Merge pull request #261 from rackerlabs/add-hourly-scan-capability

Add suppport for hourly scanning
rackerlabs · May 13, 2021 · ee8e22e · ee8e22e
2 parents 4c3c496 + 440004f
commit ee8e22e
Show file tree

Hide file tree

Showing 18 changed files with 2,246 additions and 90 deletions.
diff --git a/README.md b/README.md
@@ -120,10 +120,11 @@ The recommendation is to deploy the console first.
 
 #### Update Console Ansible Variables
 
-Edit any variables in these files before running playbook:
+Edit any variables in `ansible-playbooks/group_vars/all` before running playbook.  Note the time zone variables:
+
+* `timezone_server` - Set this to be the timezone you want the server to be in, usually UTC.
+* `timezone_django` - Set this to be your local timezone.  It makes dealing with dates, times, and scheduling easier.
 
-* `ansible-playbooks/group_vars/all`
-
 If you plan on utilizing the same API key across all engines (not recommended, but easier for automated deployments),
 change `utilize_static_api_token_across_engines` to `True`.  This prevents you from having to log into each engine and
 update `engine_config.json` with the corresponding API key.  The `group_vars/static_api_key` will be created by the
@@ -134,11 +135,11 @@ API key found in `group_vars/static_api_key`.
 more than 1 engine, you won't run into complications with engine name collisions.  You will, however, need to add create
 the user on the console, since the console returns scheduled jobs to the engine based off the engine's name!
 
+#### Update Console Secrets Variables
+
 Rename `console/scantron_secrets.json.empty` to `console/scantron_secrets.json` (should be done for you by
 `initial_setup.sh`)
 
-#### Update Console Secrets Variables
-
 Update all the values `console/scantron_secrets.json` if you do not like ones generated using `initial_setup.sh`.  Only
 the `production` values are used.
 
@@ -586,6 +587,16 @@ the 1st or 9th ports.
 
     ![create_scan](./img/create_scan.png)
 
+    You can use the `console/scan_scheduler_visualizer.py` script found on the console to print out scheduled scan
+    times:
+
+    ```bash
+    # Print out the scan start dates and times for all enabled scans in the next 10 days.
+    cd /home/scantron/console
+    source .venv/bin/activate
+    python scan_scheduler_visualizer.py -d 10
+    ```
+
 5. View currently executing scan results
 
     ```bash

diff --git a/ansible-playbooks/group_vars/all b/ansible-playbooks/group_vars/all
@@ -23,3 +23,9 @@ install_masscan_on_engine: True
 # instead of having to logging into every engine and updating engine/engine_config.json
 # This is less secure!
 utilize_static_api_token_across_engines: False
+
+# timezone used for the server's OS.
+timezone_server: UTC
+
+# timezone used for the Django application's TIME_ZONE setting.  Should be your local timezone.
+timezone_django: America/Chicago
diff --git a/ansible-playbooks/roles/common/tasks/main.yml b/ansible-playbooks/roles/common/tasks/main.yml
@@ -79,9 +79,9 @@
   command: update-grub2
   when: disable_ipv6
 
-- name: Set timezone.
+- name: Set server timezone.
   timezone:
-    name: "{{ timezone }}"
+    name: "{{ timezone_server }}"
 
 - name: Reboot the box in 1 minute
   command: shutdown -r 1

diff --git a/ansible-playbooks/roles/common/vars/main.yml b/ansible-playbooks/roles/common/vars/main.yml
@@ -2,7 +2,6 @@
 enable_ufw_firewall: true
 reboot_box: false
 disable_ipv6: false  # breaks nginx install
-timezone: UTC
 
 # apt packages
 install_packages: