo certbot --nginx
|
To delete the Roost stack
| Code Block |
|---|
cd /var/tmp/Roost
k3d cluster delete roost
docker-compose down
cd /var/tmp/Roost/yaml
docker-compose -f DockerApiCompose.yaml down
docker-compose -f roost-docker-monitor.yml down
docker-compose -f roost-registry.yaml down
docker ps | grep -v CONTAINER | awk '{print $1}' | xargs -r docker stop
ps -aef | grep -i roost | grep -v grep | awk '{print $2}' | xargs -r sudo kill -9
sudo rm -rf /var/tmp/Roost/.* /var/tmp/Roost/* /var/tmp/bin /var/tmp/roost*
cd -
sudo umount /var/tmp/Roost |
...