mirror of
				https://github.com/arcan1s/ahriman.git
				synced 2025-10-26 19:33:45 +00:00 
			
		
		
		
	Compare commits
	
		
			3 Commits
		
	
	
		
			2.14.2
			...
			3016a919c5
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| 3016a919c5 | |||
| e2f7e9cf28 | |||
| 5b6ba721fe | 
| @ -1,6 +1 @@ | ||||
| skips: | ||||
|   - B101 | ||||
|   - B104 | ||||
|   - B105 | ||||
|   - B106 | ||||
|   - B404 | ||||
| skips: ['B101', 'B105', 'B404'] | ||||
| @ -1,3 +1 @@ | ||||
| skips: | ||||
|   - B404 | ||||
|   - B603 | ||||
| skips: ['B404', 'B603'] | ||||
| @ -1,14 +0,0 @@ | ||||
| .eggs/ | ||||
| .git/ | ||||
| .github/ | ||||
| .idea/ | ||||
| .mypy_cache/ | ||||
| .pytest_cache/ | ||||
| .tox/ | ||||
| .venv/ | ||||
|  | ||||
| *.egg-info/ | ||||
| __pycache__/ | ||||
| *.pyc | ||||
| *.pyd | ||||
| *.pyo | ||||
							
								
								
									
										28
									
								
								.github/ISSUE_TEMPLATE/01-bug-report.md
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										28
									
								
								.github/ISSUE_TEMPLATE/01-bug-report.md
									
									
									
									
										vendored
									
									
								
							| @ -1,28 +0,0 @@ | ||||
| --- | ||||
| name: Bug report | ||||
| about: Create a report to help us improve | ||||
| title: '' | ||||
| labels: bug | ||||
| assignees: '' | ||||
|  | ||||
| --- | ||||
|  | ||||
| ## Summary | ||||
|  | ||||
| A clear and concise description of what the bug is. | ||||
|  | ||||
| ### Steps to reproduce | ||||
|  | ||||
| Steps to reproduce the behavior (commands, environment etc). | ||||
|  | ||||
| ### Expected behavior | ||||
|  | ||||
| A clear and concise description of what you expected to happen. | ||||
|  | ||||
| ### Logs | ||||
|  | ||||
| Add logs to help explain your problem. By default, the application writes logs into `/dev/log` which is usually default systemd journal and can be accessed by `journalctl` command. | ||||
|  | ||||
| You can also attach any additional information which can be helpful, e.g. configuration used by the application (be aware of passwords and other secrets if any); it can be generated by using `ahriman config` command. | ||||
|  | ||||
| It is also sometimes useful to have information about installed packages which can be accessed by `ahriman version` command. | ||||
							
								
								
									
										20
									
								
								.github/ISSUE_TEMPLATE/02-security-report.md
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										20
									
								
								.github/ISSUE_TEMPLATE/02-security-report.md
									
									
									
									
										vendored
									
									
								
							| @ -1,20 +0,0 @@ | ||||
| --- | ||||
| name: Security report | ||||
| about: Create a report related to security issues | ||||
| title: '' | ||||
| labels: security | ||||
| assignees: '' | ||||
|  | ||||
| --- | ||||
|  | ||||
| ## Summary | ||||
|  | ||||
| A clear and concise description of what the issue is. | ||||
|  | ||||
| ### Steps to reproduce | ||||
|  | ||||
| Steps to reproduce the behavior (commands, environment etc). | ||||
|  | ||||
| ### Intended impact | ||||
|  | ||||
| Brief optional description of how this vulnerability can be used and which effects can be achieved.  | ||||
							
								
								
									
										24
									
								
								.github/ISSUE_TEMPLATE/bug-report.md
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										24
									
								
								.github/ISSUE_TEMPLATE/bug-report.md
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @ -0,0 +1,24 @@ | ||||
| --- | ||||
| name: Bug report | ||||
| about: Create a report to help us improve | ||||
| title: '' | ||||
| labels: bug | ||||
| assignees: '' | ||||
|  | ||||
| --- | ||||
|  | ||||
| ## Summary | ||||
|  | ||||
| A clear and concise description of what the bug is. | ||||
|  | ||||
| ### Steps to Reproduce | ||||
|  | ||||
| Steps to reproduce the behavior (commands, environment etc) | ||||
|  | ||||
| ### Expected behavior | ||||
|  | ||||
| A clear and concise description of what you expected to happen. | ||||
|  | ||||
| ### Logs | ||||
|  | ||||
| Add logs to help explain your problem. Logs to stderr can be generated by using `--no-log` command line option. | ||||
| @ -13,7 +13,7 @@ Brief description of the feature required | ||||
| 
 | ||||
| ### Cause of the feature request | ||||
| 
 | ||||
| A clear and concise description of what the problem is. E.g. I'm always frustrated when [...] | ||||
| A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] | ||||
| 
 | ||||
| ### Proposed changes and/or features | ||||
| 
 | ||||
							
								
								
									
										3
									
								
								.github/PULL_REQUEST_TEMPLATE.md
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										3
									
								
								.github/PULL_REQUEST_TEMPLATE.md
									
									
									
									
										vendored
									
									
								
							| @ -9,4 +9,5 @@ Put `closes #ISSUE` in case if the pull requests solves one of the opened issues | ||||
| ### Checklist | ||||
|  | ||||
| - [ ] Tests to cover new code | ||||
| - [ ] `tox` passed | ||||
| - [ ] `make check` passed | ||||
| - [ ] `make tests` passed | ||||
|  | ||||
							
								
								
									
										42
									
								
								.github/workflows/docker-image.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										42
									
								
								.github/workflows/docker-image.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @ -0,0 +1,42 @@ | ||||
| name: docker image | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: [ master ] | ||||
|     tags: | ||||
|       - '*' | ||||
|       - '!*rc*' | ||||
|  | ||||
| jobs: | ||||
|   docker-image: | ||||
|  | ||||
|     runs-on: ubuntu-latest | ||||
|  | ||||
|     steps: | ||||
|       - name: extract docker metadata | ||||
|         id: meta | ||||
|         uses: docker/metadata-action@v3 | ||||
|         with: | ||||
|           images: | | ||||
|             arcan1s/ahriman | ||||
|           tags: | | ||||
|             type=ref,event=tag | ||||
|             type=edge | ||||
|  | ||||
|       - name: setup QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|  | ||||
|       - name: setup docker buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|  | ||||
|       - name: login to docker hub | ||||
|         uses: docker/login-action@v1 | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|  | ||||
|       - name: build an image and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           push: true | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
							
								
								
									
										52
									
								
								.github/workflows/docker.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										52
									
								
								.github/workflows/docker.yml
									
									
									
									
										vendored
									
									
								
							| @ -1,52 +0,0 @@ | ||||
| name: Docker image | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - master | ||||
|     tags: | ||||
|       - '*' | ||||
|       - '!*rc*' | ||||
|  | ||||
| jobs: | ||||
|   docker-image: | ||||
|  | ||||
|     runs-on: ubuntu-latest | ||||
|  | ||||
|     permissions: | ||||
|       packages: write | ||||
|  | ||||
|     steps: | ||||
|       - uses: docker/setup-qemu-action@v2 | ||||
|  | ||||
|       - uses: docker/setup-buildx-action@v2 | ||||
|  | ||||
|       - name: Login to docker hub | ||||
|         uses: docker/login-action@v2 | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|  | ||||
|       - name: Login to github container registry | ||||
|         uses: docker/login-action@v2 | ||||
|         with: | ||||
|           registry: ghcr.io | ||||
|           username: ${{ github.repository_owner }} | ||||
|           password: ${{ secrets.GITHUB_TOKEN }} | ||||
|  | ||||
|       - name: Extract docker metadata | ||||
|         id: meta | ||||
|         uses: docker/metadata-action@v3 | ||||
|         with: | ||||
|           images: | | ||||
|             arcan1s/ahriman | ||||
|             ghcr.io/arcan1s/ahriman | ||||
|           tags: | | ||||
|             type=semver,pattern={{raw}} | ||||
|             type=edge | ||||
|  | ||||
|       - name: Build an image and push | ||||
|         uses: docker/build-push-action@v4 | ||||
|         with: | ||||
|           push: true | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
							
								
								
									
										21
									
								
								.github/workflows/release.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										21
									
								
								.github/workflows/release.yml
									
									
									
									
										vendored
									
									
								
							| @ -1,4 +1,4 @@ | ||||
| name: Release | ||||
| name: release | ||||
|  | ||||
| on: | ||||
|   push: | ||||
| @ -11,36 +11,31 @@ jobs: | ||||
|     runs-on: ubuntu-latest | ||||
|  | ||||
|     steps: | ||||
|       - uses: actions/checkout@v3 | ||||
|       - uses: actions/checkout@v2 | ||||
|  | ||||
|       - name: Extract version | ||||
|       - name: extract version | ||||
|         id: version | ||||
|         run: echo ::set-output name=VERSION::${GITHUB_REF#refs/tags/} | ||||
|  | ||||
|       - name: Create changelog | ||||
|       - name: create changelog | ||||
|         id: changelog | ||||
|         uses: jaywcjlove/changelog-generator@main | ||||
|         with: | ||||
|           token: ${{ secrets.GITHUB_TOKEN }} | ||||
|           filter: 'Release \d+\.\d+\.\d+' | ||||
|  | ||||
|       - name: Install dependencies | ||||
|         uses: ConorMacBride/install-package@v1.1.0 | ||||
|         with: | ||||
|           apt: tox | ||||
|  | ||||
|       - name: Create archive | ||||
|         run: tox -e archive | ||||
|       - name: create archive | ||||
|         run: make archive | ||||
|         env: | ||||
|           VERSION: ${{ steps.version.outputs.VERSION }} | ||||
|  | ||||
|       - name: Publish release | ||||
|       - name: release | ||||
|         uses: softprops/action-gh-release@v1 | ||||
|         with: | ||||
|           body: | | ||||
|             ${{ steps.changelog.outputs.compareurl }} | ||||
|             ${{ steps.changelog.outputs.changelog }} | ||||
|           files: dist/ahriman-*.tar.gz | ||||
|           files: ahriman-*-src.tar.xz | ||||
|           fail_on_unmatched_files: true | ||||
|         env: | ||||
|           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||||
|  | ||||
							
								
								
									
										24
									
								
								.github/workflows/run-setup.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										24
									
								
								.github/workflows/run-setup.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @ -0,0 +1,24 @@ | ||||
| name: setup | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: [ master ] | ||||
|   pull_request: | ||||
|     branches: [ master ] | ||||
|  | ||||
| jobs: | ||||
|   run-setup: | ||||
|  | ||||
|     runs-on: ubuntu-latest | ||||
|  | ||||
|     container: | ||||
|       image: archlinux:latest | ||||
|       volumes: | ||||
|         - ${{ github.workspace }}:/build | ||||
|       options: --privileged -w /build | ||||
|  | ||||
|     steps: | ||||
|       - uses: actions/checkout@v2 | ||||
|  | ||||
|       - name: setup the service in arch linux container | ||||
|         run: .github/workflows/setup.sh | ||||
| @ -1,12 +1,10 @@ | ||||
| name: Tests | ||||
| name: tests | ||||
| 
 | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - master | ||||
|     branches: [ master ] | ||||
|   pull_request: | ||||
|     branches: | ||||
|       - master | ||||
|     branches: [ master ] | ||||
| 
 | ||||
| jobs: | ||||
|   run-tests: | ||||
| @ -14,13 +12,13 @@ jobs: | ||||
|     runs-on: ubuntu-latest | ||||
| 
 | ||||
|     container: | ||||
|       image: archlinux:base | ||||
|       image: archlinux:latest | ||||
|       volumes: | ||||
|         - ${{ github.workspace }}:/build | ||||
|       options: -w /build | ||||
| 
 | ||||
|     steps: | ||||
|       - uses: actions/checkout@v3 | ||||
|       - uses: actions/checkout@v2 | ||||
| 
 | ||||
|       - name: Run check and tests in arch linux container | ||||
|       - name: run check and tests in arch linux container | ||||
|         run: .github/workflows/tests.sh | ||||
							
								
								
									
										54
									
								
								.github/workflows/setup.sh
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										54
									
								
								.github/workflows/setup.sh
									
									
									
									
										vendored
									
									
								
							| @ -3,60 +3,50 @@ | ||||
|  | ||||
| set -ex | ||||
|  | ||||
| [[ $1 = "minimal" ]] && MINIMAL_INSTALL=1 | ||||
|  | ||||
| # install dependencies | ||||
| echo -e '[arcanisrepo]\nServer = https://repo.arcanis.me/$arch\nSigLevel = Never' | tee -a /etc/pacman.conf | ||||
| echo -e '[arcanisrepo]\nServer = http://repo.arcanis.me/$arch\nSigLevel = Never' | tee -a /etc/pacman.conf | ||||
| # refresh the image | ||||
| pacman -Syu --noconfirm | ||||
| pacman --noconfirm -Syu | ||||
| # main dependencies | ||||
| pacman -Sy --noconfirm devtools git pyalpm python-cerberus python-inflection python-passlib python-pyelftools python-requests python-srcinfo python-systemd sudo | ||||
| pacman --noconfirm -Sy base-devel devtools git pyalpm python-aur python-passlib python-srcinfo sudo | ||||
| # make dependencies | ||||
| pacman -Sy --noconfirm --asdeps base-devel python-build python-flit python-installer python-tox python-wheel | ||||
| pacman --noconfirm -Sy python-build python-installer python-wheel | ||||
| # optional dependencies | ||||
| if [[ -z $MINIMAL_INSTALL ]]; then | ||||
| # VCS support | ||||
|     pacman -Sy --noconfirm breezy darcs mercurial subversion | ||||
| pacman --noconfirm -Sy breezy darcs mercurial subversion | ||||
| # web server | ||||
|     pacman -Sy --noconfirm python-aioauth-client python-aiohttp python-aiohttp-apispec-git python-aiohttp-cors python-aiohttp-jinja2 python-aiohttp-security python-aiohttp-session python-cryptography python-jinja | ||||
| pacman --noconfirm -Sy python-aioauth-client python-aiohttp python-aiohttp-debugtoolbar python-aiohttp-jinja2 python-aiohttp-security python-aiohttp-session python-cryptography python-jinja | ||||
| # additional features | ||||
|     pacman -Sy --noconfirm gnupg python-boto3 rsync | ||||
| fi | ||||
| # FIXME since 1.0.4 devtools requires dbus to be run, which doesn't work now in container | ||||
| cp "docker/systemd-nspawn.sh" "/usr/local/bin/systemd-nspawn" | ||||
| pacman --noconfirm -Sy gnupg python-boto3 rsync | ||||
|  | ||||
| # create fresh tarball | ||||
| tox -e archive | ||||
| make VERSION=1.0.0 archlinux  # well, it does not really matter which version we will put here | ||||
| # run makepkg | ||||
| mv dist/ahriman-*.tar.gz package/archlinux | ||||
| mv ahriman-*-src.tar.xz package/archlinux | ||||
| chmod +777 package/archlinux  # because fuck you that's why | ||||
| cd package/archlinux | ||||
| sudo -u nobody -- makepkg -cf --skipchecksums --noconfirm | ||||
| sudo -u nobody -- makepkg --packagelist | grep -v -- -debug- | pacman -U --noconfirm - | ||||
| pacman --noconfirm -U ahriman-1.0.0-1-any.pkg.tar.zst | ||||
| # create machine-id which is required by build tools | ||||
| systemd-machine-id-setup | ||||
|  | ||||
| # remove unused dependencies | ||||
| pacman -Qdtq | pacman -Rscn --noconfirm - | ||||
|  | ||||
| # special thing for the container, because /dev/log interface is not available there | ||||
| sed -i "s/handlers = syslog_handler/handlers = console_handler/g" /etc/ahriman.ini.d/logging.ini | ||||
| # initial setup command as root | ||||
| [[ -z $MINIMAL_INSTALL ]] && WEB_ARGS=("--web-port" "8080") | ||||
| ahriman -a x86_64 -r "github" service-setup --packager "ahriman bot <ahriman@example.com>" "${WEB_ARGS[@]}" | ||||
| # validate configuration | ||||
| ahriman service-config-validate --exit-code | ||||
| ahriman -a x86_64 repo-setup --packager "ahriman bot <ahriman@example.com>" --repository "github" --web-port 8080 | ||||
| # enable services | ||||
| systemctl enable ahriman-web | ||||
| systemctl enable ahriman@x86_64-github.timer | ||||
| if [[ -z $MINIMAL_INSTALL ]]; then | ||||
| systemctl enable ahriman-web@x86_64 | ||||
| systemctl enable ahriman@x86_64.timer | ||||
| # run web service (detached) | ||||
|     sudo -u ahriman -- ahriman web & | ||||
|     WEB_PID=$! | ||||
| fi | ||||
| sudo -u ahriman -- ahriman -a x86_64 web & | ||||
| WEBPID=$! | ||||
| sleep 15s  # wait for the web service activation | ||||
| # add the first package | ||||
| sudo -u ahriman -- ahriman --log-handler console package-add --now ahriman | ||||
| # the build itself does not really work in the container | ||||
| sudo -u ahriman -- ahriman package-add --now yay | ||||
| # check if package was actually installed | ||||
| test -n "$(find "/var/lib/ahriman/repository/github/x86_64" -name "ahriman*pkg*")" | ||||
| #test -n "$(find "/var/lib/ahriman/repository/x86_64" -name "yay*pkg*")" | ||||
| # run package check | ||||
| sudo -u ahriman -- ahriman repo-update | ||||
| # stop web service lol | ||||
| [[ -z $WEB_PID ]] || kill $WEB_PID | ||||
| kill $WEBPID | ||||
|  | ||||
							
								
								
									
										42
									
								
								.github/workflows/setup.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										42
									
								
								.github/workflows/setup.yml
									
									
									
									
										vendored
									
									
								
							| @ -1,42 +0,0 @@ | ||||
| name: Setup | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - master | ||||
|   pull_request: | ||||
|     branches: | ||||
|       - master | ||||
|  | ||||
| jobs: | ||||
|   run-setup-minimal: | ||||
|  | ||||
|     runs-on: ubuntu-latest | ||||
|  | ||||
|     container: | ||||
|       image: archlinux:base | ||||
|       volumes: | ||||
|         - ${{ github.workspace }}:/build | ||||
|       options: --privileged -w /build | ||||
|  | ||||
|     steps: | ||||
|       - uses: actions/checkout@v3 | ||||
|  | ||||
|       - name: Setup the minimal service in arch linux container | ||||
|         run: .github/workflows/setup.sh minimal | ||||
|  | ||||
|   run-setup: | ||||
|  | ||||
|     runs-on: ubuntu-latest | ||||
|  | ||||
|     container: | ||||
|       image: archlinux:base | ||||
|       volumes: | ||||
|         - ${{ github.workspace }}:/build | ||||
|       options: --privileged -w /build | ||||
|  | ||||
|     steps: | ||||
|       - uses: actions/checkout@v3 | ||||
|  | ||||
|       - name: Setup the service in arch linux container | ||||
|         run: .github/workflows/setup.sh | ||||
							
								
								
									
										4
									
								
								.github/workflows/tests.sh
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										4
									
								
								.github/workflows/tests.sh
									
									
									
									
										vendored
									
									
								
							| @ -4,7 +4,7 @@ | ||||
| set -ex | ||||
|  | ||||
| # install dependencies | ||||
| pacman --noconfirm -Syu base-devel python-tox | ||||
| pacman --noconfirm -Syu base-devel python-pip python-tox | ||||
|  | ||||
| # run test and check targets | ||||
| tox | ||||
| make check tests | ||||
|  | ||||
							
								
								
									
										2
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										2
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							| @ -97,5 +97,3 @@ ENV/ | ||||
| status_cache.json | ||||
|  | ||||
| *.db | ||||
|  | ||||
| docs/html/ | ||||
|  | ||||
| @ -1,23 +0,0 @@ | ||||
| version: 2 | ||||
|  | ||||
| build: | ||||
|   os: ubuntu-20.04 | ||||
|   tools: | ||||
|     python: "3.12" | ||||
|  | ||||
| python: | ||||
|   install: | ||||
|     - method: pip | ||||
|       path: . | ||||
|       extra_requirements: | ||||
|         - docs | ||||
|         - s3 | ||||
|         - web | ||||
|  | ||||
| formats: | ||||
|   - pdf | ||||
|  | ||||
| sphinx: | ||||
|   builder: html | ||||
|   configuration: docs/conf.py | ||||
|   fail_on_warning: true | ||||
							
								
								
									
										4
									
								
								AUTHORS
									
									
									
									
									
								
							
							
						
						
									
										4
									
								
								AUTHORS
									
									
									
									
									
								
							| @ -1,2 +1,2 @@ | ||||
| Current maintainer: | ||||
| Evgenii Alekseev <esalexeev (at) gmail (dot) com> | ||||
| Current developers: | ||||
| Evgenii Alekseev aka arcanis <esalexeev (at) gmail (dot) com> | ||||
|  | ||||
							
								
								
									
										249
									
								
								CONTRIBUTING.md
									
									
									
									
									
								
							
							
						
						
									
										249
									
								
								CONTRIBUTING.md
									
									
									
									
									
								
							| @ -1,249 +0,0 @@ | ||||
| # Contributing to ahriman | ||||
|  | ||||
| Welcome to ahriman! The goal of the project is to provide the best user experience to manage Arch linux repositories. In order to follow this we set some limitations for the issue creations and heavily restricted code contribution. | ||||
|  | ||||
| ## Create an issue | ||||
|  | ||||
| Basically just follow the suggested templates: | ||||
|  | ||||
| * Bug report requires at least the way to reproduce the issue and behaviour description (expected and actual ones). In order to resolve the bug, the additional questions may be asked, please consider them as lesser evil. | ||||
| * Feature requests basically just require feature description and the purpose why do you want this feature to be implemented. It is required to make sure that the feature you want is going to be implemented in the way you really want it (and to make sure that this feature is not already implemented). | ||||
| * Questions and discussions have free templates, and you are free to ask your question in the way you want. | ||||
|  | ||||
| ## Code contribution | ||||
|  | ||||
| There are some strict limitation for suggested pull requests: | ||||
|  | ||||
| * `autopep8`, `bandit`, `pylint`, `mypy` must pass. | ||||
| * Test coverage must remain 100%. | ||||
|  | ||||
| ### Code formatting | ||||
|  | ||||
| In order to resolve all difficult cases the `autopep8` is used. You can perform formatting at any time by running `tox` or running `autopep8` command directly. | ||||
|  | ||||
| ### Code style | ||||
|  | ||||
| Again, the most checks can be performed by `tox` command, though some additional guidelines must be applied: | ||||
|  | ||||
| * Every class, every function (including private and protected), every attribute must be documented. The project follows [Google style documentation](https://google.github.io/styleguide/pyguide.html). The only exception is local functions. | ||||
| * Correct way to document function (if a section is empty, e.g. no notes or there are no args, it should be omitted) is the following: | ||||
|  | ||||
|     ```python | ||||
|     def foo(argument: str, *, flag: bool = False) -> int: | ||||
|         """ | ||||
|         do foo. With very very very long | ||||
|         docstring | ||||
|    | ||||
|         Notes: | ||||
|             Very important note about this function | ||||
|    | ||||
|         Args: | ||||
|             argument(str): an argument. This argument has | ||||
|                 long description also | ||||
|             flag(bool, optional): a flag (Default value = False) | ||||
|    | ||||
|         Returns: | ||||
|             int: result with | ||||
|             long description | ||||
|    | ||||
|         Raises: | ||||
|             RuntimeError: a local function error occurs | ||||
|    | ||||
|         Examples: | ||||
|             Very informative example how to use this function, e.g.:: | ||||
|    | ||||
|                 >>> foo("argument", flag=False) | ||||
|    | ||||
|             Note that function documentation is in rST. | ||||
|         """ | ||||
|     ``` | ||||
|    | ||||
|   `Returns` should be replaced with `Yields` for generators. | ||||
|  | ||||
|   Class attributes should be documented in the following way: | ||||
|  | ||||
|     ```python | ||||
|     class Clazz(BaseClazz): | ||||
|         """ | ||||
|         brand-new implementation of :class:`BaseClazz` | ||||
|    | ||||
|         Attributes: | ||||
|             CLAZZ_ATTRIBUTE(int): (class attribute) a brand-new class attribute | ||||
|             instance_attribute(str): an instance attribute | ||||
|    | ||||
|         Examples: | ||||
|             Very informative class usage example, e.g.:: | ||||
|    | ||||
|                 >>> from module import Clazz | ||||
|                 >>> clazz = Clazz() | ||||
|         """ | ||||
|    | ||||
|         CLAZZ_ATTRIBUTE = 42 | ||||
|    | ||||
|         def __init__(self, *args: Any, **kwargs: Any) -> None: | ||||
|             """ | ||||
|             default constructor | ||||
|    | ||||
|             Args: | ||||
|                 *args(Any): positional arguments | ||||
|                 **kwargs(Any): keyword arguments | ||||
|             """ | ||||
|             self.instance_attribute = "" | ||||
|     ``` | ||||
|  | ||||
| * Type annotations are the must, even for local functions. For the function argument `self` (for instance methods) and `cls` (for class methods) should not be annotated. | ||||
| * For collection types built-in classes must be used if possible (e.g. `dict` instead of `typing.Dict`, `tuple` instead of `typing.Tuple`). In case if built-in type is not available, but `collections.abc` provides interface, it must be used (e.g. `collections.abc.Awaitable` instead of `typing.Awaitable`, `collections.abc.Iterable` instead of `typing.Iterable`). For union classes, the bar operator (`|`) must be used (e.g. `float | int` instead of `typing.Union[float, int]`), which also includes `typinng.Optional` (e.g. `str | None` instead of `Optional[str]`). | ||||
| * `classmethod` should (almost) always return `Self`. In case of mypy warning (e.g. if there is a branch in which function doesn't return the instance of `cls`) consider using `staticmethod` instead. | ||||
| * Recommended order of function definitions in class: | ||||
|  | ||||
|     ```python | ||||
|     class Clazz: | ||||
|    | ||||
|         def __init__(self) -> None: ...  # replace with `__post_init__` for dataclasses | ||||
|  | ||||
|         @property | ||||
|         def property(self) -> Any: ... | ||||
|    | ||||
|         @cached_property | ||||
|         def property_cached(self) -> Any: ...  # cached property has to be treated as normal one | ||||
|  | ||||
|         @classmethod | ||||
|         def class_method(cls) -> Self: ... | ||||
|  | ||||
|         @staticmethod | ||||
|         def static_method() -> Any: ... | ||||
|  | ||||
|         def __private_method(self) -> Any: ... | ||||
|  | ||||
|         def _protected_method(self) -> Any: ... | ||||
|  | ||||
|         def usual_method(self) -> Any: ... | ||||
|  | ||||
|         def __hash__(self) -> int: ...  # basically any magic (or look-alike) method | ||||
|     ``` | ||||
|    | ||||
|   Methods inside one group should be ordered alphabetically, the only exceptions are `__init__` (`__post_init__` for dataclasses), `__new__` and `__del__` methods which should be defined first. For test methods it is recommended to follow the order in which functions are defined. | ||||
|  | ||||
|   Though, we would like to highlight abstract methods (i.e. ones which raise `NotImplementedError`), we still keep in global order at the moment. | ||||
|  | ||||
|   For the most cases there is custom `pylint` plugin, which performs checks automatically. | ||||
|  | ||||
| * Abstract methods must raise `NotImplementedError` instead of using `abc.abstractmethod`. The reason behind this restriction is the fact that we have class/static abstract methods for those we need to define their attribute first making the code harder to read. | ||||
| * For any path interactions `pathlib.Path` must be used. | ||||
| * Configuration interactions must go through `ahriman.core.configuration.Configuration` class instance. | ||||
| * In case if class load requires some actions, it is recommended to create class method which can be used for class instantiating. | ||||
| * The most (expected) exceptions must be handled and printed to log, allowing service to continue work. However, fatal and (in some cases) unexpected exceptions may lead to the application termination. | ||||
| * Exceptions without parameters should be raised without parentheses, e.g.: | ||||
|  | ||||
|     ```python | ||||
|     raise RuntimeError | ||||
|     ``` | ||||
|  | ||||
| * For the external command `ahriman.core.util.check_output` function must be used. | ||||
| * Every temporary file/directory must be removed at the end of processing, no matter what. The `tempfile` module provides good ways to do it. | ||||
| * Import order must be the following: | ||||
|  | ||||
|     ```python | ||||
|     # optional imports from future module | ||||
|     from __future__ import annotations | ||||
|  | ||||
|     # Module import for those which are installed into environment (no matter standard library or not)... | ||||
|     import os | ||||
|     # ...one per line... | ||||
|     import pyalpm | ||||
|     # ...in alphabetical order | ||||
|     import sys | ||||
|  | ||||
|     # Blank line between | ||||
|     # ``from module import submodule`` import | ||||
|     from pathlib import Path | ||||
|     # ...again in alphabet order. It is possible to do several imports, but make sure that they are also in alphabetical order. | ||||
|     from pyalpm import Handle, Package | ||||
|  | ||||
|     # Blank line again and package imports | ||||
|     from ahriman.core.configuration import Configuration | ||||
|     ``` | ||||
|  | ||||
| * One file should define only one class, exception is class satellites in case if file length remains less than 400 lines. | ||||
| * It is possible to create file which contains some functions (e.g. `ahriman.core.util`), but in this case you would need to define `__all__` attribute. | ||||
| * The file size mentioned above must be applicable in general. In case of big classes consider splitting them into traits. Note, however, that `pylint` includes comments and docstrings into counter, thus you need to check file size by other tools. | ||||
| * No global variable is allowed outside of `ahriman` module. `ahriman.core.context` is also special case. | ||||
| * Single quotes are not allowed. The reason behind this restriction is the fact that docstrings must be written by using double quotes only, and we would like to make style consistent. | ||||
| * If your class writes anything to log, the `ahriman.core.log.LazyLogging` trait must be used. | ||||
| * Web API methods must be documented by using `aiohttp_apispec` library. The schema testing mostly should be implemented in related view class tests. Recommended example for documentation (excluding comments): | ||||
|  | ||||
|     ```python | ||||
|     import aiohttp_apispec | ||||
|  | ||||
|     from marshmallow import Schema, fields   | ||||
|  | ||||
|     from ahriman.web.schemas import AuthSchema, ErrorSchema, PackageNameSchema, PaginationSchema | ||||
|     from ahriman.web.views.base import BaseView | ||||
|  | ||||
|  | ||||
|     class RequestSchema(Schema): | ||||
|  | ||||
|         field = fields.String(metadata={"description": "Field description", "example": "foo"}) | ||||
|  | ||||
|  | ||||
|     class ResponseSchema(Schema): | ||||
|  | ||||
|         field = fields.String(required=True, metadata={"description": "Field description"}) | ||||
|  | ||||
|  | ||||
|     class Foo(BaseView): | ||||
|  | ||||
|         POST_PERMISSION = ... | ||||
|         ROUTES = ... | ||||
|  | ||||
|         @aiohttp_apispec.docs( | ||||
|             tags=["Tag"], | ||||
|             summary="Do foo", | ||||
|             description="Extended description of the method which does foo", | ||||
|             responses={ | ||||
|                 200: {"description": "Success response", "schema": ResponseSchema}, | ||||
|                 204: {"description": "Success response"},  # example without json schema response | ||||
|                 400: {"description": "Bad data is supplied", "schema": ErrorSchema},  # exception raised by this method | ||||
|                 401: {"description": "Authorization required", "schema": ErrorSchema},  # should be always presented | ||||
|                 403: {"description": "Access is forbidden", "schema": ErrorSchema},  # should be always presented | ||||
|                 404: {"description": "Repository is unknown", "schema": ErrorSchema},  # include if BaseView.service() method is called | ||||
|                 500: {"description": "Internal server error", "schema": ErrorSchema},  # should be always presented | ||||
|             }, | ||||
|             security=[{"token": [POST_PERMISSION]}], | ||||
|         ) | ||||
|         @aiohttp_apispec.cookies_schema(AuthSchema)  # should be always presented | ||||
|         @aiohttp_apispec.match_info_schema(PackageNameSchema) | ||||
|         @aiohttp_apispec.querystring_schema(PaginationSchema) | ||||
|         @aiohttp_apispec.json_schema(RequestSchema(many=True)) | ||||
|         async def post(self) -> None: ... | ||||
|     ``` | ||||
|  | ||||
| * It is allowed to change web API to add new fields or remove optional ones. However, in case of model changes, new API version must be introduced. | ||||
| * On the other hand, it is allowed to change method signatures, however, it is recommended to add new parameters as optional if possible. Deprecated API can be dropped during major release. | ||||
| * Enumerations (`Enum` classes) are allowed and recommended. However, it is recommended to use `StrEnum` class if there are from/to string conversions and `IntEnum` otherwise. | ||||
|  | ||||
| ### Other checks | ||||
|  | ||||
| The projects also uses typing checks (provided by `mypy`) and some linter checks provided by `pylint` and `bandit`. Those checks must be passed successfully for any open pull requests. | ||||
|  | ||||
| ## Developers how to | ||||
|  | ||||
| ### Run automated checks | ||||
|  | ||||
| ```shell | ||||
| tox | ||||
| ``` | ||||
|  | ||||
| ### Generate documentation templates | ||||
|  | ||||
| ```shell | ||||
| tox -e docs | ||||
| ``` | ||||
|  | ||||
| ### Create release | ||||
|  | ||||
| ```shell | ||||
| tox -m release -- x.y.z | ||||
| ``` | ||||
|  | ||||
| The command above will generate documentation, tags, etc., and will push them to GitHub. Other things will be handled by GitHub workflows automatically. | ||||
							
								
								
									
										57
									
								
								Dockerfile
									
									
									
									
									
								
							
							
						
						
									
										57
									
								
								Dockerfile
									
									
									
