Concepts
Patton consists of a bash script named deploy that is configured by a file
named patton.config. Patton is developed in-house to leverage knowledge about
our standard server configuration and workflows and provide an easy-to-use and
easy-to-configure solution that we can adapt over time.
There are a number of core concepts central to how Patton works. These include:
- multiple environments
- the distinction between code and content
- migrations
Environments
Patton works off of the concept of each site having three environments:
- Dev
- Used for active development; the only environment that developers upload code to
- Stage
- Used to test functionality of committed code and to test the deployment process to the production environment
- Prod
- Live website
Each environment includes both files and a database.
Code and Content
For the purposes of this document, a website consists of version-controlled Code, and optionally, non-version-controlled Content.
Code includes text files such as PHP, HTML and CSS, but also related binary files such as images and flash movies.
Content includes text/HTML content and files on the filesystem that support the text content. The database structure and filesystem structure used to store these is considered to be part of the Content.
The definitive copy of all Code are stored in an SVN repository. The definitive copy of Content is stored in the Prod database or as part of the Prod directory structure.
Migrations
SVN naturally allows modification of Code. Since Content is constantly evolving in the Prod Environment, it is necessary to modify when the supporting Code is deployed to the Environment. To accomplish this dynamic modification of Content, there are database and script Migrations.
Database migrations are .sql files that are executed against an environment’s
database. Script migrations are .sh or .php files that are executed within
an Environment. More on using migrations.
Workflows
There are two distinct workflows we use with Patton: Live Site and Development Site. While each one of these is unique in some ways, the earliest part of the workflow (making and testing changes), remains very much the same.
While Patton provides a great deal of functionality and guidance for deployment of websites, it is still important that everyone involved in a project understand the workflow and communicate what is being done.
Common Practices
In all workflows, version control represents the authoritative copy of the Code and Code should never be manually edited on the Stage or Prod environments. Edits to Code are previewed on Dev and committed to SVN/Git/etc. Patton is used to deploy them to the Stage and Prod environments.
NOTE: The examples below use command line versions of SVN and SFTP to complete a single minor update to the site. Depending on the type of version control used for the project and the tools you are using, your specific actions may differ, but the process should not.
Cloning or Updating Your Working Copy
The first step to working on a site is to clone/checkout a working copy of it. If you already have a working copy that you used to make updates previously then you can skip this step. Here is how to checkout a repository using SVN:
user@host:~$ svn checkout https://<svn.example.com>/<repository>/trunk <repository>
If you simply need to get any updates/changes which have been made since the last time you worked on it, you can do the following:
user@host:~$ cd <repository>
user@host:~/<repository>$ svn update
NOTE: It is important to make sure you pull updates before you begin working. This helps to avoid conflicts with your changes and other people’s changes
Making and Testing Changes
Once you have a working copy checked out, you can make changes to that local copy and upload them to the Dev Environment. You can use whatever tools you’re most familiar with to make changes and upload them with SFTP/SCP:
user@host:~/<repository>$ sftp <user>@<example.com>
Connected to example.com.
sftp> lcd <app/views/about>
sftp> cd <app/views/about>
sftp> put main.php
sftp> exit
Once you have made your edits, you can review the changes on the development site.
Committing Changes
Once your changes look good, you need to commit them before they can actually be deployed. Continuing with our example using SVN, we’ll take a look at several related commands.
Show Changes
Before committing you might just want to double check which files you’ve changed:
user@host:~/<repository>$ svn status
M app/views/about/main.php
The “M” signifies that the file has been modified since your previous update. If you want to see an actual diff of the file you can execute the following:
user@host:~/<repository>$ svn diff app/views/about/main.php
Index: app/views/about/main.php
===================================================================
--- app/views/about/main.php (revision 321)
+++ app/views/about/main.php (working copy)
@@ -15,7 +15,7 @@
<p>
...ami memory cat defunct.
</p>
- <h2>Old Heading</h2>
+ <h2>Modified New Heading</h2>
<p>
Lorem ipsum ditty kong...
</p>
The above example shows where we changed the text of a heading file. Additional context (common lines of code) may be provided above or below actual changes. Changes themselves, however, will be shown as either (-) for removal or (+) for addition.
Make Them Stick
After reviewing your changes you can commit them back to the repository:
user@host:~/<repository>$ svn commit -m "Changed heading" <app/views/about/main.php>
Sending app/views/about/main.php
Transmitting file data .
Committed revision 322.
Testing Deployment
Once commited you can follow the directions Deploying in order to deploy your changes to the Stage Environment. You can then review these changes on your stage site’s URL.
Pushing Live
Once you’ve reviewed the changes on stage and ensured nothing was broken during or after deployment on the stage site, you can deploy to production. Again, use the relevant example under Deploying.
Live Site vs. Development Site
Depending on the specific workflow which Patton is currently configured for, there are other things you may need to keep in mind depending on how significant your changes to the code base are.
The Live Site workflow is the most common and serves as a baseline with which to compare the Development Site workflow.
Live Site Workflow
In the Live Site workflow, a live website is being run in the Prod environment. This is the standard workflow to be used once a client starts creating Content on the site.
This workflow means:
- All SiteManager content must be authored in the Prod environment
- Testing content can be created in the Dev and Stage environments, but it will be overwritten each time one of those environments is deployed
- Migration scripts must be written for database and writable folder changes
The Live Site Workflow is enabled by setting CONTENT_SOURCE_ENV="prod" in
patton.config.
Development Site Workflow
With the Development Site workflow, the Prod and Stage environments will not contain any Content, or at least any relevant Content. This workflow is used for greenfield projects.
There needs to be clear communication between all members of a project when using the Development Site workflow to prevent loss of client-supplied data.
NOTE: As soon as a client is creating content, the project should immediately switch over to the Live Site Workflow.
This workflow means:
- All content on the Stage and Prod environments will be overwritten with each commit.
- All SiteManager content must be authored in the Dev environment
- Database and writable folder changes are manually performed, or a
migration is written and
./deploy devis executed to run it
The Development Site Workflow is enabled by setting CONTENT_SOURCE_ENV="dev"
in patton.config.
Using deploy
The deploy script has a number of command line flags and parameters to control
how it runs.
As of Patton 11.0, patton should be cloned/installed to /usr/lib/patton and the deploy command should be a symlink to /usr/lib/patton/deploy. This symlink will usually live in /var/www or whatever the base directory for your web docs are.
Initialization
Patton 10+ uses ACLs instead of cludged together sudo allowances. You can
initialize a new skeleton structure with the following inside of your project’s
folder:
./deploy -i .
You can optionally create the entire project directory by specifying a completely new folder:
./deploy -i example.com
In Patton 11+, You can optionally create a platform specific project directory by specifying the new folder as well as a platform:
./deploy -i example.com craft3
Initialization will perform the following actions on the noted supported systems unless configured otherwise:
- Create basic directory structure
- Set access control lists or permissions if
ACLS=0 - Create databases
- Set proper privileges on databases
Show Config
The simplest operation with Patton is to display the current configuration. This is done by calling:
./deploy -c example.com
The output will contain all of the configuration variables along with their
currently computed values. Values printed in yellow have been customized in
patton.config, whereas green values are defaults, or default that have been
computed based on other variables.
Show Revision
For the Stage and Prod environments, an currently deployed SVN revision is stored and can be retrieved:
./deploy -v example.com stage
./deploy -v example.com prod
It is not possible to display the revision on Dev because the Dev environment is editable and will not normally represent an exact SVN revision.
Show Log
For the Stge and Prod environments it is possible to see the SVN log for the revisions that will be deployed:
./deploy -l example.com stage
./deploy -l example.com prod
Deploying
The latest Code and Content can be deployed to any of the three environments.
./deploy example.com dev
./deploy example.com stage
./deploy example.com prod
By default deploying to Dev and Stage will deploy the latest revision from
/trunk/. Prod will deploy the revision currently deployed to Stage. This
ensures that all deployments are tested.
Deploying Specific Branches & Commit
For the Stage and Dev environments it is possible to deploy any branch or commit that is newer than the revision deployed to Prod.
./deploy example.com dev example-branch
./deploy example.com stage example-branch
Content Source
Be sure to read about the Development Site Workflow and communicate with the rest of the project team before using this feature.
To use the Development Site workflow, the CONTENT_SOURCE_ENV
variable in patton.config must be set to dev.
DOMAIN_NAME="example.com"
CONTENT_SOURCE_ENV="dev"
This will cause all deploy operations to treat the dev environment as the
definitive source for content. Using this option will require explicit
confirmation when deploying to prod, in an attempt to help prevent
accidentally overwriting client content.
Using Migrations
Patton expects database and script migrations to be stored in specific locations within the repository. It determines what migrations to run based on when the migration was added to the repository.
Database Migrations
Database migrations are files that end with .sql in the
/database/migrations/ folder that lives either inside of /trunk/ or
/branches/branch_name/.
The SQL commands are executed as an admin level user. To see what user will be
used, execute ./deploy -cq and look for the DB_ROOT_USER setting.
Database migration files should include SQL statements, terminated by ;s.
BEGIN;
CREATE TABLE logins (
login_id SERIAL PRIMARY KEY,
user_id INTEGER NOT NULL REFERENCES users(user_id) ON DELETE CASCADE,
"timestamp" TIMESTAMP NOT NULL
);
-- We don't need to track this anymore since we track all logins
ALTER TABLE users DROP COLUMN last_login;
COMMIT;
SELECT grant_to_web();
Any migrations that add database tables should include SELECT grant_to_web();
when running on the standard Imarc server setup. This will allow the website
to access data inside of the table.
For migrations on a PostgreSQL database, use database transactions (BEGIN and
COMMIT) to make sure your database changes are atomic and don’t partially
fail.
Script Migrations
Script migrations are scripts that end with .sh or .php and are stored in
the /scripts/migrations/ folder that lives either inside of /trunk/ or
/branches/branch_name/.
The scripts commands are executed as the OS deploy user. To see what user
account will be used, execute ./deploy -cq and look for the DEPLOY_USER
setting.
Script migrations that end in .sh will be executed by bash, whereas migrations
ending in .php are executed by PHP on the command line.
Enviromental Variables
The following environmental variables are available directly in shell scripts,
or in PHP via the $_ENV superglobal.
- ENVIRONMENT
- The current environment, e.g. `dev`
- ENV_DOMAIN_NAME
- The domain name of the current environment, e.g. `dev.example.com`
- ENV_DIR
- The root directory that contains the current environment, e.g. `/home/www/example.com/dev`
- ENV_WRITABLE_DIR
- The directory that contains writable files for the current environment, e.g. `/home/www/example.com/dev/writable`
- DB_ROOT_USER
- The database user to connect as, e.g. `postgres`
- ENV_NEW_DB
- The new database that has had all migrations applied to it, e.g. `dev_example_com_new`
- ENV_OLD_DB
- The old database for the environment, e.g. `dev_example_com`. *This is not normally useful because this database is dropped by the end of deployment when deploying to the `dev` and `stage` environments, and is the same as `ENV_NEW_DB` for the `prod` environment.*
- SVN_REV
- The SVN revision being deployed, e.g. `123`
- ENV_PREFIX
- The upper-case env name with an _, e.g. `DEV_`
Example PHP Migration
PHP migration scripts require a certain amount of setup to make the $_SERVER
superglobal contain the same keys that would be present with an Apache request.
$_SERVER['DOCUMENT_ROOT'] = getenv('ENV_DIR') . '/docroot';
$_SERVER['HTTP_HOST'] = getenv('ENV_DOMAIN_NAME');
$_SERVER['REQUEST_URI'] = '/';
// Load up the common initialization code
include $_SERVER['DOCUMENT_ROOT'] . '/inc/init.php';
// Attach the new database to the ORM so our changes aren't thrown out
fORMDatabase::attach(new fDatabase('postgresql', getenv('ENV_NEW_DB'), 'web', ''));
// Delete the users in PHP so the files get deleted too
foreach (User::buildInactive() as $user) {
$user->delete();
}
Example Shell Migration
Patton 10+
Newer versions of patton use ACLs so you should not need to worry about using
chmod or chown. You should be able to mkdir, rm, cp, and mv as you
please with no sudo necessary. However, due to limitaitons of the -p argument
for mkdir, you will need to set umask when creating directories.
# Create a new directory
umask g=rwx; mkdir -p $ENV_WRITABLE_DIR/photos/photo
# Delete an old directory
rm -rf $ENV_WRITABLE_DIR/photos/photo
# Move a folder
mv $ENV_WRITABLE_DIR/photos/photo $ENV_WRITABLE_DIR/photos/image
Additionally, since proper defaults are set on writable folders, you do not need to worry about granting permissions to additional users.
Earlier
Bash migration scripts have a specific number of commands that can be executed
as root via sudo to allow for the low-privilege deploy to perform common
actions.
rm -Rfmvchmod -Rmkdir -p
The following shell migration script shows how to use this commands with sudo
to manage the /writable directory.
# Create a new directory
sudo mkdir -p $ENV_WRITABLE_DIR/photos/photo
sudo chmod -R 777 $ENV_WRITABLE_DIR/photos/photo
# Delete an old directory
sudo rm -Rf $ENV_WRITABLE_DIR/photos/photo
# Move a folder
sudo mv $ENV_WRITABLE_DIR/photos/photo $ENV_WRITABLE_DIR/photos/image
Adding a Migration
Patton determines what migrations to run based on the currently deployed revision on Prod. All migrations added to SVN in a revision higher than the one deployed to Prod will be executed. For example:
- Prod is at revision 115
migration1.shwas added in r115migration2.sqlwas added in r116
When deploying to Dev or Stage, only migration2.sql will be run since
migration1.sh was added in a revision that has already been deployed to Prod.