Merge pull request #1 from OpenConext/feature/env-setup

Feature/env setup

Author: epinxteren

.docheader

@@ -0,0 +1,15 @@
+/**
+ * Copyright 2017 SURFnet B.V.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */

.gitignore

@@ -0,0 +1,37 @@
+# IDE files #
+#############
+.idea
+
+# Web application ignores #
+###########################
+
+/.web-server-pid
+/app/config/parameters.yml
+/build/
+/var/*
+!/var/cache
+/var/cache/*
+!var/cache/.gitkeep
+!/var/logs
+/var/logs/*
+!var/logs/.gitkeep
+!/var/sessions
+/var/sessions/*
+!var/sessions/.gitkeep
+!var/SymfonyRequirements.php
+/vendor/
+/web/bundles/
+
+# Vagrant files #
+#################
+vagrant.retry
+.vagrant
+
+# Code coverage reports #
+#################
+/coverage/*
+
+# OS generated files #
+######################
+.DS_Store
+.DS_Store?

.travis.php.ini

@@ -0,0 +1 @@
+date.timezone = "Europe/Amsterdam"

.travis.yml

@@ -1,34 +1,17 @@
-#
-# This file has been generated by the Ibuildings QA-Tools
-#
-# Any custom Travis-ci configuration be added here
-# This file should be added to your project repository
-#
-
 language: php
 
 php:
   - 5.6
   - 7.0
-
-env:
-  global:
-    - SYMFONY_ENV=test
+  - 7.1
 
 cache:
   directories:
-    - ~/.composer
+    - ~/.composer/cache/files
 
 before_script:
   - phpenv config-add .travis.php.ini
-  - composer self-update
-  - composer install --prefer-dist
+  - composer install --no-interaction
 
 script:
-  - ant
-
-
-branches:
-  only:
-    - master
-    - develop
+  - composer test

README.md

@@ -0,0 +1,61 @@
+Stepup-gssp-example
+===================
+
+<a href="#">
+    <img src="https://travis-ci.org/OpenConext/Stepup-gssp-bundle.svg?branch=master" alt="build:">
+</a></br>
+
+Example Generic SAML Stepup Provider.
+
+Development environment
+======================
+
+To get started, first setup the development environment. The dev. env. is a virtual machine. Every task described is run
+from that machine.  
+
+Requirements
+-------------------
+- ansible 2.x
+- vagrant 1.9.x
+- vagrant-hostsupdater
+- Virtualbox
+
+Install
+-------------------
+
+``` vagrant up ```
+
+Go to the directory inside the VM:
+
+``` vagrant ssh ```
+
+``` cd /vagrant ```
+
+Install composer dependencies:
+
+``` composer install ```
+
+If everything goes as planned you can directly go to:
+
+http://gssp.stepup.example.com
+
+Debugging
+-------------------
+Xdebug is configured when provisioning your development Vagrant box. 
+It's configured with auto connect IDE_KEY=phpstorm.
+
+Tests and metrics
+======================
+
+To run all required test you can run the following command from the dev env:
+
+```composer test```
+
+Every part can be run separately. Check "scripts" section of the composer.json file for the different options.
+
+Other resources
+======================
+
+ - [Developer documentation](docs/index.md)
+ - [Issue tracker](https://www.pivotaltracker.com/n/projects/1163646)
+ - [License](LICENSE)

Vagrantfile

@@ -0,0 +1,21 @@
+Vagrant.configure(2) do |config|
+  config.vm.box = "CentOS-7.0"
+  config.vm.box_url = "https://build.openconext.org/vagrant_boxes/virtualbox-centos7.box"
+
+  config.vm.network "private_network", ip: "192.168.77.42"
+  config.vm.hostname = "gssp.stepup.example.com"
+  config.vm.synced_folder ".", "/vagrant", :nfs => true, type: "nfs"
+  config.vm.synced_folder ".", "/var/www/gssp.stepup.example.com", type: "nfs"
+
+  config.vm.provider "virtualbox" do |v|
+    v.customize ["modifyvm", :id, "--memory", "1024"]
+  end
+
+  config.vm.provision "ansible" do |ansible|
+    ansible.playbook = "ansible/vagrant.yml"
+    ansible.groups = {"dev" => "default"}
+    ansible.extra_vars = {
+      develop_spd: true
+    }
+  end
+end

ansible/files/php-fpm.conf

@@ -0,0 +1,120 @@
+;;;;;;;;;;;;;;;;;;;;;
+; FPM Configuration ;
+;;;;;;;;;;;;;;;;;;;;;
+
+; All relative paths in this configuration file are relative to PHP's install
+; prefix.
+
+; Include one or more files. If glob(3) exists, it is used to include a bunch of
+; files from a glob(3) pattern. This directive can be used everywhere in the
+; file.
+include=/etc/php-fpm.d/*.conf
+
+;;;;;;;;;;;;;;;;;;
+; Global Options ;
+;;;;;;;;;;;;;;;;;;
+
+[global]
+; Pid file
+; Default Value: none
+pid = /run/php-fpm/php-fpm.pid
+
+; Error log file
+; If it's set to "syslog", log is sent to syslogd instead of being written
+; in a local file.
+; Default Value: /var/log/php-fpm.log
+;error_log = /var/log/php-fpm/error.log
+error_log = syslog
+
+; syslog_facility is used to specify what type of program is logging the
+; message. This lets syslogd specify that messages from different facilities
+; will be handled differently.
+; See syslog(3) for possible values (ex daemon equiv LOG_DAEMON)
+; Default Value: daemon
+;syslog.facility = daemon
+
+; syslog_ident is prepended to every message. If you have multiple FPM
+; instances running on the same server, you can change the default value
+; which must suit common needs.
+; Default Value: php-fpm
+;syslog.ident = php-fpm
+
+; Log level
+; Possible Values: alert, error, warning, notice, debug
+; Default Value: notice
+;log_level = notice
+
+; If this number of child processes exit with SIGSEGV or SIGBUS within the time
+; interval set by emergency_restart_interval then FPM will restart. A value
+; of '0' means 'Off'.
+; Default Value: 0
+;emergency_restart_threshold = 0
+
+; Interval of time used by emergency_restart_interval to determine when
+; a graceful restart will be initiated.  This can be useful to work around
+; accidental corruptions in an accelerator's shared memory.
+; Available Units: s(econds), m(inutes), h(ours), or d(ays)
+; Default Unit: seconds
+; Default Value: 0
+;emergency_restart_interval = 0
+
+; Time limit for child processes to wait for a reaction on signals from master.
+; Available units: s(econds), m(inutes), h(ours), or d(ays)
+; Default Unit: seconds
+; Default Value: 0
+;process_control_timeout = 0
+
+; The maximum number of processes FPM will fork. This has been design to control
+; the global number of processes when using dynamic PM within a lot of pools.
+; Use it with caution.
+; Note: A value of 0 indicates no limit
+
+; Default Value: 0
+;process.max = 128
+
+; Specify the nice(2) priority to apply to the master process (only if set)
+; The value can vary from -19 (highest priority) to 20 (lower priority)
+; Note: - It will only work if the FPM master process is launched as root
+;       - The pool process will inherit the master process priority
+;         unless it specified otherwise
+; Default Value: no set
+;process.priority = -19
+
+; Send FPM to background. Set to 'no' to keep FPM in foreground for debugging.
+; Default Value: yes
+daemonize = yes
+
+; Set open file descriptor rlimit for the master process.
+; Default Value: system defined value
+;rlimit_files = 1024
+
+; Set max core size rlimit for the master process.
+; Possible Values: 'unlimited' or an integer greater or equal to 0
+; Default Value: system defined value
+;rlimit_core = 0
+
+; Specify the event mechanism FPM will use. The following is available:
+; - select     (any POSIX os)
+; - poll       (any POSIX os)
+; - epoll      (linux >= 2.5.44)
+; Default Value: not set (auto detection)
+;events.mechanism = epoll
+
+; When FPM is build with systemd integration, specify the interval,
+; in second, between health report notification to systemd.
+; Set to 0 to disable.
+; Available Units: s(econds), m(inutes), h(ours)
+; Default Unit: seconds
+; Default value: 10
+;systemd_interval = 10
+
+;;;;;;;;;;;;;;;;;;;;
+; Pool Definitions ;
+;;;;;;;;;;;;;;;;;;;;
+
+; Multiple pools of child processes may be started with different listening
+; ports and different management options.  The name of the pool will be
+; used in logs and stats. There is no limitation on the number of pools which
+; FPM can handle. Your system will tell you anyway :)
+
+; See /etc/php-fpm.d/*.conf

ansible/files/remi.repo

@@ -0,0 +1,62 @@
+[remi]
+name=Les RPM de remi pour Enterprise Linux 7 - $basearch
+#baseurl=http://rpms.famillecollet.com/enterprise/7/remi/$basearch/
+mirrorlist=http://rpms.famillecollet.com/enterprise/7/remi/mirror
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-php55]
+name=Les RPM de remi de PHP 5.5 pour Enterprise Linux 7 - $basearch
+#baseurl=http://rpms.famillecollet.com/enterprise/7/php55/$basearch/
+mirrorlist=http://rpms.famillecollet.com/enterprise/7/php55/mirror
+# WARNING: If you enable this repository, you must also enable "remi"
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-php56]
+name=Les RPM de remi de PHP 5.6 pour Enterprise Linux 7 - $basearch
+#baseurl=http://rpms.famillecollet.com/enterprise/7/php56/$basearch/
+mirrorlist=http://rpms.famillecollet.com/enterprise/7/php56/mirror
+# WARNING: If you enable this repository, you must also enable "remi"
+enabled=1
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-test]
+name=Les RPM de remi en test pour Enterprise Linux 7 - $basearch
+#baseurl=http://rpms.famillecollet.com/enterprise/7/test/$basearch/
+mirrorlist=http://rpms.famillecollet.com/enterprise/7/test/mirror
+# WARNING: If you enable this repository, you must also enable "remi"
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-debuginfo]
+name=Les RPM de remi pour Enterprise Linux 7 - $basearch - debuginfo
+baseurl=http://rpms.famillecollet.com/enterprise/7/debug-remi/$basearch/
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-php55-debuginfo]
+name=Les RPM de remi de PHP 5.5 pour Enterprise Linux 7 - $basearch - debuginfo
+baseurl=http://rpms.famillecollet.com/enterprise/7/debug-php55/$basearch/
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-php56-debuginfo]
+name=Les RPM de remi de PHP 5.6 pour Enterprise Linux 7 - $basearch - debuginfo
+baseurl=http://rpms.famillecollet.com/enterprise/7/debug-php56/$basearch/
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi
+
+[remi-test-debuginfo]
+name=Les RPM de remi en test pour Enterprise Linux 7 - $basearch - debuginfo
+baseurl=http://rpms.famillecollet.com/enterprise/7/debug-test/$basearch/
+enabled=0
+gpgcheck=1
+gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-remi

ansible/files/rsyslog_nginx.conf

@@ -0,0 +1,17 @@
+# Nginx main error log
+$InputFileName /var/log/nginx/error.log
+$InputFileTag nginx-error:
+$InputFileStateFile stat-nginx-error
+
+$InputFileSeverity error
+$InputFileFacility local0
+$InputRunFileMonitor
+
+# Nginx main access log
+$InputFileName /var/log/nginx/access.log
+$InputFileTag nginx-access:
+$InputFileStateFile stat-nginx-access
+
+$InputFileSeverity notice
+$InputFileFacility local0
+$InputRunFileMonitor

ansible/files/xdebug.ini

@@ -0,0 +1,13 @@
+[XDebug]
+
+xdebug.coverage_enable=1
+xdebug.default_enable=1
+xdebug.remote_enable=1
+xdebug.remote_connect_back=0
+xdebug.remote_host=192.168.77.1
+xdebug.remote_port=9000
+xdebug.remote_handler=dbgp
+xdebug.remote_log=/tmp/xdebug.log
+xdebug.remote_autostart=1
+xdebug.idekey="PHPSTORM"
+xdebug.max_nesting_level=256