monitor-server.init

   1 #!/bin/bash
   2 #
   3 # priority: 850
   4 #
   5 # Manage settings for the Zabbix installtion and
   6 #       other monitor-related things
   7 #
   8 # Stephen Soltesz <soltesz@cs.princeton.edu>
   9 # Copyright (C) 2008 The Trustees of Princeton University
  10 #
  11 # $Id$
  12 #
  13
  14 # Source function library and configuration
  15 . /etc/plc.d/functions
  16 . /etc/planetlab/plc_config
  17 local_config=/etc/planetlab/configs/site.xml
  18
  19 MONITORPATH=/usr/share/monitor
  20
  21 # Be verbose
  22 set -x
  23
  24 # Default locations
  25 PGDATA=/var/lib/pgsql/data
  26 postgresql_conf=$PGDATA/postgresql.conf
  27 pghba_conf=$PGDATA/pg_hba.conf
  28
  29 # Export so that we do not have to specify -p to psql invocations
  30 export PGPORT=$PLC_DB_PORT
  31
  32
  33 ZABBIX_DB_USER="zabbixuser"
  34 ZABBIX_DB_NAME="zabbix"
  35
  36 MONITOR_DB_USER="monitoruser"
  37 MONITOR_DB_NAME="monitor"
  38
  39 WROTE_PG_CONFIG=
  40
  41 if [ -z "$PLC_MONITOR_IP" ] ; then
  42         PLC_MONITOR_IP=$( gethostbyname $PLC_MONITOR_HOST )
  43 fi
  44
  45 function check_pg_hba ()
  46 {
  47         NAME=$1
  48         USER=$2
  49         #### SETUP ACCESS to this user and database
  50         mkdir -p $PGDATA/pg_hba.conf.d
  51         CONF=$PGDATA/pg_hba.conf.d/${NAME}.conf
  52         if [ ! -f $CONF ] ; then
  53                 echo "host $NAME $USER 127.0.0.1/32 password"   > $CONF
  54                 echo "host $NAME $USER $PLC_MONITOR_IP/32 password" >> $CONF
  55
  56                 WROTE_PG_CONFIG="true"
  57         fi
  58 }
  59
  60 function check_user_and_db()
  61 {
  62     CREATED=
  63         NAME=$1
  64         USER=$2
  65     # confirm user is present or create it
  66     user_present=$( psql -U postgres -c "select * from pg_user;" -d template1 | grep $USER )
  67     if [ -z $user_present ] ; then
  68         createuser --no-superuser --no-createdb --no-createrole --login --unencrypted --echo $USER -U postgres
  69                 CREATED="true"
  70     fi
  71
  72     # confirm database is present or create it
  73     db_present=$( psql -U postgres -c "select * from pg_database;" -d template1 | grep $NAME )
  74     if [ -z $db_present ] ; then
  75         createdb --owner=$USER $NAME -U postgres
  76                 CREATED="true"
  77     fi
  78
  79     # Create/update the unprivileged database user and password
  80     if [ -z "$PLC_MONITOR_DBPASSWORD" ] ; then
  81         # Zabbix doesn't like plain uuidgen passwords
  82         PLC_MONITOR_DBPASSWORD=$( uuidgen | md5sum - | awk '{print $1}' )
  83         plc-config --category=plc_monitor --variable=dbpassword --value="$PLC_MONITOR_DBPASSWORD" --save=$local_config $local_config
  84         service plc reload
  85                 CREATED="true"
  86     fi
  87     if [ -n "$CREATED" ] ; then
  88         psql -d template1 -U postgres -c "ALTER USER $USER WITH PASSWORD '$PLC_MONITOR_DBPASSWORD';"
  89     fi
  90 }
  91
  92 function if_present_load ()
  93 {
  94     file=$1
  95     if [ -f $file ] ; then
  96         psql -d $ZABBIX_DB_NAME -U $ZABBIX_DB_USER < $file
  97     fi
  98 }
  99 function check_monitor_schema_and_data()
 100 {
 101         # NOTE: call create_all() to setup the database from the info model.
 102         python -c "from monitor.database.info.model import *; from elixir import create_all; create_all()"
 103 }
 104
 105 function check_zabbix_schema_and_data()
 106 {
 107     schema_present=$( psql -U $ZABBIX_DB_USER $ZABBIX_DB_NAME -c "\d;" < /dev/null | grep hosts )
 108     if [ -z $schema_present ] ; then
 109         echo "... initial import can take SEVERAL minutes. please wait ..."
 110         if_present_load "/usr/local/zabbix/misc/create/schema/postgresql.sql"
 111         if_present_load "/usr/local/zabbix/misc/create/data/data.sql"
 112         if_present_load "/usr/local/zabbix/misc/create/data/images_pgsql.sql"
 113         ## TODO: update ZABBIX Server entry, "update hosts set status=0, host='MyPLC Server' where hostid=10017"
 114     fi
 115 }
 116
 117 function check_zabbix_templates_and_import ()
 118 {
 119         # LOG IN
 120         COOKIE_FILE=/tmp/cookiejar.txt
 121         rm -f ${COOKIE_FILE}
 122         TEMPLATES_DIR=${MONITORPATH}/zabbix/templates
 123         curl -s --cookie $COOKIE_FILE --cookie-jar $COOKIE_FILE \
 124                         --form "enter=Enter" \
 125                         --form "name=Admin" \
 126                         --form "password=zabbix" \
 127                         "http://${PLC_MONITOR_HOST}/zabbix/index.php?login=1"
 128
 129         deleted=$( grep 'deleted' $COOKIE_FILE )
 130         if [ -n "$deleted" ] ; then
 131                 echo "Login to the zabbix web server failed!!!"
 132                 return 1
 133         fi
 134
 135         for file in ${TEMPLATES_DIR}/*.xml ; do
 136                 # 0 - update , 1 - skip, 0 - add
 137                 echo "############### IMPORTING $file" >> /var/log/monitor.log
 138                 curl -s --cookie $COOKIE_FILE --cookie-jar $COOKIE_FILE \
 139                         --form "config=1" \
 140                         --form "import_file=@${file}" \
 141                         --form "rules[host][exist]=0" \
 142                         --form "rules[host][missed]=0" \
 143                         --form "rules[template][exist]=0" \
 144                         --form "rules[template][missed]=1" \
 145                         --form "rules[item][exist]=0" \
 146                         --form "rules[item][missed]=0" \
 147                         --form "rules[trigger][exist]=0" \
 148                         --form "rules[trigger][missed]=0" \
 149                         --form "rules[graph][exist]=0" \
 150                         --form "rules[graph][missed]=0" \
 151                         --form "import=Import" \
 152                         "http://${PLC_MONITOR_HOST}/zabbix/exp_imp.php" >> /var/log/monitor.log
 153         done
 154 }
 155
 156
 157 function check_monitor_conf ()
 158 {
 159         MONITOR_CONFIG=/etc/monitor.conf
 160
 161
 162         # Using plcsh add default, monitor user
 163         plcsh <<EOF &>/dev/null
 164 AddPerson({'first_name' : 'Monitor', 'last_name' : 'Server', 'password' : '${PLC_MONITOR_DBPASSWORD}', 'email' : '${PLC_MONITOR_EMAIL}'})
 165 AddRoleToPerson('admin', '${PLC_MONITOR_EMAIL}')
 166 AddPersonToSite('${PLC_MONITOR_EMAIL}', '${PLC_SLICE_PREFIX}')
 167 UpdatePerson('${PLC_MONITOR_EMAIL}', { 'enabled' : True, 'password' : '${PLC_MONITOR_DBPASSWORD}' })
 168 EOF
 169
 170         if [ ! -f ${MONITOR_CONFIG} ] ; then
 171                 cat <<EOF > ${MONITOR_CONFIG}
 172 [monitorconfig]
 173 RT_DB_HOST=rt.planet-lab.org
 174 RT_DB_USER=
 175 RT_DB_PASSWORD=
 176 RT_DB_NAME=
 177
 178 # RT Web user account
 179 RT_WEB_SERVER=https://rt.planet-lab.org/
 180 RT_WEB_TOOLS_PATH=
 181 RT_WEB_USER=
 182 RT_WEB_PASSWORD=
 183 RT_WEB_DEBUG=0
 184 RT_QUEUE=
 185
 186 # PLC admin account
 187 API_SERVER=https://${PLC_BOOT_HOST}/PLCAPI/
 188 API_AUTH_USER=${PLC_MONITOR_EMAIL}
 189 API_AUTH_PASSWORD=${PLC_MONITOR_DBPASSWORD}
 190
 191 # SERVER PATHS
 192 MONITOR_SCRIPT_ROOT=${MONITORPATH}
 193 MONITOR_DATA_ROOT=/var/lib/monitor
 194 MONITOR_ARCHIVE_ROOT=/var/lib/monitor/archive-pdb
 195
 196 MONITOR_HOSTNAME=${PLC_MONITOR_HOST}
 197 MONITOR_IP=${PLC_MONITOR_IP}
 198
 199 # used for debug mode
 200 email=
 201
 202 # all messages will appear to be from this address
 203 from_email=${PLC_MONITOR_EMAIL}
 204
 205 # a separate address for support messages
 206 support_email=${PLC_MAIL_SUPPORT_ADDRESS}
 207
 208 # mailing list copied on all out-going messages
 209 cc_email=
 210
 211 [monitordatabase]
 212 monitor_dburi=postgres://${MONITOR_DB_NAME}:${PLC_MONITOR_DBPASSWORD}@localhost:5432/${MONITOR_DB_NAME}
 213 zabbix_dburi=postgres://${ZABBIX_DB_USER}:${PLC_MONITOR_DBPASSWORD}@localhost:5432/${ZABBIX_DB_NAME}
 214
 215 cachetime=60
 216
 217 # Evaluated as true or false
 218 [commandline]
 219 cachecalls=True
 220
 221 echo=False
 222 debug=False
 223 mail=True
 224 bcc=False
 225 run=False
 226 checkopt=False
 227 squeeze=True
 228 policysavedb=True
 229 EOF
 230
 231         fi
 232 }
 233
 234 function create_httpd_conf ()
 235 {
 236         MONITOR_HTTP_CONF=/etc/httpd/conf.d/monitorweb.conf
 237
 238         if [ ! -f ${MONITOR_HTTP_CONF} ] ; then
 239                 # note: we need to either start this script before httpd, or always
 240                 # restart httpd, since there's no way to know beyond file's existence
 241                 # whether the values have changed or not.
 242                 WROTE_HTTP_CONFIG="true"
 243         fi
 244
 245         # TODO: support HTTPS as well as port 80.  currently not specifying port
 246         #               80 breaks https for other content on the myplc.
 247         # TODO: make proxy port configurable.
 248
 249         cat <<EOF > ${MONITOR_HTTP_CONF}
 250
 251 # NOTE: I've tried other means of redirection, including mod_rewrite, but did
 252 #       not have any success.  The means below is not idea, b/c it does not keep
 253 #       non-ssl session as non-ssl.  But it works.
 254
 255 # NOTE: redirect path without trailing '/' to path with.  Favor SSL.
 256 Redirect /monitor https://${MONITOR_HOSTNAME}:${PLC_WWW_SSL_PORT}/monitor/
 257
 258 # NOTE: this directive strips '/monitor/' from the requested path and pastes
 259 #       the remaining part to the end of the ProxyPass url below.  All TG urls
 260 #       should be relative to their current position, or the absolute path
 261 #       that includes /monitor/ at the beginning.
 262 # TODO: make location configurable.
 263 <Location '/monitor/'>
 264     #LogLevel debug
 265     #Errorlog /var/log/httpd/monitorwebapp-error_log
 266     #Customlog /var/log/httpd/monitorwebapp-access_log common
 267
 268     ProxyPass http://127.0.0.1:8080/
 269     ProxyPassReverse http://127.0.0.1:8080/
 270 </Location>
 271
 272 EOF
 273 }
 274
 275 function start_tg_server ()
 276 {
 277         pushd ${MONITORPATH}/web/MonitorWeb/
 278         ./start-monitorweb.py ${MONITORPATH}/web/MonitorWeb/prod.cfg &> /var/log/monitorweb.log
 279         popd
 280 }
 281
 282 function stop_tg_server ()
 283 {
 284         pid=$( cat /var/run/monitorweb.pid )
 285         if [ -n "$pid" ] ; then
 286                 kill $pid
 287         fi
 288 }
 289
 290 function check_zab_server ()
 291 {
 292         ZABBIXCFG=/etc/zabbix
 293         TMP_FILE=`mktemp /tmp/zbxtmpXXXXXX`
 294
 295         if [ -f ${ZABBIXCFG}/zabbix_server.conf ] ; then
 296                 sed -e "s/#DBHost=.*/DBHost=$PLC_MONITOR_HOST/g" \
 297                     -e "s#DBName=.*#DBName=$ZABBIX_DB_NAME#g" \
 298                     -e "s#DBUser=.*#DBUser=$ZABBIX_DB_USER#g" \
 299                     -e "s#DBPassword=.*#DBPassword=$PLC_MONITOR_DBPASSWORD#g" \
 300                     -e "s#.*ExternalScripts=.*#ExternalScripts=${MONITORPATH}/zabbix#g" \
 301                     ${ZABBIXCFG}/zabbix_server.conf > $TMP_FILE
 302                 cat $TMP_FILE > ${ZABBIXCFG}/zabbix_server.conf
 303         fi
 304         service zabbix_server start
 305         rm -f $TMP_FILE
 306
 307 }
 308 function check_zab_agentd ()
 309 {
 310         ZABBIXCFG=/etc/zabbix
 311         TMP_FILE=`mktemp /tmp/zbxtmpXXXXXX`
 312         if [ -f ${ZABBIXCFG}/zabbix_agentd.conf ] ; then
 313                 HOST=`hostname`
 314                 sed -e "s#Server=.*#Server=$PLC_MONITOR_HOST#g" \
 315                     -e "s#Hostname=.*#Hostname=$HOST#g" \
 316                     ${ZABBIXCFG}/zabbix_agentd.conf > $TMP_FILE
 317                 cat $TMP_FILE > ${ZABBIXCFG}/zabbix_agentd.conf
 318         fi
 319         service zabbix_agentd start
 320         rm -f $TMP_FILE
 321 }
 322 function check_zab_webconfig()
 323 {
 324         # SETUP zabbix gui configuration
 325         ZABBIX_WEB_CFG=/var/www/html/zabbix/conf/zabbix.conf.php
 326         if [ ! -f $ZABBIX_WEB_CFG ] ; then
 327                 touch  $ZABBIX_WEB_CFG
 328                 cat <<EOF > $ZABBIX_WEB_CFG
 329 <?php
 330 global \$DB;
 331
 332 \$DB["TYPE"]            = "POSTGRESQL";
 333 \$DB["SERVER"]          = "localhost";
 334 \$DB["PORT"]            = "0";
 335 \$DB["DATABASE"]                = "$ZABBIX_DB_NAME";
 336 \$DB["USER"]            = "$ZABBIX_DB_USER";
 337 \$DB["PASSWORD"]                = "$PLC_MONITOR_DBPASSWORD";
 338 \$ZBX_SERVER            = "$PLC_MONITOR_HOST";
 339 \$ZBX_SERVER_PORT       = "10051";
 340 \$IMAGE_FORMAT_DEFAULT  = IMAGE_FORMAT_PNG;
 341 ?>
 342 EOF
 343                 chmod 644 $ZABBIX_WEB_CFG
 344         fi
 345 }
 346
 347 if [ "$PLC_MONITOR_ENABLED" != "1" ] ; then
 348     exit 0
 349 fi
 350
 351 case "$1" in
 352         start)
 353                 MESSAGE=$"Bootstrap Monitoring"
 354                 dialog "$MESSAGE"
 355
 356                 # DATABASE acces, creation, and data loading
 357                 check_pg_hba $MONITOR_DB_NAME $MONITOR_DB_USER
 358                 check_user_and_db $MONITOR_DB_NAME $MONITOR_DB_USER
 359                 check_monitor_schema_and_data
 360
 361                 check_pg_hba $ZABBIX_DB_NAME $ZABBIX_DB_USER
 362                 check_user_and_db $ZABBIX_DB_NAME $ZABBIX_DB_USER
 363
 364                 if [ -n "$WROTE_PG_CONFIG" ] ; then
 365                         # NOTE: restart db to enable access by users granted above.
 366                         service plc restart postgresql
 367                         service plc restart httpd
 368                 fi
 369
 370                 check_zabbix_schema_and_data
 371                 check_zabbix_templates_and_import
 372
 373                 # WRITE default /etc/monitor.conf
 374                 check_monitor_conf
 375
 376                 # create /etc/httpd/conf.d/monitorweb.conf
 377                 create_httpd_conf
 378                 if [ -n "$WROTE_HTTP_CONFIG" ] ; then
 379                         # NOTE: restart web server to enable access web cfg
 380                         service plc restart httpd
 381                 fi
 382                 start_tg_server
 383
 384                 # START zabbix services.  SETUP default config files.
 385                 check_zab_server
 386                 check_zab_agentd
 387                 check_zab_webconfig
 388
 389                 result "$MESSAGE"
 390         ;;
 391
 392         sync)
 393                 MESSAGE=$"Syncing PLC db with Zabbix DB"
 394                 dialog "$MESSAGE"
 395
 396                 # turn off zabbix server, etc. before writing to the db.
 397                 service plc stop monitor
 398
 399                 $MONITORPATH/zabbix/zabbixsync.py --setupglobal &> /var/log/monitor-server
 400                 # import any templates
 401                 check_zabbix_templates_and_import
 402
 403                 service plc start monitor
 404
 405                 result "$MESSAGE"
 406         ;;
 407
 408         stop)
 409                 MESSAGE=$"Stopping Monitor"
 410                 dialog "$MESSAGE"
 411
 412                 stop_tg_server
 413                 service zabbix_server stop
 414                 service zabbix_agentd stop
 415                 # TODO: is there anything to stop?
 416                 result "$MESSAGE"
 417         ;;
 418 esac
 419
 420 exit $ERRORS