|
| 1 | +--- |
| 2 | +title: Deployment architecture |
| 3 | +linkTitle: Architecture |
| 4 | +weight: 1 |
| 5 | +--- |
| 6 | + |
| 7 | +# Deployment architecture |
| 8 | + |
| 9 | +This document provides an overview of the key components and elements involved in the deployment process of a collection. |
| 10 | + |
| 11 | +## Repository structure |
| 12 | + |
| 13 | +A collection is defined by three repositories that work together to manage and track terms. |
| 14 | + |
| 15 | +The declarations repository, `<collection_name>-declarations`, serves as the primary workspace for collection maintainers, containing declarations of the terms to track along with engine and deployment configurations. |
| 16 | + |
| 17 | +This repository is complemented by two automatically managed repositories: |
| 18 | + |
| 19 | +- The versions repository, `<collection_name>-versions`, which maintains a chronological history of terms changes in their readable format |
| 20 | +- The snapshots repository, `<collection_name>-snapshots`, which maintains a chronological history of the original source document (HTML, PDF…) from which the terms will be extracted |
| 21 | + |
| 22 | +These repositories must be considered as databases and are automatically updated by the engine whenever changes are detected in the tracked terms. |
| 23 | + |
| 24 | +## Infrastructure |
| 25 | + |
| 26 | +The server is where the Open Terms Archive engine runs. |
| 27 | + |
| 28 | +The server requires administrative access to allow setting up the system in the appropriate state. |
| 29 | + |
| 30 | +It has an Ed25519 SSH host key pair, `ssh_host_ed25519_key`, which provides a unique server fingerprint, `<server_ssh_fingerprint>`, for identity verification. |
| 31 | + |
| 32 | +There is also a dedicated deployment user account, `<deployment_user>`, with passwordless sudo access to facilitate automated deployment tasks while maintaining security. |
| 33 | + |
| 34 | +Process management is handled through [PM2](https://pm2.keymetrics.io/) and ensures the Open Terms Archive engine runs continuously and reliably. |
| 35 | + |
| 36 | +The engine itself is the core application that performs the actual term tracking and repository management tasks. |
| 37 | + |
| 38 | +## Security elements |
| 39 | + |
| 40 | +### Authentication |
| 41 | + |
| 42 | +Security is maintained through multiple layers of authentication. |
| 43 | + |
| 44 | +The server's SSH host key pair, `ssh_host_ed25519_key`, generates a unique server fingerprint, `<server_ssh_fingerprint>`. This fingerprint verifies server identity and prevents man-in-the-middle attacks during deployment. |
| 45 | + |
| 46 | +The deployment process uses a dedicated SSH key pair, `ota-deploy`, for secure server connections during the continuous deployment workflow. |
| 47 | + |
| 48 | +A separate collection-specific SSH key pair, `<collection_name>-key`, enables the engine to perform GitHub actions as a bot user. |
| 49 | + |
| 50 | +Access to GitHub repositories is controlled through a fine-grained access token, `OTA_ENGINE_GITHUB_TOKEN`, that provides specific permissions for repository management. |
| 51 | + |
| 52 | +### Secret management |
| 53 | + |
| 54 | +Sensitive information is protected by the [Ansible Vault](https://docs.ansible.com/ansible/latest/vault_guide/index.html) encryption system. |
| 55 | + |
| 56 | +The vault system uses a master password, `vault.key` to encrypt and decrypt sensitive data. This includes the environment configuration file, `.env`, and the GitHub bot's private key, `github-bot-private-key`, ensuring that sensitive credentials remain secure while still being accessible to the deployment process. |
| 57 | + |
| 58 | +## Automation tools |
| 59 | + |
| 60 | +[GitHub Actions](https://docs.github.com/en/actions) and [Ansible](https://www.ansible.com/) automate the deployment process. GitHub Actions runs the workflow while Ansible configures the server and deploys the engine. |
| 61 | + |
| 62 | +A dedicated GitHub user account is used for bot-related actions such as committing entries in versions and snapshots repositories, reporting issues when tracking fails, and publishing releases. This account is configured with specific permissions to perform these automated tasks. |
| 63 | + |
| 64 | +The engine sends email notifications to collection administrators when errors or issues occur during the tracking process, enabling prompt intervention when needed. |
| 65 | + |
| 66 | +The engine automatically creates issues in the declarations repository to notify collection maintainers when terms can no longer be tracked. These issues provide details about the tracking failure to allow maintainers to investigate and resolve the problem. |
| 67 | + |
| 68 | +## Configuration files |
| 69 | + |
| 70 | +The system's behavior is controlled through several key configuration files: |
| 71 | + |
| 72 | +- `inventory.yml`: Defines server address and deployment parameters |
| 73 | +- `production.json`: Stores application-specific settings |
| 74 | +- `vault.key`: Protects sensitive data through encryption |
| 75 | + |
| 76 | +## Maintenance |
| 77 | + |
| 78 | +The Open Terms Archive system is designed for continuous operation with minimal intervention. |
| 79 | + |
| 80 | +The engine automatically tracks changes in terms, commits updates to the appropriate repositories, reports issues and sends notifications when issues occur. |
| 81 | + |
| 82 | +System health is maintained through PM2's process management capabilities. |
| 83 | + |
| 84 | +Regular administrative maintenance involves updating collections dependencies such as engine and deployment recipes. It also includes monitoring email notifications and reviewing application logs in case of issues or tracking interruptions. |
0 commit comments