Page MenuHomePhabricator

Move WMUA's server configuration to puppet
Open, HighPublic

Description

Early configuration published: https://gitlab.com/yurb/wmua-puppet/

Event Timeline

Yury_Bulka claimed this task.
Yury_Bulka raised the priority of this task from to High.
Yury_Bulka updated the task description. (Show Details)
Yury_Bulka added a project: WMUA-Tech.
Yury_Bulka added subscribers: Yury_Bulka, intracer, Ahonc.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJan 28 2016, 12:24 AM

Started working on a puppet-based reimplementation of the current server configuration based on a Fedora Cloud Base Vagrant Box. Fedora has recent owncloud in their package repositories which is a big plus.

Yury_Bulka moved this task from Backlog to In progress on the WMUA-Tech board.Mar 10 2016, 11:57 AM
Restricted Application added a subscriber: Base. · View Herald TranscriptMar 10 2016, 11:57 AM
Yury_Bulka updated the task description. (Show Details)Jun 14 2016, 9:22 PM
Ata added a subscriber: Ata.Aug 5 2016, 4:44 PM

*reminder*

It was my idea to suggest puppet, but after I tried it for wlxjury tool, I thought it's much simpler to go with just bash scripts

Here are the examples for Debian/Ubuntu
https://github.com/intracer/wlxjury/blob/master/provision.sh and Centos (7) https://github.com/intracer/wlxjury/blob/master/provision_centos.sh

However Yuri's tasks and experience were probably different. And maybe puppet and bash scripts can be combined

Any updates at the moment?

I don't think Yury_Bulka has time to finish this, and it not top priority task

Base added a comment.Sep 18 2016, 3:28 PM

Isn't this a task which in the end with subsequent ones (versioning etc.) done results in more easy admission of non-TechCom members to the server? That thing would be very desired because there's clearly a manpower problem with all of the tasks.

Ilya_Korniiko_WMUA added a comment.EditedSep 18 2016, 3:50 PM

I think it can be solved more easily.

For example if someone wants to work with wordpress or specific wordpress site - make automatic backups and give him access just to that directory/database

We were discussing plans to change our VPS provider, is it going to happen and when? If so, it would make sense for me to start replicating our current services on the new VPS under puppet.

Перехід на іншого провайдера можливо буде лише якщо у нас буде можливість переносу конфігурації сервера

Звичайно у нас є можливість переносу конфігурації сервера — вона ж не зашифрована якась. Але для цього потрібен певний «перехідний час», коли обидва сервери працюватимуть паралельно (скажімо, тиждень), і сервіси один за одним переноситимуться з одного на инший з поступовим перемиканням доменів на новий.

Чи вже є якісь ідеї, у якого провайдера ми могли б тримати новий ВПС?

Що хотілося б від нового сервера — можливість мати fail2ban (на поточному, наскільки пам'ятаю, обмеження за кількістю правил у iptables). Можливо, було би круто, щоб це був не контейнер, а віртуальна машина (тоді таких проблем бути не повинно).