Checklists

Table of contents:

• Incus
• pro.montory.vendor
• Provisioning
• Release
• Snapshots

Incus

IPv6 connectivity with static prefix

• incus network set incusbr0 ipv6.address=1234:1234:1234:cccc:1:1:1:1/64 ipv6.nat=false
• pfSense
  • System / Routing
    • Gateways > Add
      • Set gateway IP address to IP of Incus host
    • Static Routes > Add
      • Destination 1234:1234:1234:cccc:1:1:1:1/64
• https://blog.sifrmoja.xyz/posts/public-ipv6-lxd/

Setup PKI using KeyStore Explorer

1. Generate key pairs in a temporary key store for CA, server and client (Add extensions > Use Standard Templates > CA, TLS/SSL Server and TLS/SSL Client respectively)
2. Create CSRs for server and client
3. Sign CSRs with CA (Transfer Extensions, Export Length: Entire Chain)
4. Create password protected client keystore (containing client private key and signed cert) and truststore (containing ca cert) in PKCS#12 format
5. Place server key and signed cert in /var/lib/incus
6. Restart incus service
7. Trust signed client cert incus config trust add-certificate client.crt

Provisioning

Development Server

• Fossil
  • Chat Timeline
    • Set chat-timeline-user to robot-timeline
    • Create user robot-jenkins with C privilege
• Jenkins
  • Plugins
    • Lockable Resources
  • Create required credentials referenced in Jenkinsfiles
    • Be aware of dragons when using $ in credentials
• Reposilite
  • Tokens
    • Set temporary token in reposilite.service using --token root:root-secret
    • Login with root, use console to generate admin token token-generate admin m
    • Remove temporary token from reposilite.service
    • See Routes
  • Settings > Maven > Repositories
    • Create repository all with following mirrors
      • snapshots (allow .zip)
      • releases (allow .zip)
      • https://montory.pro/reposilite/snapshots (allow .zip)
      • https://montory.pro/reposilite/releases (allow .zip)
      • https://montory.pro/reposilite/thirdparty (allow .zip)
      • https://repo.maven.apache.org/maven2/ (Store enabled)
    • Update and reload
• Verdaccio
  • Tokens
    • Define users using htpasswd in verdaccio.htpasswd

Development Workstation

• Set environment variables in ~/.profile
  • MVN_TOKEN and MVN_SECRET
    • In reposilite with admin user, use console to generate new token token-generate user
    • Set MVN_TOKEN to user, MVN_SECRET to the token printed to console
  • NPM_TOKEN
    • In repo root run npm login
    • Open .npmrc in user home directory and copy XXX from ...:_authToken=XXX
    • Delete .npmrc in user home directory
• Caddy Local HTTPD
  • Put breakpoint in first test method of CaddyAndSeleniumExtensionTest and start debugging, so caddy is running
  • sudo HOME=/home/$USER caddy trust

Release

1. Release stable
   • Use $PROMONTORY_TOOL_DIR/releng/prepare_release.sh
   • Run Jenkins stable CI build
2. Prepare trunk
   • Use $PROMONTORY_TOOL_DIR/releng/prepare_snapshot.sh
   • Run Jenkins trunk CI build

Snapshots

NPM

• Publish new snapshot
  • npm version prerelease --workspaces (or npm version 1.0.0-SNAPSHOT.X --workspaces, where X is the build number)
  • npm publish --tag snapshot --workspaces
• Consume snapshot
  • Set dependency version "@pro.montory/framework-util": "snapshot"

pro.montory.vendor

Docopt

1. Download master.zip
2. Build JAR mvn package -DskipTests
3. Upload JAR mvn deploy:deploy-file -DgroupId=pro.montory.vendor -DartifactId=docopt -Dversion=0.6.0 -Dfile=docopt.jar -DgeneratePom=true -Dpackaging=jar -DrepositoryId=dev-server -Durl=https://montory.pro/reposilite/thirdparty

JRE

1. Download JRE
2. Unpack to /var/tmp/jre
3. Create ZIP file

   cd /var/tmp/jre
   rm -rf legal
   cd /var/tmp
   (cd jre && zip -r ../jre.zip .)
   

4. Upload ZIP mvn deploy:deploy-file -DgroupId=pro.montory.vendor -DartifactId=jre -Dversion=26.0.0 -Dclassifier=zulu-linux_x64 -Dfile=jre.zip -DgeneratePom=true -Dpackaging=zip -DrepositoryId=dev-server -Durl=https://montory.pro/reposilite/thirdparty