Page MenuHomePhabricator

Deploy Striker account creation and management workflow
Closed, ResolvedPublic

Description

Features included:

Deploy checklist:

  • create strikerbot only wikitech oauth consumer
  • update strikerbot groups to allow 2fa
  • get new secrets to a root for Puppet patch
  • verify config on californium
  • scap3 deploy
  • test login with 2fa protected account
  • test account creation via striker
  • verify that striker created account can log into wikitech
  • verify that striker created account can log into gerrit
  • test ssh key management via striker
  • test password change via striker
  • announce for others to poke at

Event Timeline

bd808 created this task.Jan 24 2017, 10:09 PM
Restricted Application added a project: User-bd808. · View Herald TranscriptJan 24 2017, 10:09 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
bd808 updated the task description. (Show Details)Jan 24 2017, 10:10 PM
bd808 moved this task from Backlog to Doing on the Striker board.Jan 24 2017, 10:18 PM
bd808 updated the task description. (Show Details)Jan 24 2017, 10:48 PM

The prod secrets need be appended to the existing to the existing striker::uwsgi::secret_config hiera hash and look something like:

striker::uwsgi::secret_config:
  wikitech:
    ACCESS_SECRET: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
    ACCESS_TOKEN: bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb
    CONSUMER_SECRET: cccccccccccccccccccccccccccccccccccccccc
    CONSUMER_TOKEN: dddddddddddddddddddddddddddddddd
bd808 updated the task description. (Show Details)Jan 25 2017, 6:24 PM
bd808 updated the task description. (Show Details)Jan 25 2017, 6:29 PM
bd808 updated the task description. (Show Details)Jan 25 2017, 7:23 PM
bd808 moved this task from Doing to Done on the Striker board.Mar 4 2017, 3:53 AM