Page MenuHomePhabricator
Create Task
Maniphest T247133

set up frpm2001 as a full puppet master
Closed, ResolvedPublic
Actions

Description

Do all the steps needed to make frpm2001 a puppetmaster to replace heka

  • create ssh keys
  • update authorized keys
  • verify host keys
  • run puppet-merge for base and private repos
  • set up credentials for payments db backup
  • import gpg keys from frpm1001/heka
  • update gpg.conf file to contain fr_tech_ops group
  • update authorized keys for backupmover and create /srv/backupmover/$host directory
  • update modules/role/manifests/logger.pp
  • update modules/role/files/build/etc/motd.tail
  • update modules/fundraising/templates/archive_sync.erb
  • update modules/fundraising/templates/archive_purge.erb
  • create and add mwdeploy ssh pub key
  • ...

Related Objects
Search...

Event Timeline

Dwisehaupt created this task.Mar 6 2020, 9:59 PM
Dwisehaupt moved this task from Triage to Up Next on the fundraising-tech-ops board.Mar 6 2020, 10:06 PM
Dwisehaupt added a comment.Mar 6 2020, 11:53 PM

Couple of commits to set up keys and merge repos:

Date: Fri Mar 6 21:35:43 2020 +0000
Subject: [frack::puppet] 013638dc Adding frpm2001 as a puppetmaster

Need to designate it as a puppetmaster so that it can get a sync of the repos
including the private repo.

Bug: T242269

M       hieradata/site/common.yaml
Date: Fri Mar 6 21:49:41 2020 +0000
Subject: [frack::puppet::private] 38eb8fd Add frpm2001 root keys to git and puppet authorized keys
    files

This is a set needed for setting up frpm2001 as a puppet master and for git repo syncing.

Bug: T242269

M       secrets/ssh/build/git
M       secrets/ssh/build/puppet
Dwisehaupt updated the task description. (Show Details)Mar 6 2020, 11:54 PM
Dwisehaupt added a comment.Mar 7 2020, 12:01 AM

puppet merge has been run successfully for the main and private repos.

Dwisehaupt updated the task description. (Show Details)Mar 7 2020, 12:02 AM
Dwisehaupt moved this task from Up Next to In Progress on the fundraising-tech-ops board.Mar 10 2020, 5:00 PM
Dwisehaupt updated the task description. (Show Details)Mar 10 2020, 9:33 PM
Dwisehaupt updated the task description. (Show Details)Mar 14 2020, 12:03 AM
Dwisehaupt updated the task description. (Show Details)Mar 16 2020, 6:18 PM
Dwisehaupt updated the task description. (Show Details)Mar 23 2020, 4:35 PM
Dwisehaupt updated the task description. (Show Details)Mar 23 2020, 5:02 PM
Dwisehaupt added a comment.Mar 25 2020, 3:51 PM

Going to test this as a working replacement today with a few hosts, and if all goes well, we can cut over.

Dwisehaupt added a comment.Mar 25 2020, 5:40 PM

frpm2001 is currently set as the main puppetmaster in codfw. Tested and then enabled with the following changes:

[frack::puppet] 26fef9a7 Using 3 hosts as test hosts for frpm2001 full functionality
[frack::puppet] d495f74c Make frpm2001 the puppetmaster for codfw
Dwisehaupt updated the task description. (Show Details)Mar 26 2020, 10:01 PM
Dwisehaupt closed this task as Resolved.Mar 30 2020, 6:36 PM
Dwisehaupt moved this task from In Progress to Done on the fundraising-tech-ops board.
Jgreen removed a subtask: T248901: Document changes needed to bring up a new build host as full puppet master.May 28 2020, 4:57 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL