Abolish use of labs proxies in domains other than .wmflabs.org
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	Andrew
	Mar 30 2016, 7:38 PM

Description

Before we can switch labs proxies to https-only we have to get everything under our one *.wmflabs.org cert.

Related Objects
Search...

		Status	Subtype	Assigned	Task
		Resolved		• bd808	T131288 Make Cloud Services shared HTTP proxies enforce TLS
		Resolved		Andrew	T131290 Abolish use of labs proxies in domains other than .wmflabs.org

Event Timeline

Andrew created this task.Mar 30 2016, 7:38 PM

• chasemp triaged this task as Medium priority.Apr 4 2016, 1:52 PM

I think we should go in the opposite direction - e.g. use LE to get certs for any domains outside of *.wmflabs.org necessary, and abolish the use of proxies directly under wmflabs.org.

Is this request the opposite of T122403?

Liuxinyu970226 removed a project: Cloud-VPS.Apr 30 2018, 4:36 AM

Krenair subscribed.Nov 20 2019, 10:31 PM

• bd808 added a project: cloud-services-team (Kanban).Apr 16 2020, 11:29 PM

• bd808 moved this task from Inbox to Needs discussion on the cloud-services-team (Kanban) board.

Andrew claimed this task.Apr 29 2020, 3:53 PM

I don't necessarily disagree with Alex's suggestions but I'm nonetheless going to pursue the initial intent of this task for now... once we have things somewhat standardized we can talk about new proxy dns designs. Obviously killing off long-standing domains is hard in any case.

Currently the only outliers are in the 'maps' project. I'm creating a subtask for this.

maps are moved to another proxy host, so this is done.

Andrew removed a subtask: T251558: multilevel domains in the 'maps' project don't use tls.May 17 2020, 10:00 PM

Abolish use of labs proxies in domains other than .wmflabs.orgClosed, ResolvedPublicActions

Description

Related ObjectsSearch...

Event Timeline

Abolish use of labs proxies in domains other than .wmflabs.org
Closed, ResolvedPublic
Actions

Related Objects
Search...