Page MenuHomeDevCentral
Create Task
Maniphest T1595

Reprovision Dwellers through Salt
Open, Needs TriagePublic
Actions

Description

According the changelog, 2019-11-27 entry says "07:13 dereckson: Disk drives look corrupted. Attach a new 1 To drive to the machine. Install a clean CentOS 7 on this drive to recover data."

Per T1592, we're now on CentOS 8, and as Dwellers is the Docker development and staging server, we're going to use CentOS 8 stream.

Server has been reprovisionned, there is still to apply highstate, and review pending Dwellers Maniphest tasks.

Errors to fix

  • nginx - install nginx instead of only configure it?
  • nginx - provide base nginx.conf
  • nginx - provide roles/paas-docker/nginx/files/vhosts/notifications.conf
  • nginx - provide roles/paas-docker/nginx/files/vhosts/bugzilla.conf
  • nginx - provide 502 on fallback while we're done?
  • nginx - use wildcard certificates for fallback?
  • nginx - modernize ciphers per [https://ssl-config.mozilla.org/#server=nginx&version=1.14.1&config=intermediate&openssl=1.1.1c&ocsp=false&guideline=5.4 this mozssl configuration]
  • TLS - crontab with certbot renew --post-hook "nginx -t && nginx -s reload" (but see Sandlayth code, it's more complicated)

Revisions and Commits

rOPS Nasqueron Operations
D2248rOPS44abc6994621 Install jq on Dwellers
D2227rOPSa727e397d214 Provide PaaS Docker nginx default vhosts
D2228rOPSd1309f1c59a6 Provide PaaS Docker nginx base content
D2225rOPS4b1995f22afe Provide nginx TLS configuration on PaaS Docker
D2224rOPSdef04f4d6a8c Provide nginx base configuration
D2223rOPS89a617a0c824 Install nginx on PaaS Docker servers
D2221rOPSd7ea0b4404c6 Create docker group on Dwellers
D2220rOPSa09a8ec40a3e WIP: Install Docker development tools on Dwellers
D2217rOPS6411e69c98b8 Use pillar information for IP and gateway in MOTD
D2216rOPS15199849f8e4 Use net-tools to setup Dwellers IPv6 tunnel
D2215rOPSefec566fbdf8 Enable Docker service
D2214rOPSc0d212c71380 Ensure pip is installed in order to invoke it
D2213rOPSf5d41ce2de3a Don't try to install last docker-ce version on CentOS
D2212rOPS4223a88649d2 Ignore containers if zr isn't available

Related Objects
Search...

Event Timeline

dereckson created this task.Feb 14 2020, 17:12
dereckson added a subtask: T1351: Review network configuration for Dwellers.Feb 14 2020, 17:16
dereckson added a revision: D2212: Ignore containers if zr isn't available.Feb 14 2020, 21:09
dereckson added a commit: rOPS4223a88649d2: Ignore containers if zr isn't available.Feb 14 2020, 21:10
dereckson added a revision: D2213: Don't try to install last docker-ce version on CentOS.Feb 14 2020, 21:21
dereckson added a commit: rOPSf5d41ce2de3a: Don't try to install last docker-ce version on CentOS.Feb 14 2020, 21:49
dereckson added a revision: D2214: Ensure pip is installed in order to invoke it.Feb 14 2020, 21:57
dereckson added a commit: rOPSc0d212c71380: Ensure pip is installed in order to invoke it.Feb 14 2020, 23:56
dereckson updated the task description. (Show Details)Feb 14 2020, 23:56
dereckson updated the task description. (Show Details)
dereckson updated the task description. (Show Details)
dereckson added a revision: D2215: Enable Docker service.Feb 15 2020, 00:04
dereckson added a commit: rOPSefec566fbdf8: Enable Docker service.Feb 15 2020, 00:20
dereckson added a revision: D2216: Use net-tools to setup Dwellers IPv6 tunnel.Feb 15 2020, 00:22
dereckson added a commit: rOPS15199849f8e4: Use net-tools to setup Dwellers IPv6 tunnel.Feb 15 2020, 00:23
dereckson added a revision: D2217: Use pillar information for IP and gateway in MOTD.Feb 15 2020, 00:50
dereckson added a commit: rOPS6411e69c98b8: Use pillar information for IP and gateway in MOTD.Feb 15 2020, 01:35
dereckson added a revision: D2220: WIP: Install Docker development tools on Dwellers.Feb 16 2020, 03:32
dereckson added a commit: rOPSa09a8ec40a3e: WIP: Install Docker development tools on Dwellers.Feb 17 2020, 01:29
dereckson added a revision: D2221: Create docker group on Dwellers.Feb 17 2020, 02:00
dereckson added a commit: rOPSd7ea0b4404c6: Create docker group on Dwellers.Feb 17 2020, 06:33
dereckson added a revision: D2223: Install nginx on PaaS Docker servers.Feb 18 2020, 03:06
dereckson added a commit: rOPS89a617a0c824: Install nginx on PaaS Docker servers.Feb 18 2020, 03:24
dereckson added a revision: D2224: Provide nginx base configuration.Feb 18 2020, 04:27
dereckson added a commit: rOPSdef04f4d6a8c: Provide nginx base configuration.Feb 18 2020, 05:16
dereckson updated the task description. (Show Details)Feb 18 2020, 05:17
dereckson renamed this task from Reprovision Dwellers to Reprovision Dwellers through Salt.Feb 18 2020, 06:04
dereckson updated the task description. (Show Details)
dereckson added a project: Salt.
dereckson moved this task from Backlog to Services to add on the Salt board.
dereckson updated the task description. (Show Details)Feb 18 2020, 06:07
dereckson updated the task description. (Show Details)Feb 18 2020, 06:12
dereckson added a revision: D2225: Provide nginx TLS configuration on PaaS Docker.Feb 18 2020, 06:32
dereckson added a commit: rOPS4b1995f22afe: Provide nginx TLS configuration on PaaS Docker.Feb 18 2020, 18:05
dereckson added a revision: D2227: Provide PaaS Docker nginx default vhosts.Feb 18 2020, 21:06
dereckson added a revision: D2228: Provide PaaS Docker nginx base content.Feb 19 2020, 00:38
dereckson added a commit: rOPSd1309f1c59a6: Provide PaaS Docker nginx base content.Feb 19 2020, 01:01
dereckson added a commit: rOPSa727e397d214: Provide PaaS Docker nginx default vhosts.Feb 20 2020, 05:21
dereckson added a revision: D2248: Install jq on Dwellers.Feb 22 2020, 02:53
dereckson added a commit: rOPS44abc6994621: Install jq on Dwellers.Feb 22 2020, 04:14
dereckson updated the task description. (Show Details)Feb 22 2020, 04:14
dereckson moved this task from Working on to Blocked on the Operations sprints (Consolidate them all) board.Sep 21 2020, 23:30
dereckson moved this task from Blocked to Not for this sprint on the Operations sprints (Consolidate them all) board.Sep 21 2020, 23:32

We'll revisit this after Kubernetes cluster is ready, as that will drastically change the scope of Dwellers (development and build server for Docker images).

dereckson updated the task description. (Show Details)Apr 6 2023, 19:22
dereckson added a subscriber: DorianWinty.

Vhosts part done (thanks @DorianWinty)

Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator