Make standalone puppetmasters optionally use PuppetDB
Open, LowPublic
Actions

Description

Issues:

No Ganglia in Labs;
puppetmaster::puppetdb uses nginx, puppetmaster uses Apache, so separate hosts or if.

Related Objects
Search...

Status	Assigned	Task
Open	None	T152866 Make clush safer
Open	None	T153163 Set up and use exported resources for Tool Labs's shared knowledge
Open	None	T199711 Deploy a scalable service for ACME (LetsEncrypt) certificate management
Open	Krenair	T194962 Create and deploy a centralized letsencrypt service
Open	Krenair	T72792 Set up puppet exported resources to collect ssh host keys for beta
Open	Krenair	T153577 Make standalone puppetmasters optionally use PuppetDB
Resolved	scfc	T154104 role::puppetmaster::puppetdb depends on Ganglia and cannot be used in Labs
Open	None	T154105 role::puppetmaster::puppetdb uses nginx as reverse proxy and cannot be used together with Apache applications

scfc created this task.Dec 18 2016, 7:02 AM

scfc updated the task description. (Show Details)Dec 25 2016, 6:52 AM

scfc updated the task description. (Show Details)

scfc created subtask T154104: role::puppetmaster::puppetdb depends on Ganglia and cannot be used in Labs.Dec 25 2016, 9:45 AM

scfc created subtask T154105: role::puppetmaster::puppetdb uses nginx as reverse proxy and cannot be used together with Apache applications.

Change 329330 had a related patch set uploaded (by Tim Landscheidt):
puppetdb: Do not hardcode puppetmasters

https://gerrit.wikimedia.org/r/329330

gerritbot added a project: Patch-For-Review.Dec 27 2016, 12:48 PM

scfc moved this task from Triage to Waiting for code review on the Toolforge board.Dec 27 2016, 12:54 PM

scfc claimed this task.

scfc moved this task from Triage to In Progress on the Cloud-Services board.

Change 329330 merged by Giuseppe Lavagetto:
puppetdb: Do not hardcode puppetmasters

https://gerrit.wikimedia.org/r/329330

scfc closed subtask T154104: role::puppetmaster::puppetdb depends on Ganglia and cannot be used in Labs as Resolved.Jan 22 2017, 12:01 AM

Change 340461 had a related patch set uploaded (by Tim Landscheidt):
[operations/puppet] puppet: Make standalone puppetmasters optionally use PuppetDB

https://gerrit.wikimedia.org/r/340461

I'm pretty sure the patches work except that I can't get them to work on toolsbeta-puppetmaster7 due to some PostgreSQL hiccups (our puppetry for that is far too fragile for my taste). I'll set up a new puppetmaster and test that tomorrow.

(… or anyone else can do that.)

I think on labs we can host it on the same instance as the puppetmaster. I got it working like that and reduces the complexity of this :).

we wont need nginx installed.

I got puppetdb working on the same host as the puppetmaster as it needs the same cert as the puppetmaster for puppetdb jetty.

Change 435631 had a related patch set uploaded (by BryanDavis; owner: Alex Monk):
[operations/puppet@production] Allow PuppetDB use on standalone puppetmasters

https://gerrit.wikimedia.org/r/435631

gerritbot removed a project: Cloud-Services.Thu, Jul 12, 11:53 PM

• bd808 added parent tasks: T72792: Set up puppet exported resources to collect ssh host keys for beta, T194962: Create and deploy a centralized letsencrypt service.Thu, Jul 12, 11:55 PM

• bd808 removed scfc as the assignee of this task.

Assigning to @Krenair as he has patches in gerrit that have made this work for the deployment-prep project that I believe are ready to be merged. Maybe @chasemp can find some time at the upcoming Wikimania-Hackathon-2018 to give them a final review?

Make standalone puppetmasters optionally use PuppetDBOpen, LowPublicActions

Description

Related ObjectsSearch...

Make standalone puppetmasters optionally use PuppetDB
Open, LowPublic
Actions

Related Objects
Search...