geneontology
diff --git a/‎.gitignore
+6 b/‎.gitignore
+6
diff --git a/‎README.md
+4-2 b/‎README.md
+4-2
diff --git a/‎aws/main.tf
+36-31 b/‎aws/main.tf
+36-31
diff --git a/‎aws/outputs.tf
-20 b/‎aws/outputs.tf
-20
diff --git a/‎aws/provider.tf
-4 b/‎aws/provider.tf
-4
diff --git a/‎aws/securit_groups.tf
-40 b/‎aws/securit_groups.tf
-40
diff --git a/‎aws/ssh_key.tf
-5 b/‎aws/ssh_key.tf
-5
diff --git a/‎aws/vars.tf
-44 b/‎aws/vars.tf
-44
diff --git a/‎aws/vpc.tf
-34 b/‎aws/vpc.tf
-34
diff --git a/‎docker-vars.yaml
+1 b/‎docker-vars.yaml
+1
diff --git a/‎docker/Dockerfile.minerva
+1-1 b/‎docker/Dockerfile.minerva
+1-1
diff --git a/‎files/robots.txt
+2 b/‎files/robots.txt
+2
diff --git a/‎production/README.md
+73 b/‎production/README.md
+73
diff --git a/‎production/backend.tf.sample
+10 b/‎production/backend.tf.sample
+10
diff --git a/‎production/config-instance.yaml.sample
+12 b/‎production/config-instance.yaml.sample
+12
@@ -6,3 +6,9 @@ stage_dir
 .terraform.lock.hcl
 terraform.tfstate
 terraform.tfstate.backup
+backend.tf
+*.cfg
+*.tfvars.json
+blazegraph.jnl
+config-instance.yaml
+config-stack.yaml
@@ -1,7 +1,9 @@
-# Noctua Application Deployment
+# Noctua Testing Deployment
 
 This repository enables the deployment of the noctua editor (which includes 
-minerva, barista, golr and noctua) locally, using self-generated GO-CAM models (in the form of .ttl files).    
+minerva, barista, golr and noctua) locally, using self-generated GO-CAM models (in the form of .ttl files).  
+
+Note: For production deployment see [this readme file](./production/README.md)
 
 ## Deploy a version of the Noctua editor (including minerva, barista, golr and noctua locally via docker):
   - important files:
 
@@ -1,35 +1,40 @@
-resource "aws_instance" "noctua_app_stack_server" {
-  ami                    = "ami-07dd19a7900a1f049"
-  instance_type          = var.instance_type
-  vpc_security_group_ids = [aws_security_group.noctua_app_stack_sg.id]
-  subnet_id = aws_subnet.noctua_app_stack_public_subnet.id
-  key_name               = var.key_name
-  tags                   = var.tags
+variable "tags" {
+  type = map
+  default = { Name = "testing-noctua-app-stack" }
+}
+
+variable "instance_type" {
+  default = "t2.large"
+}
 
-  ebs_block_device {
-    device_name           = "/dev/sda1"
-    delete_on_termination = true
-    tags                  = var.tags
-    volume_size           = 100
-  }
+variable "disk_size" {
+  default = 100
+}
+
+variable "public_key_path" {
+  default = "~/.ssh/id_rsa.pub"
+}
 
-  provisioner "remote-exec" {
-    inline = [
-      "curl -fsSL https://get.docker.com -o /tmp/get-docker.sh",
-      "sudo sh /tmp/get-docker.sh",
-      "sudo usermod -aG docker ubuntu",
-      "sudo apt-get install -y docker-compose",
-      "curl https://bootstrap.pypa.io/get-pip.py -o /tmp/get-pip.py",
-      "sudo python3 /tmp/get-pip.py",
-      "sudo pip3 install docker==4.3.1",
-    ]
+variable "open_ports" {
+  type = list 
+  default = [22, 8090, 8080, 8983]
+}
+
+provider "aws" {
+  region = "us-east-1"
+  shared_credentials_files = [ "~/.aws/credentials" ]
+  profile = "default"
+}
+
+module "base" {
+  source = "git::https://github.com/geneontology/devops-aws-go-instance.git?ref=V2.0"
+  instance_type = var.instance_type
+  public_key_path = var.public_key_path
+  tags = var.tags
+  open_ports = var.open_ports
+  disk_size = var.disk_size
+}
 
-    connection {
-      host        = aws_instance.noctua_app_stack_server.public_ip
-      type        = "ssh"
-      user        = "ubuntu"
-      agent       = false
-      private_key = file(var.private_key_path)
-    }
-  }
+output "public_ip" {
+   value                  = module.base.public_ip
 }
@@ -9,3 +9,4 @@ repo_map:
 
 tag: latest 
 docker_hub_user: "{{ lookup('env', 'USER')|lower }}"
+apache_proxy_image: geneontology/apache-proxy:v2
@@ -9,9 +9,9 @@ COPY ./minerva-converter/pom.xml ./minerva-converter/pom.xml
 COPY ./minerva-lookup/pom.xml ./minerva-lookup/pom.xml
 COPY ./minerva-server/pom.xml ./minerva-server/pom.xml
 COPY ./minerva-cli/pom.xml ./minerva-cli/pom.xml
+COPY ./.git ./.git 
 RUN mvn dependency:go-offline package -B -am -pl minerva-server -DskipTests -Dmaven.javadoc.skip=true -Dsource.skip=true
 
-COPY ./.git ./.git 
 RUN mvn dependency:go-offline package -B -am -pl minerva-cli -DskipTests -Dmaven.javadoc.skip=true -Dsource.skip=true
 
 COPY ./ ./
 
@@ -0,0 +1,2 @@
+User-agent: *
+Disallow: /
@@ -0,0 +1,73 @@
+# Noctua Production Deployment
+
+This repository enables the deployment of the noctua stack to AWS. It includes 
+minerva, barista, and noctua and it points to an external amigo instance.     
+
+## Deploy a version of the Noctua editor (including minerva, barista, noctua):
+  - Important ansible files:
+    - vars.yaml
+    - docker-vars.yaml
+    - s3-vars.yaml
+    - stage.yaml
+    - start_services.yaml
+  
+## Artifacts Deployed To Staging directory On AWS:
+  - blazegraph.jnl
+  - Cloned repositories:
+    - noctua-form, noctua-landing-page, noctua-models, go-site and noctua-visual-pathway-editor.
+  - s3 credentials used to push apache logs to s3 buckets
+  - github OAUTH client id and secret
+  - docker-production-compose and various configuration files from template directory
+
+## Install Python deployment Script
+Note the script has a <b>-dry-run</b> option.
+
+```
+>pip install go-deploy==0.3.0 # requires python >=3.8.5
+>go-deploy -h
+```
+
+## S3 Terraform Backend
+
+We use S3 terraform backend to store terraform's state. See production/backend.tf.sample
+
+## Github OAUTH
+Noctua uses OAUTH for authentication. See templates/github.yaml 
+
+## Prepare Blazegraph journal locally
+
+if you do not have a journal see production/gen_journal.sh.sample to generate one
+
+## DNS 
+
+Use DNS records for noctua and barista. Once the stack is ready you would need to point these to elastic ip address of the stack,  
+
+## Golr/Amigo
+Use the dns name of the external golr instance running alongside amigo
+
+## Provision to AWS
+
+Copy sample files and modify as needed. For the terraform worksapce we append the date.
+As an example we use production-yy-mm-dd
+
+```
+cp ./production/backend.tf.sample aws/backend.tf
+cp ./production/config-instance.yaml.sample config-instance.yaml
+go-deploy -init -c config-instance.yaml -w production-yy-mm-dd -d aws -verbose
+cp ./production/config-stack.yaml.sample config-stack.yaml
+go-deploy -c config-stack.yaml -w production-yy-mm-dd -d aws -verbose
+```
+
+## Access noctua from a browser
+The elastic public ip address shows up in the logs when deploying but it can also be found in production-yy-mm-dd.cfg
+Point the noctua and barista DNS entries mentioned above to this ip address
+
+- Use `http://{public_ip}`
+
+## Destroy Instance And Stack
+
+```sh
+# Make sure you pointing to the correct workspace
+terraform -chdir=aws workspace show
+terraform -chdir=aws destroy
+```
@@ -0,0 +1,10 @@
+terraform {
+  backend "s3" {
+    bucket  = "REPLACE_ME"
+    profile = "default"
+    key     = "noctua_app_stack/terraform.tfstate"
+    region  = "us-east-1"
+    encrypt = true
+  }
+}
+
@@ -0,0 +1,12 @@
+ssh_keys:
+     public: /Users/REPLACE/SSH/go-ssh.pub
+     private: /Users/REPLACE_ME/SSH/go-ssh
+
+instance:
+    tags:
+       Name: noctua_stack
+    instance_type: t2.large
+    open_ports:
+       - 80
+       - 22
+    disk_size: 100
Original file line number	Diff line number	Diff line change
`@@ -9,3 +9,4 @@ repo_map:`
`9`	`9`
`10`	`10`	`tag: latest`
`11`	`11`	`docker_hub_user: "{{ lookup('env', 'USER')\|lower }}"`
	`12`	`+apache_proxy_image: geneontology/apache-proxy:v2`