Page MenuHomePhabricator

Setup testing server for AuthManager in Labs
Closed, ResolvedPublic

Description

Create a testing server in Labs that can be used to test work in progress patches implementing AuthManager including Action API changes.

Event Timeline

bd808 claimed this task.
bd808 raised the priority of this task from to High.
bd808 updated the task description. (Show Details)
bd808 subscribed.
Restricted Application added a subscriber: Aklapper. · View Herald Transcript

Setup new host at am-01.authmanager.eqiad.wmflabs:

  • Enabled role role::labs::mediawiki_vagrant and forced puppet run with sudo puppet agent --test --verbose
  • Setup MediaWiki-Vagrant hiera config for a wiki farm by creating /srv/mediawiki-vagrant/puppet/hieradata/local.yaml:
---
role::mediawiki::hostname: authmanager.wmflabs.org
mediawiki::multiwiki::base_domain: "-authmanager.wmflabs.org"
  • Enabled MediaWiki-Vagrant roles:
    • apex
    • buggy
    • centralauth
    • cite
    • cologneblue
    • eventlogging
    • fss
    • gadgets2
    • geshi
    • inputbox
    • interwiki
    • jsonconfig
    • math
    • mobilefrontend
    • oauth
    • parserfunctions
    • poem
    • poolcounter
    • psr3
    • scribunto
    • sitematrix
    • templatedata
    • thumb_on_404
    • titleblacklist
    • visualeditor
    • wikidiff2
    • wikimediamessages
  • Started VM: vagrant up
  • Waited forever for that to complete....
  • Tested that wiki worked locally via curl -L localhost:8080
  • Added web proxies pointing to am-01.authmanager.eqiad.wmflabs:8080 using wikitech UI:
    • authmanager.wmflabs.org
    • centralauthtest-authmanager.wmflabs.org
    • gadgets-authmanager.wmflabs.org
    • gadgetsclient-authmanager.wmflabs.org
    • login-authmanager.wmflabs.org
    • mobile-authmanager.wmflabs.org
  • Logged in to https://authmanager.wmflabs.org using default MediaWiki-Vagrant credentials and then changed the Admin password

Not sure if we want to have everything on the same box, but other useful test roles are confimedit, https, oathauth, oauthauthentication.

And we should probably have an LdapAuthentication role. The wikitech role sets it up but comes with a million other things.

Not sure if we want to have everything on the same box, but other useful test roles are confimedit, https, oathauth, oauthauthentication.

And we should probably have an LdapAuthentication role. The wikitech role sets it up but comes with a million other things.

I enabled confirmedit. I don't think that https will really add anything in the Labs environment. We could add some custom config to ensure that https is enforced, but TLS termination is already provided by the Labs proxy.

I think we will have to setup other servers for the alternate authplugin implementations or at least change the roles to provision separate wikis.

My next big question for this stack is going to be how we will track and manage the various cherry-picks that we want to apply. Does anyone have a better idea than local feature branches that we rebase on master?

$ ssh am-01.authmanager.eqiad.wmflabs
$ cd /srv/mediawiki-vagrant/mediawiki
$ git fetch https://gerrit.wikimedia.org/r/mediawiki/core refs/changes/97/195297/96 && git checkout FETCH_HEAD
$ git checkout -b authmanager
$ git fetch https://gerrit.wikimedia.org/r/mediawiki/core refs/changes/01/265201/4 && git cherry-pick FETCH_HEAD
$ git log --pretty --oneline --graph
* 34603e3 WIP: API changes for AuthManager
* add0d68 WIP: Add AuthManager
* 88e5638 Browser test: fix log in Selenium tests
* 5b33f0f Allow ­ in messages
* 6e9b4f0 Convert all array() syntax to []
*   2fd379f Merge "Update OOjs UI to v0.15.4"
bd808 lowered the priority of this task from High to Medium.Mar 14 2016, 12:03 AM

Lowering priority because basic testing server is up and running. Not {{done}} yet due to missing LDAPAuth testing system.

bd808 moved this task from Needs Review/Feedback to Done on the User-bd808 board.

The LdapAuthentication wiki is now up and running at https://ldapauth-authmanager.wmflabs.org/wiki/Main_Page