Last active
September 21, 2015 20:00
-
-
Save TimMurphy/eec664c1c0f2fae2bc91 to your computer and use it in GitHub Desktop.
Boxstarter script for buildservertmit
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Function Main() | |
| { | |
| Enable-MicrosoftUpdate | |
| Install-WindowsUpdate -AcceptEula | |
| Install-Packages | |
| Write-Host "Importing Carbon module..." | |
| & "C:\Program Files\WindowsPowerShell\Modules\Carbon\Import-Carbon.ps1" | |
| Configure-Windows | |
| # Configure-Path | |
| Install-ReverseProxyServer | |
| Write-Host | |
| Install-WindowsUpdate -AcceptEula | |
| } | |
| Function Configure-Path() | |
| { | |
| Write-Host | |
| Write-Host "Configuring PATH..." | |
| Write-Host "----------------------------------------------------------------------" | |
| $userPath = [environment]::GetEnvironmentVariable("Path", "User"); | |
| $machinePath = [environment]::GetEnvironmentVariable("Path", "Machine"); | |
| $bowerPath = "C:\Windows\System32\config\systemprofile\AppData\Roaming\npm;" | |
| $userPath = $userPath.Trim(";") + ";" | |
| $machinePath = $machinePath.Trim(";") + ";" | |
| if (-not $machinePath.Contains($bowerPath)) | |
| { | |
| $machinePath += $bowerPath | |
| [Environment]::SetEnvironmentVariable("Path", $machinePath, "Machine") | |
| } | |
| if (-not $userPath.Contains($bowerPath)) | |
| { | |
| $userPath += $bowerPath | |
| [Environment]::SetEnvironmentVariable("Path", $userPath, "User") | |
| } | |
| } | |
| Function Install-Packages() | |
| { | |
| choco update -y all | |
| choco install -y boxstarter | |
| choco install -y carbon | |
| choco install -y dotnet3.5 # required by webpicmd | |
| choco install -y git | |
| choco install -y jenkins | |
| choco install -y microsoft-build-tools | |
| choco install -y nodejs | |
| choco install -y webpicmd # requires dotnet3.5 | |
| # Probably over doing calls to Windows Update but an attempt to create a VM had an issue with one of the following packages. | |
| Install-WindowsUpdate -AcceptEula | |
| choco install -y vs2013.shellisolatedredist | |
| Install-WindowsUpdate -AcceptEula | |
| npm install -g rimraf | |
| npm install -g bower | |
| npm install -g gulp | |
| &WebPiCmd /install /Products:"ARRv3_0" /AcceptEula | |
| Install-WindowsUpdate -AcceptEula | |
| } | |
| Function Configure-Windows() | |
| { | |
| Write-Host "Disabling Internet Explorer Enhanced Security Configuration..." | |
| Disable-InternetExplorerESC | |
| Write-Host "Disabling Server Manager opening at logon..." | |
| $Key = "HKLM:\SOFTWARE\Microsoft\ServerManager" | |
| if(Test-Path $Key) | |
| { | |
| Set-ItemProperty -Path $Key -Name "DoNotOpenServerManagerAtLogon" -Value 1 | |
| } | |
| Write-Host "Adjusting Windows Explorer options to display hiden files, folders and extensions..." | |
| $key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced' | |
| if(Test-Path -Path $Key) { | |
| Set-ItemProperty $Key Hidden 1 | |
| Set-ItemProperty $Key HideFileExt 0 | |
| Set-ItemProperty $Key ShowSuperHidden 0 | |
| } | |
| Write-Host "Restarting Windows Explorer..." | |
| $identity = [System.Security.Principal.WindowsIdentity]::GetCurrent() | |
| $parts = $identity.Name -split "\\" | |
| $user = @{Domain=$parts[0];Name=$parts[1]} | |
| $explorer = Get-Process -Name explorer -IncludeUserName -ErrorAction SilentlyContinue | |
| if($explorer -ne $null) { | |
| $explorer | ? { $_.UserName -eq "$($user.Domain)\$($user.Name)"} | Stop-Process -Force | |
| } | |
| Start-Sleep 1 | |
| if(!(Get-Process -Name explorer -ErrorAction SilentlyContinue)) { | |
| start-Process -FilePath explorer | |
| } | |
| } | |
| Function Install-ReverseProxyServer() | |
| { | |
| Write-Host "Installing web server..." | |
| Install-WindowsFeature -Name Web-Server | Out-Null | |
| Write-Host "Installing IIS Basic Authentication..." | |
| Install-WindowsFeature -Name Web-Basic-Auth | Out-Null | |
| # Required to rerouting the Jenkins server. | |
| Write-Host "Enabling Application Request Routing proxy..." | |
| Set-WebConfigurationProperty system.webServer/proxy -Name enabled -Value "True" | |
| Create-Directory "C:\Websites" | |
| Write-Host "Removing existing websites..." | |
| Get-Website | ForEach-Object { Delete-Website -name $_.Name } | |
| Write-Host "Search for default certificate..." | |
| $defaultCertificateSubject = "CN=$($env:COMPUTERNAME.ToLower()).cloudapp.net" | |
| $defaultCertificate = Get-Certificate -Path Cert:\LocalMachine\My\* | Where-Object { $_.Subject -eq $defaultCertificateSubject } | |
| if ($defaultCertificateSubject -eq $null) | |
| { | |
| throw "Cannot find default certificate '$defaultCertificateSubject'." | |
| } | |
| $websiteName = "Jenkins Proxy" | |
| $physicalPath = "C:\Websites\JenkinsProxy" | |
| $applicationId = [Guid]::NewGuid() | |
| Write-Host "Creating '$websiteName' website..." | |
| Create-Directory $physicalPath | |
| New-Website -Id 2 -Name $websiteName -PhysicalPath $physicalPath -IPAddress "*" -Ssl -Port 443 -HostHeader "buildservertmit.cloudapp.net" | Out-Null | |
| Write-Host "Downloading Web.config to '$websiteName' website..." | |
| $webclient = New-Object System.Net.WebClient | |
| $url = "https://gist.githubusercontent.com/TimMurphy/eec664c1c0f2fae2bc91/raw/reverse-proxy-web.config" | |
| $file = "$physicalPath\Web.config" | |
| $webclient.DownloadFile($url, $file) | |
| Write-Host "Enabling SSL for'$websiteName' website..." | |
| Enable-IisSsl -SiteName $websiteName -RequireSsl | Out-Null | |
| Write-Host "Setting certificate for '$websiteName' website..." | |
| Set-IisWebsiteSslCertificate -SiteName $websiteName -Thumbprint $defaultCertificate.Thumbprint -ApplicationID $applicationId | |
| Write-Host "Enabling Basic authentication for '$websiteName' website..." | |
| Disable-IisSecurityAuthentication -SiteName $websiteName -Anonymous | |
| Enable-IisSecurityAuthentication -SiteName $websiteName -Basic | |
| Disable-IisSecurityAuthentication -SiteName $websiteName -Windows | |
| Get-Website -Name $websiteName | |
| } | |
| Function Create-Directory($directory) | |
| { | |
| If (-not (Test-Path $directory)) | |
| { | |
| Write-Host "Creating '$directory' directory..." | |
| New-Item -Path $directory -ItemType Directory | Out-Null | |
| } | |
| } | |
| Function Delete-Website($name) | |
| { | |
| if ((Get-Website -Name $name) -ne $null) | |
| { | |
| Write-Host "Removing '$name' website..." | |
| Remove-Website -Name $name | |
| } | |
| } | |
| Main |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="utf-8"?> | |
| <configuration> | |
| <system.webServer> | |
| <rewrite> | |
| <rules> | |
| <rule name="Reverse Proxy to Jenkins" stopProcessing="true"> | |
| <match url="(.*)" /> | |
| <action type="Rewrite" url="http://localhost:8080/{R:1}" /> | |
| </rule> | |
| </rules> | |
| </rewrite> | |
| </system.webServer> | |
| </configuration> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment