Roost on a single instance - uses docker-compose

# Find the disk using 
lsblk

# Optionally remove previous version of roost-enterprise.sh script
rm -f /var/tmp/Roost/bin/roost-enterprise.sh

Roost Enterprise setup command

Eaas Setup command

curl -s https://roost-stable.s3.us-west-2.amazonaws.com/enterprise/roost.sh | SETUP=1 DISK=nvme1n1 CUSTOMER=<> bash -

Edit the Roost config file to reflect organisation specific values

vi /var/tmp/Roost/config.json

{
  "enterprise_name": "Commencis Roost",
  "enterprise_logo": "https://roost.ai/hubfs/logos/Roost.ai-logo-gold.svg",
  "enterprise_email_domain": "commencis.com",
  "enterprise_dns": "commencis.tryroost.link",
  "admin_email": "divyesh@zb.io",
  "ecs_mode": "true",
  "email_sender": "",
  "email_sender_pass": "",
  "email_smtp_host": "",
  "email_smtp_port": "",
  "enterprise_ssl_certificate_path": "",
  "enterprise_ssl_certificate_key_path": "",

  "ENV_SERVER": {
    "GOOGLE_CLIENT_ID": "",
    "GOOGLE_CLIENT_SECRET": "",
    "AZURE_CLIENT_ID": "",
    "AZURE_CLIENT_SECRET": "",
    "GITHUB_CLIENT_ID": "",
    "GITHUB_CLIENT_SECRET": "",
    "LINKEDIN_CLIENT_ID": "",
    "LINKEDIN_CLIENT_SECRET": "",
    "OKTA_CLIENT_ISSUER": "https://dev-53854943.okta.com/oauth2/default",
    "OKTA_CLIENT_ID": "0oa3x8katznHWlHeD5d7",
    "OKTA_CLIENT_SECRET": "7WtBP5NPtqx_VQlEFQms6Gf2cRS-n58pIJ-nifvc",
    "AZURE_ADFS_CLIENT_ISSUER": "",
    "AZURE_ADFS_CLIENT_ID": "",
    "AZURE_ADFS_CLIENT_SECRET": ""
  },

  "is_own_sql": "false",
  "ENV_DATABASE": {
    "DB_HOST_TYPE": "mysql",
    "DB_HOST": "mysqldb_host_url",
    "DB_PORT": 3306,

    "DB_USERNAME": "Roost",
    "DB_PASSWORD": "Roost#123",
    "DB_ROOT_PASSWORD": "Admin#123",
    "DB_SCHEMA_NAME": "roostio"
  }
}

Note :- DB_HOST can be defaulted to 127.0.0.1 if we want to use local database.

Execute for launching Roost Stack

ROOST_VER=v1.1.4 /var/tmp/Roost/bin/roost-enterprise.sh -c /var/tmp/Roost/config.json -i roost

Allow the TCP/HTTPS traffic into the server

TCP/(5000 - 5005)   - Docker Host/Registry ports
HTTPS/443           - Roost UI access
TCP/(60001 - 60006) - Roost Services ports
TCP/(30000 - 32767) - docker containers external ports
(30070 is the Roost service fitness port)

Stage SSL Certs for the domain as mentioned in`enterprise_dns`

Copy the certs to following location unless provided in the config.json

ls -l /var/tmp/Roost/certs/server.cer
ls -l /var/tmp/Roost/certs/server.key

How to generate certificate using Certbot and use in Nginx?

Certbot Instructions

sudo snap install core; sudo snap refresh core
sudo snap install --classic certbot
sudo ln -s /snap/bin/certbot /usr/bin/certbot
sudo certbot --nginx

To delete the Roost stack

cd /var/tmp/Roost
k3d cluster delete roost
docker-compose down
cd /var/tmp/Roost/yaml
docker-compose -f DockerApiCompose.yaml down
docker-compose -f roost-docker-monitor.yml down
docker-compose -f roost-registry.yaml down
docker ps | grep -v CONTAINER | awk '{print $1}' | xargs -r docker stop
ps -aef | grep -i roost | grep -v grep | awk '{print $2}' | xargs -r sudo kill -9
sudo rm -rf /var/tmp/Roost/.* /var/tmp/Roost/* /var/tmp/bin /var/tmp/roost*
cd -
sudo umount /var/tmp/Roost