monitor-server.init

   1 #!/bin/bash
   2 #
   3 # priority: 850
   4 #
   5 # Manage settings for the Zabbix installtion and
   6 #       other monitor-related things
   7 #
   8 # Stephen Soltesz <soltesz@cs.princeton.edu>
   9 # Copyright (C) 2008 The Trustees of Princeton University
  10 #
  11 # $Id$
  12 #
  13
  14 # Source function library and configuration
  15 . /etc/plc.d/functions
  16 . /etc/planetlab/plc_config
  17 local_config=/etc/planetlab/configs/site.xml
  18
  19 MONITORPATH=/usr/share/monitor
  20
  21 # Be verbose
  22 set -x
  23
  24 # Default locations
  25 PGDATA=/var/lib/pgsql/data
  26 postgresql_conf=$PGDATA/postgresql.conf
  27 pghba_conf=$PGDATA/pg_hba.conf
  28
  29 # Export so that we do not have to specify -p to psql invocations
  30 export PGPORT=$PLC_DB_PORT
  31
  32
  33 ZABBIX_DB_USER="zabbixuser"
  34 ZABBIX_DB_NAME="zabbix"
  35
  36 MONITOR_DB_USER="monitoruser"
  37 MONITOR_DB_NAME="monitor"
  38
  39 WROTE_PG_CONFIG=
  40
  41 if [ -z "$PLC_MONITOR_IP" ] ; then
  42         PLC_MONITOR_IP=$( gethostbyname $PLC_MONITOR_HOST )
  43 fi
  44
  45 function check_pg_hba ()
  46 {
  47         NAME=$1
  48         USER=$2
  49         #### SETUP ACCESS to this user and database
  50         mkdir -p $PGDATA/pg_hba.conf.d
  51         CONF=$PGDATA/pg_hba.conf.d/${NAME}.conf
  52         if [ ! -f $CONF ] ; then
  53                 echo "host $NAME $USER 127.0.0.1/32 password"   > $CONF
  54                 echo "host $NAME $USER $PLC_MONITOR_IP/32 password" >> $CONF
  55
  56                 WROTE_PG_CONFIG="true"
  57         fi
  58 }
  59
  60 function check_user_and_db()
  61 {
  62     CREATED=
  63         NAME=$1
  64         USER=$2
  65     # confirm user is present or create it
  66     user_present=$( psql -U postgres -c "select * from pg_user;" -d template1 | grep $USER )
  67     if [ -z $user_present ] ; then
  68         createuser --no-superuser --no-createdb --no-createrole --login --unencrypted --echo $USER -U postgres
  69                 CREATED="true"
  70     fi
  71
  72     # confirm database is present or create it
  73     db_present=$( psql -U postgres -c "select * from pg_database;" -d template1 | grep $NAME )
  74     if [ -z $db_present ] ; then
  75         createdb --owner=$USER $NAME -U postgres
  76                 CREATED="true"
  77     fi
  78
  79     # Create/update the unprivileged database user and password
  80     if [ -z "$PLC_MONITOR_DBPASSWORD" || "$PLC_MONITOR_DBPASSWORD" = "None" ] ; then
  81         # Zabbix doesn't like plain uuidgen passwords
  82         PLC_MONITOR_DBPASSWORD=$( uuidgen | md5sum - | awk '{print $1}' )
  83         plc-config --category=plc_monitor --variable=dbpassword --value="$PLC_MONITOR_DBPASSWORD" --save=$local_config $local_config
  84         service plc reload
  85                 CREATED="true"
  86     fi
  87     if [ -n "$CREATED" ] ; then
  88         psql -d template1 -U postgres -c "ALTER USER $USER WITH PASSWORD '$PLC_MONITOR_DBPASSWORD';"
  89     fi
  90 }
  91
  92 function if_present_load ()
  93 {
  94     file=$1
  95     if [ -f $file ] ; then
  96         psql -d $ZABBIX_DB_NAME -U $ZABBIX_DB_USER < $file
  97     fi
  98 }
  99 function check_monitor_schema_and_data()
 100 {
 101         # NOTE: call create_all() to setup the database from the info model.
 102         python -c "from monitor.database.info.model import *; from elixir import create_all; create_all()"
 103 }
 104
 105 function check_zabbix_schema_and_data()
 106 {
 107     schema_present=$( psql -U $ZABBIX_DB_USER $ZABBIX_DB_NAME -c "\d;" < /dev/null | grep hosts )
 108     if [ -z $schema_present ] ; then
 109         echo "... initial import can take SEVERAL minutes. please wait ..."
 110         if_present_load "/usr/local/zabbix/misc/create/schema/postgresql.sql"
 111         if_present_load "/usr/local/zabbix/misc/create/data/data.sql"
 112         if_present_load "/usr/local/zabbix/misc/create/data/images_pgsql.sql"
 113         ## TODO: update ZABBIX Server entry, "update hosts set status=0, host='MyPLC Server' where hostid=10017"
 114     fi
 115 }
 116
 117 function check_zabbix_templates_and_import ()
 118 {
 119         # LOG IN
 120         COOKIE_FILE=/tmp/cookiejar.txt
 121         rm -f ${COOKIE_FILE}
 122         TEMPLATES_DIR=${MONITORPATH}/zabbix/templates
 123         curl -s --cookie $COOKIE_FILE --cookie-jar $COOKIE_FILE \
 124                         --form "enter=Enter" \
 125                         --form "name=Admin" \
 126                         --form "password=zabbix" \
 127                         "http://${PLC_MONITOR_HOST}/zabbix/index.php?login=1"
 128
 129         deleted=$( grep 'deleted' $COOKIE_FILE )
 130         if [ -n "$deleted" ] ; then
 131                 echo "Login to the zabbix web server failed!!!"
 132                 return 1
 133         fi
 134
 135         for file in ${TEMPLATES_DIR}/*.xml ; do
 136                 # 0 - update , 1 - skip, 0 - add
 137                 echo "############### IMPORTING $file" >> /var/log/monitor.log
 138                 curl -s --cookie $COOKIE_FILE --cookie-jar $COOKIE_FILE \
 139                         --form "config=1" \
 140                         --form "import_file=@${file}" \
 141                         --form "rules[host][exist]=0" \
 142                         --form "rules[host][missed]=0" \
 143                         --form "rules[template][exist]=0" \
 144                         --form "rules[template][missed]=1" \
 145                         --form "rules[item][exist]=0" \
 146                         --form "rules[item][missed]=0" \
 147                         --form "rules[trigger][exist]=0" \
 148                         --form "rules[trigger][missed]=0" \
 149                         --form "rules[graph][exist]=0" \
 150                         --form "rules[graph][missed]=0" \
 151                         --form "import=Import" \
 152                         "http://${PLC_MONITOR_HOST}/zabbix/exp_imp.php" >> /var/log/monitor.log
 153         done
 154 }
 155
 156
 157 function check_monitor_conf ()
 158 {
 159         MONITOR_CONFIG=/etc/monitor.conf
 160
 161
 162         # Using plcsh add default, monitor user
 163         plcsh <<EOF &>/dev/null
 164 AddPerson({'first_name' : 'Monitor', 'last_name' : 'Server', 'password' : '${PLC_MONITOR_DBPASSWORD}', 'email' : '${PLC_MONITOR_EMAIL}'})
 165 AddRoleToPerson('admin', '${PLC_MONITOR_EMAIL}')
 166 AddPersonToSite('${PLC_MONITOR_EMAIL}', '${PLC_SLICE_PREFIX}')
 167 UpdatePerson('${PLC_MONITOR_EMAIL}', { 'enabled' : True, 'password' : '${PLC_MONITOR_DBPASSWORD}' })
 168 EOF
 169
 170         if [ ! -f ${MONITOR_CONFIG} ] ; then
 171                 cat <<EOF > ${MONITOR_CONFIG}
 172 [monitorconfig]
 173 RT_DB_HOST=rt.planet-lab.org
 174 RT_DB_USER=
 175 RT_DB_PASSWORD=
 176 RT_DB_NAME=
 177
 178 # RT Web user account
 179 RT_WEB_SERVER=https://rt.planet-lab.org/
 180 RT_WEB_TOOLS_PATH=
 181 RT_WEB_USER=
 182 RT_WEB_PASSWORD=
 183 RT_WEB_DEBUG=0
 184 RT_QUEUE=
 185
 186 # PLC admin account
 187 API_SERVER=https://${PLC_BOOT_HOST}/PLCAPI/
 188 API_AUTH_USER=${PLC_MONITOR_EMAIL}
 189 API_AUTH_PASSWORD=${PLC_MONITOR_DBPASSWORD}
 190
 191 # SERVER PATHS
 192 MONITOR_SCRIPT_ROOT=${MONITORPATH}
 193 MONITOR_DATA_ROOT=/var/lib/monitor
 194 MONITOR_ARCHIVE_ROOT=/var/lib/monitor/archive-pdb
 195
 196 MONITOR_HOSTNAME=${PLC_MONITOR_HOST}
 197 MONITOR_IP=${PLC_MONITOR_IP}
 198
 199 PLC_WWW_HOSTNAME=${PLC_WWW_HOST}
 200
 201 # used for debug mode
 202 email=
 203
 204 # all messages will appear to be from this address
 205 from_email=${PLC_MONITOR_EMAIL}
 206
 207 # a separate address for support messages
 208 support_email=${PLC_MAIL_SUPPORT_ADDRESS}
 209
 210 # mailing list copied on all out-going messages
 211 cc_email=
 212
 213 [monitordatabase]
 214 monitor_dburi=postgres://${MONITOR_DB_USER}:${PLC_MONITOR_DBPASSWORD}@localhost:5432/${MONITOR_DB_NAME}
 215 zabbix_dburi=postgres://${ZABBIX_DB_USER}:${PLC_MONITOR_DBPASSWORD}@localhost:5432/${ZABBIX_DB_NAME}
 216
 217 cachetime=60
 218
 219 # Evaluated as true or false
 220 [commandline]
 221 cachecalls=True
 222
 223 echo=False
 224 debug=False
 225 mail=True
 226 bcc=False
 227 run=False
 228 checkopt=False
 229 squeeze=True
 230 policysavedb=True
 231 EOF
 232
 233         fi
 234 }
 235
 236 function create_httpd_conf ()
 237 {
 238         MONITOR_HTTP_CONF=/etc/httpd/conf.d/monitorweb.conf
 239
 240         if [ ! -f ${MONITOR_HTTP_CONF} ] ; then
 241                 # note: we need to either start this script before httpd, or always
 242                 # restart httpd, since there's no way to know beyond file's existence
 243                 # whether the values have changed or not.
 244                 WROTE_HTTP_CONFIG="true"
 245         fi
 246
 247         # TODO: support HTTPS as well as port 80.  currently not specifying port
 248         #               80 breaks https for other content on the myplc.
 249         # TODO: make proxy port configurable.
 250
 251         cat <<EOF > ${MONITOR_HTTP_CONF}
 252
 253 # NOTE: I've tried other means of redirection, including mod_rewrite, but did
 254 #       not have any success.  The means below is not idea, b/c it does not keep
 255 #       non-ssl session as non-ssl.  But it works.
 256
 257 # NOTE: redirect path without trailing '/' to path with.  Favor SSL.
 258 Redirect /monitor https://${MONITOR_HOSTNAME}:${PLC_WWW_SSL_PORT}/monitor/
 259
 260 # NOTE: this directive strips '/monitor/' from the requested path and pastes
 261 #       the remaining part to the end of the ProxyPass url below.  All TG urls
 262 #       should be relative to their current position, or the absolute path
 263 #       that includes /monitor/ at the beginning.
 264 # TODO: make location configurable.
 265 <Location '/monitor/'>
 266     #LogLevel debug
 267     #Errorlog /var/log/httpd/monitorwebapp-error_log
 268     #Customlog /var/log/httpd/monitorwebapp-access_log common
 269
 270     ProxyPass http://127.0.0.1:8080/
 271     ProxyPassReverse http://127.0.0.1:8080/
 272 </Location>
 273
 274 EOF
 275 }
 276
 277 function start_tg_server ()
 278 {
 279         pushd ${MONITORPATH}/web/MonitorWeb/
 280         ./start-monitorweb.py ${MONITORPATH}/web/MonitorWeb/prod.cfg &> /var/log/monitorweb.log &
 281         popd
 282 }
 283
 284 function stop_tg_server ()
 285 {
 286         pid=$( cat /var/run/monitorweb.pid )
 287         if [ -n "$pid" ] ; then
 288                 kill $pid
 289         fi
 290 }
 291
 292 function check_zab_server ()
 293 {
 294         ZABBIXCFG=/etc/zabbix
 295         TMP_FILE=`mktemp /tmp/zbxtmpXXXXXX`
 296
 297         if [ -f ${ZABBIXCFG}/zabbix_server.conf ] ; then
 298                 sed -e "s/#DBHost=.*/DBHost=$PLC_MONITOR_HOST/g" \
 299                     -e "s#DBName=.*#DBName=$ZABBIX_DB_NAME#g" \
 300                     -e "s#DBUser=.*#DBUser=$ZABBIX_DB_USER#g" \
 301                     -e "s#DBPassword=.*#DBPassword=$PLC_MONITOR_DBPASSWORD#g" \
 302                     -e "s#.*ExternalScripts=.*#ExternalScripts=${MONITORPATH}/zabbix#g" \
 303                     ${ZABBIXCFG}/zabbix_server.conf > $TMP_FILE
 304                 cat $TMP_FILE > ${ZABBIXCFG}/zabbix_server.conf
 305         fi
 306         service zabbix_server start
 307         rm -f $TMP_FILE
 308
 309 }
 310 function check_zab_agentd ()
 311 {
 312         ZABBIXCFG=/etc/zabbix
 313         TMP_FILE=`mktemp /tmp/zbxtmpXXXXXX`
 314         if [ -f ${ZABBIXCFG}/zabbix_agentd.conf ] ; then
 315                 HOST=`hostname`
 316                 sed -e "s#Server=.*#Server=$PLC_MONITOR_HOST#g" \
 317                     -e "s#Hostname=.*#Hostname=$HOST#g" \
 318                     ${ZABBIXCFG}/zabbix_agentd.conf > $TMP_FILE
 319                 cat $TMP_FILE > ${ZABBIXCFG}/zabbix_agentd.conf
 320         fi
 321         service zabbix_agentd start
 322         rm -f $TMP_FILE
 323 }
 324 function check_zab_webconfig()
 325 {
 326         # SETUP zabbix gui configuration
 327         ZABBIX_WEB_CFG=/var/www/html/zabbix/conf/zabbix.conf.php
 328         if [ ! -f $ZABBIX_WEB_CFG ] ; then
 329                 touch  $ZABBIX_WEB_CFG
 330                 cat <<EOF > $ZABBIX_WEB_CFG
 331 <?php
 332 global \$DB;
 333
 334 \$DB["TYPE"]            = "POSTGRESQL";
 335 \$DB["SERVER"]          = "localhost";
 336 \$DB["PORT"]            = "0";
 337 \$DB["DATABASE"]                = "$ZABBIX_DB_NAME";
 338 \$DB["USER"]            = "$ZABBIX_DB_USER";
 339 \$DB["PASSWORD"]                = "$PLC_MONITOR_DBPASSWORD";
 340 \$ZBX_SERVER            = "$PLC_MONITOR_HOST";
 341 \$ZBX_SERVER_PORT       = "10051";
 342 \$IMAGE_FORMAT_DEFAULT  = IMAGE_FORMAT_PNG;
 343 ?>
 344 EOF
 345                 chmod 644 $ZABBIX_WEB_CFG
 346         fi
 347 }
 348
 349 if [ "$PLC_MONITOR_ENABLED" != "1" ] ; then
 350     exit 0
 351 fi
 352
 353 case "$1" in
 354         start)
 355                 MESSAGE=$"Bootstrap Monitoring (please wait...)"
 356                 dialog "$MESSAGE"
 357
 358                 # DATABASE acces, creation, and data loading
 359                 check_pg_hba $MONITOR_DB_NAME $MONITOR_DB_USER
 360                 check_user_and_db $MONITOR_DB_NAME $MONITOR_DB_USER
 361                 # WRITE default /etc/monitor.conf
 362                 check_monitor_conf
 363                 check_monitor_schema_and_data
 364
 365                 check_pg_hba $ZABBIX_DB_NAME $ZABBIX_DB_USER
 366                 check_user_and_db $ZABBIX_DB_NAME $ZABBIX_DB_USER
 367
 368                 if [ -n "$WROTE_PG_CONFIG" ] ; then
 369                         # NOTE: restart db to enable access by users granted above.
 370                         service plc restart postgresql
 371                         service plc restart httpd
 372                         MESSAGE=$"Bootstrap Monitoring 2 (please wait...)"
 373                         dialog "$MESSAGE"
 374                 fi
 375
 376                 check_zabbix_schema_and_data
 377                 check_zabbix_templates_and_import
 378
 379
 380                 # create /etc/httpd/conf.d/monitorweb.conf
 381                 create_httpd_conf
 382                 if [ -n "$WROTE_HTTP_CONFIG" ] ; then
 383                         # NOTE: restart web server to enable access web cfg
 384                         service plc restart httpd
 385                         MESSAGE=$"Bootstrap Monitoring 3 (please wait...)"
 386                         dialog "$MESSAGE"
 387                 fi
 388                 start_tg_server
 389
 390                 # START zabbix services.  SETUP default config files.
 391                 check_zab_server
 392                 check_zab_agentd
 393                 check_zab_webconfig
 394
 395                 result "$MESSAGE"
 396         ;;
 397
 398         restartweb)
 399                 MESSAGE=$"Restarting monitor web app..."
 400                 dialog "$MESSAGE"
 401
 402                 stop_tg_server
 403                 start_tg_server
 404
 405                 result "$MESSAGE"
 406         ;;
 407
 408         sync)
 409                 MESSAGE=$"Syncing PLC db with Zabbix DB"
 410                 dialog "$MESSAGE"
 411
 412                 # turn off zabbix server, etc. before writing to the db.
 413                 service plc stop monitor
 414
 415                 $MONITORPATH/zabbix/zabbixsync.py --setupglobal &> /var/log/monitor-server
 416                 # import any templates
 417                 check_zabbix_templates_and_import
 418
 419                 service plc start monitor
 420
 421                 result "$MESSAGE"
 422         ;;
 423
 424         stop)
 425                 MESSAGE=$"Stopping Monitor"
 426                 dialog "$MESSAGE"
 427
 428                 stop_tg_server
 429                 service zabbix_server stop
 430                 service zabbix_agentd stop
 431                 # TODO: is there anything to stop?
 432                 result "$MESSAGE"
 433         ;;
 434 esac
 435
 436 exit $ERRORS