ansible-taler-exchange

README (5505B)

---

 # Ansible Taler Playbooks
 
 ## Installing dependencies
 
 Depending on your local installation, you might need
 to install the following ansible collection:
 
 ```
 $ ansible-galaxy collection install community.postgresql
 ```
 
 ## Running the main Playbooks
 
 The canonical playbooks are run via shell scripts in the top-level
 directory.
 
 ### Main setup (restore.sh, deploy.sh)
 
 The "restore.sh" script extracts the latest database backup from the
 backup server. It should be run before the deploy.sh script to obtain
 the latest version of the database to be restored, unless you are
 literally setting up a service from scratch (which should be ultra-rare
 in production).
 
 The "deploy.sh" script deploys the latest version of a system on a host.
 If you are root@rusty.taler-ops.ch, you may be able to:
 
 ```
 $ ./deploy.sh rusty
 ```
 
 For TOPS production, replace the "rusty" with "spec" to use the actual secrets
 for the deployment. For this, you first need to decrypt them:
 
 ```
 $ ./contrib/decrypt inventories/host_vars/spec/prod-secrets.yml.gpg
 ```
 
 Make sure to NEVER commit the decrypted production secrets to Git.
 Instead, if you had to edit them, re-encrypt them to all admins:
 
 ```
 $ ./contrib/encrypt inventories/host_vars/spec/prod-secrets.yml
 ```
 
 ### sanction-check.sh
 
 This command imports and checks the latest sanction lists:
 
 ```
 $ ./sanction-check.sh $DEPLOYMENT $LIST
 ```
 
 where "$DEPLOYMENT" specifies the name of the deployment to
 use ("test" or "tops") and $LIST is the name of the sanction
 list file on the local disk.  This script currently always
 uses the "tops" inventory.
 
 NOTE: this should still be further automated.
 
 
 ### Setting up backups (TOPS-only for now)
 
 First run:
 
 ```
 $ ./extract-borg-key.sh
 ```
 
 The resulting SSH public key should be added to the borg-account
 of the host storing the backup. The playbook contains the target
 hostname!
 
 Once the SSH key is deployed and the backup has been initialized
 server-side (see admin-logs/pixel/03-borg.txt), start the daily
 backups via:
 
 ```
 $ ./start-borg-backups.sh $DEPLOYMENT
 ```
 
 This will make a backup basically everything relevant to the
 deployment, **except** the exchange online signing keys. The
 backup will in particular include the system configuration
 and a full (gzip-compressed) snapshot of the database.  Thus,
 the backups should also suffice to diagnose problems.
 
 Backups are set to retain daily snapshots of the last 7 days,
 weekly snapshots for the last 4 weeks, and monthly snapshots
 for the last 6 months.
 
 
 ### Backup (right now)
 
 To run a backup "immediately" (instead of the daily regular
 backups), use:
 
 ```
 $ ./backup.sh $DEPLOYMENT
 ```
 
 
 ### Rebooting (into a new kernel)
 
 This should be done via the 'reboot' playbook which can
 be invoked via the
 
 ```
 $ ./reboot.sh $DEPLOYMENT
 ```
 
 script. The reboot playbook first stops all Taler services,
 then makes a backup, and then reboots. This should help us
 restore to another system in case the host does not come back
 online cleanly.
 
 
 ### Testing Locally
 
 With podman and ansible installed locally one can run:
 
 ```
 $ ./test.sh
 ```
 
 This will begin building the Containerfile in this repo, which is a Debian
 base with systemd and a paswordless ssh server configured. Then container
 will start, binding port 8022 to 127.0.0.1 on the host. Finally
 the setup playbook will be run on the container via ssh.
 
 
 ## Playbooks
 
 ### backup
 
 Runs a backup "right now".
 
 ### borg-ssh-export
 
 Exports the SSH public keys needed at the remote host for backups.
 
 ### borg-start
 
 Enables the borg backup. Should be run after the SSH public keys
 exported via borg-ssh-export have been deployed on the receiving
 host.
 
 ### pixel-borg
 
 Enables receiving (!) backups from pixel. Adds the public key from
 pixel so we accept receiving borg backups from pixel.  Note that
 pixel still needs to be setup to send the backups.
 
 ### reboot
 
 Safely reboots the system by first stopping all Taler services,
 then making a backup and only then actually rebooting it.
 
 ### sanctionlist-check
 
 Imports the latest sanction list and checks all records against
 it.
 
 ### setup
 
 The main script that deploys our entire setup.
 
 ## Roles
 
 ### ansible_pull
 
 This role setups an ansible-pull script on the host, as well as cronjob
 which runs the ansible-pull script on regular interval.
 
 NOTE: requires local.yml to exist in root of this repo.
 
 ### auditor
 
 Deploys the auditor.
 
 ### backup
 
 Runs the backup script, making a borg backup of the database and other key parts of the system.
 
 ### borg-ssh-export
 
 Exports the SSH public key that must be deployed on the host that is
 to receive the backup.
 
 ### borg-start
 
 ### challenger
 
 Deploys the various challenger services for address verification.
 
 ### common_packages
 
 Installs the base system packages we need on all hosts.
 Sets up Taler package repo and installs Taler packages.
 
 ### database
 
 Installs the Postgresql database.
 
 ### exchange
 
 Deploys the Taler exchange
 
 ### exchange-sanctionlist-import
 
 Imports a new sanction list and checks all existing records against it.
 
 ### libeufin-nexus
 
 Deploys libeufin-nexus which connects us to the bank.
 
 ### monitoring
 
 Deploys Alloy and Promethesus exporters for host monitoring.
 
 ### pixel_borg
 
 Configures the host to hosting backups *from* pixel.
 
 ### reboot
 
 Reboots the system.
 
 ### stop_services
 
 Stops all Taler-related services. Useful for emergency stop and
 used as part of the reboot playbook.
 
 ### webserver
 
 Configures Nginx reverse proxy (main service, not individual subdomains).