									
									
								
							| @ -1,60 +1,47 @@ | ||||
| FROM archlinux:base | ||||
| FROM archlinux:base-devel | ||||
|  | ||||
| # image configuration | ||||
| ENV AHRIMAN_ARCHITECTURE="x86_64" | ||||
| ENV AHRIMAN_DEBUG="" | ||||
| ENV AHRIMAN_FORCE_ROOT="" | ||||
| ENV AHRIMAN_HOST="0.0.0.0" | ||||
| ENV AHRIMAN_MULTILIB="yes" | ||||
| ENV AHRIMAN_OUTPUT="" | ||||
| ENV AHRIMAN_OUTPUT="syslog" | ||||
| ENV AHRIMAN_PACKAGER="ahriman bot <ahriman@example.com>" | ||||
| ENV AHRIMAN_PACMAN_MIRROR="" | ||||
| ENV AHRIMAN_PORT="" | ||||
| ENV AHRIMAN_POSTSETUP_COMMAND="" | ||||
| ENV AHRIMAN_PRESETUP_COMMAND="" | ||||
| ENV AHRIMAN_REPOSITORY="aur-clone" | ||||
| ENV AHRIMAN_REPOSITORY_SERVER="" | ||||
| ENV AHRIMAN_REPOSITORY_ROOT="/var/lib/ahriman/ahriman" | ||||
| ENV AHRIMAN_UNIX_SOCKET="" | ||||
| ENV AHRIMAN_USER="ahriman" | ||||
| ENV AHRIMAN_VALIDATE_CONFIGURATION="yes" | ||||
|  | ||||
| # install environment | ||||
| ## update pacman.conf with multilib | ||||
| RUN echo "[multilib]" >> "/etc/pacman.conf" && \ | ||||
|     echo "Include = /etc/pacman.d/mirrorlist" >> "/etc/pacman.conf" | ||||
| ## refresh packages, install sudo and install packages for building | ||||
| RUN pacman -Syu --noconfirm sudo && \ | ||||
|     pacman -Sy --noconfirm --asdeps fakeroot python-tox | ||||
| ## install git which is required for AUR interaction and go for yay | ||||
| RUN pacman --noconfirm -Syu git go | ||||
| ## create build user | ||||
| RUN useradd -m -d "/home/build" -s "/usr/bin/nologin" build && \ | ||||
|     echo "build ALL=(ALL) NOPASSWD: ALL" > "/etc/sudoers.d/build" | ||||
| COPY "docker/install-aur-package.sh" "/usr/local/bin/install-aur-package" | ||||
| RUN useradd -m -d /home/build -s /usr/bin/nologin build && \ | ||||
|     echo "build ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/build | ||||
| ## install AUR helper | ||||
| RUN YAY_DIR="$(runuser -u build -- mktemp -d)" && \ | ||||
|     git clone https://aur.archlinux.org/yay.git "$YAY_DIR" && \ | ||||
|     cd "$YAY_DIR" && \ | ||||
|     runuser -u build -- makepkg --noconfirm --install && \ | ||||
|     cd - && rm -r "$YAY_DIR" | ||||
| ## install package dependencies | ||||
| ## darcs is not installed by reasons, because it requires a lot haskell packages which dramatically increase image size | ||||
| RUN pacman -Sy --noconfirm --asdeps devtools git pyalpm python-cerberus python-inflection python-passlib python-pyelftools python-requests python-srcinfo && \ | ||||
|     pacman -Sy --noconfirm --asdeps base-devel python-build python-flit python-installer python-wheel && \ | ||||
|     pacman -Sy --noconfirm --asdeps breezy git mercurial python-aiohttp python-boto3 python-cryptography python-jinja python-systemd rsync subversion && \ | ||||
|     runuser -u build -- install-aur-package python-aioauth-client python-webargs python-aiohttp-apispec-git python-aiohttp-cors \ | ||||
|                                             python-aiohttp-jinja2 python-aiohttp-session python-aiohttp-security python-requests-unixsocket2 | ||||
|  | ||||
| ## FIXME since 1.0.4 devtools requires dbus to be run, which doesn't work now in container | ||||
| COPY "docker/systemd-nspawn.sh" "/usr/local/bin/systemd-nspawn" | ||||
| RUN runuser -u build -- yay --noconfirm -Sy devtools git pyalpm python-inflection python-passlib python-requests python-srcinfo && \ | ||||
|     runuser -u build -- yay --noconfirm -Sy python-build python-installer python-wheel && \ | ||||
|     runuser -u build -- yay --noconfirm -Sy breezy darcs mercurial python-aioauth-client python-aiohttp \ | ||||
|                                             python-aiohttp-debugtoolbar python-aiohttp-jinja2 python-aiohttp-security \ | ||||
|                                             python-aiohttp-session python-boto3 python-cryptography python-jinja \ | ||||
|                                             rsync subversion | ||||
|  | ||||
| # install ahriman | ||||
| ## copy tree | ||||
| COPY --chown=build . "/home/build/ahriman" | ||||
| ## create package archive and install it | ||||
| RUN cd "/home/build/ahriman" && \ | ||||
|     tox -e archive && \ | ||||
|     cp ./dist/*.tar.gz "package/archlinux" && \ | ||||
|     make VERSION=$(python -c "from src.ahriman.version import __version__; print(__version__)") archlinux && \ | ||||
|     cp ./*-src.tar.xz "package/archlinux" && \ | ||||
|     cd "package/archlinux" && \ | ||||
|     runuser -u build -- makepkg --noconfirm --install --skipchecksums && \ | ||||
|     cd / && rm -r "/home/build/ahriman" | ||||
|  | ||||
| # cleanup unused | ||||
| RUN find "/var/cache/pacman/pkg" -type f -delete | ||||
| RUN pacman -Qdtq | pacman -Rscn --noconfirm - | ||||
|     cd - && rm -r "/home/build/ahriman" | ||||
|  | ||||
| VOLUME ["/var/lib/ahriman"] | ||||
|  | ||||
| @ -62,4 +49,4 @@ VOLUME ["/var/lib/ahriman"] | ||||
| COPY "docker/entrypoint.sh" "/usr/local/bin/entrypoint" | ||||
| ENTRYPOINT ["entrypoint"] | ||||
| # default command | ||||
| CMD ["repo-update", "--refresh"] | ||||
| CMD ["repo-update"] | ||||
|  | ||||
							
								
								
									
										56
									
								
								Makefile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										56
									
								
								Makefile
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,56 @@ | ||||
| .PHONY: architecture archive archive_directory archlinux check clean directory man push tests version | ||||
| .DEFAULT_GOAL := archlinux | ||||
|  | ||||
| PROJECT := ahriman | ||||
|  | ||||
| FILES := AUTHORS COPYING README.md docs package src setup.py tox.ini web.png | ||||
| TARGET_FILES := $(addprefix $(PROJECT)/, $(FILES)) | ||||
| IGNORE_FILES := package/archlinux src/.mypy_cache | ||||
|  | ||||
| $(TARGET_FILES) : $(addprefix $(PROJECT), %) : $(addprefix ., %) directory version | ||||
| 	@cp -rp $< $@ | ||||
|  | ||||
| architecture: | ||||
| 	cd src && pydeps ahriman -o ../docs/ahriman-architecture.svg --no-show --cluster | ||||
|  | ||||
| archive: archive_directory | ||||
| 	tar cJf "$(PROJECT)-$(VERSION)-src.tar.xz" "$(PROJECT)" | ||||
| 	rm -rf "$(PROJECT)" | ||||
|  | ||||
| archive_directory: $(TARGET_FILES) | ||||
| 	rm -fr $(addprefix $(PROJECT)/, $(IGNORE_FILES)) | ||||
| 	find "$(PROJECT)" -type f -name "*.pyc" -delete | ||||
| 	find "$(PROJECT)" -depth -type d -name "__pycache__" -execdir rm -rf {} + | ||||
| 	find "$(PROJECT)" -depth -type d -name "*.egg-info" -execdir rm -rf {} + | ||||
|  | ||||
| archlinux: archive | ||||
| 	sed -i "s/pkgver=.*/pkgver=$(VERSION)/" package/archlinux/PKGBUILD | ||||
|  | ||||
| check: clean | ||||
| 	tox -e check | ||||
|  | ||||
| clean: | ||||
| 	find . -type f -name "$(PROJECT)-*-src.tar.xz" -delete | ||||
| 	rm -rf "$(PROJECT)" | ||||
|  | ||||
| directory: clean | ||||
| 	mkdir "$(PROJECT)" | ||||
|  | ||||
| man: | ||||
| 	cd src &&  PYTHONPATH=. argparse-manpage --module ahriman.application.ahriman --function _parser --author "ahriman team" --project-name ahriman --author-email "" --url https://github.com/arcan1s/ahriman --output ../docs/ahriman.1 | ||||
|  | ||||
| push: architecture man archlinux | ||||
| 	git add package/archlinux/PKGBUILD src/ahriman/version.py docs/ahriman-architecture.svg docs/ahriman.1 | ||||
| 	git commit -m "Release $(VERSION)" | ||||
| 	git tag "$(VERSION)" | ||||
| 	git push | ||||
| 	git push --tags | ||||
|  | ||||
| tests: clean | ||||
| 	tox -e tests | ||||
|  | ||||
| version: | ||||
| ifndef VERSION | ||||
| 	$(error VERSION is required, but not set) | ||||
| endif | ||||
| 	sed -i '/__version__ = .*/s/[^"][^)]*/__version__ = "$(VERSION)"/' src/ahriman/version.py | ||||
							
								
								
									
										37
									
								
								README.md
									
									
									
									
									
								
							
							
						
						
									
										37
									
								
								README.md
									
									
									
									
									
								
							| @ -1,44 +1,31 @@ | ||||
| # ArcH linux ReposItory MANager | ||||
| # ArcH Linux ReposItory MANager | ||||
|  | ||||
| [](https://github.com/arcan1s/ahriman/actions/workflows/tests.yml) | ||||
| [](https://github.com/arcan1s/ahriman/actions/workflows/setup.yml) | ||||
| [](https://hub.docker.com/r/arcan1s/ahriman) | ||||
| [](https://github.com/arcan1s/ahriman/actions/workflows/run-tests.yml) | ||||
| [](https://github.com/arcan1s/ahriman/actions/workflows/run-setup.yml) | ||||
| [](https://github.com/arcan1s/ahriman/actions/workflows/docker-image.yml) | ||||
| [](https://www.codefactor.io/repository/github/arcan1s/ahriman) | ||||
| [](https://ahriman.readthedocs.io) | ||||
|  | ||||
| Wrapper for managing custom repository inspired by [repo-scripts](https://github.com/arcan1s/repo-scripts). | ||||
|  | ||||
| ## Features | ||||
|  | ||||
| * Install-configure-forget manager for the very own repository. | ||||
| * Multi architecture and repository support. | ||||
| * Dependency manager. | ||||
| * Install-configure-forget manager for own repository. | ||||
| * Multi-architecture support. | ||||
| * VCS packages support. | ||||
| * Official repository support. | ||||
| * Sign support with gpg (repository, package, per package settings). | ||||
| * Synchronization to remote services (rsync, s3 and github) and report generation (email, html, telegram). | ||||
| * Dependency manager. | ||||
| * Ability to patch AUR packages and even create package from local PKGBUILDs. | ||||
| * Various rebuild options with ability to automatically bump package version. | ||||
| * Sign support with gpg (repository, package), multiple packagers support. | ||||
| * Triggers for repository updates, e.g. synchronization to remote services (rsync, S3 and GitHub) and report generation (email, html, telegram). | ||||
| * Repository status interface with optional authorization and control options: | ||||
|  | ||||
|      | ||||
|  | ||||
| ## Installation and run | ||||
|  | ||||
| For installation details kindly refer to the [documentation](https://ahriman.readthedocs.io/en/stable/setup.html). For application commands it is possible to get information by using `--help`/`help` command or by using man page ([web version](https://ahriman.readthedocs.io/en/stable/command-line.html)). | ||||
| For installation details please refer to the [documentation](docs/setup.md). For command help, `--help` subcommand must be used. Subcommands have own help message as well. The package also provides a [man page](docs/ahriman.1). | ||||
|  | ||||
| ## Configuration | ||||
|  | ||||
| Every available option is described in the [documentation](https://ahriman.readthedocs.io/en/stable/configuration.html). | ||||
| Every available option is described in the [documentation](docs/configuration.md). | ||||
|  | ||||
| The application provides reasonable defaults which allow to use it out-of-box; however additional steps (like configuring build toolchain and sudoers) are recommended and can be easily achieved by following install instructions. | ||||
|  | ||||
| ## [FAQ](https://ahriman.readthedocs.io/en/stable/faq/index.html) | ||||
|  | ||||
| ## Live demos | ||||
|  | ||||
| * [Build status page](https://ahriman-demo.arcanis.me). You can log in as `demo` user by using `demo` password. However, you will not be able to run tasks. [HTTP API documentation](https://ahriman-demo.arcanis.me/api-docs) is also available. | ||||
| * [Repository index](https://repo.arcanis.me/arcanisrepo/x86_64/). | ||||
| * [Telegram feed](https://t.me/arcanisrepo). | ||||
|  | ||||
| Do you have any success story? You can [share it](https://github.com/arcan1s/ahriman/issues/new?template=04-discussion.md)! | ||||
| ## [FAQ](docs/faq.md) | ||||
|  | ||||
| @ -1,9 +0,0 @@ | ||||
| # Security Policy | ||||
|  | ||||
| ## Supported Versions | ||||
|  | ||||
| The project follows bleeding edge philosophy, thus only the latest version is supported with the exception for release candidates (i.e. tags which are marked with `rc` suffix). | ||||
|  | ||||
| ## Reporting a Vulnerability | ||||
|  | ||||
| In the most cases you can report (suspected) security vulnerabilities directly on github by using ["Security report" template](https://github.com/arcan1s/ahriman/issues/new?assignees=&labels=security&template=02-security-report.md&title=). However, if your report could lead to data leak or break the system we kindly ask you to contact [current maintainer](AUTHORS) directly by email. | ||||
| @ -4,59 +4,36 @@ set -e | ||||
| [ -n "$AHRIMAN_DEBUG" ] && set -x | ||||
|  | ||||
| # configuration tune | ||||
| cat <<EOF > "/etc/ahriman.ini.d/00-docker.ini" | ||||
| [repository] | ||||
| root = $AHRIMAN_REPOSITORY_ROOT | ||||
|  | ||||
| [settings] | ||||
| database = $AHRIMAN_REPOSITORY_ROOT/ahriman.db | ||||
|  | ||||
| [web] | ||||
| host = $AHRIMAN_HOST | ||||
|  | ||||
| EOF | ||||
| sed -i "s|root = /var/lib/ahriman|root = $AHRIMAN_REPOSITORY_ROOT|g" "/etc/ahriman.ini" | ||||
| sed -i "s|database = /var/lib/ahriman/ahriman.db|database = $AHRIMAN_REPOSITORY_ROOT/ahriman.db|g" "/etc/ahriman.ini" | ||||
| sed -i "s|host = 127.0.0.1|host = $AHRIMAN_HOST|g" "/etc/ahriman.ini" | ||||
| sed -i "s|handlers = syslog_handler|handlers = ${AHRIMAN_OUTPUT}_handler|g" "/etc/ahriman.ini.d/logging.ini" | ||||
|  | ||||
| AHRIMAN_DEFAULT_ARGS=("--architecture" "$AHRIMAN_ARCHITECTURE") | ||||
| AHRIMAN_DEFAULT_ARGS+=("--repository" "$AHRIMAN_REPOSITORY") | ||||
| if [ -n "$AHRIMAN_OUTPUT" ]; then | ||||
|     AHRIMAN_DEFAULT_ARGS+=("--log-handler" "$AHRIMAN_OUTPUT") | ||||
| if [[ "$AHRIMAN_OUTPUT" == "syslog" ]]; then | ||||
|     if [ ! -e "/dev/log" ]; then | ||||
|         # by default ahriman uses syslog which is not available inside container | ||||
|         # to make noise less we force quiet mode in case if /dev/log was not mounted | ||||
|         AHRIMAN_DEFAULT_ARGS+=("--quiet") | ||||
|     fi | ||||
| fi | ||||
|  | ||||
| # create repository root inside the [[mounted]] directory and set correct ownership | ||||
| [ -d "$AHRIMAN_REPOSITORY_ROOT" ] || mkdir "$AHRIMAN_REPOSITORY_ROOT" | ||||
| chown "$AHRIMAN_USER":"$AHRIMAN_USER" "$AHRIMAN_REPOSITORY_ROOT" | ||||
|  | ||||
| # create .gnupg directory which is required for keys | ||||
| AHRIMAN_GNUPG_HOME="$(getent passwd "$AHRIMAN_USER" | cut -d : -f 6)/.gnupg" | ||||
| [ -d "$AHRIMAN_GNUPG_HOME" ] || mkdir -m700 "$AHRIMAN_GNUPG_HOME" | ||||
| chown "$AHRIMAN_USER":"$AHRIMAN_USER" "$AHRIMAN_GNUPG_HOME" | ||||
|  | ||||
| # run built-in setup command | ||||
| AHRIMAN_SETUP_ARGS=("--build-as-user" "$AHRIMAN_USER") | ||||
| AHRIMAN_SETUP_ARGS+=("--packager" "$AHRIMAN_PACKAGER") | ||||
| if [ -z "$AHRIMAN_MULTILIB" ]; then | ||||
|     AHRIMAN_SETUP_ARGS+=("--no-multilib") | ||||
| fi | ||||
| if [ -n "$AHRIMAN_PACMAN_MIRROR" ]; then | ||||
|     AHRIMAN_SETUP_ARGS+=("--mirror" "$AHRIMAN_PACMAN_MIRROR") | ||||
| fi | ||||
| if [ -n "$AHRIMAN_REPOSITORY_SERVER" ]; then | ||||
|     AHRIMAN_SETUP_ARGS+=("--server" "$AHRIMAN_REPOSITORY_SERVER") | ||||
| fi | ||||
| AHRIMAN_SETUP_ARGS+=("--repository" "$AHRIMAN_REPOSITORY") | ||||
| if [ -n "$AHRIMAN_PORT" ]; then | ||||
|     # in addition it must be handled in docker run command | ||||
|     AHRIMAN_SETUP_ARGS+=("--web-port" "$AHRIMAN_PORT") | ||||
| fi | ||||
| if [ -n "$AHRIMAN_UNIX_SOCKET" ]; then | ||||
|     AHRIMAN_SETUP_ARGS+=("--web-unix-socket" "$AHRIMAN_UNIX_SOCKET") | ||||
| fi | ||||
|  | ||||
| [ -n "$AHRIMAN_PRESETUP_COMMAND" ] && eval "$AHRIMAN_PRESETUP_COMMAND" | ||||
| ahriman "${AHRIMAN_DEFAULT_ARGS[@]}" service-setup "${AHRIMAN_SETUP_ARGS[@]}" | ||||
| [ -n "$AHRIMAN_POSTSETUP_COMMAND" ] && eval "$AHRIMAN_POSTSETUP_COMMAND" | ||||
|  | ||||
| # validate configuration if set | ||||
| [ -n "$AHRIMAN_VALIDATE_CONFIGURATION" ] && ahriman "${AHRIMAN_DEFAULT_ARGS[@]}" service-config-validate --exit-code | ||||
| ahriman "${AHRIMAN_DEFAULT_ARGS[@]}" repo-setup "${AHRIMAN_SETUP_ARGS[@]}" | ||||
|  | ||||
| # refresh database | ||||
| runuser -u build -- yay --noconfirm -Syy &> /dev/null | ||||
| # create machine-id which is required by build tools | ||||
| systemd-machine-id-setup &> /dev/null | ||||
|  | ||||
| @ -64,8 +41,8 @@ systemd-machine-id-setup &> /dev/null | ||||
| # otherwise we prepend executable by sudo command | ||||
| if [ -n "$AHRIMAN_FORCE_ROOT" ]; then | ||||
|     AHRIMAN_EXECUTABLE=("ahriman") | ||||
| elif ahriman help-commands-unsafe -- "$@" &> /dev/null; then | ||||
|     AHRIMAN_EXECUTABLE=("sudo" "-E" "-u" "$AHRIMAN_USER" "--" "ahriman") | ||||
| elif ahriman help-commands-unsafe --command="$*" &> /dev/null; then | ||||
|     AHRIMAN_EXECUTABLE=("sudo" "-u" "$AHRIMAN_USER" "--" "ahriman") | ||||
| else | ||||
|     AHRIMAN_EXECUTABLE=("ahriman") | ||||
| fi | ||||
|  | ||||
| @ -1,12 +0,0 @@ | ||||
| #!/bin/bash | ||||
|  | ||||
| set -e | ||||
|  | ||||
| for PACKAGE in "$@"; do | ||||
|     BUILD_DIR="$(mktemp -d)" | ||||
|     git clone https://aur.archlinux.org/"$PACKAGE".git "$BUILD_DIR" | ||||
|     cd "$BUILD_DIR" | ||||
|     makepkg --nocheck --noconfirm --install --rmdeps --syncdeps | ||||
|     cd / | ||||
|     rm -r "$BUILD_DIR" | ||||
| done | ||||
| @ -1,15 +0,0 @@ | ||||
| #!/bin/bash | ||||
| # Since https://gitlab.archlinux.org/archlinux/devtools/-/commit/5f4fd52e3836ddddb25a0f9e15d0acfed06f693d | ||||
| # it is impossible to start devtools inside docker container, because it requires slice registering | ||||
| # which is impossible because there is no init in container | ||||
|  | ||||
| is_slice() { | ||||
|     [[ $1 =~ ^--slice* ]] | ||||
| } | ||||
|  | ||||
| allowed=() | ||||
| for arg in "$@"; do | ||||
|     is_slice "$arg" && allowed+=("--keep-unit") || allowed+=("$arg") | ||||
| done | ||||
|  | ||||
| exec /usr/bin/systemd-nspawn "${allowed[@]}" | ||||
| @ -1,45 +0,0 @@ | ||||
| Advanced usage | ||||
| ============== | ||||
|  | ||||
| Depending on the goal the package can be used in different ways. Nevertheless, in the most cases you will need some basic classes | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    from pathlib import Path | ||||
|  | ||||
|    from ahriman.core.configuration import Configuration | ||||
|    from ahriman.core.database import SQLite | ||||
|    from ahriman.models.repository_id import RepositoryId | ||||
|  | ||||
|    repository_id = RepositoryId("x86_64", "aur-clone") | ||||
|    configuration = Configuration.from_path(Path("/etc/ahriman.ini"), repository_id) | ||||
|    database = SQLite.load(configuration) | ||||
|  | ||||
| At this point there are ``configuration`` and ``database`` instances which can be used later at any time anywhere, e.g. | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    # instance of ``RepositoryPaths`` class | ||||
|    paths = configuration.repository_paths | ||||
|  | ||||
| Almost all actions are wrapped by ``ahriman.core.repository.Repository`` class | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    from ahriman.core.repository import Repository | ||||
|    from ahriman.models.pacman_synchronization import PacmanSynchronization | ||||
|  | ||||
|    repository = Repository(repository_id, configuration, database, | ||||
|                            report=True, refresh_pacman_database=PacmanSynchronization.Disabled) | ||||
|  | ||||
| And the ``repository`` instance can be used to perform repository maintenance | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    build_result = repository.process_build(known_packages) | ||||
|    built_packages = repository.packages_built() | ||||
|    update_result = repository.process_update(built_packages) | ||||
|  | ||||
|    repository.triggers.on_result(update_result, repository.packages()) | ||||
|  | ||||
| For the more info please refer to the classes documentation. | ||||
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							| Before Width: | Height: | Size: 1.2 MiB After Width: | Height: | Size: 540 KiB | 
							
								
								
									
										1029
									
								
								docs/ahriman.1
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										1029
									
								
								docs/ahriman.1
									
									
									
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							| @ -1,61 +0,0 @@ | ||||
| ahriman.application.application package | ||||
| ======================================= | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.application.application.workers | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.application.application.application module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.application | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.application.application\_packages module | ||||
| ------------------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.application.application_packages | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.application.application\_properties module | ||||
| -------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.application_properties | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.application.application\_repository module | ||||
| -------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.application_repository | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.application.updates\_iterator module | ||||
| -------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.updates_iterator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,37 +0,0 @@ | ||||
| ahriman.application.application.workers package | ||||
| =============================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.application.application.workers.local\_updater module | ||||
| ------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.workers.local_updater | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.application.workers.remote\_updater module | ||||
| -------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.workers.remote_updater | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.application.workers.updater module | ||||
| ------------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.application.workers.updater | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.application.workers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,269 +0,0 @@ | ||||
| ahriman.application.handlers package | ||||
| ==================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.application.handlers.add module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.add | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.backup module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.backup | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.change module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.change | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.clean module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.clean | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.daemon module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.daemon | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.dump module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.dump | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.handler module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.help module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.help | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.key\_import module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.key_import | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.patch module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.patch | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.rebuild module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.rebuild | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.remove module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.remove | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.remove\_unknown module | ||||
| --------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.remove_unknown | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.repositories module | ||||
| ------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.repositories | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.restore module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.restore | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.run module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.run | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.search module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.search | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.service\_updates module | ||||
| ---------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.service_updates | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.setup module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.setup | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.shell module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.shell | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.sign module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.sign | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.status module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.status\_update module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.status_update | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.structure module | ||||
| --------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.structure | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.tree\_migrate module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.tree_migrate | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.triggers module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.triggers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.unsafe\_commands module | ||||
| ---------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.unsafe_commands | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.update module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.update | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.users module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.users | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.validate module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.validate | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.versions module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.versions | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.handlers.web module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers.web | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.handlers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,38 +0,0 @@ | ||||
| ahriman.application package | ||||
| =========================== | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.application.application | ||||
|    ahriman.application.handlers | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.application.ahriman module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.ahriman | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.application.lock module | ||||
| ------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.application.lock | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.application | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.alpm.remote package | ||||
| ================================ | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.alpm.remote.aur module | ||||
| ----------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.remote.aur | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.alpm.remote.official module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.remote.official | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.alpm.remote.official\_syncdb module | ||||
| ------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.remote.official_syncdb | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.alpm.remote.remote module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.remote.remote | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.remote | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.alpm package | ||||
| ========================= | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.core.alpm.remote | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.alpm.pacman module | ||||
| ------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.pacman | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.alpm.pacman\_database module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.pacman_database | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.alpm.repo module | ||||
| ----------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm.repo | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.alpm | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,53 +0,0 @@ | ||||
| ahriman.core.auth package | ||||
| ========================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.auth.auth module | ||||
| ----------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.auth.auth | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.auth.helpers module | ||||
| -------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.auth.helpers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.auth.mapping module | ||||
| -------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.auth.mapping | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.auth.oauth module | ||||
| ------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.auth.oauth | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.auth.pam module | ||||
| ---------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.auth.pam | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.auth | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,29 +0,0 @@ | ||||
| ahriman.core.build\_tools package | ||||
| ================================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.build\_tools.sources module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.build_tools.sources | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.build\_tools.task module | ||||
| ------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.build_tools.task | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.build_tools | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.configuration package | ||||
| ================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.configuration.configuration module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.configuration.configuration | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.configuration.schema module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.configuration.schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.configuration.shell\_interpolator module | ||||
| ----------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.configuration.shell_interpolator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.configuration.validator module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.configuration.validator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.configuration | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,125 +0,0 @@ | ||||
| ahriman.core.database.migrations package | ||||
| ======================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.database.migrations.m000\_initial module | ||||
| ----------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m000_initial | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m001\_package\_source module | ||||
| ------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m001_package_source | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m002\_user\_access module | ||||
| ---------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m002_user_access | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m003\_patch\_variables module | ||||
| -------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m003_patch_variables | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m004\_logs module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m004_logs | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m005\_make\_opt\_depends module | ||||
| ---------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m005_make_opt_depends | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m006\_packages\_architecture\_required module | ||||
| ------------------------------------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m006_packages_architecture_required | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m007\_check\_depends module | ||||
| ------------------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m007_check_depends | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m008\_packagers module | ||||
| ------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m008_packagers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m009\_local\_source module | ||||
| ----------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m009_local_source | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m010\_version\_based\_logs\_removal module | ||||
| --------------------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m010_version_based_logs_removal | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m011\_repository\_name module | ||||
| -------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m011_repository_name | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m012\_last\_commit\_sha module | ||||
| --------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m012_last_commit_sha | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.migrations.m013\_dependencies module | ||||
| ---------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations.m013_dependencies | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.migrations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,77 +0,0 @@ | ||||
| ahriman.core.database.operations package | ||||
| ======================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.database.operations.auth\_operations module | ||||
| -------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.auth_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.build\_operations module | ||||
| --------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.build_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.changes\_operations module | ||||
| ----------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.changes_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.dependencies\_operations module | ||||
| ---------------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.dependencies_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.logs\_operations module | ||||
| -------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.logs_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.operations module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.package\_operations module | ||||
| ----------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.package_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.database.operations.patch\_operations module | ||||
| --------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations.patch_operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.operations | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,30 +0,0 @@ | ||||
| ahriman.core.database package | ||||
| ============================= | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.core.database.migrations | ||||
|    ahriman.core.database.operations | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.database.sqlite module | ||||
| ----------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database.sqlite | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.database | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.distributed package | ||||
| ================================ | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.distributed.distributed\_system module | ||||
| --------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.distributed.distributed_system | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.distributed.worker\_loader\_trigger module | ||||
| ------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.distributed.worker_loader_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.distributed.worker\_trigger module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.distributed.worker_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.distributed.workers\_cache module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.distributed.workers_cache | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.distributed | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,141 +0,0 @@ | ||||
| ahriman.core.formatters package | ||||
| =============================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.formatters.aur\_printer module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.aur_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.build\_printer module | ||||
| --------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.build_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.changes\_printer module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.changes_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.configuration\_paths\_printer module | ||||
| ------------------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.configuration_paths_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.configuration\_printer module | ||||
| ----------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.configuration_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.package\_printer module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.package_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.patch\_printer module | ||||
| --------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.patch_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.printer module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.repository\_printer module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.repository_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.status\_printer module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.status_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.string\_printer module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.string_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.tree\_printer module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.tree_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.update\_printer module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.update_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.user\_printer module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.user_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.validation\_printer module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.validation_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.formatters.version\_printer module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters.version_printer | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.formatters | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.gitremote package | ||||
| ============================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.gitremote.remote\_pull module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.gitremote.remote_pull | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.gitremote.remote\_pull\_trigger module | ||||
| --------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.gitremote.remote_pull_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.gitremote.remote\_push module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.gitremote.remote_push | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.gitremote.remote\_push\_trigger module | ||||
| --------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.gitremote.remote_push_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.gitremote | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,29 +0,0 @@ | ||||
| ahriman.core.http package | ||||
| ========================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.http.sync\_ahriman\_client module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.http.sync_ahriman_client | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.http.sync\_http\_client module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.http.sync_http_client | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.http | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.log package | ||||
| ======================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.log.http\_log\_handler module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.log.http_log_handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.log.journal\_handler module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.log.journal_handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.log.lazy\_logging module | ||||
| ------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.log.lazy_logging | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.log.log\_loader module | ||||
| ----------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.log.log_loader | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.log | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,77 +0,0 @@ | ||||
| ahriman.core.report package | ||||
| =========================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.report.console module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report.console | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.email module | ||||
| -------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report.email | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.html module | ||||
| ------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report.html | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.jinja\_template module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.report.jinja_template | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.remote\_call module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report.remote_call | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.report module | ||||
| --------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report.report | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.report\_trigger module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.report.report_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.report.telegram module | ||||
| ----------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report.telegram | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.report | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,61 +0,0 @@ | ||||
| ahriman.core.repository package | ||||
| =============================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.repository.cleaner module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository.cleaner | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.repository.executor module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository.executor | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.repository.package\_info module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository.package_info | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.repository.repository module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository.repository | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.repository.repository\_properties module | ||||
| ----------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository.repository_properties | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.repository.update\_handler module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository.update_handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.repository | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,77 +0,0 @@ | ||||
| ahriman.core package | ||||
| ==================== | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.core.alpm | ||||
|    ahriman.core.auth | ||||
|    ahriman.core.build_tools | ||||
|    ahriman.core.configuration | ||||
|    ahriman.core.database | ||||
|    ahriman.core.distributed | ||||
|    ahriman.core.formatters | ||||
|    ahriman.core.gitremote | ||||
|    ahriman.core.http | ||||
|    ahriman.core.log | ||||
|    ahriman.core.report | ||||
|    ahriman.core.repository | ||||
|    ahriman.core.sign | ||||
|    ahriman.core.status | ||||
|    ahriman.core.support | ||||
|    ahriman.core.triggers | ||||
|    ahriman.core.upload | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.exceptions module | ||||
| ------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.exceptions | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.spawn module | ||||
| ------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.spawn | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.tree module | ||||
| ------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.tree | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.util module | ||||
| ------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.util | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.utils module | ||||
| ------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.utils | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,21 +0,0 @@ | ||||
| ahriman.core.sign package | ||||
| ========================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.sign.gpg module | ||||
| ---------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.sign.gpg | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.sign | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.status package | ||||
| =========================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.status.client module | ||||
| --------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.status.client | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.status.local\_client module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.status.local_client | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.status.watcher module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.status.watcher | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.status.web\_client module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.status.web_client | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,37 +0,0 @@ | ||||
| ahriman.core.support.pkgbuild package | ||||
| ===================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.support.pkgbuild.keyring\_generator module | ||||
| ------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.pkgbuild.keyring_generator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.support.pkgbuild.mirrorlist\_generator module | ||||
| ---------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.pkgbuild.mirrorlist_generator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.support.pkgbuild.pkgbuild\_generator module | ||||
| -------------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.pkgbuild.pkgbuild_generator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.pkgbuild | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,45 +0,0 @@ | ||||
| ahriman.core.support package | ||||
| ============================ | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.core.support.pkgbuild | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.support.keyring\_trigger module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.keyring_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.support.mirrorlist\_trigger module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.mirrorlist_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.support.package\_creator module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support.package_creator | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.support | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,29 +0,0 @@ | ||||
| ahriman.core.triggers package | ||||
| ============================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.triggers.trigger module | ||||
| ------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.triggers.trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.triggers.trigger\_loader module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.triggers.trigger_loader | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.triggers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,69 +0,0 @@ | ||||
| ahriman.core.upload package | ||||
| =========================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.core.upload.github module | ||||
| --------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.github | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.upload.http\_upload module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.http_upload | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.upload.remote\_service module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.remote_service | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.upload.rsync module | ||||
| -------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.rsync | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.upload.s3 module | ||||
| ----------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.s3 | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.upload.upload module | ||||
| --------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.upload | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.core.upload.upload\_trigger module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.core.upload.upload_trigger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.core.upload | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,301 +0,0 @@ | ||||
| ahriman.models package | ||||
| ====================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.models.action module | ||||
| ---------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.action | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.aur\_package module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.aur_package | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.auth\_settings module | ||||
| ------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.auth_settings | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.build\_status module | ||||
| ----------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.build_status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.changes module | ||||
| ----------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.changes | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.context\_key module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.context_key | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.counters module | ||||
| ------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.counters | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.dependencies module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.dependencies | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.filesystem\_package module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.filesystem_package | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.internal\_status module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.internal_status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.log\_handler module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.log_handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.log\_record\_id module | ||||
| ------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.log_record_id | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.migration module | ||||
| ------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.migration | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.migration\_result module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.migration_result | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.package module | ||||
| ----------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.package | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.package\_archive module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.package_archive | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.package\_description module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.package_description | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.package\_source module | ||||
| ------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.package_source | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.packagers module | ||||
| ------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.packagers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.pacman\_synchronization module | ||||
| --------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.pacman_synchronization | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.pkgbuild\_patch module | ||||
| ------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.pkgbuild_patch | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.process\_status module | ||||
| ------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.process_status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.property module | ||||
| ------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.property | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.remote\_source module | ||||
| ------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.remote_source | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.report\_settings module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.report_settings | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.repository\_id module | ||||
| ------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.repository_id | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.repository\_paths module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.repository_paths | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.result module | ||||
| ---------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.result | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.scan\_paths module | ||||
| --------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.scan_paths | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.sign\_settings module | ||||
| ------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.models.sign_settings | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.smtp\_ssl\_settings module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.smtp_ssl_settings | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.upload\_settings module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.upload_settings | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.user module | ||||
| -------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.user | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.user\_access module | ||||
| ---------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.user_access | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.waiter module | ||||
| ---------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.waiter | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.models.worker module | ||||
| ---------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.models.worker | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.models | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,21 +0,0 @@ | ||||
| ahriman package | ||||
| =============== | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.application | ||||
|    ahriman.core | ||||
|    ahriman.models | ||||
|    ahriman.web | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,29 +0,0 @@ | ||||
| ahriman.web.middlewares package | ||||
| =============================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.middlewares.auth\_handler module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.middlewares.auth_handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.middlewares.exception\_handler module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.middlewares.exception_handler | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.middlewares | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,63 +0,0 @@ | ||||
| ahriman.web package | ||||
| =================== | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.web.middlewares | ||||
|    ahriman.web.schemas | ||||
|    ahriman.web.views | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.apispec module | ||||
| -------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.apispec | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.cors module | ||||
| ----------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.cors | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.keys module | ||||
| ----------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.keys | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.routes module | ||||
| ------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.routes | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.web module | ||||
| ---------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.web | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,293 +0,0 @@ | ||||
| ahriman.web.schemas package | ||||
| =========================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.schemas.aur\_package\_schema module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.aur_package_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.auth\_schema module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.auth_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.build\_options\_schema module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.build_options_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.changes\_schema module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.changes_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.counters\_schema module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.counters_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.dependencies\_schema module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.dependencies_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.error\_schema module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.error_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.file\_schema module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.file_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.info\_schema module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.info_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.internal\_status\_schema module | ||||
| --------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.internal_status_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.log\_schema module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.log_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.login\_schema module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.login_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.logs\_schema module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.logs_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.oauth2\_schema module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.oauth2_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_name\_schema module | ||||
| ------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_name_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_names\_schema module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_names_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_patch\_schema module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_patch_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_properties\_schema module | ||||
| ------------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_properties_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_schema module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_status\_schema module | ||||
| -------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_status_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.package\_version\_schema module | ||||
| --------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.package_version_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.pagination\_schema module | ||||
| --------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.pagination_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.patch\_name\_schema module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.patch_name_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.patch\_schema module | ||||
| ---------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.patch_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.pgp\_key\_id\_schema module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.pgp_key_id_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.pgp\_key\_schema module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.pgp_key_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.process\_id\_schema module | ||||
| ---------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.process_id_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.process\_schema module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.process_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.remote\_schema module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.remote_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.repository\_id\_schema module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.repository_id_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.search\_schema module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.search_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.status\_schema module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.status_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.update\_flags\_schema module | ||||
| ------------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.update_flags_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.versioned\_log\_schema module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.versioned_log_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.schemas.worker\_schema module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas.worker_schema | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.schemas | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,29 +0,0 @@ | ||||
| ahriman.web.views.api package | ||||
| ============================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.api.docs module | ||||
| --------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.api.docs | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.api.swagger module | ||||
| ------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.api.swagger | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.api | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,55 +0,0 @@ | ||||
| ahriman.web.views package | ||||
| ========================= | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.web.views.api | ||||
|    ahriman.web.views.v1 | ||||
|    ahriman.web.views.v2 | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.base module | ||||
| ----------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.base | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.index module | ||||
| ------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.index | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.static module | ||||
| ------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.static | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.status\_view\_guard module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.status_view_guard | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,21 +0,0 @@ | ||||
| ahriman.web.views.v1.distributed package | ||||
| ======================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.v1.distributed.workers module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.distributed.workers | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.distributed | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,69 +0,0 @@ | ||||
| ahriman.web.views.v1.packages package | ||||
| ===================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.v1.packages.changes module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.changes | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.packages.dependencies module | ||||
| ------------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.dependencies | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.packages.logs module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.logs | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.packages.package module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.package | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.packages.packages module | ||||
| --------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.packages | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.packages.patch module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.patch | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.packages.patches module | ||||
| -------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages.patches | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.packages | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,22 +0,0 @@ | ||||
| ahriman.web.views.v1 package | ||||
| ============================ | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.web.views.v1.distributed | ||||
|    ahriman.web.views.v1.packages | ||||
|    ahriman.web.views.v1.service | ||||
|    ahriman.web.views.v1.status | ||||
|    ahriman.web.views.v1.user | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1 | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,85 +0,0 @@ | ||||
| ahriman.web.views.v1.service package | ||||
| ==================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.v1.service.add module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.add | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.pgp module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.pgp | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.process module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.process | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.rebuild module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.rebuild | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.remove module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.remove | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.request module | ||||
| ------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.request | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.search module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.search | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.update module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.update | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.service.upload module | ||||
| ------------------------------------------ | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service.upload | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.service | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,37 +0,0 @@ | ||||
| ahriman.web.views.v1.status package | ||||
| =================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.v1.status.info module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.status.info | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.status.repositories module | ||||
| ----------------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.status.repositories | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.status.status module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.status.status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.status | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,29 +0,0 @@ | ||||
| ahriman.web.views.v1.user package | ||||
| ================================= | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.v1.user.login module | ||||
| -------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.user.login | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| ahriman.web.views.v1.user.logout module | ||||
| --------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.user.logout | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v1.user | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,21 +0,0 @@ | ||||
| ahriman.web.views.v2.packages package | ||||
| ===================================== | ||||
|  | ||||
| Submodules | ||||
| ---------- | ||||
|  | ||||
| ahriman.web.views.v2.packages.logs module | ||||
| ----------------------------------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v2.packages.logs | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v2.packages | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
| @ -1,18 +0,0 @@ | ||||
| ahriman.web.views.v2 package | ||||
| ============================ | ||||
|  | ||||
| Subpackages | ||||
| ----------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman.web.views.v2.packages | ||||
|  | ||||
| Module contents | ||||
| --------------- | ||||
|  | ||||
| .. automodule:: ahriman.web.views.v2 | ||||
|    :members: | ||||
|    :no-undoc-members: | ||||
|    :show-inheritance: | ||||
							
								
								
									
										227
									
								
								docs/architecture.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										227
									
								
								docs/architecture.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,227 @@ | ||||
| # Package structure | ||||
|  | ||||
| Packages have strict rules of importing: | ||||
|  | ||||
| * `ahriman.application` package must not be used anywhere except for itself. | ||||
| * `ahriman.core` and `ahriman.models` packages don't have any import restriction. Actually we would like to totally restrict importing of `core` package from `models`, but it is impossible at the moment. | ||||
| * `ahriman.web` package is allowed to be imported from `ahriman.application` (web handler only, only `ahriman.web.web` methods). It also must not be imported globally, only local import is allowed.  | ||||
|  | ||||
| Full dependency diagram: | ||||
|  | ||||
|  | ||||
|  | ||||
| ## `ahriman.application` package | ||||
|  | ||||
| This package contains application (aka executable) related classes and everything for that. It also contains package called `ahriman.application.handlers` in which all available subcommands are described as separated classes derived from base `ahriman.application.handlers.handler.Handler` class. | ||||
|  | ||||
| `ahriman.application.application.application.Application` (god class) is used for any interaction from parsers with repository, web etc. It is divided into multiple traits by functions (package related and repository related) in the same package. | ||||
|  | ||||
| `ahriman.application.ahriman` contains only command line parses and executes specified `Handler` on success, `ahriman.application.lock.Lock` is additional class which provides file-based lock and also performs some common checks. | ||||
|  | ||||
| ## `ahriman.core` package | ||||
|  | ||||
| This package contains everything which is required for any time of application run and separated to several packages: | ||||
|  | ||||
| * `ahriman.core.alpm` package controls pacman related functions. It provides wrappers for `pyalpm` library and safe calls for repository tools (`repo-add` and `repo-remove`). | ||||
| * `ahriman.core.auth` package provides classes for authorization methods used by web mostly. Base class is `ahriman.core.auth.auth.Auth` which must be called by `load` method. | ||||
| * `ahriman.core.build_tools` is a package which provides wrapper for `devtools` commands. | ||||
| * `ahriman.core.database` is everything including data and schema migrations for database. | ||||
| * `ahriman.core.formatters` package provides `Printer` sub-classes for printing data (e.g. package properties) to stdout which are used by some handlers. | ||||
| * `ahriman.core.report` is a package with reporting classes. Usually it must be called by `ahriman.core.report.report.Report.load` method. | ||||
| * `ahriman.core.repository` contains several traits and base repository (`ahriman.core.repository.repository.Repository` class) implementation. | ||||
| * `ahriman.core.sign` package provides sign feature (only gpg calls are available). | ||||
| * `ahriman.core.status` contains helpers and watcher class which are required for web application. Reporter must be initialized by using `ahriman.core.status.client.Client.load` method. | ||||
| * `ahriman.core.upload` package provides sync feature, must be called by `ahriman.core.upload.upload.Upload.load` method. | ||||
|  | ||||
| This package also provides some generic functions and classes which may be used by other packages: | ||||
|  | ||||
| * `ahriman.core.configuration.Configuration` is an extension for standard `configparser` library. | ||||
| * `ahriman.core.exceptions` provides custom exceptions. | ||||
| * `ahriman.core.spawn.Spawn` is a tool which can spawn another `ahriman` process. This feature is used by web application. | ||||
| * `ahriman.core.tree` is a dependency tree implementation. | ||||
|  | ||||
| ## `ahriman.models` package | ||||
|  | ||||
| It provides models for any other part of application. Unlike `ahriman.core` package classes from here provides only conversion methods (e.g. create class from another or convert to). Mostly case classes and enumerations. | ||||
|  | ||||
| ## `ahriman.web` package | ||||
|  | ||||
| Web application. It is important that this package is isolated from any other to allow it to be optional feature (i.e. dependencies which are required by the package are optional). | ||||
|  | ||||
| * `ahriman.web.middlewares` provides middlewares for request handlers. | ||||
| * `ahriman.web.views` contains web views derived from aiohttp view class. | ||||
| * `ahriman.web.routes` creates routes for web application. | ||||
| * `ahriman.web.web` provides main web application functions (e.g. start, initialization). | ||||
|  | ||||
| # Application run | ||||
|  | ||||
| * Parse command line arguments, find command and related handler which is set by parser. | ||||
| * Call `Handler.execute` method. | ||||
| * Define list of architectures to run. In case if there is more than one architecture specified run several subprocesses or process in current process otherwise. Class attribute `ALLOW_MULTI_ARCHITECTURE_RUN` controls whether application can be run in multiple processes or not - this feature is required for some handlers (e.g. `Web`) which should be able to spawn child process in daemon mode (it is impossible to do for daemonic processes). | ||||
| * In each child process call lock functions. | ||||
| * After success checks pass control to `Handler.run` method defined by specific handler class. | ||||
| * Return result (success or failure) of each subprocess and exit from application. | ||||
| * Some handlers may override their status and throw `ExitCode` exception. This exception is just silently suppressed and changes application exit code to `1`. | ||||
|  | ||||
| In most cases handlers spawn god class `ahriman.application.application.Application` class and call required methods. | ||||
|  | ||||
| Application is designed to run from `systemd` services and provides parametrized by architecture timer and service file for that. | ||||
|  | ||||
| # Database | ||||
|  | ||||
| The service uses SQLite database in order to store some internal info. | ||||
|  | ||||
| ## Database instance | ||||
|  | ||||
| All methods related to specific part of database (basically operations per table) are split into different traits located inside `ahriman.core.database.operations` package. The base trait `ahriman.core.database.operations.operations.Operations` also provides generic methods for database access (e.g. row converters and transactional support). | ||||
|  | ||||
| The `ahriman.core.database.sqlite.SQLite` class itself derives from all of these traits and implements methods for initialization, including migrations. | ||||
|  | ||||
| ## Schema and data migrations | ||||
|  | ||||
| The schema migration are applied according to current `pragma user_info` values, located at `ahriman.core.database.migrations` package and named as `m000_migration_name.py` (the preceding `m` is required in order to import migration content for tests). Additional class `ahriman.core.database.migrations.Migrations` reads all migrations autmatically and applies them in alphabetical order. | ||||
|  | ||||
| There are also data migrations which are located at `ahriman.core.database.data` package and move data from old-style (e.g. json files in filesystem, directory trees, etc) to the database. They are also part of migration and (unlike schema migrations) are applied only at specific version breakpoints (e.g. if `user_version` is more than 0 no initial migration will be applied). | ||||
|  | ||||
| ## Type conversions | ||||
|  | ||||
| By default, it parses rows into python dictionary. In addition, the following pseudo-types are supported: | ||||
|  | ||||
| * `Dict[str, Any]`, `List[Any]` - for storing JSON data structures in database (technically there is no restriction on types for dictionary keys and values, but it is recommended to use only string keys). The type is stored as `json` datatype and `json.loads` and `json.dumps` methods are used in order to read and write from/to database respectively. | ||||
|  | ||||
| # Basic flows | ||||
|  | ||||
| ## Add new packages or rebuild existing | ||||
|  | ||||
| Idea is to copy package to the directory from which it will be handled at the next update run. Different variants are supported: | ||||
|  | ||||
| * If supplied argument is file then application moves the file to the directory with built packages. Same rule applies for directory, but in this case it copies every package-like file from the specified directory. | ||||
| * If supplied argument is directory and there is `PKGBUILD` file there it will be treated as local package. In this case it will queue this package to build and copy source files (`PKGBUILD` and `.SRCINFO`) to caches. | ||||
| * If supplied argument iis not file then application tries to lookup for the specified name in AUR and clones it into the directory with manual updates. This scenario can also handle package dependencies which are missing in repositories. | ||||
|  | ||||
| This logic can be overwritten by specifying the `source` parameter, which is partially useful if you would like to add package from AUR, but there is local directory cloned from AUR. | ||||
|  | ||||
| ## Rebuild packages | ||||
|  | ||||
| Same as add function for every package in repository. Optional filter by reverse dependency can be supplied. | ||||
|  | ||||
| ## Remove packages | ||||
|  | ||||
| This flow removes package from filesystem, updates repository database and also runs synchronization and reporting methods. | ||||
|  | ||||
| ## Update packages | ||||
|  | ||||
| This feature is divided into to stages: check AUR for updates and run rebuild for required packages. Whereas check does not do anything except for check itself, update flow is the following: | ||||
|  | ||||
| 1. Process every built package first. Those packages are usually added manually. | ||||
| 2. Run sync and report methods. | ||||
| 3. Generate dependency tree for packages to be built. | ||||
| 4. For each level of tree it does: | ||||
|    1. Download package data from AUR. | ||||
|    2. Build every package in clean chroot. | ||||
|    3. Sign packages if required. | ||||
|    4. Add packages to database and sign database if required. | ||||
|    5. Process sync and report methods. | ||||
|  | ||||
| After any step any package data is being removed. | ||||
|  | ||||
| # Core functions reference | ||||
|  | ||||
| ## Configuration  | ||||
|  | ||||
| `ahriman.core.configuration.Configuration` class provides some additional methods (e.g. `getpath` and `getlist`) and also combines multiple files into single configuration dictionary using architecture overrides. It is the recommended way to deal with settings. | ||||
|  | ||||
| ## Utils | ||||
|  | ||||
| For every external command run (which is actually not recommended if possible) custom wrapper for `subprocess` is used. Additional functions `ahriman.core.auth.helpers` provide safe calls for `aiohttp_security` methods and are required to make this dependency optional. | ||||
|  | ||||
| ## Submodules | ||||
|  | ||||
| Some packages provide different behaviour depending on configuration settings. In these cases inheritance is used and recommended way to deal with them is to call class method `load` from base classes. | ||||
|  | ||||
| ## Authorization | ||||
|  | ||||
| The package provides several authorization methods: disabled, based on configuration and OAuth2.  | ||||
|  | ||||
| Disabled (default) authorization provider just allows everything for everyone and does not have any specific configuration (it uses some default configuration parameters though). It also provides generic interface for derived classes. | ||||
|  | ||||
| Mapping (aka configuration) provider uses hashed passwords with salt from the database in order to authenticate users. This provider also enables user permission checking (read/write) (authorization). Thus, it defines the following methods: | ||||
|  | ||||
| * `check_credentials` - user password validation (authentication). | ||||
| * `verify_access` - user permission validation (authorization). | ||||
|  | ||||
| Passwords must be stored in database as `hash(password + salt)`, where `password` is user defined password (taken from user input), `salt` is random string (any length) defined globally in configuration and `hash` is secure hash function. Thus, the following configuration | ||||
|  | ||||
| ```csv | ||||
| "username","password","access" | ||||
| "username","$6$rounds=656000$mWBiecMPrHAL1VgX$oU4Y5HH8HzlvMaxwkNEJjK13ozElyU1wAHBoO/WW5dAaE4YEfnB0X3FxbynKMl4FBdC3Ovap0jINz4LPkNADg0","read" | ||||
| ``` | ||||
|  | ||||
| means that there is user `username` with `read` access and password `password` hashed by `sha512` with salt `salt`. | ||||
|  | ||||
| OAuth provider uses library definitions (`aioauth-client`) in order _authenticate_ users. It still requires user permission to be set in database, thus it inherits mapping provider without any changes. Whereas we could override `check_credentials` (authentication method) by something custom, OAuth flow is a bit more complex than just forward request, thus we have to implement the flow in login form. | ||||
|  | ||||
| OAuth's implementation also allows authenticating users via username + password (in the same way as mapping does) though it is not recommended for end-users and password must be left blank. In particular this feature is used by service reporting (aka robots). | ||||
|  | ||||
| In order to configure users there are special commands. | ||||
|  | ||||
| ## Remote synchronization | ||||
|  | ||||
| There are several supported synchronization providers, currently they are `rsync`, `s3`, `github`.  | ||||
|  | ||||
| `rsync` provider does not have any specific logic except for running external rsync application with configured arguments. The service does not handle SSH configuration, thus it has to be configured before running application manually. | ||||
|  | ||||
| `s3` provider uses `boto3` package and implements sync feature. The files are stored in architecture directory (e.g. if bucket is `repository`, packages will be stored in `repository/x86_64` for the `x86_64` architecture), bucket must be created before any action and API key must have permissions to write to the bucket. No external configuration required. In order to upload only changed files the service compares calculated hashes with the Amazon ETags, used realization is described [here](https://teppen.io/2018/10/23/aws_s3_verify_etags/).  | ||||
|  | ||||
| `github` provider authenticates through basic auth, API key with repository write permissions is required. There will be created a release with the name of the architecture in case if it does not exist; files will be uploaded to the release assets. It also stores array of files and their MD5 checksums in release body in order to upload only changed ones. According to the Github API in case if there is already uploaded asset with the same name (e.g. database files), asset will be removed first. | ||||
|  | ||||
| ## Additional features | ||||
|  | ||||
| Some features require optional dependencies to be installed: | ||||
|  | ||||
| * Version control executables (e.g. `git`, `svn`) for VCS packages. | ||||
| * `gnupg` application for package and repository sign feature. | ||||
| * `rsync` application for rsync based repository sync. | ||||
| * `boto3` python package for `S3` sync. | ||||
| * `Jinja2` python package for HTML report generation (it is also used by web application). | ||||
|  | ||||
| # Web application | ||||
|  | ||||
| Web application requires the following python packages to be installed: | ||||
|  | ||||
| * Core part requires `aiohttp` (application itself), `aiohttp_jinja2` and `Jinja2` (HTML generation from templates). | ||||
| * In addition, `aiohttp_debugtoolbar` is required for debug panel. Please note that this option does not work together with authorization and basically must not be used in production. | ||||
| * In addition, authorization feature requires `aiohttp_security`, `aiohttp_session` and `cryptography`. | ||||
| * In addition to base authorization dependencies, OAuth2 also requires `aioauth-client` library. | ||||
|  | ||||
| ## Middlewares | ||||
|  | ||||
| Service provides some custom middlewares, e.g. logging every exception (except for user ones) and user authorization. | ||||
|  | ||||
| ## Web views | ||||
|  | ||||
| All web views are defined in separated package and derived from `ahriman.web.views.base.Base` class which provides typed interfaces for web application.  | ||||
|  | ||||
| REST API supports both form and JSON data, but the last one is recommended.  | ||||
|  | ||||
| Different APIs are separated into different packages: | ||||
|  | ||||
| * `ahriman.web.views.service` provides views for application controls. | ||||
| * `ahriman.web.views.status` package provides REST API for application reporting. | ||||
| * `ahriman.web.views.user` package provides login and logout methods which can be called without authorization. | ||||
|  | ||||
| ## Templating | ||||
|  | ||||
| Package provides base jinja templates which can be overridden by settings. Vanilla templates are actively using bootstrap library. | ||||
|  | ||||
| ## Requests and scopes | ||||
|  | ||||
| Service provides optional authorization which can be turned on in settings. In order to control user access there are two levels of authorization - read-only (only GET-like requests) and write (anything) which are provided by each web view directly. | ||||
|  | ||||
| If this feature is configured any request will be prohibited without authentication. In addition, configuration flag `auth.safe_build_status` can be used in order to allow seeing main page without authorization. | ||||
|  | ||||
| For authenticated users it uses encrypted session cookies to store tokens; encryption key is generated each time at the start of the application. It also stores expiration time of the session inside. | ||||
|  | ||||
| ## External calls | ||||
|  | ||||
| Web application provides external calls to control main service. It spawns child process with specific arguments and waits for its termination. This feature must be used either with authorization or in safe (i.e. when status page is not available world-wide) environment. | ||||
| @ -1,447 +0,0 @@ | ||||
| Architecture | ||||
| ============ | ||||
|  | ||||
| Package structure | ||||
| ----------------- | ||||
|  | ||||
| Packages have strict rules of importing: | ||||
|  | ||||
| * ``ahriman.application`` package must not be used outside of this package. | ||||
| * ``ahriman.core`` and ``ahriman.models`` packages don't have any import restriction. Actually we would like to totally restrict importing of ``core`` package from ``models``, but it is impossible at the moment. | ||||
| * ``ahriman.web`` package is allowed to be imported from ``ahriman.application`` (web handler only, only ``ahriman.web.web`` methods). It also must not be imported globally, only local import is allowed.  | ||||
|  | ||||
| Full dependency diagram: | ||||
|  | ||||
| .. image:: ahriman-architecture.svg | ||||
|    :target: _images/ahriman-architecture.svg | ||||
|    :alt: architecture | ||||
|  | ||||
| ``ahriman.application`` package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This package contains application (aka executable) related classes and everything for it. It also contains package called ``ahriman.application.handlers`` in which all available subcommands are described as separated classes derived from the base ``ahriman.application.handlers.Handler`` class. | ||||
|  | ||||
| ``ahriman.application.application.Application`` (god class) is used for any interaction from parsers with repository. It is divided into multiple traits by functions (package related and repository related) in the same package. | ||||
|  | ||||
| ``ahriman.application.application.workers`` package contains specific wrappers for local and remote build processes. | ||||
|  | ||||
| ``ahriman.application.ahriman`` contains only command line parses and executes specified ``Handler`` on success, ``ahriman.application.lock.Lock`` is additional class which provides file-based lock and also performs some common checks. | ||||
|  | ||||
| ``ahriman.core`` package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This package contains everything required for the most of application actions and it is separated into several packages: | ||||
|  | ||||
| * ``ahriman.core.alpm`` package controls pacman related functions. It provides wrappers for ``pyalpm`` library and safe calls for repository tools (``repo-add`` and ``repo-remove``). Also this package contains ``ahriman.core.alpm.remote`` package which provides wrapper for remote sources (e.g. AUR RPC and official repositories RPC). | ||||
| * ``ahriman.core.auth`` package provides classes for authorization methods used by web mostly. Base class is ``ahriman.core.auth.Auth`` which must be instantiated by ``load`` method. | ||||
| * ``ahriman.core.build_tools`` is a package which provides wrapper for ``devtools`` commands. | ||||
| * ``ahriman.core.configuration`` contains extension for standard ``configparser`` library and some validation related classes. | ||||
| * ``ahriman.core.database`` is everything for database, including data and schema migrations. | ||||
| * ``ahriman.core.distributed`` package with triggers and helpers for distributed build system. | ||||
| * ``ahriman.core.formatters`` package provides ``Printer`` sub-classes for printing data (e.g. package properties) to stdout which are used by some handlers. | ||||
| * ``ahriman.core.gitremote`` is a package with remote PKGBUILD triggers. Should not be called directly. | ||||
| * ``ahriman.core.http`` package provides HTTP clients which can be used later by other classes. | ||||
| * ``ahriman.core.log`` is a log utils package. It includes logger loader class, custom HTTP based logger and some wrappers. | ||||
| * ``ahriman.core.report`` is a package with reporting triggers. Should not be called directly. | ||||
| * ``ahriman.core.repository`` contains several traits and base repository (``ahriman.core.repository.Repository`` class) implementation. | ||||
| * ``ahriman.core.sign`` package provides sign feature (only gpg calls are available). | ||||
| * ``ahriman.core.status`` contains helpers and watcher class which are required for web application. Reporter must be initialized by using ``ahriman.core.status.client.Client.load`` method. | ||||
| * ``ahriman.core.support`` provides plugins for support packages (mirrorlist and keyring) generation. | ||||
| * ``ahriman.core.triggers`` package contains base trigger classes. Classes from this package must be imported in order to implement user extensions. In fact, ``ahriman.core.report``, ``ahriman.core.upload`` and other built-in triggers use this package. | ||||
| * ``ahriman.core.upload`` package provides sync feature, should not be called directly. | ||||
|  | ||||
| This package also provides some generic functions and classes which may be used by other packages: | ||||
|  | ||||
| * ``ahriman.core.exceptions`` provides custom exceptions. | ||||
| * ``ahriman.core.spawn.Spawn`` is a tool which can spawn another ``ahriman`` process. This feature is used by web application. | ||||
| * ``ahriman.core.tree`` is a dependency tree implementation. | ||||
|  | ||||
| ``ahriman.models`` package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| It provides models for any other part of application. Unlike ``ahriman.core`` package classes from here provide only conversion methods (e.g. create class from another or convert to). It is mostly presented by case classes and enumerations. | ||||
|  | ||||
| ``ahriman.web`` package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Web application. It is important that this package is isolated from any other to allow it to be optional feature (i.e. dependencies which are required by the package are optional). | ||||
|  | ||||
| * ``ahriman.web.middlewares`` provides middlewares for request handlers. | ||||
| * ``ahriman.web.schemas`` provides schemas (actually copy paste from dataclasses) used by swagger documentation. | ||||
| * ``ahriman.web.views`` contains web views derived from aiohttp view class. | ||||
| * ``ahriman.web.apispec`` provides generators for swagger documentation. | ||||
| * ``ahriman.web.cors`` contains helpers for cross origin resource sharing middlewares. | ||||
| * ``ahriman.web.routes`` creates routes for web application. | ||||
| * ``ahriman.web.web`` provides main web application functions (e.g. start, initialization). | ||||
|  | ||||
| Application run | ||||
| --------------- | ||||
|  | ||||
| #. Parse command line arguments, find subcommand and related handler which is set by the parser. | ||||
| #. Call ``Handler.execute`` method. | ||||
| #. Define list of architectures to run. In case if there is more than one architecture specified run several subprocesses or continue in current process otherwise. Class attribute ``ALLOW_MULTI_ARCHITECTURE_RUN`` controls whether the application can be run in multiple processes or not - this feature is required for some handlers (e.g. ``Web``, which should be able to spawn child process in daemon mode; it is impossible to do from daemonic processes). | ||||
| #. In each child process call lock functions. | ||||
| #. After success checks pass control to ``Handler.run`` method defined by specific handler class. | ||||
| #. Return result (success or failure) of each subprocess and exit from application. | ||||
| #. Some handlers may override their status and throw ``ExitCode`` exception. This exception is just silently suppressed and changes application exit code to ``1``. | ||||
|  | ||||
| In the most cases handlers spawn god class ``ahriman.application.application.Application`` class and call required methods. | ||||
|  | ||||
| The application is designed to run from ``systemd`` services and provides parametrized by repository identifier timer and service file for that. | ||||
|  | ||||
| Subcommand design | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| All subcommands are divided into several groups depending on the role they are doing: | ||||
|  | ||||
| * ``aur`` (``aur-search``) group is for AUR operations. | ||||
| * ``help`` (e.g. ``help``) are system commands. | ||||
| * ``package`` subcommands (e.g. ``package-add``) allow to perform single package actions. | ||||
| * ``patch`` subcommands (e.g. ``patch-list``) are the special case of ``package`` subcommands introduced in order to control patches for packages. | ||||
| * ``repo`` subcommands (e.g. ``repo-check``) usually perform actions on whole repository. | ||||
| * ``service`` subcommands (e.g. ``service-setup``) perform actions which are related to whole service managing: create repository, show configuration. | ||||
| * ``user`` subcommands (``user-add``) are intended for user management. | ||||
| * ``web`` subcommands are related to web service management. | ||||
|  | ||||
| For historical reasons and in order to keep backward compatibility some subcommands have aliases to their shorter forms or even other groups, but the application doesn't guarantee that they will remain unchanged. | ||||
|  | ||||
| Filesystem tree | ||||
| --------------- | ||||
|  | ||||
| The application supports two types of trees, one is for the legacy configuration (when there were no explicit repository name configuration available) and another one is the new-style tree. This document describes only new-style tree in order to avoid deprecated structures. | ||||
|  | ||||
| Having default root as ``/var/lib/ahriman`` (differs from container though), the directory structure is the following: | ||||
|  | ||||
| .. code-block:: | ||||
|  | ||||
|    /var/lib/ahriman/ | ||||
|    ├── ahriman.db | ||||
|    ├── cache | ||||
|    ├── chroot | ||||
|    │   └── aur-clone | ||||
|    ├── packages | ||||
|    │   └── aur-clone | ||||
|    │       └── x86_64 | ||||
|    ├── pacman | ||||
|    │   └── aur-clone | ||||
|    │       └── x86_64 | ||||
|    │           ├── local | ||||
|    │           │   └── ALPM_DB_VERSION | ||||
|    │           └── sync | ||||
|    │               ├── core.db | ||||
|    │               ├── extra.db | ||||
|    │               └── multilib.db | ||||
|    │ | ||||
|    └── repository | ||||
|        └── aur-clone | ||||
|            └── x86_64 | ||||
|                ├── aur-clone.db -> aur-clone.db.tar.gz | ||||
|                ├── aur-clone.db.tar.gz | ||||
|                ├── aur-clone.files -> aur-clone.files.tar.gz | ||||
|                └── aur-clone.files.tar.gz | ||||
|  | ||||
| There are multiple subdirectories, some of them are commons for any repository, but some of them are not. | ||||
|  | ||||
| * ``cache`` is a directory with locally stored PKGBUILD's and VCS packages. It is common for all repositories and architectures. | ||||
| * ``chroot/{repository}`` is a chroot directory for ``devtools``. It is specific for each repository, but shared for different architectures inside (the ``devtools`` handles architectures automatically). | ||||
| * ``packages/{repository}/{architecture}`` is a directory with prebuilt packages. When a package is built, first it will be uploaded to this directory and later will be handled by update process. It is architecture and repository specific. | ||||
| * ``pacman/{repository}/{architecture}`` is the repository and architecture specific caches for pacman's databases. | ||||
| * ``repository/{repository}/{architecture}`` is a repository packages directory. | ||||
|  | ||||
| Normally you should avoid direct interaction with the application tree. For tree migration process refer to the :doc:`migration notes <migration>`. | ||||
|  | ||||
| Database | ||||
| -------- | ||||
|  | ||||
| The service uses SQLite database in order to store some internal info. | ||||
|  | ||||
| Database instance | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| All methods related to the specific part of database (basically operations per table) are split into different traits located inside ``ahriman.core.database.operations`` package. The base trait ``ahriman.core.database.operations.Operations`` also provides generic methods for database access (e.g. row converters and transactional support). | ||||
|  | ||||
| The ``ahriman.core.database.SQLite`` class itself derives from all of these traits and implements methods for initialization, including migrations. | ||||
|  | ||||
| Schema and data migrations | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| The schema migrations are applied according to current ``pragma user_info`` values, located at ``ahriman.core.database.migrations`` package and named as ``m000_migration_name.py`` (the preceding ``m`` is required in order to import migration content for tests). Additional class ``ahriman.core.database.migrations.Migrations`` reads all migrations automatically and applies them in alphabetical order. | ||||
|  | ||||
| These migrations can also contain data migrations. Though the recommended way is to migrate data directly from SQL queries, sometimes it is required to have external data (like packages list) in order to set correct data. To do so, special method ``migrate_data`` is used. | ||||
|  | ||||
| Type conversions | ||||
| ^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| By default, it parses rows into python dictionary. In addition, the following pseudo-types are supported: | ||||
|  | ||||
| * ``dict[str, Any]``, ``list[Any]`` - for storing JSON data structures in database (technically there is no restriction on types for dictionary keys and values, but it is recommended to use only string keys). The type is stored as ``json`` data type and ``json.loads`` and ``json.dumps`` methods are used in order to read and write from/to database respectively. | ||||
|  | ||||
| Basic flows | ||||
| ----------- | ||||
|  | ||||
| By default package build operations are performed with ``PACKAGER`` which is specified in ``makepkg.conf``, however, it is possible to override this variable from command line; in this case service performs lookup in the following way: | ||||
|  | ||||
| * If packager is not set, it reads environment variables (e.g. ``SUDO_USER`` and ``USER``), otherwise it uses value from command line. | ||||
| * It checks users for the specified username and tries to extract packager variable from it. | ||||
| * If packager value has been found, it will be passed as ``PACKAGER`` system variable (additional sudo configuration might be required). | ||||
|  | ||||
| Add new packages or rebuild existing | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Idea is to add package to a build queue from which it will be handled automatically during the next update run. Different variants are supported: | ||||
|  | ||||
| * If supplied argument is file, then application moves the file to the directory with built packages. Same rule applies for directory, but in this case it copies every package-like file from the specified directory. | ||||
| * If supplied argument is directory and there is ``PKGBUILD`` file there, it will be treated as local package. In this case it will queue this package to build and copy source files (``PKGBUILD`` and ``.SRCINFO``) to caches. | ||||
| * If supplied argument looks like URL (i.e. it has scheme - e.g. ``http://`` which is neither ``data`` nor ``file``), it tries to download the package from the specified remote source. | ||||
| * If supplied argument is not file then application tries to lookup for the specified name in AUR and clones it into the directory with manual updates. This scenario can also handle package dependencies which are missing in repositories. | ||||
|  | ||||
| This logic can be overwritten by specifying the ``source`` parameter, which is partially useful if you would like to add package from AUR, but there is local directory cloned from AUR. Also official repositories calls are hidden behind explicit source definition. | ||||
|  | ||||
| Rebuild packages | ||||
| ^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Same as add function for every package in repository. Optional filters by reverse dependency or build status can be supplied. | ||||
|  | ||||
| Remove packages | ||||
| ^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This flow removes package from filesystem, updates repository database and also runs synchronization and reporting methods. | ||||
|  | ||||
| Check outdated packages | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| There are few ways for packages to be marked as out-of-date and hence requiring rebuild. Those are following: | ||||
|  | ||||
| #. User requested update of the package. It can be caused by calling ``package-add`` subcommand (or ``package-update`` with arguments). | ||||
| #. The most common way for packages to be marked as out-of-dated is that the version in AUR (or the official repositories) is newer than in the repository. | ||||
| #. In addition to the above, if package is named as VCS (e.g. has suffix ``-git``) and the last update was more than specified threshold ago, the service will also try to fetch sources and check if the revision is newer than the built one. | ||||
| #. In addition, there is ability to check if the dependencies of the package have been updated (e.g. if linked library has been renamed or the modules directory - e.g. in case of python and ruby packages - has been changed). And if so, the package will be marked as out-of-dated as well. | ||||
|  | ||||
| Update packages | ||||
| ^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This feature is divided into to the following stages: check AUR for updates and run rebuild for required packages. The package update flow is the following: | ||||
|  | ||||
| #. Process every built package first. Those packages are usually added manually. | ||||
| #. Run sync and report methods. | ||||
| #. Generate dependency tree for packages to be built. | ||||
| #. For each level of tree it does: | ||||
|  | ||||
|    #. Download package data from AUR. | ||||
|    #. Bump ``pkgrel`` if there is duplicate version in the local repository (see explanation below). | ||||
|    #. Build every package in clean chroot. | ||||
|    #. Sign packages if required. | ||||
|    #. Add packages to database and sign database if required. | ||||
|    #. Process triggers. | ||||
|  | ||||
| After any step any package data is being removed. | ||||
|  | ||||
| In case if there are configured workers, the build process itself will be delegated to the remote instances. Packages will be partitioned to the chunks according to the amount of configured workers. | ||||
|  | ||||
| Distributed builds | ||||
| ^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This feature consists of two parts: | ||||
|  | ||||
| * Upload built packages to the node. | ||||
| * Delegate packages building to separated nodes. | ||||
|  | ||||
| The upload process is performed via special API endpoint, which is disabled by default, and is performed in several steps: | ||||
|  | ||||
| #. Upload package to temporary file. | ||||
| #. Copy content from temporary file to the built package directory with dot (``.``) prefix. | ||||
| #. Rename copied file, removing preceding dot. | ||||
|  | ||||
| After success upload, the update process must be called as usual in order to copy built packages to the main repository tree. | ||||
|  | ||||
| On the other side, the delegation uses upload feature, but in addition it also calls external services in order to trigger build process. The packages are separated to chunks based on the amount of the configured workers and their dependencies. | ||||
|  | ||||
| pkgrel bump rules | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| The application is able to automatically bump package release (``pkgrel``) during build process if there is duplicate version in repository. The version will be incremented as following: | ||||
|  | ||||
| #. Get version of the remote package. | ||||
| #. Get version of the local package if available. | ||||
| #. If local version is not set, proceed with remote one. | ||||
| #. If local version is set and epoch or package version (``pkgver``) are different, proceed with remote version. | ||||
| #. If local version is set and remote version is newer than local one, proceed with remote. | ||||
| #. Extract ``pkgrel`` value. | ||||
| #. If it has ``major.minor`` notation (e.g. ``1.1``), then increment last part by 1, e.g. ``1.1 -> 1.2``, ``1.0.1 -> 1.0.2``. | ||||
| #. If ``pkgrel`` is a number (e.g. ``1``), then append 1 to the end of the string, e.g. ``1 -> 1.1``. | ||||
|  | ||||
| Implicit dependencies resolution | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| In addition to the depends/optional/make/check depends lists the server also handles implicit dependencies. After success build, the application traverse through the build tree and finds | ||||
|  | ||||
| * Libraries to which the binaries (ELF-files) are linked. To do so, the ``NEEDED`` section of the ELF-files are read. | ||||
| * Directories which contains files of the package, but do not belong to this package. This case covers, for example, python and ruby submodules. | ||||
|  | ||||
| Having the initial dependencies tree, the application is looking for packages which contains those (both files and directories) paths and creates the initial packages list. After that, the packages list is reduced in the following way: | ||||
|  | ||||
| * From any leaf exclude the package itself and possible debug packages. | ||||
| * If the entry (i.e. file or directory) belongs to the package which is in base group, it will be removed. | ||||
| * If there is a package which depends on the another package which provide the same entry, the package will be removed. | ||||
| * After that, if there is a package which *optionally* depends on the another package in the remaining list, the package will be removed. | ||||
| * And finally, if there is any path, which is the child of the entry, and it contains the same package, the package from the smaller entry will be removed. | ||||
|  | ||||
| All those implicit dependencies are stored in the database and extracted on each check. In case if any of the repository packages doesn't contain any entry anymore (e.g. so version has been changed or modules directory has been changed), the dependent package will be marked as out-of-dated. | ||||
|  | ||||
| Core functions reference | ||||
| ------------------------ | ||||
|  | ||||
| Configuration | ||||
| ^^^^^^^^^^^^^ | ||||
|  | ||||
| ``ahriman.core.configuration.Configuration`` class provides some additional methods (e.g. ``getpath`` and ``getlist``) and also combines multiple files into single configuration dictionary using repository identifier overrides. It is the recommended way to deal with settings. | ||||
|  | ||||
| Enumerations | ||||
| ^^^^^^^^^^^^ | ||||
|  | ||||
| All enumerations are derived from ``enum.StrEnum``. Integer enumerations in general are not allowed, because most of operations require conversions from string variable. Derivation from string based enumeration is required to make json conversions implicitly (e.g. during calling ``json.dumps`` methods). | ||||
|  | ||||
| In addition, some enumerations provide ``from_option`` class methods in order to allow some flexibility while reading configuration options. | ||||
|  | ||||
| Utils | ||||
| ^^^^^ | ||||
|  | ||||
| For every external command run (which is actually not recommended if possible) custom wrapper for ``subprocess`` is used. Additional functions ``ahriman.core.auth.helpers`` provide safe calls for ``aiohttp_security`` methods and are required to make this dependency optional. | ||||
|  | ||||
| Context variables | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Package provides implicit global variables which can be accessed from ``ahriman.core`` package as ``context`` variable, wrapped by ``contextvars.ContextVar`` class. The value of the variable is defaulting to private ``_Context`` class which is defined in the same module. The default values - such as ``database`` and ``sign`` - are being set on the service initialization. | ||||
|  | ||||
| The ``_Context`` class itself mimics default collection interface (as is ``Mapping``) and can be modified by ``_Context.set`` method. The stored variables can be achieved by ``_Context.get`` method, which is unlike default ``Mapping`` interface also performs type and presence checks. | ||||
|  | ||||
| In order to provide statically typed interface, the ``ahriman.models.context_key.ContextKey`` class is used for both ``_Content.get`` and ``_Content.set`` methods; the context instance itself, however, does not store information about types. | ||||
|  | ||||
| Submodules | ||||
| ^^^^^^^^^^ | ||||
|  | ||||
| Some packages provide different behaviour depending on configuration settings. In these cases inheritance is used and recommended way to deal with them is to call class method ``load`` from base classes. | ||||
|  | ||||
| Authorization | ||||
| ^^^^^^^^^^^^^ | ||||
|  | ||||
| The package provides several authorization methods: disabled, based on configuration and OAuth2.  | ||||
|  | ||||
| Disabled (default) authorization provider just allows everything for everyone and does not have any specific configuration (it uses some default configuration parameters though). It also provides generic interface for derived classes. | ||||
|  | ||||
| Mapping (aka configuration) provider uses hashed passwords with optional salt from the database in order to authenticate users. This provider also enables user permission checking (read/write) (authorization). Thus, it defines the following methods: | ||||
|  | ||||
| * ``check_credentials`` - user password validation (authentication). | ||||
| * ``verify_access`` - user permission validation (authorization). | ||||
|  | ||||
| Passwords must be stored in database as ``hash(password + salt)``, where ``password`` is user defined password (taken from user input), ``salt`` is random string (any length) defined globally in configuration and ``hash`` is secure hash function. Thus, the following configuration | ||||
|  | ||||
| .. code-block:: | ||||
|  | ||||
|    "username","password","access" | ||||
|    "username","$6$rounds=656000$mWBiecMPrHAL1VgX$oU4Y5HH8HzlvMaxwkNEJjK13ozElyU1wAHBoO/WW5dAaE4YEfnB0X3FxbynKMl4FBdC3Ovap0jINz4LPkNADg0","read" | ||||
|  | ||||
| means that there is user ``username`` with ``read`` access and password ``password`` hashed by ``sha512`` with salt ``salt``. | ||||
|  | ||||
| OAuth provider uses library definitions (``aioauth-client``) in order *authenticate* users. It still requires user permission to be set in database, thus it inherits mapping provider without any changes. Whereas we could override ``check_credentials`` (authentication method) by something custom, OAuth flow is a bit more complex than just forward request, thus we have to implement the flow in login form. | ||||
|  | ||||
| OAuth's implementation also allows authenticating users via username + password (in the same way as mapping does) though it is not recommended for end-users and password must be left blank. In particular this feature can be used by service reporting (aka robots). | ||||
|  | ||||
| In addition, web service checks the source socket used. In case if it belongs to ``socket.AF_UNIX`` family, it will skip any further checks considering the request to be performed in safe environment (e.g. on the same physical machine). This feature, in particular is being used by the reporter instances in case if socket address is set in configuration. | ||||
|  | ||||
| In order to configure users there are special subcommands. | ||||
|  | ||||
| Triggers | ||||
| ^^^^^^^^ | ||||
|  | ||||
| Triggers are extensions which can be used in order to perform any actions on application start, after the update process and, finally, before the application exit. | ||||
|  | ||||
| The main idea is to load classes by their full path (e.g. ``ahriman.core.upload.UploadTrigger``) by using ``importlib``: get the last part of the import and treat it as class name, join remain part by ``.`` and interpret as module path, import module and extract attribute from it. | ||||
|  | ||||
| The loaded triggers will be called with ``ahriman.models.result.Result`` and ``list[Packages]`` arguments, which describes the process result and current repository packages respectively. Any exception raised will be suppressed and will generate an exception message in logs. | ||||
|  | ||||
| In addition triggers can implement ``on_start`` and ``on_stop`` actions which will be called on the application start and right before the application exit respectively. The ``on_start`` action is usually being called from handlers directly in order to make sure that no trigger will be run when it is not required (e.g. on user management). As soon as ``on_start`` action is called, the additional flag will be set; ``ahriman.core.triggers.TriggerLoader`` class implements ``__del__`` method in which, if the flag is set, the ``on_stop`` actions will be called. | ||||
|  | ||||
| For more details how to deal with the triggers, refer to :doc:`documentation <triggers>` and modules descriptions. | ||||
|  | ||||
| Remote synchronization | ||||
| ^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| There are several supported synchronization providers, currently they are ``rsync``, ``s3``, ``github``. | ||||
|  | ||||
| ``rsync`` provider does not have any specific logic except for running external rsync application with configured arguments. The service does not handle SSH configuration, thus it has to be configured before running application manually. | ||||
|  | ||||
| ``s3`` provider uses ``boto3`` package and implements sync feature. The files are stored in architecture specific directory (e.g. if bucket is ``repository``, packages will be stored in ``repository/aur-clone/x86_64`` for the ``aur-clone`` repository and ``x86_64`` architecture), bucket must be created before any action and API key must have permissions to write to the bucket. No external configuration required. In order to upload only changed files the service compares calculated hashes with the Amazon ETags, the implementation used is described `here <https://teppen.io/2018/10/23/aws_s3_verify_etags/>`__. | ||||
|  | ||||
| ``github`` provider authenticates through basic auth, API key with repository write permissions is required. There will be created a release with the name of the architecture in case if it does not exist; files will be uploaded to the release assets. It also stores array of files and their MD5 checksums in release body in order to upload only changed ones. According to the GitHub API in case if there is already uploaded asset with the same name (e.g. database files), asset will be removed first. | ||||
|  | ||||
| Additional features | ||||
| ^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Some features require optional dependencies to be installed: | ||||
|  | ||||
| * Version control executables (e.g. ``git``, ``svn``) for VCS packages. | ||||
| * ``gnupg`` application for package and repository sign feature. | ||||
| * ``rsync`` application for rsync based repository sync. | ||||
| * ``boto3`` python package for ``S3`` sync. | ||||
| * ``Jinja2`` python package for HTML report generation (it is also used by web application). | ||||
|  | ||||
| Web application | ||||
| --------------- | ||||
|  | ||||
| Web application requires the following python packages to be installed: | ||||
|  | ||||
| * Core part requires ``aiohttp`` (application itself), ``aiohttp_jinja2`` and ``Jinja2`` (HTML generation from templates). | ||||
| * Additional web features also require ``aiohttp-apispec`` (autogenerated documentation), ``aiohttp_cors`` (CORS support, required by documentation). | ||||
| * In addition, authorization feature requires ``aiohttp_security``, ``aiohttp_session`` and ``cryptography``. | ||||
| * In addition to base authorization dependencies, OAuth2 also requires ``aioauth-client`` library. | ||||
| * In addition if you would like to disable authorization for local access (recommended way in order to run the application itself with reporting support), the ``requests-unixsocket2`` library is required. | ||||
|  | ||||
| Middlewares | ||||
| ^^^^^^^^^^^ | ||||
|  | ||||
| Service provides some custom middlewares, e.g. logging every exception (except for user ones) and user authorization. | ||||
|  | ||||
| HEAD and OPTIONS requests | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| ``HEAD`` request is automatically generated by ``ahriman.web.views.base.BaseView`` class. It just calls ``GET`` method, removes any data from body and returns the result. In case if no ``GET`` method available for this view, the ``aiohttp.web.HTTPMethodNotAllowed`` exception will be raised. | ||||
|  | ||||
| On the other side, ``OPTIONS`` method is implemented in the ``ahriman.web.middlewares.exception_handler.exception_handler`` middleware. In case if ``aiohttp.web.HTTPMethodNotAllowed`` exception is raised and original method was ``OPTIONS``, the middleware handles it, converts to valid request and returns response to user. | ||||
|  | ||||
| Web views | ||||
| ^^^^^^^^^ | ||||
|  | ||||
| All web views are defined in separated package and derived from ``ahriman.web.views.base.Base`` class which provides typed interfaces for web application.  | ||||
|  | ||||
| REST API supports only JSON data. | ||||
|  | ||||
| Different APIs are separated into different packages: | ||||
|  | ||||
| * ``ahriman.web.views.api`` not a real API, but some views which provide OpenAPI support. | ||||
| * ``ahriman.web.views.*.service`` provides views for application controls. | ||||
| * ``ahriman.web.views.*.status`` package provides REST API for application reporting. | ||||
| * ``ahriman.web.views.*.user`` package provides login and logout methods which can be called without authorization. | ||||
|  | ||||
| The views are also divided by supporting API versions (e.g. ``v1``, ``v2``). | ||||
|  | ||||
| Templating | ||||
| ^^^^^^^^^^ | ||||
|  | ||||
| Package provides base jinja templates which can be overridden by settings. Vanilla templates actively use bootstrap library. | ||||
|  | ||||
| Requests and scopes | ||||
| ^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Service provides optional authorization which can be turned on in settings. In order to control user access there are two levels of authorization - read-only (only GET-like requests) and write (anything), settings for which are provided by each web view directly. | ||||
|  | ||||
| If this feature is configured any request will be prohibited without authentication. In addition, configuration flag ``auth.allow_read_only`` can be used in order to allow read-only operations - reading index page and packages - without authorization. | ||||
|  | ||||
| For authenticated users it uses encrypted session cookies to store tokens; encryption key is generated each time at the start of the application. It also stores expiration time of the session inside. | ||||
|  | ||||
| External calls | ||||
| ^^^^^^^^^^^^^^ | ||||
|  | ||||
| Web application provides external calls to control main service. It spawns child process with specific arguments and waits for its termination. This feature must be used either with authorization or in safe (i.e. when status page is not available world-wide) environment. | ||||
|  | ||||
| For most actions it also extracts user from authentication (if provided) and passes it to the underlying process. | ||||
| @ -1,10 +0,0 @@ | ||||
| Commands reference | ||||
| ================== | ||||
|  | ||||
| ahriman | ||||
| ------- | ||||
|  | ||||
| .. argparse:: | ||||
|    :module: ahriman.application.ahriman | ||||
|    :func: _parser | ||||
|    :prog: ahriman | ||||
							
								
								
									
										92
									
								
								docs/conf.py
									
									
									
									
									
								
							
							
						
						
									
										92
									
								
								docs/conf.py
									
									
									
									
									
								
							| @ -1,92 +0,0 @@ | ||||
| # Configuration file for the Sphinx documentation builder. | ||||
| # | ||||
| # This file only contains a selection of the most common options. For a full | ||||
| # list see the documentation: | ||||
| # https://www.sphinx-doc.org/en/master/usage/configuration.html | ||||
|  | ||||
| # -- Path setup -------------------------------------------------------------- | ||||
|  | ||||
| # If extensions (or modules to document with autodoc) are in another directory, | ||||
| # add these directories to sys.path here. If the directory is relative to the | ||||
| # documentation root, use os.path.abspath to make it absolute, like shown here. | ||||
| # | ||||
| import os | ||||
| import sys | ||||
|  | ||||
| from pathlib import Path | ||||
|  | ||||
| from ahriman import __version__ | ||||
|  | ||||
|  | ||||
| basedir = Path(__file__).resolve().parent.parent / "src" | ||||
| sys.path.insert(0, str(basedir)) | ||||
|  | ||||
| on_rtd = os.environ.get("READTHEDOCS", None) == "True" | ||||
|  | ||||
|  | ||||
| # -- Project information ----------------------------------------------------- | ||||
|  | ||||
| project = "ahriman" | ||||
| copyright = "2021-2023, ahriman team" | ||||
| author = "ahriman team" | ||||
|  | ||||
| # The full version, including alpha/beta/rc tags | ||||
| release = __version__ | ||||
|  | ||||
|  | ||||
| # -- General configuration --------------------------------------------------- | ||||
|  | ||||
| # Add any Sphinx extension module names here, as strings. They can be | ||||
| # extensions coming with Sphinx (named "sphinx.ext.*") or your custom | ||||
| # ones. | ||||
| extensions = [ | ||||
|     "sphinx.ext.autodoc", | ||||
|     "sphinx.ext.napoleon", | ||||
|     "sphinx_rtd_theme", | ||||
|     "sphinxarg.ext", | ||||
| ] | ||||
|  | ||||
| # Add any paths that contain templates here, relative to this directory. | ||||
| templates_path = ["_templates"] | ||||
|  | ||||
| # The language for content autogenerated by Sphinx. Refer to documentation | ||||
| # for a list of supported languages. | ||||
| # | ||||
| # This is also used if you do content translation via gettext catalogs. | ||||
| # Usually you set "language" from the command line for these cases. | ||||
| language = "en" | ||||
|  | ||||
| # List of patterns, relative to source directory, that match files and | ||||
| # directories to ignore when looking for source files. | ||||
| # This pattern also affects html_static_path and html_extra_path. | ||||
| exclude_patterns = [] | ||||
|  | ||||
|  | ||||
| # -- Options for HTML output ------------------------------------------------- | ||||
|  | ||||
| # The theme to use for HTML and HTML Help pages.  See the documentation for | ||||
| # a list of builtin themes. | ||||
| # | ||||
| html_theme = "sphinx_rtd_theme" | ||||
|  | ||||
| # Add any paths that contain custom static files (such as style sheets) here, | ||||
| # relative to this directory. They are copied after the builtin static files, | ||||
| # so a file named "default.css" will overwrite the builtin "default.css". | ||||
| html_static_path = [] | ||||
|  | ||||
| add_module_names = False | ||||
|  | ||||
| modindex_common_prefix = ["ahriman.application.", "ahriman.core.", "ahriman.models.", "ahriman.web."] | ||||
|  | ||||
|  | ||||
| # -- Extension configuration ------------------------------------------------- | ||||
|  | ||||
| autoclass_content = "both" | ||||
|  | ||||
| autodoc_member_order = "groupwise" | ||||
|  | ||||
| autodoc_mock_imports = ["cryptography", "pyalpm"] | ||||
|  | ||||
| autodoc_default_options = { | ||||
|     "no-undoc-members": True, | ||||
| } | ||||
							
								
								
									
										188
									
								
								docs/configuration.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										188
									
								
								docs/configuration.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,188 @@ | ||||
| # ahriman configuration | ||||
|  | ||||
| Some groups can be specified for each architecture separately. E.g. if there are `build` and `build:x86_64` groups it will use the option from `build:x86_64` for the `x86_64` architecture and `build` for any other (architecture specific group has higher priority). In case if both groups are presented, architecture specific options will be merged into global ones overriding them. | ||||
|  | ||||
| There are two variable types which have been added to default ones, they are paths and lists. List values will be read in the same way as shell does: | ||||
|  | ||||
| * By default, it splits value by spaces excluding empty elements.  | ||||
| * In case if quotation mark (`"` or `'`) will be found, any spaces inside will be ignored. | ||||
| * In order to use quotation mark inside value it is required to put it to another quotation mark, e.g. `wor"'"d "with quote"` will be parsed as `["wor'd", "with quote"]` and vice versa. | ||||
| * Unclosed quotation mark is not allowed and will rise an exception. | ||||
|  | ||||
| Path values, except for casting to `pathlib.Path` type, will be also expanded to absolute paths relative to the configuration path. E.g. if path is set to `ahriman.ini.d/logging.ini` and root configuration path is `/etc/ahriman.ini`, the value will be expanded to `/etc/ahriman.ini.d/logging.ini`. In order to disable path expand, use the full path, e.g. `/etc/ahriman.ini.d/logging.ini`.  | ||||
|  | ||||
| ## `settings` group | ||||
|  | ||||
| Base configuration settings. | ||||
|  | ||||
| * `include` - path to directory with configuration files overrides, string, required. | ||||
| * `database` - path to SQLite database, string, required. | ||||
| * `logging` - path to logging configuration, string, required. Check `logging.ini` for reference. | ||||
|  | ||||
| ## `alpm` group | ||||
|  | ||||
| libalpm and AUR related configuration. | ||||
|  | ||||
| * `aur_url` - base url for AUR, string, required. | ||||
| * `database` - path to pacman local database cache, string, required. | ||||
| * `repositories` - list of pacman repositories, space separated list of strings, required. | ||||
| * `root` - root for alpm library, string, required. | ||||
|  | ||||
| ## `auth` group | ||||
|  | ||||
| Base authorization settings. `OAuth` provider requires `aioauth-client` library to be installed. | ||||
|  | ||||
| * `target` - specifies authorization provider, string, optional, default `disabled`. Allowed values are `disabled`, `configuration`, `oauth`. | ||||
| * `client_id` - OAuth2 application client ID, string, required in case if `oauth` is used. | ||||
| * `client_secret` - OAuth2 application client secret key, string, required in case if `oauth` is used. | ||||
| * `max_age` - parameter which controls both cookie expiration and token expiration inside the service, integer, optional, default is 7 days. | ||||
| * `oauth_provider` - OAuth2 provider class name as is in `aioauth-client` (e.g. `GoogleClient`, `GithubClient` etc), string, required in case if `oauth` is used. | ||||
| * `oauth_scopes` - scopes list for OAuth2 provider, which will allow retrieving user email (which is used for checking user permissions), e.g. `https://www.googleapis.com/auth/userinfo.email` for `GoogleClient` or `user:email` for `GithubClient`, space separated list of strings, required in case if `oauth` is used. | ||||
| * `safe_build_status` - allow requesting status page without authorization, boolean, required. | ||||
| * `salt` - password hash salt, string, required in case if authorization enabled (automatically generated by `create-user` subcommand). | ||||
|  | ||||
| Authorized users are stored inside internal database, if any of external provides are used the password field for non-service users must be empty.  | ||||
|  | ||||
| ## `build:*` groups | ||||
|  | ||||
| Build related configuration. Group name can refer to architecture, e.g. `build:x86_64` can be used for x86_64 architecture specific settings. | ||||
|  | ||||
| * `archbuild_flags` - additional flags passed to `archbuild` command, space separated list of strings, optional. | ||||
| * `build_command` - default build command, string, required. | ||||
| * `ignore_packages` - list packages to ignore during a regular update (manual update will still work), space separated list of strings, optional. | ||||
| * `makepkg_flags` - additional flags passed to `makepkg` command, space separated list of strings, optional. | ||||
| * `makechrootpkg_flags` - additional flags passed to `makechrootpkg` command, space separated list of strings, optional. | ||||
|  | ||||
| ## `repository` group | ||||
|  | ||||
| Base repository settings. | ||||
|  | ||||
| * `name` - repository name, string, required. | ||||
| * `root` - root path for application, string, required. | ||||
|  | ||||
| ## `sign:*` groups | ||||
|  | ||||
| Settings for signing packages or repository. Group name can refer to architecture, e.g. `sign:x86_64` can be used for x86_64 architecture specific settings. | ||||
|  | ||||
| * `target` - configuration flag to enable signing, space separated list of strings, required. Allowed values are `package` (sign each package separately), `repository` (sign repository database file). | ||||
| * `key` - default PGP key, string, required. This key will also be used for database signing if enabled. | ||||
| * `key_*` settings - PGP key which will be used for specific packages, string, optional. For example, if there is `key_yay` option the specified key will be used for yay package and default key for others. | ||||
|  | ||||
| ## `report` group | ||||
|  | ||||
| Report generation settings. | ||||
|  | ||||
| * `target` - list of reports to be generated, space separated list of strings, required. It must point to valid section (or to section with architecture), e.g. `somerandomname` must point to existing section, `email` must point to one of `email` of `email:x86_64` (the one with architecture has higher priority).  | ||||
|  | ||||
| Type will be read from several ways: | ||||
|  | ||||
| * In case if `type` option set inside the section, it will be used. | ||||
| * Otherwise, it will look for type from section name removing architecture name. | ||||
| * And finally, it will use section name as type. | ||||
|  | ||||
| ### `console` type | ||||
|  | ||||
| Section name must be either `console` (plus optional architecture name, e.g. `console:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `use_utf` - use utf8 symbols in output if set and ascii otherwise, boolean, optional, default `yes`. | ||||
|  | ||||
| ### `email` type | ||||
|  | ||||
| Section name must be either `email` (plus optional architecture name, e.g. `email:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `type` - type of the report, string, optional, must be set to `email` if exists. | ||||
| * `full_template_path` - path to Jinja2 template for full package description index, string, optional. | ||||
| * `homepage` - link to homepage, string, optional. | ||||
| * `host` - SMTP host for sending emails, string, required. | ||||
| * `link_path` - prefix for HTML links, string, required. | ||||
| * `no_empty_report` - skip report generation for empty packages list, boolean, optional, default `yes`. | ||||
| * `password` - SMTP password to authenticate, string, optional. | ||||
| * `port` - SMTP port for sending emails, int, required. | ||||
| * `receivers` - SMTP receiver addresses, space separated list of strings, required. | ||||
| * `sender` - SMTP sender address, string, required. | ||||
| * `ssl` - SSL mode for SMTP connection, one of `ssl`, `starttls`, `disabled`, optional, default `disabled`. | ||||
| * `template_path` - path to Jinja2 template, string, required. | ||||
| * `user` - SMTP user to authenticate, string, optional. | ||||
|  | ||||
| ### `html` type | ||||
|  | ||||
| Section name must be either `html` (plus optional architecture name, e.g. `html:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `type` - type of the report, string, optional, must be set to `html` if exists. | ||||
| * `path` - path to html report file, string, required. | ||||
| * `homepage` - link to homepage, string, optional. | ||||
| * `link_path` - prefix for HTML links, string, required. | ||||
| * `template_path` - path to Jinja2 template, string, required. | ||||
|  | ||||
| ### `telegram` type | ||||
|  | ||||
| Section name must be either `telegram` (plus optional architecture name, e.g. `telegram:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `type` - type of the report, string, optional, must be set to `telegram` if exists. | ||||
| * `api_key` - telegram bot API key, string, required. Please refer FAQ about how to create chat and bot | ||||
| * `chat_id` - telegram chat id, either string with `@` or integer value, required. | ||||
| * `homepage` - link to homepage, string, optional. | ||||
| * `link_path` - prefix for HTML links, string, required. | ||||
| * `template_path` - path to Jinja2 template, string, required. | ||||
| * `template_type` - `parse_mode` to be passed to telegram API, one of `MarkdownV2`, `HTML`, `Markdown`, string, optional, default `HTML`. | ||||
|  | ||||
| ## `upload` group | ||||
|  | ||||
| Remote synchronization settings. | ||||
|  | ||||
| * `target` - list of synchronizations to be used, space separated list of strings, required. It must point to valid section (or to section with architecture), e.g. `somerandomname` must point to existing section, `github` must point to one of `github` of `github:x86_64` (with architecture it has higher priority). | ||||
|  | ||||
| Type will be read from several ways: | ||||
|  | ||||
| * In case if `type` option set inside the section, it will be used. | ||||
| * Otherwise, it will look for type from section name removing architecture name. | ||||
| * And finally, it will use section name as type. | ||||
|  | ||||
| ### `github` type | ||||
|  | ||||
| This feature requires Github key creation (see below). Section name must be either `github` (plus optional architecture name, e.g. `github:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `type` - type of the upload, string, optional, must be set to `github` if exists. | ||||
| * `owner` - Github repository owner, string, required. | ||||
| * `password` - created Github API key. In order to create it do the following: | ||||
|   1. Go to [settings page](https://github.com/settings/profile). | ||||
|   2. Switch to [developers settings](https://github.com/settings/apps). | ||||
|   3. Switch to [personal access tokens](https://github.com/settings/tokens). | ||||
|   4. Generate new token. Required scope is `public_repo` (or `repo` for private repository support). | ||||
| * `repository` - Github repository name, string, required. Repository must be created before any action and must have active branch (e.g. with readme). | ||||
| * `username` - Github authorization user, string, required. Basically the same as `owner`. | ||||
|  | ||||
| ### `rsync` type | ||||
|  | ||||
| Requires `rsync` package to be installed. Do not forget to configure ssh for user `ahriman`. Section name must be either `rsync` (plus optional architecture name, e.g. `rsync:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `type` - type of the upload, string, optional, must be set to `rsync` if exists. | ||||
| * `command` - rsync command to run, space separated list of string, required. | ||||
| * `remote` - remote server to rsync (e.g. `1.2.3.4:path/to/sync`), string, required. | ||||
|  | ||||
| ### `s3` type | ||||
|  | ||||
| Requires `boto3` library to be installed. Section name must be either `s3` (plus optional architecture name, e.g. `s3:x86_64`) or random name with `type` set. | ||||
|  | ||||
| * `type` - type of the upload, string, optional, must be set to `github` if exists. | ||||
| * `access_key` - AWS access key ID, string, required. | ||||
| * `bucket` - bucket name (e.g. `bucket`), string, required. | ||||
| * `chunk_size` - chunk size for calculating entity tags, int, optional, default 8 * 1024 * 1024. | ||||
| * `region` - bucket region (e.g. `eu-central-1`), string, required. | ||||
| * `secret_key` - AWS secret access key, string, required. | ||||
|  | ||||
| ## `web:*` groups | ||||
|  | ||||
| Web server settings. If any of `host`/`port` is not set, web integration will be disabled. Group name can refer to architecture, e.g. `web:x86_64` can be used for x86_64 architecture specific settings. This feature requires `aiohttp` libraries to be installed. | ||||
|  | ||||
| * `address` - optional address in form `proto://host:port` (`port` can be omitted in case of default `proto` ports), will be used instead of `http://{host}:{port}` in case if set, string, optional. This option is required in case if `OAuth` provider is used. | ||||
| * `debug` - enable debug toolbar, boolean, optional, default `no`. | ||||
| * `debug_check_host` - check hosts to access debug toolbar, boolean, optional, default `no`. | ||||
| * `debug_allowed_hosts` - allowed hosts to get access to debug toolbar, space separated list of string, optional. | ||||
| * `host` - host to bind, string, optional. | ||||
| * `index_url` - full url of the repository index page, string, optional. | ||||
| * `password` - password to authorize in web service in order to update service status, string, required in case if authorization enabled.   | ||||
| * `port` - port to bind, int, optional. | ||||
| * `static_path` - path to directory with static files, string, required. | ||||
| * `templates` - path to templates directory, string, required. | ||||
| * `username` - username to authorize in web service in order to update service status, string, required in case if authorization enabled.   | ||||
| @ -1,369 +0,0 @@ | ||||
| Configuration | ||||
| ============= | ||||
|  | ||||
| Some groups can be specified for each architecture and/or repository separately. E.g. if there are ``build`` and ``build:x86_64`` groups it will use an option from ``build:x86_64`` for the ``x86_64`` architecture and ``build`` for any other (architecture specific group has higher priority). In case if both groups are presented, architecture specific options will be merged into global ones overriding them. The order which will be used for option resolution is the following: | ||||
|  | ||||
| #. Repository and architecture specific, e.g. ``build:aur-clone:x86_64``. | ||||
| #. Repository specific, e.g. ``build:aur-clone``. | ||||
| #. Architecture specific, e.g. ``build:x86_64``. | ||||
| #. Default section, e.g. ``build``. | ||||
|  | ||||
| There are two variable types which have been added to default ones, they are paths and lists. List values will be read in the same way as shell does: | ||||
|  | ||||
| * By default, it splits value by spaces excluding empty elements.  | ||||
| * In case if quotation mark (``"`` or ``'``) will be found, any spaces inside will be ignored. | ||||
| * In order to use quotation mark inside value it is required to put it to another quotation mark, e.g. ``wor"'"d "with quote"`` will be parsed as ``["wor'd", "with quote"]`` and vice versa. | ||||
| * Unclosed quotation mark is not allowed and will rise an exception. | ||||
|  | ||||
| Path values, except for casting to ``pathlib.Path`` type, will be also expanded to absolute paths relative to the configuration path. E.g. if path is set to ``ahriman.ini.d/logging.ini`` and root configuration path is ``/etc/ahriman.ini``, the value will be expanded to ``/etc/ahriman.ini.d/logging.ini``. In order to disable path expand, use the full path, e.g. ``/etc/ahriman.ini.d/logging.ini``. | ||||
|  | ||||
| Configuration allows string interpolation from environment variables, e.g.: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [section] | ||||
|    key = $SECRET | ||||
|  | ||||
| will try to read value from ``SECRET`` environment variable. In case if the required environment variable wasn't found, it will keep original value (i.e. ``$SECRET`` in the example). Dollar sign can be set as ``$$``. | ||||
|  | ||||
| There is also additional subcommand which will allow to validate configuration and print found errors. In order to do so, run ``service-config-validate`` subcommand, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    ahriman service-config-validate | ||||
|  | ||||
| It will check current settings on common errors and compare configuration with known schema. | ||||
|  | ||||
| ``settings`` group | ||||
| ------------------ | ||||
|  | ||||
| Base configuration settings. | ||||
|  | ||||
| * ``apply_migrations`` - perform database migrations on the application start, boolean, optional, default ``yes``. Useful if you are using git version. Note, however, that this option must be changed only if you know what to do and going to handle migrations manually. | ||||
| * ``database`` - path to the application SQLite database, string, required. | ||||
| * ``include`` - path to directory with configuration files overrides, string, optional. Files will be read in alphabetical order. | ||||
| * ``logging`` - path to logging configuration, string, required. Check ``logging.ini`` for reference. | ||||
|  | ||||
| ``alpm:*`` groups | ||||
| ----------------- | ||||
|  | ||||
| libalpm and AUR related configuration. Group name can refer to architecture, e.g. ``alpm:x86_64`` can be used for x86_64 architecture specific settings. | ||||
|  | ||||
| * ``database`` - path to pacman system database cache, string, required. | ||||
| * ``mirror`` - package database mirror used by pacman for synchronization, string, required. This option supports standard pacman substitutions with ``$arch`` and ``$repo``. Note that the mentioned mirror should contain all repositories which are set by ``alpm.repositories`` option. | ||||
| * ``repositories`` - list of pacman repositories, used for package search, space separated list of strings, required. | ||||
| * ``root`` - root for alpm library, string, required. In the most cases it must point to the system root. | ||||
| * ``sync_files_database`` - download files database from mirror, boolean, required. | ||||
| * ``use_ahriman_cache`` - use local pacman package cache instead of system one, boolean, required. With this option enabled you might want to refresh database periodically (available as additional flag for some subcommands). If set to ``no``, databases must be synchronized manually. | ||||
|  | ||||
| ``auth`` group | ||||
| -------------- | ||||
|  | ||||
| Base authorization settings. ``OAuth`` provider requires ``aioauth-client`` library to be installed. | ||||
|  | ||||
| * ``target`` - specifies authorization provider, string, optional, default ``disabled``. Allowed values are ``disabled``, ``configuration``, ``oauth``, ``pam``. | ||||
| * ``allow_read_only`` - allow requesting status APIs without authorization, boolean, required. | ||||
| * ``client_id`` - OAuth2 application client ID, string, required in case if ``oauth`` is used. | ||||
| * ``client_secret`` - OAuth2 application client secret key, string, required in case if ``oauth`` is used. | ||||
| * ``cookie_secret_key`` - secret key which will be used for cookies encryption, string, optional. It must be 32 bytes URL-safe base64-encoded and can be generated as following ``base64.urlsafe_b64encode(os.urandom(32)).decode("utf8")``. If not set, it will be generated automatically; note, however, that in this case, all sessions will be automatically invalidated during the service restart. | ||||
| * ``full_access_group`` - name of the secondary group (e.g. ``wheel``) to be used as admin group in the service, string, required in case if ``pam`` is used. | ||||
| * ``max_age`` - parameter which controls both cookie expiration and token expiration inside the service in seconds, integer, optional, default is 7 days. | ||||
| * ``oauth_icon`` - OAuth2 login button icon, string, optional, default is ``google``. Must be valid `Bootstrap icon <https://icons.getbootstrap.com/>`__ name. | ||||
| * ``oauth_provider`` - OAuth2 provider class name as is in ``aioauth-client`` (e.g. ``GoogleClient``, ``GithubClient`` etc), string, required in case if ``oauth`` is used. | ||||
| * ``oauth_scopes`` - scopes list for OAuth2 provider, which will allow retrieving user email (which is used for checking user permissions), e.g. ``https://www.googleapis.com/auth/userinfo.email`` for ``GoogleClient`` or ``user:email`` for ``GithubClient``, space separated list of strings, required in case if ``oauth`` is used. | ||||
| * ``permit_root_login`` - allow login as root user, boolean, optional, default ``no``. | ||||
| * ``salt`` - additional password hash salt, string, optional. | ||||
|  | ||||
| Authorized users are stored inside internal database, if any of external providers (e.g. ``oauth``) are used, the password field for non-service users must be empty. | ||||
|  | ||||
| ``build:*`` groups | ||||
| ------------------ | ||||
|  | ||||
| Build related configuration. Group name can refer to architecture, e.g. ``build:x86_64`` can be used for x86_64 architecture specific settings. | ||||
|  | ||||
| * ``allowed_scan_paths`` - paths to be used for implicit dependencies scan, scape separated list of paths, optional. | ||||
| * ``archbuild_flags`` - additional flags passed to ``archbuild`` command, space separated list of strings, optional. | ||||
| * ``blacklisted_scan_paths`` - paths to be excluded for implicit dependencies scan, scape separated list of paths, optional. Normally all elements of this option must be child paths of any of ``allowed_scan_paths`` element. | ||||
| * ``build_command`` - default build command, string, required. | ||||
| * ``ignore_packages`` - list packages to ignore during a regular update (manual update will still work), space separated list of strings, optional. | ||||
| * ``include_debug_packages`` - distribute debug packages, boolean, optional, default ``yes``. | ||||
| * ``makepkg_flags`` - additional flags passed to ``makepkg`` command, space separated list of strings, optional. | ||||
| * ``makechrootpkg_flags`` - additional flags passed to ``makechrootpkg`` command, space separated list of strings, optional. | ||||
| * ``triggers`` - list of ``ahriman.core.triggers.Trigger`` class implementation (e.g. ``ahriman.core.report.ReportTrigger ahriman.core.upload.UploadTrigger``) which will be loaded and run at the end of processing, space separated list of strings, optional. You can also specify triggers by their paths, e.g. ``/usr/lib/python3.10/site-packages/ahriman/core/report/report.py.ReportTrigger``. Triggers are run in the order of definition. | ||||
| * ``triggers_known`` - optional list of ``ahriman.core.triggers.Trigger`` class implementations which are not run automatically and used only for trigger discovery and configuration validation. | ||||
| * ``vcs_allowed_age`` - maximal age in seconds of the VCS packages before their version will be updated with its remote source, integer, optional, default is 7 days. | ||||
| * ``workers`` - list of worker nodes addresses used for build process, space separated list of strings, optional. Each worker address must be valid and reachable URL, e.g. ``https://10.0.0.1:8080``. If none set, the build process will be run on the current node. There is also special trigger which loads this value based on the list of the discovered nodes. | ||||
|  | ||||
| ``repository`` group | ||||
| -------------------- | ||||
|  | ||||
| Base repository settings. | ||||
|  | ||||
| * ``root`` - root path for application, string, required. | ||||
|  | ||||
| ``sign:*`` groups | ||||
| ----------------- | ||||
|  | ||||
| Settings for signing packages or repository. Group name can refer to architecture, e.g. ``sign:x86_64`` can be used for x86_64 architecture specific settings. | ||||
|  | ||||
| * ``target`` - configuration flag to enable signing, space separated list of strings, required. Allowed values are ``package`` (sign each package separately), ``repository`` (sign repository database file). | ||||
| * ``key`` - default PGP key, string, required. This key will also be used for database signing if enabled. | ||||
|  | ||||
| ``status`` group | ||||
| ---------------- | ||||
|  | ||||
| Reporting to web service related settings. In most cases there is fallback to web section settings. | ||||
|  | ||||
| * ``enabled`` - enable reporting to web service, boolean, optional, default ``yes`` for backward compatibility. | ||||
| * ``address`` - remote web service address with protocol, string, optional. In case of websocket, the ``http+unix`` scheme and URL encoded address (e.g. ``%2Fvar%2Flib%2Fahriman`` for ``/var/lib/ahriman``) must be used, e.g. ``http+unix://%2Fvar%2Flib%2Fahriman%2Fsocket``. In case if none set, it will be guessed from ``web`` section. | ||||
| * ``password`` - password to authorize in web service in order to update service status, string, required in case if authorization enabled. | ||||
| * ``suppress_http_log_errors`` - suppress HTTP log errors, boolean, optional, default ``no``. If set to ``yes``, any HTTP log errors (e.g. if web server is not available, but HTTP logging is enabled) will be suppressed. | ||||
| * ``timeout`` - HTTP request timeout in seconds, integer, optional, default is ``30``. | ||||
| * ``username`` - username to authorize in web service in order to update service status, string, required in case if authorization enabled. | ||||
|  | ||||
| ``web`` group | ||||
| ------------- | ||||
|  | ||||
| Web server settings. This feature requires ``aiohttp`` libraries to be installed. | ||||
|  | ||||
| * ``address`` - optional address in form ``proto://host:port`` (``port`` can be omitted in case of default ``proto`` ports), will be used instead of ``http://{host}:{port}`` in case if set, string, optional. This option is required in case if ``OAuth`` provider is used. | ||||
| * ``enable_archive_upload`` - allow to upload packages via HTTP (i.e. call of ``/api/v1/service/upload`` uri), boolean, optional, default ``no``. | ||||
| * ``host`` - host to bind, string, optional. | ||||
| * ``index_url`` - full URL of the repository index page, string, optional. | ||||
| * ``max_body_size`` - max body size in bytes to be validated for archive upload, integer, optional. If not set, validation will be disabled. | ||||
| * ``port`` - port to bind, integer, optional. | ||||
| * ``service_only`` - disable status routes (including logs), boolean, optional, default ``no``. | ||||
| * ``static_path`` - path to directory with static files, string, required. | ||||
| * ``templates`` - path to templates directories, space separated list of paths, required. | ||||
| * ``unix_socket`` - path to the listening unix socket, string, optional. If set, server will create the socket on the specified address which can (and will) be used by application. Note, that unlike usual host/port configuration, unix socket allows to perform requests without authorization. | ||||
| * ``unix_socket_unsafe`` - set unsafe (o+w) permissions to unix socket, boolean, optional, default ``yes``. This option is enabled by default, because it is supposed that unix socket is created in safe environment (only web service is supposed to be used in unsafe), but it can be disabled by configuration. | ||||
| * ``wait_timeout`` - wait timeout in seconds, maximum amount of time to be waited before lock will be free, integer, optional. | ||||
|  | ||||
| ``keyring`` group | ||||
| -------------------- | ||||
|  | ||||
| Keyring package generator plugin. | ||||
|  | ||||
| * ``target`` - list of generator settings sections, space separated list of strings, required. It must point to valid section name. | ||||
|  | ||||
| Keyring generator plugin | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| * ``type`` - type of the generator, string, optional, must be set to ``keyring-generator`` if exists. | ||||
| * ``description`` - keyring package description, string, optional, default is ``repo PGP keyring``, where ``repo`` is the repository name. | ||||
| * ``homepage`` - URL to homepage location if any, string, optional. | ||||
| * ``license`` - list of licenses which are applied to this package, space separated list of strings, optional, default is ``Unlicense``. | ||||
| * ``package`` - keyring package name, string, optional, default is ``repo-keyring``, where ``repo`` is the repository name. | ||||
| * ``packagers`` - list of packagers keys, space separated list of strings, optional, if not set, the user keys from database will be used. | ||||
| * ``revoked`` - list of revoked packagers keys, space separated list of strings, optional. | ||||
| * ``trusted`` - list of master keys, space separated list of strings, optional, if not set, the ``key`` option from ``sign`` group will be used. | ||||
|  | ||||
| ``mirrorlist`` group | ||||
| -------------------- | ||||
|  | ||||
| Mirrorlist package generator plugin. | ||||
|  | ||||
| * ``target`` - list of generator settings sections, space separated list of strings, required. It must point to valid section name. | ||||
|  | ||||
| Mirrorlist generator plugin | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| * ``type`` - type of the generator, string, optional, must be set to ``mirrorlist-generator`` if exists. | ||||
| * ``description`` - mirrorlist package description, string, optional, default is ``repo mirror list for use by pacman``, where ``repo`` is the repository name. | ||||
| * ``homepage`` - URL to homepage location if any, string, optional. | ||||
| * ``license`` - list of licenses which are applied to this package, space separated list of strings, optional, default is ``Unlicense``. | ||||
| * ``package`` - mirrorlist package name, string, optional, default is ``repo-mirrorlist``, where ``repo`` is the repository name. | ||||
| * ``path`` - absolute path to generated mirrorlist file, string, optional, default is ``/etc/pacman.d/repo-mirrorlist``, where ``repo`` is the repository name. | ||||
| * ``servers`` - list of repository mirrors, space separated list of strings, required. | ||||
|  | ||||
| ``remote-pull`` group | ||||
| --------------------- | ||||
|  | ||||
| Remote git source synchronization settings. Unlike ``Upload`` triggers those triggers are used for PKGBUILD synchronization - fetch from remote repository PKGBUILDs before updating process. | ||||
|  | ||||
| It supports authorization; to do so you'd need to prefix the URL with authorization part, e.g. ``https://key:token@github.com/arcan1s/ahriman.git``. It is highly recommended to use application tokens instead of your user authorization details. Alternatively, you can use any other option supported by git, e.g.: | ||||
|  | ||||
| * by SSH key: generate SSH key as ``ahriman`` user and put public part of it to the repository keys. | ||||
| * by git credentials helper: consult with the `related man page <https://git-scm.com/docs/gitcredentials>`__. | ||||
|  | ||||
| Available options are: | ||||
|  | ||||
| * ``target`` - list of remote pull triggers to be used, space separated list of strings, optional, defaults to ``gitremote``. It must point to valid section (or to section with architecture), e.g. ``gitremote`` must point to either ``gitremote`` or ``gitremote:x86_64`` (the one with architecture has higher priority). | ||||
|  | ||||
| Remote pull trigger | ||||
| ^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| * ``pull_url`` - URL of the remote repository from which PKGBUILDs can be pulled before build process, string, required. | ||||
| * ``pull_branch`` - branch of the remote repository from which PKGBUILDs can be pulled before build process, string, optional, default is ``master``. | ||||
|  | ||||
| ``remote-push`` group | ||||
| --------------------- | ||||
|  | ||||
| Remote git source synchronization settings. Same as remote pull triggers those triggers are used for PKGBUILD synchronization - push updated PKGBUILDs to the remote repository after build process. | ||||
|  | ||||
| It supports authorization; to do so you'd need to prefix the URL with authorization part, e.g. ``https://key:token@github.com/arcan1s/ahriman.git``. It is highly recommended to use application tokens instead of your user authorization details. Alternatively, you can use any other option supported by git, e.g.: | ||||
|  | ||||
| * by SSH key: generate SSH key as ``ahriman`` user and put public part of it to the repository keys. | ||||
| * by git credentials helper: consult with the `related man page <https://git-scm.com/docs/gitcredentials>`__. | ||||
|  | ||||
| Available options are: | ||||
|  | ||||
| * ``target`` - list of remote push triggers to be used, space separated list of strings, optional, defaults to ``gitremote``. It must point to valid section (or to section with architecture), e.g. ``gitremote`` must point to either ``gitremote`` or ``gitremote:x86_64`` (the one with architecture has higher priority). | ||||
|  | ||||
| Remote push trigger | ||||
| ^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| * ``commit_email`` - git commit email, string, optional, default is ``ahriman@localhost``. | ||||
| * ``commit_user`` - git commit user, string, optional, default is ``ahriman``. | ||||
| * ``push_url`` - URL of the remote repository to which PKGBUILDs should be pushed after build process, string, required. | ||||
| * ``push_branch`` - branch of the remote repository to which PKGBUILDs should be pushed after build process, string, optional, default is ``master``. | ||||
|  | ||||
| ``report`` group | ||||
| ---------------- | ||||
|  | ||||
| Report generation settings. | ||||
|  | ||||
| * ``target`` - list of reports to be generated, space separated list of strings, required. It must point to valid section (or to section with architecture), e.g. ``somerandomname`` must point to existing section, ``email`` must point to either ``email`` or ``email:x86_64`` (the one with architecture has higher priority). | ||||
|  | ||||
| Type will be read from several sources: | ||||
|  | ||||
| * In case if ``type`` option set inside the section, it will be used. | ||||
| * Otherwise, it will look for type from section name removing architecture name. | ||||
| * And finally, it will use section name as type. | ||||
|  | ||||
| ``console`` type | ||||
| ^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Section name must be either ``console`` (plus optional architecture name, e.g. ``console:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the report, string, optional, must be set to ``console`` if exists. | ||||
| * ``use_utf`` - use utf8 symbols in output if set and ascii otherwise, boolean, optional, default ``yes``. | ||||
|  | ||||
| ``email`` type | ||||
| ^^^^^^^^^^^^^^ | ||||
|  | ||||
| Section name must be either ``email`` (plus optional architecture name, e.g. ``email:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the report, string, optional, must be set to ``email`` if exists. | ||||
| * ``homepage`` - link to homepage, string, optional. | ||||
| * ``host`` - SMTP host for sending emails, string, required. | ||||
| * ``link_path`` - prefix for HTML links, string, required. | ||||
| * ``no_empty_report`` - skip report generation for empty packages list, boolean, optional, default ``yes``. | ||||
| * ``password`` - SMTP password to authenticate, string, optional. | ||||
| * ``port`` - SMTP port for sending emails, integer, required. | ||||
| * ``receivers`` - SMTP receiver addresses, space separated list of strings, required. | ||||
| * ``sender`` - SMTP sender address, string, required. | ||||
| * ``ssl`` - SSL mode for SMTP connection, one of ``ssl``, ``starttls``, ``disabled``, optional, default ``disabled``. | ||||
| * ``template`` - Jinja2 template name, string, required. | ||||
| * ``template_full`` - Jinja2 template name for full package description index, string, optional. | ||||
| * ``templates`` - path to templates directories, space separated list of paths, required. | ||||
| * ``user`` - SMTP user to authenticate, string, optional. | ||||
|  | ||||
| ``html`` type | ||||
| ^^^^^^^^^^^^^ | ||||
|  | ||||
| Section name must be either ``html`` (plus optional architecture name, e.g. ``html:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the report, string, optional, must be set to ``html`` if exists. | ||||
| * ``homepage`` - link to homepage, string, optional. | ||||
| * ``link_path`` - prefix for HTML links, string, required. | ||||
| * ``path`` - path to html report file, string, required. | ||||
| * ``template`` - Jinja2 template name, string, required. | ||||
| * ``templates`` - path to templates directories, space separated list of paths, required. | ||||
|  | ||||
| ``remote-call`` type | ||||
| ^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Section name must be either ``remote-call`` (plus optional architecture name, e.g. ``remote-call:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the report, string, optional, must be set to ``remote-call`` if exists. | ||||
| * ``aur`` - check for AUR packages updates, boolean, optional, default ``no``. | ||||
| * ``local`` - check for local packages updates, boolean, optional, default ``no``. | ||||
| * ``manual`` - update manually built packages, boolean, optional, default ``no``. | ||||
| * ``wait_timeout`` - maximum amount of time in seconds to be waited before remote process will be terminated, integer, optional, default ``-1``. | ||||
|  | ||||
| ``telegram`` type | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Section name must be either ``telegram`` (plus optional architecture name, e.g. ``telegram:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the report, string, optional, must be set to ``telegram`` if exists. | ||||
| * ``api_key`` - telegram bot API key, string, required. Please refer FAQ about how to create chat and bot | ||||
| * ``chat_id`` - telegram chat id, either string with ``@`` or integer value, required. | ||||
| * ``homepage`` - link to homepage, string, optional. | ||||
| * ``link_path`` - prefix for HTML links, string, required. | ||||
| * ``template`` - Jinja2 template name, string, required. | ||||
| * ``template_type`` - ``parse_mode`` to be passed to telegram API, one of ``MarkdownV2``, ``HTML``, ``Markdown``, string, optional, default ``HTML``. | ||||
| * ``templates`` - path to templates directories, space separated list of paths, required. | ||||
| * ``timeout`` - HTTP request timeout in seconds, integer, optional, default is ``30``. | ||||
|  | ||||
| ``upload`` group | ||||
| ---------------- | ||||
|  | ||||
| Remote synchronization settings. | ||||
|  | ||||
| * ``target`` - list of synchronizations to be used, space separated list of strings, required. It must point to valid section (or to section with architecture), e.g. ``somerandomname`` must point to existing section, ``github`` must point to one of ``github`` of ``github:x86_64`` (with architecture it has higher priority). | ||||
|  | ||||
| Type will be read from several sources: | ||||
|  | ||||
| * In case if ``type`` option set inside the section, it will be used. | ||||
| * Otherwise, it will look for type from section name removing architecture name. | ||||
| * And finally, it will use section name as type. | ||||
|  | ||||
| ``github`` type | ||||
| ^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This feature requires GitHub key creation (see below). Section name must be either ``github`` (plus optional architecture name, e.g. ``github:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the upload, string, optional, must be set to ``github`` if exists. | ||||
| * ``owner`` - GitHub repository owner, string, required. | ||||
| * ``password`` - created GitHub API key. In order to create it do the following: | ||||
|  | ||||
|   #. Go to `settings page <https://github.com/settings/profile>`__. | ||||
|   #. Switch to `developers settings <https://github.com/settings/apps>`__. | ||||
|   #. Switch to `personal access tokens <https://github.com/settings/tokens>`__. | ||||
|   #. Generate new token. Required scope is ``public_repo`` (or ``repo`` for private repository support). | ||||
|  | ||||
| * ``repository`` - GitHub repository name, string, required. Repository must be created before any action and must have active branch (e.g. with readme). | ||||
| * ``timeout`` - HTTP request timeout in seconds, integer, optional, default is ``30``. | ||||
| * ``use_full_release_name`` - if set to ``yes``, the release will contain both repository name and architecture, and only architecture otherwise, boolean, optional, default ``no`` (legacy behavior). | ||||
| * ``username`` - GitHub authorization user, string, required. Basically the same as ``owner``. | ||||
|  | ||||
| ``remote-service`` type | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Section name must be either ``remote-service`` (plus optional architecture name, e.g. ``remote-service:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the report, string, optional, must be set to ``remote-service`` if exists. | ||||
| * ``timeout`` - HTTP request timeout in seconds, integer, optional, default is ``30``. | ||||
|  | ||||
| ``rsync`` type | ||||
| ^^^^^^^^^^^^^^ | ||||
|  | ||||
| Requires ``rsync`` package to be installed. Do not forget to configure ssh for user ``ahriman``. Section name must be either ``rsync`` (plus optional architecture name, e.g. ``rsync:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the upload, string, optional, must be set to ``rsync`` if exists. | ||||
| * ``command`` - rsync command to run, space separated list of string, required. | ||||
| * ``remote`` - remote server to rsync (e.g. ``1.2.3.4:path/to/sync``), string, required. | ||||
|  | ||||
| ``s3`` type | ||||
| ^^^^^^^^^^^ | ||||
|  | ||||
| Requires ``boto3`` library to be installed. Section name must be either ``s3`` (plus optional architecture name, e.g. ``s3:x86_64``) or random name with ``type`` set. | ||||
|  | ||||
| * ``type`` - type of the upload, string, optional, must be set to ``s3`` if exists. | ||||
| * ``access_key`` - AWS access key ID, string, required. | ||||
| * ``bucket`` - bucket name (e.g. ``bucket``), string, required. | ||||
| * ``chunk_size`` - chunk size for calculating entity tags, integer, optional, default 8 * 1024 * 1024. | ||||
| * ``object_path`` - path prefix for stored objects, string, optional. If none set, the prefix as in repository tree will be used. | ||||
| * ``region`` - bucket region (e.g. ``eu-central-1``), string, required. | ||||
| * ``secret_key`` - AWS secret access key, string, required. | ||||
|  | ||||
| ``worker`` group | ||||
| ---------------- | ||||
|  | ||||
| This section controls settings for ``ahriman.core.distributed.WorkerTrigger`` plugin. | ||||
|  | ||||
| * ``address`` - address of the instance, string, required. Must be reachable for the master instance. | ||||
| * ``identifier`` - unique identifier of the instance, string, optional. | ||||
| * ``time_to_live`` - amount of time which remote worker will be considered alive in seconds, integer, optional, default is ``60``. The ping interval will be set automatically equal this value divided by 4. | ||||
							
								
								
									
										613
									
								
								docs/faq.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										613
									
								
								docs/faq.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,613 @@ | ||||
| # FAQ | ||||
|  | ||||
| ## General topics | ||||
|  | ||||
| ### What is the purpose of the project? | ||||
|  | ||||
| This project has been created in order to maintain self-hosted Arch Linux user repository without manual intervention - checking for updates and building packages. | ||||
|  | ||||
| ### How do I install it? | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| ```shell | ||||
| yay -S ahriman | ||||
| sudo ahriman -a x86_64 repo-setup --packager "ahriman bot <ahriman@example.com>" --repository "repository" | ||||
| systemctl enable --now ahriman@x86_64.timer | ||||
| ``` | ||||
|  | ||||
| #### Long answer | ||||
|  | ||||
| The idea is to install the package as usual, create working directory tree, create configuration for `sudo` and `devtools`. Detailed description of the setup instruction can be found [here](setup.md). | ||||
|  | ||||
| ### What does "architecture specific" mean? / How to configure for different architectures? | ||||
|  | ||||
| Some sections can be configured per architecture. The service will merge architecture specific values into common settings. In order to specify settings for specific architecture you must point it in section name. | ||||
|  | ||||
| For example, the section | ||||
|  | ||||
| ```ini | ||||
| [build] | ||||
| build_command = extra-x86_64-build | ||||
| ``` | ||||
|  | ||||
| states that default build command is `extra-x86_64-build`. But if there is section | ||||
|  | ||||
| ```ini | ||||
| [build:i686] | ||||
| build_command = extra-i686-build | ||||
| ``` | ||||
|  | ||||
| the `extra-i686-build` command will be used for `i686` architecture. | ||||
|  | ||||
| ### How to use reporter/upload settings? | ||||
|  | ||||
| Normally you probably like to generate only one report for the specific type, e.g. only one email report. In order to do it you will need to have the following configuration: | ||||
|  | ||||
| ```ini | ||||
| [report] | ||||
| target = email | ||||
|  | ||||
| [email] | ||||
| ... | ||||
| ``` | ||||
|  | ||||
| or in case of multiple architectures and _different_ reporting settings: | ||||
|  | ||||
| ```ini | ||||
| [report] | ||||
| target = email | ||||
|  | ||||
| [email:i686] | ||||
| ... | ||||
|  | ||||
| [email:x86_64] | ||||
| ... | ||||
| ``` | ||||
|  | ||||
| But for some cases you would like to have multiple different reports with the same type (e.g. sending different templates to different addresses). For these cases you will need to specify section name in target and type in section, e.g. the following configuration can be used: | ||||
|  | ||||
| ```ini | ||||
| [report] | ||||
| target = email_1 email_2 | ||||
|  | ||||
| [email_1] | ||||
| type = email | ||||
| ... | ||||
|  | ||||
| [email_2] | ||||
| type = email | ||||
| ... | ||||
| ``` | ||||
|  | ||||
| ### Okay, I've installed ahriman, how do I add new package? | ||||
|  | ||||
| ```shell | ||||
| sudo -u ahriman ahriman package-add ahriman --now | ||||
| ``` | ||||
|  | ||||
| `--now` flag is totally optional and just run `repo-update` subcommand after the registering the new package, Thus the extended flow is the following: | ||||
|  | ||||
| ```shell | ||||
| sudo -u ahriman ahriman package-add ahriman | ||||
| sudo -u ahriman ahriman repo-update | ||||
| ``` | ||||
|  | ||||
| ### AUR is fine, but I would like to create package from local PKGBUILD | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| ```shell | ||||
| sudo -u ahriman ahriman package-add /path/to/local/directory/with/PKGBUILD --now | ||||
| ``` | ||||
|  | ||||
| Before using this command you will need to create local directory, put `PKGBUILD` there and generate `.SRCINFO` by using `makepkg --printsrcinfo > .SRCINFO` command. These packages will be stored locally and _will be ignored_ during automatic update; in order to update the package you will need to run `package-add` command again. | ||||
|  | ||||
| ### But I just wanted to change PKGBUILD from AUR a bit! | ||||
|  | ||||
| Well it is supported also. | ||||
|  | ||||
| 1. Clone sources from AUR. | ||||
| 2. Make changes you would like to (e.g. edit `PKGBUILD`, add external patches). | ||||
| 3. Run `sudo -u ahriman ahriman patch-add /path/to/local/directory/with/PKGBUILD`. | ||||
|  | ||||
| The last command will calculate diff from current tree to the `HEAD` and will store it locally. Patches will be applied on any package actions (e.g. it can be used for dependency management). | ||||
|  | ||||
| ### Package build fails because it cannot validate PGP signature of source files | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| ```shell | ||||
| sudo -u ahriman ahriman key-import ... | ||||
| ``` | ||||
|  | ||||
| ### How do I check if there are new commits for VCS packages? | ||||
|  | ||||
| Normally the service handles VCS packages correctly, but it requires additional dependencies: | ||||
|  | ||||
| ```shell | ||||
| pacman -S breezy darcs mercurial subversion | ||||
| ``` | ||||
|  | ||||
| ### I would like to remove package because it is no longer needed/moved to official repositories | ||||
|  | ||||
| ```shell | ||||
| sudo -u ahriman ahriman package-remove ahriman | ||||
| ``` | ||||
|  | ||||
| Also, there is command `repo-remove-unknown` which checks packages in AUR and local storage and removes ones which have been removed. | ||||
|  | ||||
| Remove commands also remove any package files (patches, caches etc). | ||||
|  | ||||
| ### There is new major release of %library-name%, how do I rebuild packages? | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| ```shell | ||||
| sudo -u ahriman ahriman repo-rebuild --depends-on python | ||||
| ``` | ||||
|  | ||||
| You can even rebuild the whole repository (which is particular useful in case if you would like to change packager) if you do not supply `--depends-on` option. | ||||
|  | ||||
| However, note that you do not need to rebuild repository in case if you just changed signing option, just use `repo-sign` command instead.  | ||||
|  | ||||
| ### Hmm, I have packages built, but how can I use it? | ||||
|  | ||||
| Add the following lines to your `pacman.conf`: | ||||
|  | ||||
| ```ini | ||||
| [repository] | ||||
| Server = file:///var/lib/ahriman/repository/x86_64 | ||||
| ``` | ||||
|  | ||||
| (You might need to add `SigLevel` option according to the pacman documentation.) | ||||
|  | ||||
|  | ||||
| ### I would like to serve the repository | ||||
|  | ||||
| Easy. For example, nginx configuration (without SSL) will look like: | ||||
|  | ||||
| ``` | ||||
| server { | ||||
|     listen 80; | ||||
|     server_name repo.example.com; | ||||
|  | ||||
|     location / { | ||||
|         autoindex on; | ||||
|         root /var/lib/ahriman/repository; | ||||
|     } | ||||
| } | ||||
| ``` | ||||
|  | ||||
| Example of the status page configuration is the following (status service is using 8080 port): | ||||
|  | ||||
| ``` | ||||
| server { | ||||
|     listen 80; | ||||
|     server_name builds.example.com; | ||||
|  | ||||
|     location / { | ||||
|         proxy_set_header Host $host; | ||||
|         proxy_set_header X-Real-IP $remote_addr; | ||||
|         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | ||||
|         proxy_set_header X-Forwarder-Proto $scheme; | ||||
|  | ||||
|         proxy_pass http://127.0.0.1:8080; | ||||
|     } | ||||
| } | ||||
| ``` | ||||
|  | ||||
| ## Docker image | ||||
|  | ||||
| We provide official images which can be found under `arcan1s/ahriman` repository. Docker image is being updated on each master commit as well as on each version. If you would like to use last (probably unstable) build you can use `edge` tag or `latest` for any tagged versions; otherwise you can use any version tag available.  | ||||
|  | ||||
| The default action (in case if no arguments provided) is `repo-update`. Basically the idea is to run container, e.g.: | ||||
|  | ||||
| ```shell | ||||
| docker run --privileged -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
| ``` | ||||
|  | ||||
| `--privileged` flag is required to make mount possible inside container. In addition, you can pass own configuration overrides by using the same `-v` flag, e.g.: | ||||
|  | ||||
| ```shell | ||||
| docker run -v /path/to/local/repo:/var/lib/ahriman -v /etc/ahriman.ini:/etc/ahriman.ini.d/10-overrides.ini arcan1s/ahriman:latest | ||||
| ``` | ||||
|  | ||||
| By default, it runs `repo-update`, but it can be overwritten to any other command you would like to, e.g.: | ||||
|  | ||||
| ```shell | ||||
| docker run arcan1s/ahriman:latest package-add ahriman --now | ||||
| ``` | ||||
|  | ||||
| For more details please refer to docker FAQ. | ||||
|  | ||||
| ### Environment variables | ||||
|  | ||||
| The following environment variables are supported: | ||||
|  | ||||
| * `AHRIMAN_ARCHITECTURE` - architecture of the repository, default is `x86_64`. | ||||
| * `AHRIMAN_DEBUG` - if set all commands will be logged to console. | ||||
| * `AHRIMAN_FORCE_ROOT` - force run ahriman as root instead of guessing by subcommand. | ||||
| * `AHRIMAN_HOST` - host for the web interface, default is `0.0.0.0`. | ||||
| * `AHRIMAN_OUTPUT` - controls logging handler, e.g. `syslog`, `console`. The name must be found in logging configuration. Note that if `syslog` (the default) handler is used you will need to mount `/dev/log` inside container because it is not available there. | ||||
| * `AHRIMAN_PACKAGER` - packager name from which packages will be built, default is `ahriman bot <ahriman@example.com>`. | ||||
| * `AHRIMAN_PORT` - HTTP server port if any, default is empty. | ||||
| * `AHRIMAN_REPOSITORY` - repository name, default is `aur-clone`. | ||||
| * `AHRIMAN_REPOSITORY_ROOT` - repository root. Because of filesystem rights it is required to override default repository root. By default, it uses `ahriman` directory inside ahriman's home, which can be passed as mount volume. | ||||
| * `AHRIMAN_USER` - ahriman user, usually must not be overwritten, default is `ahriman`.  | ||||
|  | ||||
| You can pass any of these variables by using `-e` argument, e.g.: | ||||
|  | ||||
| ```shell | ||||
| docker run -e AHRIMAN_PORT=8080 arcan1s/ahriman:latest | ||||
| ``` | ||||
|  | ||||
| ### Web service setup | ||||
|  | ||||
| Well for that you would need to have web container instance running forever; it can be achieved by the following command: | ||||
|  | ||||
| ```shell | ||||
| docker run -p 8080:8080 -e AHRIMAN_PORT=8080 -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
| ``` | ||||
|  | ||||
| Note about `AHRIMAN_PORT` environment variable which is required in order to enable web service. An additional port bind by `-p 8080:8080` is required to pass docker port outside of container. | ||||
|  | ||||
| For every next container run use arguments `-e AHRIMAN_PORT=8080 --net=host`, e.g.: | ||||
|  | ||||
| ```shell | ||||
| docker run --privileged -e AHRIMAN_PORT=8080 --net=host -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
| ``` | ||||
|  | ||||
| ## Remote synchronization | ||||
|  | ||||
| ### Wait I would like to use the repository from another server | ||||
|  | ||||
| There are several choices: | ||||
|  | ||||
| 1. Easy and cheap, just share your local files through the internet, e.g. for `nginx`: | ||||
|     | ||||
|     ``` | ||||
|     server { | ||||
|         location /x86_64 { | ||||
|             root /var/lib/ahriman/repository/x86_64; | ||||
|             autoindex on; | ||||
|         } | ||||
|     } | ||||
|     ``` | ||||
|     | ||||
| 2. You can also upload your packages using `rsync` to any available server. In order to use it you would need to configure ahriman first: | ||||
|      | ||||
|     ```ini | ||||
|     [upload] | ||||
|     target = rsync | ||||
|      | ||||
|     [rsync] | ||||
|     remote = 192.168.0.1:/srv/repo | ||||
|     ``` | ||||
|     | ||||
|     After that just add `/srv/repo` to the `pacman.conf` as usual. You can also upload to S3 (e.g. `Server = https://s3.eu-central-1.amazonaws.com/repository/x86_64`) or to Github (e.g. `Server = https://github.com/ahriman/repository/releases/download/x86_64`). | ||||
|  | ||||
| ### How do I configure S3? | ||||
|  | ||||
| 1. Install dependencies: | ||||
|  | ||||
|    ```shell | ||||
|    pacman -S python-boto3 | ||||
|    ``` | ||||
|  | ||||
| 3. Create a bucket. | ||||
| 4. Create user with write access to the bucket: | ||||
|  | ||||
|     ``` | ||||
|     { | ||||
|         "Version": "2012-10-17", | ||||
|         "Statement": [ | ||||
|             { | ||||
|                 "Sid": "ListObjectsInBucket", | ||||
|                 "Effect": "Allow", | ||||
|                 "Action": [ | ||||
|                     "s3:ListBucket" | ||||
|                 ], | ||||
|                 "Resource": [ | ||||
|                     "arn:aws:s3:::repository" | ||||
|                 ] | ||||
|             }, | ||||
|             { | ||||
|                 "Sid": "AllObjectActions", | ||||
|                 "Effect": "Allow", | ||||
|                 "Action": "s3:*Object", | ||||
|                 "Resource": [ | ||||
|                     "arn:aws:s3:::repository/*" | ||||
|                 ] | ||||
|             } | ||||
|         ] | ||||
|     } | ||||
|     ``` | ||||
|  | ||||
| 5. Create an API key for the user and store it. | ||||
| 6. Configure the service as following: | ||||
|  | ||||
|     ```ini | ||||
|     [upload] | ||||
|     target = s3 | ||||
|  | ||||
|     [s3] | ||||
|     access_key = ... | ||||
|     bucket = repository | ||||
|     region = eu-central-1 | ||||
|     secret_key = ... | ||||
|     ``` | ||||
|     | ||||
| ### How do I configure Github? | ||||
|  | ||||
| 1. Create a repository. | ||||
| 2. [Create API key](https://github.com/settings/tokens) with scope `public_repo`. | ||||
| 3. Configure the service as following: | ||||
|  | ||||
|     ```ini | ||||
|     [upload] | ||||
|     target = github | ||||
|  | ||||
|     [github] | ||||
|     owner = ahriman | ||||
|     password = ... | ||||
|     repository = repository | ||||
|     username = ahriman | ||||
|     ``` | ||||
|  | ||||
| ## Reporting | ||||
|  | ||||
| ### I would like to get report to email | ||||
|  | ||||
| 1. Install dependencies: | ||||
|  | ||||
|    ```shell | ||||
|    yay -S python-jinja | ||||
|    ``` | ||||
|     | ||||
| 2. Configure the service: | ||||
|  | ||||
|    ```ini | ||||
|    [report] | ||||
|    target = email | ||||
|     | ||||
|    [email] | ||||
|    host = smtp.example.com | ||||
|    link_path = http://example.com/x86_64 | ||||
|    password = ... | ||||
|    port = 465 | ||||
|    receivers = me@example.com | ||||
|    sender = me@example.com | ||||
|    user = me@example.com | ||||
|    ``` | ||||
|     | ||||
| ### I'm using synchronization to S3 and would like to generate index page | ||||
|  | ||||
| 1. Install dependencies: | ||||
|  | ||||
|    ```shell | ||||
|    yay -S python-jinja | ||||
|    ``` | ||||
|     | ||||
| 2. Configure the service: | ||||
|     | ||||
|    ```ini | ||||
|    [report] | ||||
|    target = html | ||||
|     | ||||
|    [html] | ||||
|    path = /var/lib/ahriman/repository/x86_64/index.html | ||||
|    link_path = http://example.com/x86_64 | ||||
|    ``` | ||||
|     | ||||
| After these steps `index.html` file will be automatically synced to S3 | ||||
|  | ||||
| ### I would like to get messages to my telegram account/channel | ||||
|  | ||||
| 1. It still requires additional dependencies: | ||||
|  | ||||
|    ```shell | ||||
|    yay -S python-jinja | ||||
|    ``` | ||||
|  | ||||
| 2. Register bot in telegram. You can do it by talking with [@BotFather](https://t.me/botfather). For more details please refer to [official documentation](https://core.telegram.org/bots). | ||||
|  | ||||
| 3. Optionally (if you want to post message in chat): | ||||
|  | ||||
|    1. Create telegram channel.  | ||||
|    2. Invite your bot into the channel. | ||||
|    3. Make your channel public | ||||
|  | ||||
| 4. Get chat id if you want to use by numerical id or just use id prefixed with `@` (e.g. `@ahriman`). If you are not using chat the chat id is your user id. If you don't want to make channel public you can use [this guide](https://stackoverflow.com/a/33862907). | ||||
|  | ||||
| 5. Configure the service: | ||||
|  | ||||
|    ```ini | ||||
|    [report] | ||||
|    target = telegram | ||||
|     | ||||
|    [telegram] | ||||
|    api_key = aaAAbbBBccCC | ||||
|    chat_id = @ahriman | ||||
|    link_path = http://example.com/x86_64 | ||||
|    ``` | ||||
|     | ||||
|    `api_key` is the one sent by [@BotFather](https://t.me/botfather), `chat_id` is the value retrieved from previous step. | ||||
|  | ||||
| If you did everything fine you should receive the message with the next update. Quick credentials check can be done by using the following command: | ||||
|  | ||||
| ```shell | ||||
| curl 'https://api.telegram.org/bot${CHAT_ID}/sendMessage?chat_id=${API_KEY}&text=hello' | ||||
| ``` | ||||
|  | ||||
| (replace `${CHAT_ID}` and `${API_KEY}` with the values from configuration). | ||||
|  | ||||
| ## Web service | ||||
|  | ||||
| ### Readme mentions web interface, how do I use it? | ||||
|  | ||||
| 1. Install dependencies: | ||||
|  | ||||
|    ```shell | ||||
|    yay -S python-aiohttp python-aiohttp-jinja2 | ||||
|    ``` | ||||
|  | ||||
| 2. Configure service: | ||||
|  | ||||
|    ```ini | ||||
|    [web] | ||||
|    port = 8080 | ||||
|    ``` | ||||
|  | ||||
| 3. Start the web service `systemctl enable --now ahriman-web@x86_64`. | ||||
|  | ||||
| ### I would like to limit user access to the status page | ||||
|  | ||||
| 1. Install dependencies 😊: | ||||
|     | ||||
|    ```shell | ||||
|    yay -S python-aiohttp-security python-aiohttp-session python-cryptography | ||||
|    ``` | ||||
|  | ||||
| 2. Configure the service to enable authorization: | ||||
|  | ||||
|    ```ini | ||||
|    [auth] | ||||
|    target = configuration | ||||
|    ``` | ||||
|     | ||||
| 3. Create user for the service: | ||||
|  | ||||
|    ```shell | ||||
|    sudo -u ahriman ahriman user-add --as-service -r write api | ||||
|    ``` | ||||
|     | ||||
|    This command will ask for the password, just type it in stdin; _do not_ leave the field blank, user will not be able to authorize. | ||||
|  | ||||
| 4. Create end-user `sudo -u ahriman ahriman user-add -r write my-first-user` with password. | ||||
| 5. Restart web service `systemctl restart ahriman-web@x86_64`. | ||||
|  | ||||
| ### I would like to use OAuth | ||||
|  | ||||
| 1. Create OAuth web application, download its `client_id` and `client_secret`. | ||||
| 2. Guess what? Install dependencies: | ||||
|  | ||||
|    ```shell | ||||
|    yay -S python-aiohttp-security python-aiohttp-session python-cryptography python-aioauth-client | ||||
|    ``` | ||||
|     | ||||
| 3. Configure the service: | ||||
|  | ||||
|    ```ini | ||||
|    [auth] | ||||
|    target = oauth | ||||
|    client_id = ... | ||||
|    client_secret = ... | ||||
|     | ||||
|    [web] | ||||
|    address = https://example.com | ||||
|    ``` | ||||
|     | ||||
|    Configure `oauth_provider` and `oauth_scopes` in case if you would like to use different from Google provider. Scope must grant access to user email. `web.address` is required to make callback URL available from internet. | ||||
|  | ||||
| 4. Create service user: | ||||
|  | ||||
|    ```shell | ||||
|    sudo -u ahriman ahriman user-add --as-service -r write api | ||||
|    ``` | ||||
|  | ||||
| 5. Create end-user `sudo -u ahriman ahriman user-add -r write my-first-user`. When it will ask for the password leave it blank. | ||||
| 6. Restart web service `systemctl restart ahriman-web@x86_64`. | ||||
|  | ||||
| ## Backup and restore | ||||
|  | ||||
| The service provides several commands aim to do easy repository backup and restore. If you would like to move repository from the server `server1.example.com` to another `server2.example.com` you have to perform the following steps: | ||||
|  | ||||
| 1. On the source server `server1.example.com` run `repo-backup` command, e.g.: | ||||
|  | ||||
|    ```shell | ||||
|    sudo ahriman repo-backup /tmp/repo.tar.gz | ||||
|    ``` | ||||
|     | ||||
|    This command will pack all configuration files together with database file into the archive specified as command line argument (i.e. `/tmp/repo.tar.gz`). In addition it will also archive `cache` directory (the one which contains local clones used by e.g. local packages) and `.gnupg` of the `ahriman` user. | ||||
|  | ||||
| 2. Copy created archive from source server `server1.example.com` to target `server2.example.com`. | ||||
|  | ||||
| 3. Install ahriman as usual on the target server `server2.example.com` if you didn't yet. | ||||
|  | ||||
| 4. Extract archive e.g. by using subcommand: | ||||
|     | ||||
|    ```shell | ||||
|    sudo ahriman repo-restore /tmp/repo.tar.gz | ||||
|    ``` | ||||
|     | ||||
|    An additional argument `-o`/`--output` can be used to specify extraction root (`/` by default). | ||||
|  | ||||
| 5. Rebuild repository: | ||||
|  | ||||
|    ```shell | ||||
|    sudo -u ahriman ahriman repo-rebuild --from-database | ||||
|    ``` | ||||
|  | ||||
| ## Other topics | ||||
|  | ||||
| ### How does it differ from %another-manager%? | ||||
|  | ||||
| Short answer - I do not know. | ||||
|  | ||||
| #### [archrepo2](https://github.com/lilydjwg/archrepo2) | ||||
|  | ||||
| Don't know, haven't tried it. But it lacks of documentation at least. | ||||
|  | ||||
| * Web interface. | ||||
| * No synchronization and reporting. | ||||
| * `archrepo2` actively uses direct shell calls and `yaourt` components. | ||||
| * It has constantly running process instead of timer process (it is not pro or con). | ||||
|  | ||||
| #### [repoctl](https://github.com/cassava/repoctl) | ||||
|  | ||||
| * Web interface. | ||||
| * No reporting. | ||||
| * Local packages and patches support. | ||||
| * Some actions are not fully automated (e.g. package update still requires manual intervention for the build itself).  | ||||
| * `repoctl` has better AUR interaction features. With colors! | ||||
| * `repoctl` has much easier configuration and even completion. | ||||
| * `repoctl` is able to store old packages. | ||||
| * Ability to host repository from same command vs external services (e.g. nginx) in `ahriman`. | ||||
|  | ||||
| #### [repo-scripts](https://github.com/arcan1s/repo-scripts) | ||||
|  | ||||
| Though originally I've created ahriman by trying to improve the project, it still lacks a lot of features: | ||||
|  | ||||
| * Web interface. | ||||
| * Better reporting with template support. | ||||
| * Synchronization features (there was only `rsync` based). | ||||
| * Local packages and patches support. | ||||
| * No dependency management. | ||||
| * And so on. | ||||
|  | ||||
| `repo-scripts` also have bad architecture and bad quality code and uses out-of-dated `yaourt` and `package-query`. | ||||
|  | ||||
| #### [toolbox](https://github.com/chaotic-aur/toolbox) | ||||
|  | ||||
| It is automation tools for `repoctl` mentioned above. Except for using shell it looks pretty cool and also offers some additional features like patches, remote synchronization (isn't it?) and reporting. | ||||
|  | ||||
| ### I would like to check service logs | ||||
|  | ||||
| By default, the service writes logs to `/dev/log` which can be accessed by using `journalctl` command (logs are written to the journal of the user under which command is run). | ||||
|  | ||||
| You can also edit configuration and forward logs to `stderr`, just change `handlers` value, e.g.: | ||||
|  | ||||
| ```shell | ||||
| sed -i 's/handlers = syslog_handler/handlers = console_handler/g' /etc/ahriman.ini.d/logging.ini | ||||
| ``` | ||||
|  | ||||
| You can even configure logging as you wish, but kindly refer to python `logging` module [configuration](https://docs.python.org/3/library/logging.config.html). | ||||
|  | ||||
| ### Html customization | ||||
|  | ||||
| It is possible to customize html templates. In order to do so, create files somewhere (refer to Jinja2 documentation and the service source code for available parameters) and put `template_path` to configuration pointing to this directory. | ||||
|  | ||||
| ### I did not find my question | ||||
|  | ||||
| [Create an issue](https://github.com/arcan1s/ahriman/issues) with type **Question**. | ||||
| @ -1,35 +0,0 @@ | ||||
| Backup and restore | ||||
| ------------------ | ||||
|  | ||||
| The service provides several commands aim to do easy repository backup and restore. If you would like to move repository from the server ``server1.example.com`` to another ``server2.example.com`` you have to perform the following steps: | ||||
|  | ||||
| #.  | ||||
|    On the source server ``server1.example.com`` run ``repo-backup`` command, e.g.: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       ahriman repo-backup /tmp/repo.tar.gz | ||||
|  | ||||
|    This command will pack all configuration files together with database file into the archive specified as command line argument (i.e. ``/tmp/repo.tar.gz``). In addition it will also archive ``cache`` directory (the one which contains local clones used by e.g. local packages) and ``.gnupg`` of the ``ahriman`` user. | ||||
|  | ||||
| #.  | ||||
|    Copy created archive from source server ``server1.example.com`` to target ``server2.example.com``. | ||||
|  | ||||
| #.  | ||||
|    Install package as usual on the target server ``server2.example.com`` if you didn't yet. | ||||
|  | ||||
| #.  | ||||
|    Extract archive e.g. by using subcommand: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       ahriman repo-restore /tmp/repo.tar.gz | ||||
|  | ||||
|    An additional argument ``-o``/``--output`` can be used to specify extraction root (``/`` by default). | ||||
|  | ||||
| #.  | ||||
|    Rebuild repository: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman repo-rebuild --from-database | ||||
| @ -1,320 +0,0 @@ | ||||
| Distributed builds | ||||
| ------------------ | ||||
|  | ||||
| The service allows to run build on multiple machines and collect packages on main node. There are several ways to achieve it, this section describes officially supported methods. | ||||
|  | ||||
| Remote synchronization and remote server call | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This setup requires at least two instances of the service: | ||||
|  | ||||
| #. Web service (with opt-in authorization enabled), later will be referenced as ``master`` node. | ||||
| #. Application instances responsible for build, later will be referenced as ``worker`` nodes. | ||||
|  | ||||
| In this example the following settings are assumed: | ||||
|  | ||||
| * Repository architecture is ``x86_64``. | ||||
| * Master node address is ``master.example.com``. | ||||
|  | ||||
| Master node configuration | ||||
| """"""""""""""""""""""""" | ||||
|  | ||||
| The only requirements for the master node is that API must be available for worker nodes to call (e.g. port must be exposed to internet, or local network in case of VPN, etc) and file upload must be enabled: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [web] | ||||
|    enable_archive_upload = yes | ||||
|  | ||||
| In addition, the following settings are recommended for the master node: | ||||
|  | ||||
| * | ||||
|   As it has been mentioned above, it is recommended to enable authentication (see :doc:`How to enable basic authorization <web>`) and create system user which will be used later. Later this user (if any) will be referenced as ``worker-user``. | ||||
|  | ||||
| * | ||||
|   In order to be able to spawn multiple processes at the same time, wait timeout must be configured: | ||||
|  | ||||
|   .. code-block:: ini | ||||
|  | ||||
|      [web] | ||||
|      wait_timeout = 0 | ||||
|  | ||||
| Worker nodes configuration | ||||
| """""""""""""""""""""""""" | ||||
|  | ||||
| #. | ||||
|    First of all, in this setup you need to split your repository into chunks manually, e.g. if you have repository on master node with packages ``A``, ``B`` and ``C``, you need to split them between all available workers, as example: | ||||
|  | ||||
|    * Worker #1: ``A``. | ||||
|    * Worker #2: ``B`` and ``C``. | ||||
|  | ||||
|    Hint: ``repo-tree`` subcommand provides ``--partitions`` argument. | ||||
|  | ||||
| #. | ||||
|    Each worker must be configured to upload files to master node: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [upload] | ||||
|       target = remote-service | ||||
|  | ||||
|       [remote-service] | ||||
|  | ||||
| #. | ||||
|    Worker must be configured to access web on master node: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [status] | ||||
|       address = https://master.example.com | ||||
|       username = worker-user | ||||
|       password = very-secure-password | ||||
|  | ||||
|    As it has been mentioned above, ``status.address`` must be available for workers. In case if unix socket is used, it can be passed in the same option as usual. Optional ``status.username``/``status.password`` can be supplied in case if authentication was enabled on master node. | ||||
|  | ||||
| #. | ||||
|    Each worker must call master node on success: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [report] | ||||
|       target = remote-call | ||||
|  | ||||
|       [remote-call] | ||||
|       manual = yes | ||||
|  | ||||
|    After success synchronization (see above), the built packages will be put into directory, from which they will be read during manual update, thus ``remote-call.manual`` flag is required. | ||||
|  | ||||
| #. | ||||
|    Change order of trigger runs. This step is required, because by default the report trigger is called before the upload trigger and we would like to achieve the opposite: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [build] | ||||
|       triggers = ahriman.core.gitremote.RemotePullTrigger ahriman.core.upload.UploadTrigger ahriman.core.report.ReportTrigger ahriman.core.gitremote.RemotePushTrigger | ||||
|  | ||||
| In addition, the following settings are recommended for workers: | ||||
|  | ||||
| * | ||||
|   You might want to wait until report trigger will be completed; in this case the following option must be set: | ||||
|  | ||||
|   .. code-block:: ini | ||||
|  | ||||
|      [remote-call] | ||||
|      wait_timeout = 0 | ||||
|  | ||||
| Dependency management | ||||
| """"""""""""""""""""" | ||||
|  | ||||
| By default worker nodes don't know anything about master nodes packages, thus it will try to build each dependency by its own. However, using ``AHRIMAN_REPOSITORY_SERVER`` docker variable (or ``--server`` flag for setup command), it is possible to specify address of the master node for devtools configuration. | ||||
|  | ||||
| Repository and packages signing | ||||
| """"""""""""""""""""""""""""""" | ||||
|  | ||||
| You can sign packages on worker nodes and then signatures will be synced to master node. In order to do so, you need to configure worker node as following, e.g.: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [sign] | ||||
|    target = package | ||||
|    key = 8BE91E5A773FB48AC05CC1EDBED105AED6246B39 | ||||
|  | ||||
| Note, however, that in this case, signatures will not be validated on master node and just will be copied to repository tree. | ||||
|  | ||||
| If you would like to sign only database files (aka repository sign), it has to be configured only on master node as usual, e.g.: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [sign] | ||||
|    target = repository | ||||
|    key = 8BE91E5A773FB48AC05CC1EDBED105AED6246B39 | ||||
|  | ||||
| Double node minimal docker example | ||||
| """""""""""""""""""""""""""""""""" | ||||
|  | ||||
| Master node config (``master.ini``) as: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [auth] | ||||
|    target = configuration | ||||
|  | ||||
|    [web] | ||||
|    enable_archive_upload = yes | ||||
|    wait_timeout = 0 | ||||
|  | ||||
|  | ||||
| Command to run master node: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -p 8080:8080 -e AHRIMAN_PORT=8080 -v master.ini:/etc/ahriman.ini.d/overrides.ini arcan1s/ahriman:latest web | ||||
|  | ||||
| The user ``worker-user`` has been created additionally. Worker node config (``worker.ini``) as: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [status] | ||||
|    address = http://172.17.0.1:8080 | ||||
|    username = worker-user | ||||
|    password = very-secure-password | ||||
|  | ||||
|    [upload] | ||||
|    target = remote-service | ||||
|  | ||||
|    [remote-service] | ||||
|  | ||||
|    [report] | ||||
|    target = remote-call | ||||
|  | ||||
|    [remote-call] | ||||
|    manual = yes | ||||
|    wait_timeout = 0 | ||||
|  | ||||
|    [build] | ||||
|    triggers = ahriman.core.gitremote.RemotePullTrigger ahriman.core.upload.UploadTrigger ahriman.core.report.ReportTrigger ahriman.core.gitremote.RemotePushTrigger | ||||
|  | ||||
| The address above (``http://172.17.0.1:8080``) is somewhat available for worker container. | ||||
|  | ||||
| Command to run worker node: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -v worker.ini:/etc/ahriman.ini.d/overrides.ini -it arcan1s/ahriman:latest package-add ahriman --now | ||||
|  | ||||
| The command above will successfully build ``ahriman`` package, upload it on master node and, finally, will update master node repository. | ||||
|  | ||||
| Check proof-of-concept setup `here <https://github.com/arcan1s/ahriman/tree/master/recipes/distributed-manual>`__. | ||||
|  | ||||
| Addition of new package and repository update | ||||
| """"""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| Just run on worker command as usual, the built packages will be automatically uploaded to master node. Note that automatic update process must be disabled on master node. | ||||
|  | ||||
| Package removal | ||||
| """"""""""""""" | ||||
|  | ||||
| This action must be done in two steps: | ||||
|  | ||||
| #. Remove package on worker. | ||||
| #. Remove package on master node. | ||||
|  | ||||
| Delegate builds to remote workers | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This setup heavily uses upload feature described above and, in addition, also delegates build process automatically to build machines. Same as above, there must be at least two instances available (``master`` and ``worker``), however, all ``worker`` nodes must be run in the web service mode. | ||||
|  | ||||
| Master node configuration | ||||
| """"""""""""""""""""""""" | ||||
|  | ||||
| In addition to the configuration above, the worker list must be defined in configuration file (``build.workers`` option), i.e.: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [build] | ||||
|    workers = https://worker1.example.com https://worker2.example.com | ||||
|  | ||||
|    [web] | ||||
|    enable_archive_upload = yes | ||||
|    wait_timeout = 0 | ||||
|  | ||||
| In the example above, ``https://worker1.example.com`` and ``https://worker2.example.com`` are remote ``worker`` node addresses available for ``master`` node. | ||||
|  | ||||
| In case if authentication is required (which is recommended way to setup it), it can be set by using ``status`` section as usual. | ||||
|  | ||||
| Worker nodes configuration | ||||
| """""""""""""""""""""""""" | ||||
|  | ||||
| It is required to point to the master node repository, otherwise internal dependencies will not be handled correctly. In order to do so, the ``--server`` argument (or ``AHRIMAN_REPOSITORY_SERVER`` environment variable for docker images) can be used. | ||||
|  | ||||
| Also, in case if authentication is enabled, the same user with the same password must be created for all workers. | ||||
|  | ||||
| It is also recommended to set ``web.wait_timeout`` to infinite in case of multiple conflicting runs and ``service_only`` to ``yes`` in order to disable status endpoints. | ||||
|  | ||||
| Other settings are the same as mentioned above. | ||||
|  | ||||
| Triple node minimal docker example | ||||
| """""""""""""""""""""""""""""""""" | ||||
|  | ||||
| In this example, all instances are run on the same machine with address ``172.17.0.1`` with ports available outside of container. Master node config (``master.ini``) as: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [auth] | ||||
|    target = configuration | ||||
|  | ||||
|    [status] | ||||
|    username = builder-user | ||||
|    password = very-secure-password | ||||
|  | ||||
|    [build] | ||||
|    workers = http://172.17.0.1:8081 http://172.17.0.1:8082 | ||||
|  | ||||
|    [web] | ||||
|    enable_archive_upload = yes | ||||
|    wait_timeout = 0 | ||||
|  | ||||
| Command to run master node: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -p 8080:8080 -e AHRIMAN_PORT=8080 -v master.ini:/etc/ahriman.ini.d/overrides.ini arcan1s/ahriman:latest web | ||||
|  | ||||
| Worker nodes (applicable for all workers) config (``worker.ini``) as: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [auth] | ||||
|    target = configuration | ||||
|  | ||||
|    [status] | ||||
|    address = http://172.17.0.1:8080 | ||||
|    username = builder-user | ||||
|    password = very-secure-password | ||||
|  | ||||
|    [upload] | ||||
|    target = remote-service | ||||
|  | ||||
|    [remote-service] | ||||
|  | ||||
|    [report] | ||||
|    target = remote-call | ||||
|  | ||||
|    [remote-call] | ||||
|    manual = yes | ||||
|    wait_timeout = 0 | ||||
|  | ||||
|    [web] | ||||
|    service_only = yes | ||||
|  | ||||
|    [build] | ||||
|    triggers = ahriman.core.upload.UploadTrigger ahriman.core.report.ReportTrigger | ||||
|  | ||||
| Command to run worker nodes (considering there will be two workers, one is on ``8081`` port and other is on ``8082``): | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    docker run --privileged -p 8081:8081 -e AHRIMAN_PORT=8081 -v worker.ini:/etc/ahriman.ini.d/overrides.ini arcan1s/ahriman:latest web | ||||
|    docker run --privileged -p 8082:8082 -e AHRIMAN_PORT=8082 -v worker.ini:/etc/ahriman.ini.d/overrides.ini arcan1s/ahriman:latest web | ||||
|  | ||||
| Unlike the previous setup, it doesn't require to mount repository root for ``worker`` nodes, because they don't use it anyway. | ||||
|  | ||||
| Check proof-of-concept setup `here <https://github.com/arcan1s/ahriman/tree/master/recipes/distributed>`__. | ||||
|  | ||||
| Addition of new package, package removal, repository update | ||||
| """"""""""""""""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| In all scenarios, update process must be run only on ``master`` node. Unlike the manually distributed packages described above, automatic update must be enabled only for ``master`` node. | ||||
|  | ||||
| Automatic worker nodes discovery | ||||
| """""""""""""""""""""""""""""""" | ||||
|  | ||||
| Instead of setting ``build.workers`` option it is also possible to configure services to load worker list dynamically. To do so, the ``ahriman.core.distributed.WorkerLoaderTrigger`` and ``ahriman.core.distributed.WorkerTrigger`` must be used for ``master`` and ``worker`` nodes repsectively. See recipes for more details. | ||||
|  | ||||
| Known limitations | ||||
| """"""""""""""""" | ||||
|  | ||||
| * Workers don't support local packages. However, it is possible to build custom packages by providing sources by using ``ahriman.core.gitremote.RemotePullTrigger`` trigger. | ||||
| * No dynamic nodes discovery. In case if one of worker nodes is unavailable, the build process will fail. | ||||
| * No pkgrel bump on conflicts. | ||||
| * The identical user must be created for all workers. However, the ``master`` node user can be different from this one. | ||||
| @ -1,115 +0,0 @@ | ||||
| Docker image | ||||
| ------------ | ||||
|  | ||||
| We provide official images which can be found under: | ||||
|  | ||||
| * docker registry ``arcan1s/ahriman``; | ||||
| * ghcr.io registry ``ghcr.io/arcan1s/ahriman``. | ||||
|  | ||||
| These images are totally identical. | ||||
|  | ||||
| Docker image is being updated on each commit to master as well as on each version. If you would like to use last (probably unstable) build you can use ``edge`` tag or ``latest`` for any tagged versions; otherwise you can use any version tag available. | ||||
|  | ||||
| The default action (in case if no arguments provided) is ``repo-update``. Basically the idea is to run container, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
|  | ||||
| ``--privileged`` flag is required to make mount possible inside container. In order to make data available outside of container, you would need to mount local (parent) directory inside container by using ``-v /path/to/local/repo:/var/lib/ahriman`` argument, where ``/path/to/local/repo`` is a path to repository on local machine. In addition, you can pass own configuration overrides by using the same ``-v`` flag, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -v /path/to/local/repo:/var/lib/ahriman -v /path/to/overrides/overrides.ini:/etc/ahriman.ini.d/10-overrides.ini arcan1s/ahriman:latest | ||||
|  | ||||
| The action can be specified during run, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest package-add ahriman --now | ||||
|  | ||||
| For more details please refer to the docker FAQ. | ||||
|  | ||||
| Environment variables | ||||
| ^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| The following environment variables are supported: | ||||
|  | ||||
| * ``AHRIMAN_ARCHITECTURE`` - architecture of the repository, default is ``x86_64``. | ||||
| * ``AHRIMAN_DEBUG`` - if set all commands will be logged to console. | ||||
| * ``AHRIMAN_FORCE_ROOT`` - force run ahriman as root instead of guessing by subcommand. | ||||
| * ``AHRIMAN_HOST`` - host for the web interface, default is ``0.0.0.0``. | ||||
| * ``AHRIMAN_MULTILIB`` - if set (default) multilib repository will be used, disabled otherwise. | ||||
| * ``AHRIMAN_OUTPUT`` - controls logging handler, e.g. ``syslog``, ``console``. The name must be found in logging configuration. Note that if ``syslog`` handler is used you will need to mount ``/dev/log`` inside container because it is not available there. | ||||
| * ``AHRIMAN_PACKAGER`` - packager name from which packages will be built, default is ``ahriman bot <ahriman@example.com>``. | ||||
| * ``AHRIMAN_PACMAN_MIRROR`` - override pacman mirror server if set. | ||||
| * ``AHRIMAN_PORT`` - HTTP server port if any, default is empty. | ||||
| * ``AHRIMAN_POSTSETUP_COMMAND`` - if set, the command which will be called (as root) after the setup command, but before any other actions. | ||||
| * ``AHRIMAN_PRESETUP_COMMAND`` - if set, the command which will be called (as root) right before the setup command. | ||||
| * ``AHRIMAN_REPOSITORY`` - repository name, default is ``aur-clone``. | ||||
| * ``AHRIMAN_REPOSITORY_SERVER`` - optional override for the repository URL. Useful if you would like to download packages from remote instead of local filesystem. | ||||
| * ``AHRIMAN_REPOSITORY_ROOT`` - repository root. Because of filesystem rights it is required to override default repository root. By default, it uses ``ahriman`` directory inside ahriman's home, which can be passed as mount volume. | ||||
| * ``AHRIMAN_UNIX_SOCKET`` - full path to unix socket which is used by web server, default is empty. Note that more likely you would like to put it inside ``AHRIMAN_REPOSITORY_ROOT`` directory (e.g. ``/var/lib/ahriman/ahriman/ahriman-web.sock``) or to ``/run/ahriman``. | ||||
| * ``AHRIMAN_USER`` - ahriman user, usually must not be overwritten, default is ``ahriman``. | ||||
| * ``AHRIMAN_VALIDATE_CONFIGURATION`` - if set (default) validate service configuration. | ||||
|  | ||||
| You can pass any of these variables by using ``-e`` argument, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -e AHRIMAN_PORT=8080 -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
|  | ||||
| Daemon service | ||||
| ^^^^^^^^^^^^^^ | ||||
|  | ||||
| There is special ``repo-daemon`` subcommand which emulates systemd timer and will perform repository update periodically: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest repo-daemon | ||||
|  | ||||
| This command uses same rules as ``repo-update``, thus, e.g. requires ``--privileged`` flag. Check also `examples <https://github.com/arcan1s/ahriman/tree/master/recipes/daemon>`__. | ||||
|  | ||||
| Web service setup | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| For that you would need to have web container instance running forever; it can be achieved by the following command: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -p 8080:8080 -e AHRIMAN_PORT=8080 -e AHRIMAN_UNIX_SOCKET=/var/lib/ahriman/ahriman/ahriman-web.sock -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
|  | ||||
| Note about ``AHRIMAN_PORT`` environment variable which is required in order to enable web service. An additional port bind by ``-p 8080:8080`` is required to pass docker port outside of container. | ||||
|  | ||||
| The ``AHRIMAN_UNIX_SOCKET`` variable is not required, however, highly recommended as it can be used for interprocess communications. If you set this variable you would like to be sure that this path is available outside of container if you are going to use multiple docker instances. | ||||
|  | ||||
| If you are using ``AHRIMAN_UNIX_SOCKET`` variable, for every next container run it has to be passed also, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -e AHRIMAN_UNIX_SOCKET=/var/lib/ahriman/ahriman/ahriman-web.sock -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
|  | ||||
| Otherwise, you would need to pass ``AHRIMAN_PORT`` and mount container network to the host system (``--net=host``), e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged --net=host -e AHRIMAN_PORT=8080 -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
|  | ||||
| Simple server with authentication can be found in `examples <https://github.com/arcan1s/ahriman/tree/master/recipes/web>`__ too. | ||||
|  | ||||
| Mutli-repository web service | ||||
| """""""""""""""""""""""""""" | ||||
|  | ||||
| Idea is pretty same as to just run web service. However, it is required to run setup commands for each repository, except for one which is specified by ``AHRIMAN_REPOSITORY`` and ``AHRIMAN_ARCHITECTURE`` variables. | ||||
|  | ||||
| In order to create configuration for additional repositories, the ``AHRIMAN_POSTSETUP_COMMAND`` variable should be used, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    docker run --privileged -p 8080:8080 -e AHRIMAN_PORT=8080 -e AHRIMAN_UNIX_SOCKET=/var/lib/ahriman/ahriman/ahriman-web.sock -e AHRIMAN_POSTSETUP_COMMAND="ahriman --architecture x86_64 --repository aur-clone-v2 service-setup --build-as-user ahriman --packager 'ahriman bot <ahriman@example.com>'" -v /path/to/local/repo:/var/lib/ahriman arcan1s/ahriman:latest | ||||
|  | ||||
| The command above will also create configuration for the repository named ``aur-clone-v2``. | ||||
|  | ||||
| Note, however, that the command above is only required in case if the service is going to be used to run subprocesses. Otherwise, everything else (web interface, status, etc) will be handled as usual. | ||||
|  | ||||
| Configuration `example <https://github.com/arcan1s/ahriman/tree/master/recipes/multirepo>`__. | ||||
| @ -1,12 +0,0 @@ | ||||
| Use cases | ||||
| --------- | ||||
|  | ||||
| There is a collection of some specific recipes which can be found in `the repository <https://github.com/arcan1s/ahriman/tree/master/recipes>`__. | ||||
|  | ||||
| Most of them can be run (``AHRIMAN_PASSWORD`` environment variable is required in the most setups) as simple as: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    AHRIMAN_PASSWORD=demo docker compose up | ||||
|  | ||||
| Note, however, they are just an examples of specific configuration for specific cases and they are never intended to be used as is in real environment. | ||||
| @ -1,431 +0,0 @@ | ||||
| General topics | ||||
| -------------- | ||||
|  | ||||
| What is the purpose of the project | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This project has been created in order to maintain self-hosted Arch Linux user repository without manual intervention - checking for updates and building packages. | ||||
|  | ||||
| How to install ahriman | ||||
| ^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    yay -S ahriman | ||||
|    ahriman -a x86_64 -r aur-clone service-setup --packager "ahriman bot <ahriman@example.com>" | ||||
|    systemctl enable --now ahriman@x86_64-aur-clone.timer | ||||
|  | ||||
| Long answer | ||||
| """"""""""" | ||||
|  | ||||
| The idea is to install the package as usual, create working directory tree, create configuration for ``sudo`` and ``devtools``. Detailed description of the setup instruction can be found :doc:`here </setup>`. | ||||
|  | ||||
| Run as daemon | ||||
| """"""""""""" | ||||
|  | ||||
| The alternative way (though not recommended) is to run service instead of timer: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    systemctl enable --now ahriman-daemon@x86_64-aur-clone | ||||
|  | ||||
| How to validate settings | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| There is special command which can be used in order to validate current configuration: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    ahriman service-config-validate --exit-code | ||||
|  | ||||
| This command will print found errors, based on `cerberus <https://docs.python-cerberus.org/>`__, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    auth | ||||
|                    ssalt: unknown field | ||||
|                    target: none or more than one rule validate | ||||
|                            oneof definition 0: unallowed value mapping | ||||
|                            oneof definition 1: field 'salt' is required | ||||
|                            oneof definition 2: unallowed value mapping | ||||
|                            oneof definition 2: field 'salt' is required | ||||
|                            oneof definition 2: field 'client_id' is required | ||||
|                            oneof definition 2: field 'client_secret' is required | ||||
|    gitremote | ||||
|                    pull_url: unknown field | ||||
|  | ||||
| If an additional flag ``--exit-code`` is supplied, the application will return non-zero exit code, which can be used partially in scripts. | ||||
|  | ||||
| What does "architecture specific" mean / How to configure for different architectures | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Some sections can be configured per architecture. The service will merge architecture specific values into common settings. In order to specify settings for specific architecture you must point it in section name. | ||||
|  | ||||
| For example, the section | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [build] | ||||
|    build_command = extra-x86_64-build | ||||
|  | ||||
| states that default build command is ``extra-x86_64-build``. But if there is section | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [build:i686] | ||||
|    build_command = extra-i686-build | ||||
|  | ||||
| the ``extra-i686-build`` command will be used for ``i686`` architecture. You can also override settings for different repositories and architectures; in this case section names will be ``build:aur-clone`` (repository name only) and ``build:aur-clone:i686`` (both repository name and architecture). | ||||
|  | ||||
| How to generate build reports | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Normally you would probably like to generate only one report for the specific type, e.g. only one email report. In order to do so you will need to have the following configuration: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [report] | ||||
|    target = email | ||||
|  | ||||
|    [email] | ||||
|    ... | ||||
|  | ||||
| or in case of multiple architectures and *different* reporting settings: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [report] | ||||
|    target = email | ||||
|  | ||||
|    [email:i686] | ||||
|    ... | ||||
|  | ||||
|    [email:x86_64] | ||||
|    ... | ||||
|  | ||||
| But for some cases you would like to have multiple different reports with the same type (e.g. sending different templates to different addresses). For these cases you will need to specify section name in target and type in section, e.g. the following configuration can be used: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [report] | ||||
|    target = email_1 email_2 | ||||
|  | ||||
|    [email_1] | ||||
|    type = email | ||||
|    ... | ||||
|  | ||||
|    [email_2] | ||||
|    type = email | ||||
|    ... | ||||
|  | ||||
| How to add new package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman package-add ahriman --now | ||||
|  | ||||
| ``--now`` flag is totally optional and just run ``repo-update`` subcommand after the registering the new package. Thus the extended flow is the following: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman package-add ahriman | ||||
|    sudo -u ahriman ahriman repo-update | ||||
|  | ||||
| How to build package from local PKGBUILD | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman package-add /path/to/local/directory/with/PKGBUILD --now | ||||
|  | ||||
| Before using this command you will need to create local directory, put ``PKGBUILD`` there and generate ``.SRCINFO`` by using ``makepkg --printsrcinfo > .SRCINFO`` command. These packages will be stored locally and *will be ignored* during automatic update; in order to update the package you will need to run ``package-add`` command again. | ||||
|  | ||||
| How to copy package from another repository | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| As simple as add package from archive. Considering case when you would like to copy package ``package`` with version ``ver-rel`` from repository ``source-repository`` to ``target-respository`` (same architecture), the command will be following: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman -r target-repository package-add /var/lib/ahriman/repository/source-repository/x86_64/package-ver-rel-x86_64.pkg.tar.zst | ||||
|  | ||||
| In addition, you can remove source package as usual later. | ||||
|  | ||||
| This feature in particular useful if for managing multiple repositories like ``[testing]`` and ``[extra]``. | ||||
|  | ||||
| How to fetch PKGBUILDs from remote repository | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| For that purpose you could use ``RemotePullTrigger`` trigger. To do so you will need to configure trigger as following: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [remote-pull] | ||||
|    target = gitremote | ||||
|  | ||||
|    [gitremote] | ||||
|    pull_url = https://github.com/username/repository | ||||
|  | ||||
| During the next application run it will fetch repository from the specified URL and will try to find packages there which can be used as local sources. | ||||
|  | ||||
| This feature can be also used to build packages which are not listed in AUR, the example of the feature use can be found `here <https://github.com/arcan1s/ahriman/tree/master/recipes/pull>`__. | ||||
|  | ||||
| How to push updated PKGBUILDs to remote repository | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| For that purpose you'd need to use another trigger called ``RemotePushTrigger``. Configure trigger as following: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [remote-push] | ||||
|    target = gitremote | ||||
|  | ||||
|    [gitremote] | ||||
|    push_url = https://github.com/username/repository | ||||
|  | ||||
| Unlike ``RemotePullTrigger`` trigger, the ``RemotePushTrigger`` more likely will require authorization. It is highly recommended to use application tokens for that instead of using your password (e.g. for GitHub you can generate tokens `here <https://github.com/settings/tokens>`__ with scope ``public_repo``). Authorization can be supplied by using authorization part of the URL, e.g. ``https://key:token@github.com/username/repository``. | ||||
|  | ||||
| How to change PKGBUILDs before build | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Well it is supported also. The recommended way is to patch specific function, e.g. by running | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman patch-add ahriman version | ||||
|  | ||||
| This command will prompt for new value of the PKGBUILD variable ``version``. You can also write it to file and read from it: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman patch-add ahriman version version.patch | ||||
|  | ||||
| The command also supports arrays, but in this case you need to specify full array, e.g. | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman patch-add ahriman depends | ||||
|  | ||||
|    Post new function or variable value below. Press Ctrl-D to finish: | ||||
|    (python python-aiohttp) | ||||
|    ^D | ||||
|  | ||||
| will set depends PKGBUILD variable (exactly) to array ``["python", "python-aiohttp"]``. | ||||
|  | ||||
| Alternatively you can create full-diff patches, which are calculated by using ``git diff`` from current PKGBUILD master branch: | ||||
|  | ||||
| #. | ||||
|    Clone sources from AUR. | ||||
|  | ||||
| #. | ||||
|    Make changes you would like to (e.g. edit ``PKGBUILD``, add external patches). | ||||
|  | ||||
| #. | ||||
|    Run command | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman patch-set-add /path/to/local/directory/with/PKGBUILD | ||||
|  | ||||
| The last command will calculate diff from current tree to the ``HEAD`` and will store it locally. Patches will be applied on any package actions (e.g. it can be used for dependency management). | ||||
|  | ||||
| It is also possible to create simple patch during package addition, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman package-add ahriman --variable PKGEXT=.pkg.tar.xz | ||||
|  | ||||
| The ``--variable`` argument accepts variables in shell like format: quotation and lists are supported as usual, but functions are not. This feature is useful in particular in order to override specific makepkg variables during build. | ||||
|  | ||||
| How to build package from official repository | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| It is the same as adding any other package, but due to restrictions you must specify source explicitly, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman package-add pacman --source repository | ||||
|  | ||||
| This feature is heavily depends on local pacman cache. In order to use this feature it is recommended to either run ``pacman -Sy`` before the interaction or use internal application cache with ``--refresh`` flag. | ||||
|  | ||||
| Package build fails because it cannot validate PGP signature of source files | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman service-key-import ... | ||||
|  | ||||
| How to update VCS packages | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Normally the service handles VCS packages correctly, however it requires additional dependencies: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    pacman -S breezy darcs mercurial subversion | ||||
|  | ||||
| How to review changes before build | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| In this scenario, the update process must be separated into several stages. First, it is required to check updates: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman repo-check | ||||
|  | ||||
| During the check process, the service will generate changes from the last known commit and will send it to remote service. In order to verify source files changes, the web interface or special subcommand can be used: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    ahriman package-changes ahriman | ||||
|  | ||||
| After validation, the operator can run update process with approved list of packages, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman repo-update ahriman | ||||
|  | ||||
| How to remove package | ||||
| ^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman package-remove ahriman | ||||
|  | ||||
| Also, there is command ``repo-remove-unknown`` which checks packages in AUR and local storage and removes ones which have been removed. | ||||
|  | ||||
| Remove commands also remove any package files (patches, caches etc). | ||||
|  | ||||
| How to sign repository | ||||
| ^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Repository sign feature is available in several configurations. The recommended way is just to sign repository database file by single key instead of trying to sign each package. However, the steps are pretty same, just configuration is a bit different. For more details about options kindly refer to :doc:`configuration reference </configuration>`. | ||||
|  | ||||
| #. | ||||
|    First you would need to create the key on your local machine: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       gpg --full-generate-key | ||||
|  | ||||
|    This command will prompt you for several questions. Most of them may be left default, but you will need to fill real name and email address with some data. Because at the moment the service doesn't support passphrases, it must be left blank. | ||||
|  | ||||
| #. | ||||
|    The command above will generate key and print its fingerprint, something like ``8BE91E5A773FB48AC05CC1EDBED105AED6246B39``. Copy it. | ||||
|  | ||||
| #. | ||||
|    Export your private key by using the fingerprint above: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       gpg --export-secret-keys -a 8BE91E5A773FB48AC05CC1EDBED105AED6246B39 > repository-key.gpg | ||||
|  | ||||
| #. | ||||
|  | ||||
|    Copy the specified key to the build machine (i.e. where the service is running). | ||||
|  | ||||
| #. | ||||
|    Import the specified key to the service user: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman gpg --import repository-key.gpg | ||||
|  | ||||
|    Don't forget to remove the key from filesystem after import. | ||||
|  | ||||
| #. | ||||
|    Change trust level to ``ultimate``: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman gpg --edit-key 8BE91E5A773FB48AC05CC1EDBED105AED6246B39 | ||||
|  | ||||
|    The command above will drop you into gpg shell, in which you will need to type ``trust``, choose ``5 = I trust ultimately``, confirm and exit ``quit``. | ||||
|  | ||||
| #. | ||||
|    Proceed with service configuration according to the :doc:`configuration </configuration>`: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [sign] | ||||
|       target = repository | ||||
|       key = 8BE91E5A773FB48AC05CC1EDBED105AED6246B39 | ||||
|  | ||||
|  | ||||
| How to rebuild packages after library update | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| TL;DR | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo -u ahriman ahriman repo-rebuild --depends-on python | ||||
|  | ||||
| You can even rebuild the whole repository (which is particular useful in case if you would like to change packager) if you do not supply ``--depends-on`` option. This action will automatically increment ``pkgrel`` value; in case if you don't want to, the ``--no-increment`` option has to be supplied. | ||||
|  | ||||
| However, note that you do not need to rebuild repository in case if you just changed signing option, just use ``repo-sign`` command instead. | ||||
|  | ||||
| Automated broken dependencies detection | ||||
| """"""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| After the success build the application extracts all linked libraries and used directories and stores them in database. During the check process, the application extracts pacman databases and checks if file names have been changed (e.g. new python release caused ``/usr/lib/python3.x`` directory renaming to ``/usr/lib/python3.y`` or soname for a linked library has been changed). In case if broken dependencies have been detected, the package will be added to the rebuild queue. | ||||
|  | ||||
| In order to disable this check completely, the ``--no-check-files`` flag can be used. | ||||
|  | ||||
| In addition, there is possibility to control paths which will be used for checking, by using options ``build.allowed_scan_paths`` and ``build.blacklisted_scan_paths``. Leaving ``build.allowed_scan_paths`` blank will effectively disable any check too. | ||||
|  | ||||
| How to install built packages | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Add the following lines to your ``pacman.conf``: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [repository] | ||||
|    Server = file:///var/lib/ahriman/repository/$repo/$arch | ||||
|  | ||||
| (You might need to add ``SigLevel`` option according to the pacman documentation.) | ||||
|  | ||||
| How to serve repository | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Easy. For example, nginx configuration (without SSL) will look like: | ||||
|  | ||||
| .. code-block:: | ||||
|  | ||||
|    server { | ||||
|        listen 80; | ||||
|        server_name repo.example.com; | ||||
|  | ||||
|        location / { | ||||
|            autoindex on; | ||||
|            root /var/lib/ahriman/repository; | ||||
|        } | ||||
|    } | ||||
|  | ||||
| Example of the status page configuration is the following (status service is using 8080 port): | ||||
|  | ||||
| .. code-block:: | ||||
|  | ||||
|    server { | ||||
|        listen 80; | ||||
|        server_name builds.example.com; | ||||
|  | ||||
|        location / { | ||||
|            proxy_set_header Host $host; | ||||
|            proxy_set_header X-Real-IP $remote_addr; | ||||
|            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | ||||
|            proxy_set_header X-Forwarder-Proto $scheme; | ||||
|  | ||||
|            proxy_pass http://127.0.0.1:8080; | ||||
|        } | ||||
|    } | ||||
|  | ||||
| Some more examples can be found in configuration `recipes <https://github.com/arcan1s/ahriman/tree/master/recipes>`__. | ||||
| @ -1,17 +0,0 @@ | ||||
| FAQ | ||||
| === | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 2 | ||||
|  | ||||
|    general | ||||
|    docker | ||||
|    non-x86_64-setup | ||||
|    synchronization | ||||
|    reporting | ||||
|    distributed | ||||
|    maintenance-packages | ||||
|    web | ||||
|    backup | ||||
|    examples | ||||
|    misc | ||||
| @ -1,73 +0,0 @@ | ||||
| Maintenance packages | ||||
| -------------------- | ||||
|  | ||||
| Generate keyring package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| The application provides special plugin which generates keyring package. This plugin heavily depends on ``sign`` group settings, however it is possible to override them. The minimal package can be generated in the following way: | ||||
|  | ||||
| #. | ||||
|    Edit configuration: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [keyring] | ||||
|       target = keyring-generator | ||||
|  | ||||
|    By default it will use ``sign.key`` as trusted key and all other keys as packagers ones. For all available options refer to :doc:`configuration </configuration>`. | ||||
|  | ||||
| #. | ||||
|    Create package source files: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman repo-create-keyring | ||||
|  | ||||
|    This command will generate PKGBUILD, revoked and trusted listings and keyring itself and will register the package in database. | ||||
|  | ||||
| #. | ||||
|    Build new package as usual: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman package-add aur-clone-keyring --source local --now | ||||
|  | ||||
|    where ``aur-clone`` is your repository name. | ||||
|  | ||||
| This plugin might have some issues, in case of any of them, kindly create `new issue <https://github.com/arcan1s/ahriman/issues/new/choose>`__. | ||||
|  | ||||
| Generate mirrorlist package | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| The application provides special plugin which generates mirrorlist package also. It is possible to distribute this package as usual later. The package can be generated in the following way: | ||||
|  | ||||
| #. | ||||
|    Edit configuration: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [mirrorlist] | ||||
|       target = mirrorlist-generator | ||||
|  | ||||
|       [mirrorlist-generator] | ||||
|       servers = https://repo.example.com/$arch | ||||
|  | ||||
|    The ``mirrorlist-generator.servers`` must contain list of available mirrors, the ``$arch`` and ``$repo`` variables are supported. For more options kindly refer to :doc:`configuration </configuration>`. | ||||
|  | ||||
| #. | ||||
|    Create package source files: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman repo-create-mirrorlist | ||||
|  | ||||
|    This command will generate PKGBUILD and mirrorlist file and will register the package in database. | ||||
|  | ||||
| #. | ||||
|    Build new package as usual: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman package-add aur-clone-mirrorlist --source local --now | ||||
|  | ||||
|    where ``aur-clone`` is your repository name. | ||||
| @ -1,100 +0,0 @@ | ||||
| Other topics | ||||
| ------------ | ||||
|  | ||||
| How does it differ from %another-manager%? | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Short answer - I do not know. Also for some references credits to `Alad <https://github.com/AladW>`__, he `did <https://wiki.archlinux.org/title/User:Alad/Local_repo_tools>`__ really good investigation of existing alternatives. | ||||
|  | ||||
| `arch-repo-manager <https://github.com/Martchus/arch-repo-manager>`__ | ||||
| """"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| Looks actually pretty good, in case if I would find it, I would probably didn't start this project; the most of features (like web interface or additional helpers) are already implemented or planned to be. However, this project seems to be at early alpha stage (as for Nov 2022), written in C++ (not pro or con) and misses documentation. | ||||
|  | ||||
| `archrepo2 <https://github.com/lilydjwg/archrepo2>`__ | ||||
| """"""""""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| Don't know, haven't tried it. But it lacks of documentation at least. | ||||
|  | ||||
| * ``ahriman`` has web interface. | ||||
| * ``archrepo2`` doesn't have synchronization and reporting. | ||||
| * ``archrepo2`` actively uses direct shell calls and ``yaourt`` components. | ||||
| * ``archrepo2`` has constantly running process instead of timer process (it is not pro or con). | ||||
|  | ||||
| `repoctl <https://github.com/cassava/repoctl>`__ | ||||
| """""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| * ``ahriman`` has web interface. | ||||
| * ``repoctl`` does not have reporting feature. | ||||
| * ``repoctl`` does not support local packages and patches. | ||||
| * Some actions are not fully automated in ``repoctl`` (e.g. package update still requires manual intervention for the build itself). | ||||
| * ``repoctl`` has better AUR interaction features. With colors! | ||||
| * ``repoctl`` has much easier configuration and even completion. | ||||
| * ``repoctl`` is able to store old packages. | ||||
| * Ability to host repository from same command in ``repoctl`` vs external services (e.g. nginx) in ``ahriman``. | ||||
|  | ||||
| `repod <https://gitlab.archlinux.org/archlinux/repod>`__ | ||||
| """""""""""""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| Official tool provided by distribution, has clean logic, but it is just a helper for ``repo-add``, e.g. it doesn't work with AUR and all packages builds have to be handled separately. | ||||
|  | ||||
| `repo-scripts <https://github.com/arcan1s/repo-scripts>`__ | ||||
| """""""""""""""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| Though originally I've created ahriman by trying to improve the project, it still lacks a lot of features: | ||||
|  | ||||
| * ``ahriman`` has web interface. | ||||
| * ``ahriman`` has better reporting with template support. | ||||
| * ``ahriman`` has more synchronization features (there was only ``rsync`` based). | ||||
| * ``ahriman`` supports local packages and patches. | ||||
| * ``repo-scripts`` doesn't have dependency management. | ||||
|  | ||||
| ...and so on. ``repo-scripts`` also has bad architecture and bad quality code and uses out-of-dated ``yaourt`` and ``package-query``. | ||||
|  | ||||
| `toolbox <https://github.com/chaotic-aur/toolbox>`__ | ||||
| """""""""""""""""""""""""""""""""""""""""""""""""""" | ||||
|  | ||||
| It is automation tools for ``repoctl`` mentioned above. Except for using shell it looks pretty cool and also offers some additional features like patches, remote synchronization (isn't it?) and reporting. | ||||
|  | ||||
| How to check service logs | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| By default, the service writes logs to ``journald`` which can be accessed by using ``journalctl`` command (logs are written to the journal of the user under which command is run). In order to retrieve logs for the process you can use the following command: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    sudo journalctl SYSLOG_IDENTIFIER=ahriman | ||||
|  | ||||
| You can also ask to forward logs to ``stderr``, just set ``--log-handler`` flag, e.g.: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    ahriman --log-handler console ... | ||||
|  | ||||
| You can even configure logging as you wish, but kindly refer to python ``logging`` module `configuration <https://docs.python.org/3/library/logging.config.html>`__. | ||||
|  | ||||
| The application uses java concept to log messages, e.g. class ``Application`` imported from ``ahriman.application.application`` package will have logger called ``ahriman.application.application.Application``. In order to e.g. change logger name for whole application package it is possible to change values for ``ahriman.application`` package; thus editing ``ahriman`` logger configuration will change logging for whole application (unless there are overrides for another logger). | ||||
|  | ||||
| Html customization | ||||
| ^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| It is possible to customize html templates. In order to do so, create files somewhere (refer to Jinja2 documentation and the service source code for available parameters) and prepend ``templates`` with value pointing to this directory. | ||||
|  | ||||
| In addition, default html templates supports style customization out-of-box. In order to customize style, just put file named ``user-style.jinja2`` to the templates directory. | ||||
|  | ||||
| Web API extension | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| The application loads web views dynamically, so it is possible relatively easy extend its API. In order to do so: | ||||
|  | ||||
| #. Create view class which is derived from ``ahriman.web.views.base.BaseView`` class. | ||||
| #. Create implementation for this class. | ||||
| #. Put file into ``ahriman.web.views`` package. | ||||
| #. Restart application. | ||||
|  | ||||
| For more details about implementation and possibilities, kindly refer to module documentation and source code and `aiohttp documentation <https://docs.aiohttp.org/en/stable/>`__. | ||||
|  | ||||
| I did not find my question | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| `Create an issue <https://github.com/arcan1s/ahriman/issues>`__ with type **Question**. | ||||
| @ -1,99 +0,0 @@ | ||||
| Non-x86_64 architecture setup | ||||
| ----------------------------- | ||||
|  | ||||
| The following section describes how to setup ahriman with architecture different from x86_64, as example i686. For most cases you have base repository available, e.g. archlinux32 repositories for i686 architecture; in case if base repository is not available, steps are a bit different, however, idea remains the same. | ||||
|  | ||||
| The example of setup with docker compose can be found `here <https://github.com/arcan1s/ahriman/tree/master/recipes/i686>`__. | ||||
|  | ||||
| Physical server setup | ||||
| ^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| In this example we are going to use files and packages which are provided by official repositories of the used architecture. Note, that versions might be different, thus you need to find correct versions on the distribution web site, e.g. `archlinux32 packages <https://www.archlinux32.org/packages/>`__. | ||||
|  | ||||
| #. | ||||
|    First, considering having base Arch Linux system, we need to install keyring for the specified repositories, e.g.: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       wget https://pool.mirror.archlinux32.org/i686/core/archlinux32-keyring-20230705-1.0-any.pkg.tar.zst | ||||
|       pacman -U archlinux32-keyring-20230705-1.0-any.pkg.tar.zst | ||||
|  | ||||
| #. | ||||
|    In order to run ``devtools`` scripts for custom architecture they also need specific ``makepkg`` configuration, it can be retrieved by installing the ``devtools`` package of the distribution, e.g.: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       wget https://pool.mirror.archlinux32.org/i686/extra/devtools-20221208-1.2-any.pkg.tar.zst | ||||
|       pacman -U devtools-20221208-1.2-any.pkg.tar.zst | ||||
|  | ||||
|    Alternatively, you can create your own ``makepkg`` configuration and save it as ``/usr/share/devtools/makepkg.conf.d/i686.conf``. | ||||
|  | ||||
| #. | ||||
|    Setup repository as usual: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       ahriman -a i686 service-setup --mirror 'https://de.mirror.archlinux32.org/$arch/$repo'--no-multilib ... | ||||
|  | ||||
|    In addition to usual options, you need to specify the following options: | ||||
|  | ||||
|    * ``--mirror`` - link to the mirrors which will be used instead of official repositories. | ||||
|    * ``--no-multilib`` - in the example we are using i686 architecture for which multilib repository doesn't exist. | ||||
|  | ||||
| #. | ||||
|    That's all Folks! | ||||
|  | ||||
| Docker container setup | ||||
| ^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| There are two possible ways to achieve same setup, by using docker container. The first one is just mount required files inside container and run it as usual (with specific environment variables). Another one is to create own container based on official one: | ||||
|  | ||||
| #. | ||||
|    Clone official container as base: | ||||
|  | ||||
|    .. code-block:: dockerfile | ||||
|  | ||||
|       FROM arcan1s/ahriman:latest | ||||
|  | ||||
| #. | ||||
|    Init pacman keys. This command is required in order to populate distribution keys: | ||||
|  | ||||
|    .. code-block:: dockerfile | ||||
|  | ||||
|       RUN pacman-key --init | ||||
|  | ||||
| #. | ||||
|    Install packages as it was described above: | ||||
|  | ||||
|    .. code-block:: dockerfile | ||||
|  | ||||
|       RUN pacman --noconfirm -Sy wget | ||||
|       RUN wget https://pool.mirror.archlinux32.org/i686/extra/devtools-20221208-1.2-any.pkg.tar.zst && pacman --noconfirm -U devtools-20221208-1.2-any.pkg.tar.zst | ||||
|       RUN wget https://pool.mirror.archlinux32.org/i686/core/archlinux32-keyring-20230705-1.0-any.pkg.tar.zst && pacman --noconfirm -U archlinux32-keyring-20230705-1.0-any.pkg.tar.zst | ||||
|  | ||||
| #. | ||||
|    At that point you should have full ``Dockerfile`` like: | ||||
|  | ||||
|    .. code-block:: dockerfile | ||||
|  | ||||
|       FROM arcan1s/ahriman:latest | ||||
|  | ||||
|       RUN pacman-key --init | ||||
|  | ||||
|       RUN pacman --noconfirm -Sy wget | ||||
|       RUN wget https://pool.mirror.archlinux32.org/i686/extra/devtools-20221208-1.2-any.pkg.tar.zst && pacman --noconfirm -U devtools-20221208-1.2-any.pkg.tar.zst | ||||
|       RUN wget https://pool.mirror.archlinux32.org/i686/core/archlinux32-keyring-20230705-1.0-any.pkg.tar.zst && pacman --noconfirm -U archlinux32-keyring-20230705-1.0-any.pkg.tar.zst | ||||
|  | ||||
| #. | ||||
|    After that you can build you own container, e.g.: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       docker build --tag ahriman-i686:latest | ||||
|  | ||||
| #. | ||||
|    Now you can run locally built container as usual with passing environment variables for setup command: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       docker run --privileged -p 8080:8080 -e AHRIMAN_ARCHITECTURE=i686 -e AHRIMAN_PACMAN_MIRROR='https://de.mirror.archlinux32.org/$arch/$repo' -e AHRIMAN_MULTILIB= ahriman-i686:latest | ||||
| @ -1,99 +0,0 @@ | ||||
| Reporting | ||||
| --------- | ||||
|  | ||||
| How to report by email | ||||
| ^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #. | ||||
|    Install dependencies: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       yay -S --asdeps python-jinja | ||||
|  | ||||
| #. | ||||
|    Configure the service: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [report] | ||||
|       target = email | ||||
|  | ||||
|       [email] | ||||
|       host = smtp.example.com | ||||
|       link_path = http://example.com/aur-clone/x86_64 | ||||
|       password = ... | ||||
|       port = 465 | ||||
|       receivers = me@example.com | ||||
|       sender = me@example.com | ||||
|       user = me@example.com | ||||
|  | ||||
| How to generate index page for S3 | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #. | ||||
|    Install dependencies: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       yay -S --asdeps python-jinja | ||||
|  | ||||
| #. | ||||
|    Configure the service: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [report] | ||||
|       target = html | ||||
|  | ||||
|       [html] | ||||
|       path = /var/lib/ahriman/repository/aur-clone/x86_64/index.html | ||||
|       link_path = http://example.com/aur-clone/x86_64 | ||||
|  | ||||
| After these steps ``index.html`` file will be automatically synced to S3. | ||||
|  | ||||
| How to post build report to telegram | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #. | ||||
|    It still requires additional dependencies: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       yay -S --asdeps python-jinja | ||||
|  | ||||
| #. | ||||
|    Register bot in telegram. You can do it by starting chat with `@BotFather <https://t.me/botfather>`__. For more details please refer to `official documentation <https://core.telegram.org/bots>`__. | ||||
|  | ||||
| #. | ||||
|    Optionally (if you want to post message in chat): | ||||
|  | ||||
|    #. Create telegram channel. | ||||
|    #. Invite your bot into the channel. | ||||
|    #. Make your channel public | ||||
|  | ||||
| #. | ||||
|    Get chat id if you want to use by numerical id or just use id prefixed with ``@`` (e.g. ``@ahriman``). If you are not using chat the chat id is your user id. If you don't want to make channel public you can use `this guide <https://stackoverflow.com/a/33862907>`__. | ||||
|  | ||||
| #. | ||||
|    Configure the service: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [report] | ||||
|       target = telegram | ||||
|  | ||||
|       [telegram] | ||||
|       api_key = aaAAbbBBccCC | ||||
|       chat_id = @ahriman | ||||
|       link_path = http://example.com/aur-clone/x86_64 | ||||
|  | ||||
|    ``api_key`` is the one sent by `@BotFather <https://t.me/botfather>`__, ``chat_id`` is the value retrieved from previous step. | ||||
|  | ||||
| If you did everything fine you should receive the message with the next update. Quick credentials check can be done by using the following command: | ||||
|  | ||||
| .. code-block:: shell | ||||
|  | ||||
|    curl 'https://api.telegram.org/bot{api_key}/sendMessage?chat_id={chat_id}&text=hello' | ||||
|  | ||||
| (replace ``{chat_id}`` and ``{api_key}`` with the values from configuration). | ||||
| @ -1,131 +0,0 @@ | ||||
| Remote synchronization | ||||
| ---------------------- | ||||
|  | ||||
| How to sync repository to another server | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| There are several choices: | ||||
|  | ||||
| #. | ||||
|    Easy and cheap, just share your local files through the internet, e.g. for ``nginx``: | ||||
|  | ||||
|    .. code-block:: | ||||
|  | ||||
|        server { | ||||
|            location / { | ||||
|                autoindex on; | ||||
|                root /var/lib/ahriman/repository/; | ||||
|            } | ||||
|        } | ||||
|  | ||||
| #. | ||||
|    You can also upload your packages using ``rsync`` to any available server. In order to use it you would need to configure ahriman first: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|        [upload] | ||||
|        target = rsync | ||||
|  | ||||
|        [rsync] | ||||
|        remote = 192.168.0.1:/srv/repo | ||||
|  | ||||
|    After that just add ``/srv/repo`` to the ``pacman.conf`` as usual. You can also upload to S3 (``Server = https://s3.eu-central-1.amazonaws.com/repository/aur-clone/x86_64``) or to GitHub (``Server = https://github.com/ahriman/repository/releases/download/aur-clone-x86_64``). | ||||
|  | ||||
| How to sync to S3 | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #. | ||||
|    Install dependencies: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       pacman -S python-boto3 | ||||
|  | ||||
| #. | ||||
|    Create a bucket (e.g. ``repository``). | ||||
|  | ||||
| #. | ||||
|    Create an user with write access to the bucket: | ||||
|  | ||||
|    .. code-block:: | ||||
|  | ||||
|        { | ||||
|            "Version": "2012-10-17", | ||||
|            "Statement": [ | ||||
|                { | ||||
|                    "Sid": "ListObjectsInBucket", | ||||
|                    "Effect": "Allow", | ||||
|                    "Action": [ | ||||
|                        "s3:ListBucket" | ||||
|                    ], | ||||
|                    "Resource": [ | ||||
|                        "arn:aws:s3:::repository" | ||||
|                    ] | ||||
|                }, | ||||
|                { | ||||
|                    "Sid": "AllObjectActions", | ||||
|                    "Effect": "Allow", | ||||
|                    "Action": "s3:*Object", | ||||
|                    "Resource": [ | ||||
|                        "arn:aws:s3:::repository/*" | ||||
|                    ] | ||||
|                } | ||||
|            ] | ||||
|        } | ||||
|  | ||||
| #. | ||||
|    Create an API key for the user and store it. | ||||
|  | ||||
| #. | ||||
|    Configure the service as following: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|        [upload] | ||||
|        target = s3 | ||||
|  | ||||
|        [s3] | ||||
|        access_key = ... | ||||
|        bucket = repository | ||||
|        region = eu-central-1 | ||||
|        secret_key = ... | ||||
|  | ||||
| S3 with SSL | ||||
| """"""""""" | ||||
|  | ||||
| In order to configure S3 on custom domain with SSL (and some other features, like redirects), the CloudFront should be used. | ||||
|  | ||||
| #. Configure S3 as described above. | ||||
| #. In bucket properties, enable static website hosting with hosting type "Host a static website". | ||||
| #. Go to AWS Certificate Manager and create public certificate on your domain. Validate domain as suggested. | ||||
| #. Go to CloudFront and create distribution. The following settings are required: | ||||
|  | ||||
|    * Origin domain choose S3 bucket. | ||||
|    * Tick use website endpoint. | ||||
|    * Disable caching. | ||||
|    * Select issued certificate. | ||||
|  | ||||
| #. Point DNS record to CloudFront address. | ||||
|  | ||||
| How to sync to GitHub releases | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #. | ||||
|    Create a repository. | ||||
|  | ||||
| #. | ||||
|    `Create API key <https://github.com/settings/tokens>`__ with scope ``public_repo``. | ||||
|  | ||||
| #. | ||||
|    Configure the service as following: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|        [upload] | ||||
|        target = github | ||||
|  | ||||
|        [github] | ||||
|        owner = ahriman | ||||
|        password = ... | ||||
|        repository = repository | ||||
|        username = ahriman | ||||
							
								
								
									
										145
									
								
								docs/faq/web.rst
									
									
									
									
									
								
							
							
						
						
									
										145
									
								
								docs/faq/web.rst
									
									
									
									
									
								
							| @ -1,145 +0,0 @@ | ||||
| Web service | ||||
| ----------- | ||||
|  | ||||
| How to setup web service | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #.  | ||||
|    Install dependencies: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       yay -S --asdeps python-aiohttp python-aiohttp-jinja2 python-aiohttp-apispec>=3.0.0 python-aiohttp-cors | ||||
|  | ||||
| #.  | ||||
|    Configure service: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [web] | ||||
|       port = 8080 | ||||
|  | ||||
| #.  | ||||
|    Start the web service ``systemctl enable --now ahriman-web``. | ||||
|  | ||||
| How to enable basic authorization | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #.  | ||||
|    Install dependencies 😊: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       yay -S --asdeps python-aiohttp-security python-aiohttp-session python-cryptography | ||||
|  | ||||
| #.  | ||||
|    Configure the service to enable authorization: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [auth] | ||||
|       target = configuration | ||||
|       salt = somerandomstring | ||||
|  | ||||
|    The ``salt`` parameter is optional, but recommended, and can be set to any (random) string. | ||||
|  | ||||
| #. | ||||
|    In order to provide access for reporting from application instances you can (the recommended way) use unix sockets by the following configuration (note, that it requires ``python-requests-unixsocket2`` package to be installed): | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [web] | ||||
|       unix_socket = /run/ahriman/ahriman-web.sock | ||||
|  | ||||
|    This socket path must be available for web service instance and must be available for all application instances (e.g. in case if you are using docker container - see above - you need to make sure that the socket is passed to the root filesystem). | ||||
|  | ||||
|    By the way, unix socket variable will be automatically set in case if ``--web-unix-socket`` argument is supplied to the ``setup`` subcommand. | ||||
|  | ||||
|    Alternatively, you need to create user for the service: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman user-add -r full api | ||||
|  | ||||
|    This command will ask for the password, just type it in stdin; **do not** leave the field blank, user will not be able to authorize, and finally configure the application: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [status] | ||||
|       username = api | ||||
|       password = pa55w0rd | ||||
|  | ||||
| #. | ||||
|    Create end-user with password: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman user-add -r full my-first-user | ||||
|  | ||||
| #. | ||||
|    Restart web service ``systemctl restart ahriman-web``. | ||||
|  | ||||
| Using PAM authentication | ||||
| """""""""""""""""""""""" | ||||
|  | ||||
| There is also ability to allow system users to log in. To do so, the following configuration have to be set: | ||||
|  | ||||
| .. code-block:: ini | ||||
|  | ||||
|    [auth] | ||||
|    target = pam | ||||
|    full_access_group = wheel | ||||
|  | ||||
| With this setup, every user (except root) will be able to log in by using system password. If user belongs to the ``wheel`` group, the full access will be automatically granted. It is also possible to manually add, block user or change user rights via usual user management process. | ||||
|  | ||||
| How to enable OAuth authorization | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| #.  | ||||
|    Create OAuth web application, download its ``client_id`` and ``client_secret``. | ||||
|  | ||||
| #. | ||||
|    Guess what? Install dependencies: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       yay -S --asdeps python-aiohttp-security python-aiohttp-session python-cryptography python-aioauth-client | ||||
|  | ||||
| #.  | ||||
|    Configure the service: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [auth] | ||||
|       target = oauth | ||||
|       client_id = ... | ||||
|       client_secret = ... | ||||
|  | ||||
|       [web] | ||||
|       address = https://example.com | ||||
|  | ||||
|    Configure ``oauth_provider`` and ``oauth_scopes`` in case if you would like to use different from Google provider. Scope must grant access to user email. ``web.address`` is required to make callback URL available from internet. | ||||
|  | ||||
| #.  | ||||
|    If you are not going to use unix socket, you also need to create service user (remember to set ``auth.salt`` option before if required): | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman user-add --as-service -r full api | ||||
|  | ||||
| #.  | ||||
|    Create end-user: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo -u ahriman ahriman user-add -r full my-first-user | ||||
|  | ||||
|    When it will ask for the password leave it blank. | ||||
|  | ||||
| #. | ||||
|    Restart web service ``systemctl restart ahriman-web``. | ||||
|  | ||||
| How to implement own interface | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| You can write your own interface by using API which is provided by the web service. Full autogenerated API documentation is available at ``http://localhost:8080/api-docs``. | ||||
| @ -1,41 +0,0 @@ | ||||
| Welcome to ahriman's documentation! | ||||
| =================================== | ||||
|  | ||||
| Wrapper for managing custom repository inspired by `repo-scripts <https://github.com/arcan1s/repo-scripts>`__. | ||||
|  | ||||
| Features | ||||
| -------- | ||||
|  | ||||
| * Install-configure-forget manager for the very own repository. | ||||
| * Multi architecture and repository support. | ||||
| * Dependency manager. | ||||
| * VCS packages support. | ||||
| * Official repository support. | ||||
| * Ability to patch AUR packages and even create package from local PKGBUILDs. | ||||
| * Various rebuild options with ability to automatically bump package version. | ||||
| * Sign support with gpg (repository, package), multiple packagers support. | ||||
| * Triggers for repository updates, e.g. synchronization to remote services (rsync, S3 and GitHub) and report generation (email, html, telegram). | ||||
| * Repository status interface with optional authorization and control options. | ||||
|  | ||||
| Live demos | ||||
| ---------- | ||||
|  | ||||
| * `Build status page <https://ahriman-demo.arcanis.me>`__. You can login as ``demo`` user by using ``demo`` password. Note, however, you will not be able to run tasks. `HTTP API documentation <https://ahriman-demo.arcanis.me/api-docs>`__ is also available. | ||||
| * `Repository index <https://repo.arcanis.me/x86_64/index.html>`__. | ||||
| * `Telegram feed <https://t.me/arcanisrepo>`__. | ||||
|  | ||||
| Contents | ||||
| -------- | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 2 | ||||
|  | ||||
|    setup | ||||
|    configuration | ||||
|    command-line | ||||
|    faq/index | ||||
|    migration | ||||
|    architecture | ||||
|    advanced-usage | ||||
|    triggers | ||||
|    modules | ||||
| @ -1,66 +0,0 @@ | ||||
| Manual migrations | ||||
| ================= | ||||
|  | ||||
| Normally the most of migrations are handled automatically after application start, however, some upgrades require manual interventions; this document describes them. | ||||
|  | ||||
| Upgrades to breakpoints | ||||
| ----------------------- | ||||
|  | ||||
| To 2.9.0 | ||||
| ^^^^^^^^ | ||||
|  | ||||
| This release includes major upgrade for the newest devtools and archlinux repository structure. In order to upgrade package need to: | ||||
|  | ||||
| #. Upgrade to the latest major release of python (3.11) (required by other changes). | ||||
| #. Upgrade devtools to the latest release. | ||||
| #. Backup local settings, ``/etc/ahriman.ini.d/00-setup-overrides.ini`` by default. | ||||
| #. Run setup command (i.e. ``ahriman service-setup``) again with the same arguments as used before. This step can be done manually by moving ``devtools`` configuration (something like ``/usr/share/devtools/pacman-ahriman*.conf``) to new location ``/usr/share/devtools/pacman.conf.d/`` under name ``ahriman.conf``. After that make sure to remove any ``community`` mentions from configurations (e.g. ``/usr/share/devtools/pacman.conf.d/ahriman.conf``, ``/etc/ahriman.ini``) if there were any. The only thing which will change is ``devtools`` configuration. | ||||
| #. Remove build chroot as it is incompatible, e.g. ``sudo ahriman service-clean --chroot``. | ||||
| #. Run ``sudo -u ahriman ahriman update --no-aur --no-local --no-manual -yy`` in order to update local databases. | ||||
|  | ||||
| To 2.12.0 | ||||
| ^^^^^^^^^ | ||||
|  | ||||
| This release includes paths migration. Unlike usual case, no automatic migration is performed because it might break user configuration. The following noticeable changes have been made: | ||||
|  | ||||
| * Path to pre-built packages now includes repository name, i.e. it has been changed from ``/var/lib/ahriman/packages/x86_64`` to ``/var/lib/ahriman/packages/aur-clone/x86_64``. | ||||
| * Path to pacman databases now includes repository name too, it has been changed from ``/var/lib/ahriman/pacman/x86_64`` to ``/var/lib/ahriman/pacman/aur-clone/x86_64``. | ||||
| * Path to repository itself also includes repository name, from ``/var/lib/ahriman/repository/x86_64`` to ``/var/lib/ahriman/repository/aur-clone/x86_64``. | ||||
|  | ||||
| In order to migrate to the new filesystem tree the following actions are required: | ||||
|  | ||||
| #. | ||||
|    Stop and disable all services, e.g. timer and web service: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo systemctl disable --now ahriman@x86_64.timer | ||||
|       sudo systemctl disable --now ahriman-web@x86_64 | ||||
|  | ||||
| #. | ||||
|    Create directory tree. It can be done by running ``ahriman service-tree-migrate`` subcommand. It performs copying between the old repository tree and the new one. Alternatively directories can be copied by hands. | ||||
|  | ||||
| #. | ||||
|    Edit configuration in case if anything is pointing to the old path, e.g. HTML report generation, in the way in which it will point to the directory inside repository specific one, e.g. ``/var/lib/ahriman/repository/x86_64`` to ``/var/lib/ahriman/repository/aur-clone/x86_64``. | ||||
|  | ||||
| #. | ||||
|    Run setup command (i.e. ``ahriman service-setup``) again with the same arguments as used before. This step can be done manually by editing devtools pacman configuration (``/usr/share/devtools/pacman.conf.d/ahriman-x86_64.conf`` by default) replacing ``Server`` with path to the repository, e.g.: | ||||
|  | ||||
|    .. code-block:: ini | ||||
|  | ||||
|       [aur-clone] | ||||
|       SigLevel = Optional TrustAll | ||||
|       Server = file:///var/lib/ahriman/repository/aur-clone/x86_64 | ||||
|  | ||||
|    In case of manual interventions make sure to remove architecture reference from ``web`` sections (if any) to avoid ambiguity. | ||||
|  | ||||
| #. | ||||
|    Make sure to update remote synchronization services if any. Almost all of them rely on current repository tree by default, so it is required to setup either redirects or configure to synchronize to the old locations (e.g. ``object_path`` option for S3 synchronization). | ||||
|  | ||||
| #. | ||||
|    Enable and start services again. Unit template parameter should include both repository architecture and name, dash separated, e.g. ``x86_64-aur-clone``, where ``x86_64`` is the repository architecture and ``aur-clone`` is the repository name: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo systemctl enable --now ahriman@x86_64-aur-clone.timer | ||||
|       sudo systemctl enable --now ahriman-web | ||||
| @ -1,7 +0,0 @@ | ||||
| Modules | ||||
| ======= | ||||
|  | ||||
| .. toctree:: | ||||
|    :maxdepth: 4 | ||||
|  | ||||
|    ahriman | ||||
							
								
								
									
										66
									
								
								docs/setup.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										66
									
								
								docs/setup.md
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,66 @@ | ||||
| # Setup instructions | ||||
|  | ||||
| 1. Install package as usual. | ||||
| 2. Change settings if required, see [configuration reference](configuration.md) for more details. | ||||
| 3. TL;DR | ||||
|  | ||||
|    ```shell | ||||
|    sudo ahriman -a x86_64 repo-setup ... | ||||
|    ``` | ||||
|     | ||||
|    `repo-setup` literally does the following steps: | ||||
|  | ||||
|    1. Create `/var/lib/ahriman/.makepkg.conf` with `makepkg.conf` overrides if required (at least you might want to set `PACKAGER`): | ||||
|  | ||||
|        ```shell | ||||
|        echo 'PACKAGER="John Doe <john@doe.com>"' | sudo -u ahriman tee -a /var/lib/ahriman/.makepkg.conf | ||||
|        ``` | ||||
|  | ||||
|    2. Configure build tools (it is required for correct dependency management system): | ||||
|  | ||||
|        1. Create build command, e.g. `ln -s /usr/bin/archbuild /usr/local/bin/ahriman-x86_64-build` (you can choose any name for command, basically it should be `{name}-{arch}-build`). | ||||
|        2. Create configuration file, e.g. `cp /usr/share/devtools/pacman-{extra,ahriman}.conf` (same as previous `pacman-{name}.conf`). | ||||
|        3. Change configuration file, add your own repository, add multilib repository etc; | ||||
|        4. Set `build_command` option to point to your command. | ||||
|        5. Configure `/etc/sudoers.d/ahriman` to allow running command without a password. | ||||
|  | ||||
|        ```shell | ||||
|        ln -s /usr/bin/archbuild /usr/local/bin/ahriman-x86_64-build | ||||
|        cp /usr/share/devtools/pacman-{extra,ahriman}.conf | ||||
|  | ||||
|        echo '[multilib]' | tee -a /usr/share/devtools/pacman-ahriman.conf | ||||
|        echo 'Include = /etc/pacman.d/mirrorlist' | tee -a /usr/share/devtools/pacman-ahriman.conf | ||||
|  | ||||
|        echo '[aur-clone]' | tee -a /usr/share/devtools/pacman-ahriman.conf | ||||
|        echo 'SigLevel = Optional TrustAll' | tee -a /usr/share/devtools/pacman-ahriman.conf | ||||
|        echo 'Server = file:///var/lib/ahriman/repository/$arch' | tee -a /usr/share/devtools/pacman-ahriman.conf | ||||
|  | ||||
|        echo '[build]' | tee -a /etc/ahriman.ini.d/build.ini | ||||
|        echo 'build_command = ahriman-x86_64-build' | tee -a /etc/ahriman.ini.d/build.ini | ||||
|  | ||||
|        echo 'Cmnd_Alias CARCHBUILD_CMD = /usr/local/bin/ahriman-x86_64-build *' | tee -a /etc/sudoers.d/ahriman | ||||
|        echo 'ahriman ALL=(ALL) NOPASSWD: CARCHBUILD_CMD' | tee -a /etc/sudoers.d/ahriman | ||||
|        chmod 400 /etc/sudoers.d/ahriman | ||||
|        ``` | ||||
|  | ||||
| 4. Start and enable `ahriman@.timer` via `systemctl`: | ||||
|  | ||||
|     ```shell | ||||
|     systemctl enable --now ahriman@x86_64.timer | ||||
|     ``` | ||||
|  | ||||
| 5. Start and enable status page: | ||||
|  | ||||
|     ```shell | ||||
|     systemctl enable --now ahriman-web@x86_64 | ||||
|     ``` | ||||
|  | ||||
| 6. Add packages by using `ahriman package-add {package}` command: | ||||
|  | ||||
|     ```shell | ||||
|     sudo -u ahriman ahriman -a x86_64 package-add ahriman --now | ||||
|     ``` | ||||
|  | ||||
| ## User creation | ||||
|  | ||||
| `user-add` subcommand is recommended for new user creation. | ||||
| @ -1,93 +0,0 @@ | ||||
| Initial setup | ||||
| ============= | ||||
|  | ||||
| #.  | ||||
|    Install package as usual. | ||||
| #.  | ||||
|    Change settings if required, see :doc:`configuration reference <configuration>` for more details. | ||||
| #. | ||||
|    Perform initial setup: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|       sudo ahriman -a x86_64 -r aur-clone service-setup ... | ||||
|  | ||||
|    ``service-setup`` literally does the following steps: | ||||
|  | ||||
|    #. | ||||
|       Create ``/var/lib/ahriman/.makepkg.conf`` with ``makepkg.conf`` overrides if required (at least you might want to set ``PACKAGER``): | ||||
|  | ||||
|       .. code-block:: shell | ||||
|  | ||||
|           echo 'PACKAGER="John Doe <john@doe.com>"' | sudo -u ahriman tee -a /var/lib/ahriman/.makepkg.conf | ||||
|  | ||||
|    #. | ||||
|       Configure build tools (it is required for correct dependency management system): | ||||
|  | ||||
|       #.  | ||||
|          Create build command (you can choose any name for command, basically it should be ``{name}-{arch}-build``): | ||||
|  | ||||
|          .. code-block:: shell | ||||
|  | ||||
|             ln -s /usr/bin/archbuild /usr/local/bin/aur-clone-x86_64-build | ||||
|  | ||||
|       #.  | ||||
|          Create configuration file (same as previous ``{name}.conf``): | ||||
|  | ||||
|          .. code-block:: shell | ||||
|  | ||||
|             cp /usr/share/devtools/pacman.conf.d/{extra,aur-clone}.conf | ||||
|  | ||||
|       #.  | ||||
|          Change configuration file, add your own repository, add multilib repository etc: | ||||
|  | ||||
|          .. code-block:: shell | ||||
|  | ||||
|             echo '[multilib]' | tee -a /usr/share/devtools/pacman.conf.d/aur-clone-x86_64.conf | ||||
|             echo 'Include = /etc/pacman.d/mirrorlist' | tee -a /usr/share/devtools/pacman.conf.d/aur-clone-x86_64.conf | ||||
|  | ||||
|             echo '[aur-clone]' | tee -a /usr/share/devtools/pacman.conf.d/aur-clone-x86_64.conf | ||||
|             echo 'SigLevel = Optional TrustAll' | tee -a /usr/share/devtools/pacman.conf.d/aur-clone-x86_64.conf | ||||
|             echo 'Server = file:///var/lib/ahriman/repository/$repo/$arch' | tee -a /usr/share/devtools/pacman.conf.d/aur-clone-x86_64.conf | ||||
|  | ||||
|       #.  | ||||
|          Set ``build_command`` option to point to your command: | ||||
|  | ||||
|          .. code-block:: shell | ||||
|  | ||||
|             echo '[build]' | tee -a /etc/ahriman.ini.d/build.ini | ||||
|             echo 'build_command = aur-clone-x86_64-build' | tee -a /etc/ahriman.ini.d/build.ini | ||||
|  | ||||
|       #. | ||||
|          Configure ``/etc/sudoers.d/ahriman`` to allow running command without a password: | ||||
|  | ||||
|          .. code-block:: shell | ||||
|  | ||||
|             echo 'Cmnd_Alias CARCHBUILD_CMD = /usr/local/bin/aur-clone-x86_64-build *' | tee -a /etc/sudoers.d/ahriman | ||||
|             echo 'ahriman ALL=(ALL) NOPASSWD:SETENV: CARCHBUILD_CMD' | tee -a /etc/sudoers.d/ahriman | ||||
|             chmod 400 /etc/sudoers.d/ahriman | ||||
|  | ||||
|       This command supports several arguments, kindly refer to its help message. | ||||
|  | ||||
| #.  | ||||
|    Start and enable ``ahriman@.timer`` via ``systemctl``: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|        systemctl enable --now ahriman@x86_64-aur-clone.timer | ||||
|  | ||||
| #.  | ||||
|    Start and enable status page: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|        systemctl enable --now ahriman-web | ||||
|  | ||||
| #.  | ||||
|    Add packages by using ``ahriman package-add {package}`` command: | ||||
|  | ||||
|    .. code-block:: shell | ||||
|  | ||||
|        sudo -u ahriman ahriman package-add ahriman --now --refresh | ||||
|  | ||||
|    The ``--refresh`` flag is required in order to handle local database update. | ||||
| @ -1,152 +0,0 @@ | ||||
| Triggers | ||||
| ======== | ||||
|  | ||||
| The package provides ability to write custom extensions which will be run on (the most) actions, e.g. after updates. By default ahriman provides three types of extensions - reporting, files uploading and PKGBUILD synchronization. Each extension must derive from the ``ahriman.core.triggers.Trigger`` class and should implement at least one of the abstract methods: | ||||
|  | ||||
| * ``on_result`` - trigger action which will be called after build process, the build result and the list of repository packages will be supplied as arguments. | ||||
| * ``on_start`` - trigger action which will be called right before the start of the application process. | ||||
| * ``on_stop`` - action which will be called right before the exit. | ||||
|  | ||||
| Note, it isn't required to implement all of those methods (or even one of them), however, it is highly recommended to avoid trigger actions in ``__init__`` method as it will be run on any application start (e.g. even if you are just searching in AUR). | ||||
|  | ||||
| Built-in triggers | ||||
| ----------------- | ||||
|  | ||||
| For the configuration details and settings explanation kindly refer to the :doc:`documentation <configuration>`. | ||||
|  | ||||
| ``ahriman.core.distributed.WorkerLoaderTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Special trigger to be used to load workers from database on the start of the application rather than configuration. If the option is already set, it will skip processing. | ||||
|  | ||||
| ``ahriman.core.distributed.WorkerTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Another trigger for the distributed system, which registers itself as remote worker, calling remote service periodically. | ||||
|  | ||||
| ``ahriman.core.gitremote.RemotePullTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This trigger will be called before any action (``on_start``) and pulls remote PKGBUILD repository locally; after that it copies found PKGBUILDs from the cloned repository to the local cache. It is useful in case if you have patched PGKBUILDs (or even missing in AUR) which you would like to use for package building and, technically, just simplifies the local package building. | ||||
|  | ||||
| In order to update those packages you would need to clone your repository separately, make changes in PKGBUILD (e.g. bump version and update checksums), commit them and push back. On the next ahriman's repository update, it will pull changes you committed and will perform package update. | ||||
|  | ||||
| ``ahriman.core.gitremote.RemotePushTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This trigger will be called right after build process (``on_result``). It will pick PKGBUILDs for the updated packages, pull them (together with any other files) and commit and push changes to remote repository. No real use cases, but the most of user repositories do it. | ||||
|  | ||||
| ``ahriman.core.report.ReportTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Trigger which can be used for reporting. It implements ``on_result`` method and thus being called on each build update and generates report (e.g. html, telegram etc) according to the current settings. | ||||
|  | ||||
| ``ahriman.core.support.KeyringTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Generator for keyring package. This trigger will extract keys from local keychain and pack them into keyring specific format. This trigger will generate sources including PKGBUILD, which can be used later for package building. | ||||
|  | ||||
| ``ahriman.core.support.MirrorlistTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Simple generator for mirrorlist package, based on the URLs which were set by configuration. This trigger will generate sources including PKGBUILD, which can be used later for package building. | ||||
|  | ||||
| ``ahriman.core.upload.UploadTrigger`` | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| This trigger takes build result (``on_result``) and performs syncing of the local packages to the remote mirror (e.g. S3 or just by rsync). | ||||
|  | ||||
| Context variables | ||||
| ----------------- | ||||
|  | ||||
| By default, only configuration and architecture are passed to triggers. However, some triggers might want to have access to other high-level wrappers. In order to provide such ability and avoid (double) initialization, the service provides a global context variables, which can be accessed from ``ahriman.core`` package: | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    from ahriman.core import context | ||||
|  | ||||
|    ctx = context.get() | ||||
|  | ||||
| Just because context is wrapped inside ``contexvars.ContextVar``, you need to explicitly extract variable by ``get()`` method. Later you can extract any variable if it is set, e.g.: | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    from ahriman.core.database import SQLite | ||||
|    from ahriman.models.context_key import ContextKey | ||||
|  | ||||
|    database = ctx.get(ContextKey("database", SQLite)) | ||||
|  | ||||
| In order to provide typed API, all variables are stored together with their type. The ``get(ContextKey)`` method will throw ``KeyError`` in case if key is missing. Alternatively you can set your own variable inside context: | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    ctx.set(ContextKey("answer", int), 42) | ||||
|    context.set(ctx) | ||||
|  | ||||
| Note, however, that there are several limitations: | ||||
|  | ||||
| * Context variables are immutable, thus you cannot override value if the key already presented. | ||||
| * The ``return_type`` of ``ContextKey`` should match the value type, otherwise exception will be thrown. | ||||
|  | ||||
| The ``context`` also implements collection methods such as ``__iter__`` and ``__len__``. | ||||
|  | ||||
| Trigger example | ||||
| --------------- | ||||
|  | ||||
| Lets consider example of reporting trigger (e.g. `slack <https://slack.com/>`__, which provides easy HTTP API for integration triggers). | ||||
|  | ||||
| In order to post message to slack we will need a specific trigger URL (something like ``https://hooks.slack.com/services/company_id/trigger_id``), channel (e.g. ``#archrepo``) and username (``repo-bot``). | ||||
|  | ||||
| As it has been mentioned, our trigger must derive from specific class: | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    from ahriman.core.triggers import Trigger | ||||
|  | ||||
|    class SlackReporter(Trigger): | ||||
|  | ||||
|        def __init__(self, repository_id, configuration): | ||||
|            Trigger.__init__(self, repository_id, configuration) | ||||
|            self.slack_url = configuration.get("slack", "url") | ||||
|            self.channel = configuration.get("slack", "channel") | ||||
|            self.username = configuration.get("slack", "username") | ||||
|  | ||||
| By now we have class with all required variables. Lets implement run method. Slack API requires positing data with specific payload by HTTP, thus: | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    import json | ||||
|    import requests | ||||
|  | ||||
|    def notify(result, slack_url, channel, username): | ||||
|        text = f"""Build has been completed with packages: {", ".join([package.name for package in result.success])}""" | ||||
|        payload = {"channel": channel, "username": username, "text": text} | ||||
|        response = requests.post(slack_url, data={"payload": json.dumps(payload)}) | ||||
|        response.raise_for_status() | ||||
|  | ||||
| Obviously you can implement the specified method in class, but for guide purpose it has been done as separated method. Now we can merge this method into the class: | ||||
|  | ||||
| .. code-block:: python | ||||
|  | ||||
|    class SlackReporter(Trigger): | ||||
|  | ||||
|        def __init__(self, repository_id, configuration): | ||||
|            Trigger.__init__(self, repository_id, configuration) | ||||
|            self.slack_url = configuration.get("slack", "url") | ||||
|            self.channel = configuration.get("slack", "channel") | ||||
|            self.username = configuration.get("slack", "username") | ||||
|  | ||||
|        def on_result(self, result, packages): | ||||
|            notify(result, self.slack_url, self.channel, self.username) | ||||
|  | ||||
| Setup the trigger | ||||
| ^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| First, put the trigger in any path it can be exported, e.g. by packing the resource into python package (which will lead to import path as ``package.slack_reporter.SlackReporter``) or just put file somewhere it can be accessed by application (e.g. ``/usr/local/lib/slack_reporter.SlackReporter``). | ||||
|  | ||||
| After that run application as usual and receive notification in your slack channel. | ||||
|  | ||||
| Trigger configuration schema | ||||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||||
|  | ||||
| Triggers can expose their configuration schema. It can be achieved by implementing ``CONFIGURATION_SCHEMA`` class variable according to `cerberus <https://docs.python-cerberus.org/>`__ documentation. For more details and examples, please refer to built-in triggers implementations. | ||||
							
								
								
									
										
											BIN
										
									
								
								github-logo.png
									
									
									
									
									
								
							
							
						
						
									
										
											BIN
										
									
								
								github-logo.png
									
									
									
									
									
								
							
										
											Binary file not shown.
										
									
								
							| Before Width: | Height: | Size: 62 KiB | 
| @ -1,53 +1,47 @@ | ||||
| # Maintainer: Evgeniy Alekseev | ||||
|  | ||||
| pkgname='ahriman' | ||||
| pkgver=2.14.2 | ||||
| pkgver=2.0.0rc7 | ||||
| pkgrel=1 | ||||
| pkgdesc="ArcH linux ReposItory MANager" | ||||
| pkgdesc="ArcH Linux ReposItory MANager" | ||||
| arch=('any') | ||||
| url="https://github.com/arcan1s/ahriman" | ||||
| license=('GPL3') | ||||
| depends=('devtools>=1:1.0.0' 'git' 'pyalpm' 'python-cerberus' 'python-inflection' 'python-passlib' 'python-pyelftools' 'python-requests' 'python-srcinfo') | ||||
| makedepends=('python-build' 'python-flit' 'python-installer' 'python-wheel') | ||||
| depends=('devtools' 'git' 'pyalpm' 'python-inflection' 'python-passlib' 'python-requests' 'python-srcinfo') | ||||
| makedepends=('python-build' 'python-installer' 'python-wheel') | ||||
| optdepends=('breezy: -bzr packages support' | ||||
|             'darcs: -darcs packages support' | ||||
|             'mercurial: -hg packages support' | ||||
|             'python-aioauth-client: web server with OAuth2 authorization' | ||||
|             'python-aiohttp: web server' | ||||
|             'python-aiohttp-apispec>=3.0.0: web server' | ||||
|             'python-aiohttp-cors: web server' | ||||
|             'python-aiohttp-debugtoolbar: web server with enabled debug panel' | ||||
|             'python-aiohttp-jinja2: web server' | ||||
|             'python-aiohttp-security: web server with authorization' | ||||
|             'python-aiohttp-session: web server with authorization' | ||||
|             'python-boto3: sync to s3' | ||||
|             'python-cryptography: web server with authorization' | ||||
|             'python-requests-unixsocket2: client report to web server by unix socket' | ||||
|             'python-jinja: html report generation' | ||||
|             'python-systemd: journal support' | ||||
|             'rsync: sync by using rsync' | ||||
|             'subversion: -svn packages support') | ||||
| source=("https://github.com/arcan1s/ahriman/releases/download/$pkgver/$pkgname-$pkgver.tar.gz" | ||||
| source=("https://github.com/arcan1s/ahriman/releases/download/$pkgver/$pkgname-$pkgver-src.tar.xz" | ||||
|         'ahriman.sysusers' | ||||
|         'ahriman.tmpfiles') | ||||
| install="$pkgname.install" | ||||
| backup=('etc/ahriman.ini' | ||||
|         'etc/ahriman.ini.d/logging.ini') | ||||
|  | ||||
| build() { | ||||
|   cd "$pkgname-$pkgver" | ||||
|   cd "$pkgname" | ||||
|  | ||||
|   python -m build --wheel --no-isolation | ||||
| } | ||||
|  | ||||
| package() { | ||||
|   cd "$pkgname-$pkgver" | ||||
|   cd "$pkgname" | ||||
|  | ||||
|   python -m installer --destdir="$pkgdir" "dist/$pkgname-$pkgver-py3-none-any.whl" | ||||
|  | ||||
|   # thanks too PEP517, which we all wanted, you need to install data files manually nowadays | ||||
|   pushd package && find . \( -type f -or -type l \) -exec install -Dm644 "{}" "$pkgdir/usr/{}" \; && popd | ||||
|  | ||||
|   # keep usr/share configs as reference and copy them to /etc | ||||
|   # python-installer actually thinks that you cannot just copy files to root | ||||
|   # thus we need to copy them manually | ||||
|   install -Dm644 "$pkgdir/usr/share/$pkgname/settings/ahriman.ini" "$pkgdir/etc/ahriman.ini" | ||||
|   install -Dm644 "$pkgdir/usr/share/$pkgname/settings/ahriman.ini.d/logging.ini" "$pkgdir/etc/ahriman.ini.d/logging.ini" | ||||
|  | ||||
| @ -55,6 +49,6 @@ package() { | ||||
|   install -Dm644 "$srcdir/$pkgname.tmpfiles" "$pkgdir/usr/lib/tmpfiles.d/$pkgname.conf" | ||||
| } | ||||
|  | ||||
| sha512sums=('19841842641520b573cdde6cb80a7cfcd69756d323fdfeebc2eee2d264a1325ead4ab2f8383bb369f7896bfc1de59d7358f133f4afeb90a9b9f0695f482a58d0' | ||||
| sha512sums=('112b0d8aac68e5330bbdd2b86a59c8a9af8ab7a7c636489623c8460bb90f1318585851edd2a97a8ce20e2d2ad93b847b522685df707c190aa39d23ab908fa8ef' | ||||
|             '53d37efec812afebf86281716259f9ea78a307b83897166c72777251c3eebcb587ecee375d907514781fb2a5c808cbb24ef9f3f244f12740155d0603bf213131' | ||||
|             '62b2eccc352d33853ef243c9cddd63663014aa97b87242f1b5bc5099a7dbd69ff3821f24ffc58e1b7f2387bd4e9e9712cc4c67f661b1724ad99cdf09b3717794') | ||||
|  | ||||
Some files were not shown because too many files have changed in this diff Show More
		Reference in New Issue
	
	Block a user