forked from 0k/0k-charms
53 lines
1.3 KiB
53 lines
1.3 KiB
#!/bin/bash
|
|
|
|
## Should be executable N time in a row with same result.
|
|
|
|
. lib/common
|
|
|
|
set -e
|
|
|
|
LOGS=/var/log/letsencrypt
|
|
|
|
## XXXvlab: hum it seems apache logging is run as root, so well...
|
|
# logs_creds=$(cached_cmd_on_base_image apache "stat -c '%u %g' '$LOGS'") || {
|
|
# debug "Failed to query for www-data gid in ${DARKYELLOW}apache${NORMAL} base image."
|
|
# return 1
|
|
# }
|
|
|
|
rotated_count=$(relation-get rotated-count 2>/dev/null) || true
|
|
rotated_count=${rotated_count:-52}
|
|
|
|
## Here, we rely on ``delaycompress`` option and the fact that letsencrypt is
|
|
## run-once type of service to ensure logrotation will play it safely with the
|
|
## log writing process.
|
|
|
|
## XXXvlab: a lot of this intelligence should be moved away into ``logrotate`` charm
|
|
DST="$CONFIGSTORE/$TARGET_SERVICE_NAME/etc/logrotate.d/$SERVICE_NAME"
|
|
file_put "$DST" <<EOF
|
|
/var/log/docker/$SERVICE_NAME/letsencrypt.log
|
|
{
|
|
weekly
|
|
missingok
|
|
dateext
|
|
dateyesterday
|
|
dateformat _%Y-%m-%d
|
|
extension .log
|
|
rotate $rotated_count
|
|
compress
|
|
delaycompress
|
|
notifempty
|
|
create 640 root root
|
|
sharedscripts
|
|
}
|
|
EOF
|
|
|
|
config-add "\
|
|
services:
|
|
$MASTER_TARGET_SERVICE_NAME:
|
|
volumes:
|
|
- $DST:/etc/logrotate.d/docker-${SERVICE_NAME}:ro
|
|
- $SERVICE_DATASTORE$LOGS:/var/log/docker/$SERVICE_NAME:rw
|
|
$MASTER_BASE_SERVICE_NAME:
|
|
volumes:
|
|
- $SERVICE_DATASTORE$LOGS:$LOGS:rw
|
|
"
|