📝(docs) update documentation after turning repo to site factory

Most commands are the same but we must instruct users to first activate a site. For AWS, settings are now split between what is common to all sites and what is specific.
openfun · Jun 3, 2020 · cb4f0f5 · cb4f0f5
1 parent 565fb5b
commit cb4f0f5
Show file tree

Hide file tree

Showing 2 changed files with 86 additions and 26 deletions.
diff --git a/README.md b/README.md
@@ -1,28 +1,46 @@
-# FUN-MOOC
+# Richie site factory
 
-This repository is a work-in-progress for the future fun-mooc.fr website. It is
-based on [Richie](https://github.com/openfun/richie), a CMS for Open Education.
+This repository is a workbench for France Université Numérique to develop
+themed sites based on [Richie](https://github.com/openfun/richie), the CMS
+for Open Education.
 
-## Getting started
+## Prerequisite
 
 First, make sure you have a recent version of Docker and [Docker
 Compose](https://docs.docker.com/compose/install) installed on your laptop:
 
 ```
 $ docker -v
-  Docker version 1.13.1, build 092cba3
+  Docker version 19.03.10, build 9424aeaee9
 
 $ docker-compose --version
-  docker-compose version 1.17.1, build 6d101fb
+  docker-compose version 1.25.5, build 8a1c60f6
 ```
 
-The easiest way to start working on the project is to use our `Makefile`:
+## Getting started
+
+First, you need to activate the site on which you want to work. We provide
+a script that will list existing sites and let you choose one:
 
+```bash
+$ bin/activate
+Select an available site to activate:
+[1] demo (default)
+[2] funmooc
+Your choice: 2
+
+# Check your environment with:
+$ make info
+RICHIE_SITE: funmooc
 ```
+
+Once your environment is set, start the full project by running:
+
+```bash
 $ make bootstrap
 ```
 
-This command builds the `app` container, starts the service and performs
+This command builds the containers, starts the services and performs
 database migrations. It's a good idea to use this command each time you are
 pulling code from the project repository to avoid dependency-related or
 migration-related issues.
@@ -39,14 +57,14 @@ Once the bootstrap phase is finished, you should be able to view the site at
 
 ### Managing services
 
-If you need to build or rebuild the `app` container, use:
+If you need to build or rebuild the containers, use:
 
 ```
 $ make build
 ```
 
-> Note that if the `app` service is already running, you will need to stop it
-> first and then restart it to fire up your newly build container.
+> Note that if the services are already running, you will need to stop them
+> first and then restart them to fire up your newly built containers.
 
 To start the development stack (_via_ Docker compose), use:
 

diff --git a/docs/aws.md b/docs/aws.md
@@ -1,8 +1,9 @@
 # Statics and media files management with AWS
 
-We use AWS S3/CloudFront to store and distribute static and media files for a
-site in various environments. Buckets, distributions and IAM users creation
-is fully automated using [Terraform](https://www.terraform.io/).
+We use AWS S3 to store media files and AWS CloudFront to distribute static
+and media files for a site in various environments. Buckets, distributions
+and IAM users creation is fully automated using
+[Terraform](https://www.terraform.io/).
 
 > ✋ If you plan to develop locally on a site, you don't have to configure
 > anything more. The following documentation targets operational users willing
@@ -31,17 +32,41 @@ TF_VAR_aws_region=eu-west-1
 > i. S3 buckets, ii. KMS keys, iii. DynamoDB tables, iv. IAM users and v.
 > CloudFront distributions.
 
+## Project settings
+
+You need to configure domain names for the CDN in a setting file specific to
+your project: `sites/{{ your_site }}/aws/configtfvars`:
+
+```
+site = "demo"
+
+# Domain name used for the CDN
+storage_domain = {
+  production = "cdn.richie.education"
+  preprod = "cdn-preprod.richie.education"
+  staging = "cdn-staging.richie.education"
+}
+
+# Origin domains on which the site is hosted (the CDN will proxy static files)
+app_domain = {
+  production = "demo.richie.education"
+  preprod = "demo-preprod.richie.education"
+  staging = "demo-staging.richie.education"
+}
+```
+
 ## Setup a shared Terraform state
 
-> ✋ If the project already exists with a shared state, you can skip this section
-> and start fetching the state locally to create new workspaces.
+> ✋ If the project already exists with a shared state, you can skip this
+> section and start fetching the state locally to create new workspaces.
 
-If the project doesn't exist at all, you will need to create an S3 bucket (and a
-DynamoDB lock table) to store your Terraform state file (and its locking) by
+If the project doesn't exist at all, you will need to create an S3 bucket (and
+a DynamoDB lock table) to store your Terraform state file (and its locking) by
 typing the following commands in your terminal:
 
 ```
 $ bin/state init
+$ bin/state workspace new {{ your_site }}
 $ bin/state apply
 ```
 
@@ -50,8 +75,8 @@ project.
 
 ## Create new environments
 
-If everything went smoothly, it's time to initialize your main terraform project
-using the shared state:
+If everything went smoothly, it's time to initialize your main terraform
+project using the shared state:
 
 ```
 $ bin/terraform init
@@ -70,8 +95,8 @@ You can list existing workspaces _via_:
 $ bin/terraform workspace list
 ```
 
-By default, only the `default` workspace exists and is active. You can create a
-new one for the `staging` environment _via_:
+By default, only the `default` workspace exists and is active. You can create
+a new one for the `staging` environment _via_:
 
 ```
 $ bin/terraform workspace new staging
@@ -84,6 +109,23 @@ buckets, IAM user and CloudFront distributions:
 $ bin/terraform apply
 ```
 
+The command will fail the first time it is run because AWS has created an SSL
+certificate but can't associate it with the CDN distribution until the
+ownership of the domain is confirmed. This depends on where your domain name
+is hosted, so we did not automate it.
+
+Go to the ACM (Certificate Manager) service in your AWS console, and look for
+the newly created certificate in the "us-east-1" (Virginia USA) region (the
+only one accepted for certificates used in CloudFront). Create DNS records as
+required to confirm ownership of the domain.
+
+Wait until the certificate is marked as "Issued" and run the terraform command
+again:
+
+```
+$ bin/terraform apply
+```
+
 All created objects should be namespaced with the current active workspace
 (_e.g._ `staging`). You can check this once logged in to your AWS console.
 
@@ -100,10 +142,10 @@ subcommand depending on the workspace availability.
 
 ## Configure runtime environment
 
-Once your buckets have been created for a targeted environment, you will need to
-configure your project's runtime environment with the secrets allowing your
-Django application to access to those buckets and CloudFront distributions. The
-following environment variables should be defined:
+Once your buckets have been created for a targeted environment, you will need
+to configure your project's runtime environment with the secrets allowing your
+Django application to access to those buckets and CloudFront distributions.
+The following environment variables should be defined:
 
 - `DJANGO_AWS_CLOUDFRONT_DOMAIN`
 - `DJANGO_AWS_ACCESS_KEY_ID`