streamwall
diff --git a/‎.env.example‎
Lines changed: 61 additions & 8 deletions b/‎.env.example‎
Lines changed: 61 additions & 8 deletions
diff --git a/‎.github/dependabot.yml‎
Lines changed: 58 additions & 0 deletions b/‎.github/dependabot.yml‎
Lines changed: 58 additions & 0 deletions
diff --git a/‎.github/workflows/deploy.yml‎
Lines changed: 105 additions & 0 deletions b/‎.github/workflows/deploy.yml‎
Lines changed: 105 additions & 0 deletions
diff --git a/‎.github/workflows/scheduled-power.yml‎
Lines changed: 111 additions & 0 deletions b/‎.github/workflows/scheduled-power.yml‎
Lines changed: 111 additions & 0 deletions
@@ -1,17 +1,70 @@
+# StreamSource Environment Variables - Development
+# Copy this file to .env for local development
+
+# ============================================
+# Core Rails Configuration
+# ============================================
+
+# Rails environment (development, test, production)
+RAILS_ENV=development
+
+# Secret key base for development (generate with: rails secret)
+SECRET_KEY_BASE=development-secret-key-base-change-in-production
+
+# Enable/disable logging to stdout
+RAILS_LOG_TO_STDOUT=true
+
+# Log level (debug, info, warn, error, fatal)
+RAILS_LOG_LEVEL=debug
+
+# ============================================
 # Database Configuration
-DATABASE_URL=postgres://streamsource:password@localhost:5432/streamsource_development
+# ============================================
 
+# PostgreSQL connection URL
+DATABASE_URL=postgres://streamsource:streamsource_password@localhost:5432/streamsource_development
+
+# ============================================
 # Redis Configuration
+# ============================================
+
+# Redis connection URL (used for ActionCable, caching, and session storage)
 REDIS_URL=redis://localhost:6379/0
 
-# Rails Configuration
-RAILS_ENV=development
-SECRET_KEY_BASE=your-secret-key-base-here
-RAILS_LOG_TO_STDOUT=true
+# ============================================
+# Application Server Configuration
+# ============================================
 
-# Application Configuration
+# Maximum number of threads per Puma worker
 RAILS_MAX_THREADS=5
+
+# Number of Puma worker processes
 WEB_CONCURRENCY=2
 
-# Optional: External Services
-# SENTRY_DSN=your-sentry-dsn
+# Port for the web server to listen on
+PORT=3000
+
+# ============================================
+# Optional External Services
+# ============================================
+
+# Sentry error tracking (https://sentry.io)
+# SENTRY_DSN=https://[email protected]/your-project-id
+
+# ============================================
+# Feature Flags (Optional)
+# ============================================
+
+# These can also be managed via Flipper UI at /admin/feature_flags
+# ENABLE_ANALYTICS=false
+# ENABLE_BULK_IMPORT=false
+# ENABLE_EXPORT=false
+# ENABLE_WEBHOOKS=false
+
+# ============================================
+# Development-Specific Settings
+# ============================================
+
+# Bundle configuration (usually not needed to change)
+# BUNDLE_WITHOUT=""
+# BUNDLE_GEMFILE="Gemfile"
@@ -0,0 +1,58 @@
+version: 2
+updates:
+  # Ruby dependencies
+  - package-ecosystem: "bundler"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+    open-pull-requests-limit: 10
+    groups:
+      rails:
+        patterns:
+          - "rails*"
+          - "actioncable"
+          - "actionmailbox"
+          - "actionmailer"
+          - "actionpack"
+          - "actiontext"
+          - "actionview"
+          - "activejob"
+          - "activemodel"
+          - "activerecord"
+          - "activestorage"
+          - "activesupport"
+      testing:
+        patterns:
+          - "rspec*"
+          - "factory_bot*"
+          - "faker"
+          - "shoulda-matchers"
+          - "database_cleaner*"
+          - "simplecov"
+          - "webmock"
+          - "vcr"
+
+  # JavaScript dependencies
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+    open-pull-requests-limit: 10
+    groups:
+      hotwire:
+        patterns:
+          - "@hotwired/*"
+          - "turbo*"
+          - "stimulus*"
+
+  # GitHub Actions
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
@@ -0,0 +1,105 @@
+name: Deploy to DigitalOcean
+
+on:
+  push:
+    branches: [ main ]
+  workflow_dispatch:
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    
+    services:
+      postgres:
+        image: postgres:17
+        env:
+          POSTGRES_PASSWORD: postgres
+        options: >-
+          --health-cmd pg_isready
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+        ports:
+          - 5432:5432
+      
+      redis:
+        image: redis:7
+        options: >-
+          --health-cmd "redis-cli ping"
+          --health-interval 10s
+          --health-timeout 5s
+          --health-retries 5
+        ports:
+          - 6379:6379
+
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        ruby-version: '3.3.6'
+        bundler-cache: true
+    
+    - name: Setup Node
+      uses: actions/setup-node@v4
+      with:
+        node-version: '20'
+        cache: 'yarn'
+    
+    - name: Install dependencies
+      run: |
+        yarn install --frozen-lockfile
+    
+    - name: Setup test database
+      env:
+        RAILS_ENV: test
+        DATABASE_URL: postgres://postgres:postgres@localhost:5432/streamsource_test
+        REDIS_URL: redis://localhost:6379/1
+      run: |
+        bundle exec rails db:create
+        bundle exec rails db:schema:load
+    
+    - name: Run tests
+      env:
+        RAILS_ENV: test
+        DATABASE_URL: postgres://postgres:postgres@localhost:5432/streamsource_test
+        REDIS_URL: redis://localhost:6379/1
+      run: bundle exec rspec
+    
+    - name: Run security checks
+      run: |
+        bundle exec brakeman -q -w2
+        bundle exec bundler-audit --update
+
+  deploy:
+    needs: test
+    runs-on: ubuntu-latest
+    if: github.ref == 'refs/heads/main'
+    
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Deploy to DigitalOcean
+      uses: appleboy/[email protected]
+      with:
+        host: ${{ secrets.DROPLET_HOST }}
+        username: deploy
+        key: ${{ secrets.DEPLOY_SSH_KEY }}
+        script: |
+          cd /var/www/streamsource
+          ./deploy/github-deploy.sh
+
+    - name: Health check
+      run: |
+        sleep 30
+        curl -f https://${{ secrets.DROPLET_HOST }}/health || exit 1
+    
+    - name: Notify deployment status
+      if: always()
+      uses: 8398a7/action-slack@v3
+      with:
+        status: ${{ job.status }}
+        text: 'StreamSource deployment ${{ job.status }}'
+        webhook_url: ${{ secrets.SLACK_WEBHOOK }}
+      continue-on-error: true
@@ -0,0 +1,111 @@
+name: Scheduled Power Management
+
+on:
+  schedule:
+    # Power ON at 9 AM EST (14:00 UTC) Monday-Friday
+    - cron: '0 14 * * 1-5'
+    # Power OFF at 6 PM EST (23:00 UTC) Monday-Friday
+    - cron: '0 23 * * 1-5'
+  workflow_dispatch:
+    inputs:
+      action:
+        description: 'Power action'
+        required: true
+        default: 'status'
+        type: choice
+        options:
+          - status
+          - power_on
+          - power_off
+
+jobs:
+  power-management:
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Determine action
+      id: determine-action
+      run: |
+        if [ "${{ github.event_name }}" == "workflow_dispatch" ]; then
+          echo "action=${{ github.event.inputs.action }}" >> $GITHUB_OUTPUT
+        else
+          # Check current hour to determine if we should power on or off
+          HOUR=$(date -u +%H)
+          if [ "$HOUR" == "14" ]; then
+            echo "action=power_on" >> $GITHUB_OUTPUT
+          elif [ "$HOUR" == "23" ]; then
+            echo "action=power_off" >> $GITHUB_OUTPUT
+          else
+            echo "action=status" >> $GITHUB_OUTPUT
+          fi
+        fi
+    
+    - name: Check droplet status
+      id: check-status
+      run: |
+        STATUS=$(curl -s -X GET \
+          -H "Authorization: Bearer ${{ secrets.DO_API_TOKEN }}" \
+          "https://api.digitalocean.com/v2/droplets/${{ secrets.DROPLET_ID }}" \
+          | jq -r '.droplet.status')
+        echo "Current status: $STATUS"
+        echo "status=$STATUS" >> $GITHUB_OUTPUT
+    
+    - name: Power ON droplet
+      if: steps.determine-action.outputs.action == 'power_on' && steps.check-status.outputs.status != 'active'
+      run: |
+        echo "Powering ON droplet..."
+        curl -s -X POST \
+          -H "Content-Type: application/json" \
+          -H "Authorization: Bearer ${{ secrets.DO_API_TOKEN }}" \
+          "https://api.digitalocean.com/v2/droplets/${{ secrets.DROPLET_ID }}/actions" \
+          -d '{"type":"power_on"}'
+        
+        # Wait for droplet to be active
+        for i in {1..30}; do
+          sleep 10
+          STATUS=$(curl -s -X GET \
+            -H "Authorization: Bearer ${{ secrets.DO_API_TOKEN }}" \
+            "https://api.digitalocean.com/v2/droplets/${{ secrets.DROPLET_ID }}" \
+            | jq -r '.droplet.status')
+          if [ "$STATUS" == "active" ]; then
+            echo "Droplet is now active!"
+            break
+          fi
+          echo "Waiting for droplet to be active... ($i/30)"
+        done
+    
+    - name: Power OFF droplet
+      if: steps.determine-action.outputs.action == 'power_off' && steps.check-status.outputs.status == 'active'
+      run: |
+        # First, gracefully stop services via SSH
+        echo "Gracefully stopping services..."
+        ssh -o StrictHostKeyChecking=no \
+            -i <(echo "${{ secrets.DEPLOY_SSH_KEY }}") \
+            deploy@${{ secrets.DROPLET_HOST }} \
+            "sudo systemctl stop puma nginx postgresql redis" || true
+        
+        sleep 5
+        
+        # Then power off the droplet
+        echo "Powering OFF droplet..."
+        curl -s -X POST \
+          -H "Content-Type: application/json" \
+          -H "Authorization: Bearer ${{ secrets.DO_API_TOKEN }}" \
+          "https://api.digitalocean.com/v2/droplets/${{ secrets.DROPLET_ID }}/actions" \
+          -d '{"type":"power_off"}'
+    
+    - name: Report status
+      if: always()
+      run: |
+        FINAL_STATUS=$(curl -s -X GET \
+          -H "Authorization: Bearer ${{ secrets.DO_API_TOKEN }}" \
+          "https://api.digitalocean.com/v2/droplets/${{ secrets.DROPLET_ID }}" \
+          | jq -r '.droplet.status')
+        echo "Final droplet status: $FINAL_STATUS"
+        
+        # Optional: Send notification
+        if [ -n "${{ secrets.SLACK_WEBHOOK }}" ]; then
+          curl -X POST ${{ secrets.SLACK_WEBHOOK }} \
+            -H 'Content-type: application/json' \
+            -d "{\"text\":\"StreamSource droplet is now $FINAL_STATUS\"}"
+        fi