According vermin, our code is compatible with 3.6+ (f-strings)
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Sat, Sep 13
Sat, Sep 13
dereckson retitled D3668: Run query and format as MediaWiki table from WIP: run query and format as MediaWiki table to Run query and format as MediaWiki table.
Paths, packaging
Organize more as a monorepo, so we've room for other tools too, for example the MediaWiki client
dereckson awarded D3668: Run query and format as MediaWiki table a Y So Serious token.
Prune unused
Call credentials code from config, not from connector
Correctly works fine when invoked from reports repository root, with setenv PYTHONPATH $(pwd)/src.
Fri, Sep 12
Fri, Sep 12
Access works:
Run against db-B-001:
Claiming temporarily for credentials and if time allows this evening write helpers script. Will release afterwards, so anyone can create the bot.
On Agora, an account name is required for the automated agent / bot.
The agent will be called Rhyne-Wyse [1].
dereckson committed rOPSe88093555752: Apply SELinux context type recursively to /var/log/www (authored by dereckson).
Apply SELinux context type recursively to /var/log/www
Hack to comply with SELinux and selinux Salt code.
When applying policy to /var/log/www, everything becomes var_log_t:
dereckson moved T1665: Ensure core groups can edit core-protected pages from Backlog (new tasks) to Backlog (config) on the Agora board.
dereckson moved T2123: Fix tests for operations repository from Backlog to Ops on the Technical debt board.
dereckson moved T2123: Fix tests for operations repository from Backlog to Pending review on the Servers board.
In T2123#32403, @dereckson wrote:Tests fix commits will be aggregated in datacube T2123-improve-tests-suite branch, so we can have a look of what's remaining to fix.
dereckson retitled D3659: Handle ssh_keys_by_forest and everywhere_tasks in pillar users test from Handle ssh_keys_by_forest in pillar users test to Handle ssh_keys_by_forest and everywhere_tasks in pillar users test.
Use correct symbols in tests
Test paas_docker.is_nginx_service
dereckson added a revision to T2123: Fix tests for operations repository: D3664: Deploy the monitoring Vault policy.
dereckson added a revision to T2123: Fix tests for operations repository: D3663: Fix node.resolve_network tests.
Thu, Sep 11
Thu, Sep 11
dereckson added a revision to T2123: Fix tests for operations repository: D3662: Read flatter docker_networks pillar.
Rebased. Don't create log directory for non-web services.
dereckson added a revision to T2123: Fix tests for operations repository: D3661: Avoid unittest deprecated aliases.
Tests commits will be aggregates in datacube T2123-improve-tests-suite branch, so we can have a look of what's remaining to fix.
dereckson updated the summary of D3659: Handle ssh_keys_by_forest and everywhere_tasks in pillar users test.
Going to take this, as I wrote the tests suite, @DorianWinty will review.
dereckson updated the diff for D3659: Handle ssh_keys_by_forest and everywhere_tasks in pillar users test.
black
dereckson requested review of D3659: Handle ssh_keys_by_forest and everywhere_tasks in pillar users test.
dereckson committed rOPSec6cec890b8e: Allow all users to read RabbitMQ credential to get notifications (authored by dereckson).
Allow all users to read RabbitMQ credential to get notifications
Prune notifications-cli-client
Wed, Sep 10
Wed, Sep 10
Why not port encrypt to FreeBSD?
Support for PHP 8.4 is still there.
dereckson committed rOPSe5ec87dfe258: Allow systemd-hostnamed to create socket when called from Varlink (authored by dereckson).
Allow systemd-hostnamed to create socket when called from Varlink
Deployed on Dwellers, works like a charm.
dereckson updated the diff for D3658: Allow systemd-hostnamed to create socket when called from Varlink.
Allow to remove the socket too
dereckson planned changes to D3658: Allow systemd-hostnamed to create socket when called from Varlink.
Uninstalled certbot.
Pruned old Python 3 dependencies.
Updated EPEL repo to epel-release-10-6
Updated packages
Reinstalled certbot, now running under Python 3.12 too.
Just for information, working on T2113, I've first updated the packages non related to that conflict, so I had fresh packages for both systemd and selinux config.
https://snapcraft.io/starship - last update: 27 April 2023 - latest/edge
dereckson retitled D3658: Allow systemd-hostnamed to create socket when called from Varlink from Allow systemd-hostnamed to create socket when started by snap starinstalled with snap to Allow systemd-hostnamed to create socket when called from Varlink.
dereckson requested review of D3658: Allow systemd-hostnamed to create socket when called from Varlink.
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.
Was looking to offer a fix upstream, like read hostname from /proc/sys/kernel/hostname on Linux, but then I've realised this is an interaction issue with snap, starship, systemd and SELinux.
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.
Decreasing priority, as it only occurs with Starship.
dereckson renamed T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship from systemd-hostnamed service can't be launched - SELinux blocks it to systemd-hostnamed service can't be launched - SELinux blocks it - starship.
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.
Normal behavior observed with the policy:
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.
Still an error with last packages versions.
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.
audit2allow policy
Bumping for 14.3, are still going on, it makes sense to target latest version
dereckson renamed T2103: Upgrade servers to FreeBSD 14.3 from Upgrade servers to FreeBSD 14.2 to Upgrade servers to FreeBSD 14.3.
dereckson renamed T2112: Renew Vault web server certificate automatically from Renew Vault HTTPS certificate automatically to Renew Vault web server certificate automatically.
dereckson renamed T2112: Renew Vault web server certificate automatically from Renew Vault HTTP certificate automatically to Renew Vault HTTPS certificate automatically.
dereckson renamed T2112: Renew Vault web server certificate automatically from Renew Vault certificate to Renew Vault HTTP certificate automatically.
shellcheck
First step is to create a script to renew all needed certificates:
dereckson renamed T2117: Unexpected reboot of docker-002 from Unexpeted reboot of docker-002 to Unexpected reboot of docker-002.
dereckson closed T2111: Bump dependencies for API servers log PHP version, a subtask of T2015: Migrate remaining sites from ysul to Alkane, as Resolved.
Updated to PHPUnit 12.
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator