@Andrew: Can you please associate at least one active project with this task, so others can find it? Thanks.

$kolossos_password = hiera('profile::wmcs::services::postgres::kolossos_password'),
$aude_password = hiera('profile::wmcs::services::postgres::aude_password')
These two are read-write accounts for both Toolforge tools and maps things. They also represent unique data on the server. I think I can find them. I'll check the others.

Mentioned in SAL (#wikimedia-cloud) [2020-06-09T22:55:27Z] <bstorm_> Reset the passwords for T254931

This would have also fixed the Wikilabels db server's puppet.

@Bstorm thanks for fixing this however could you let me know what you did as i notice private/labs is still missing from labtestpuppetmaster2001 and I'm unsure if its still needed there?

It would also be useful to know in general what labtestpuppetmaster is still used for?

thanks

In T254931#6210032, @jbond wrote:

@Bstorm thanks for fixing this however could you let me know what you did as i notice private/labs is still missing from labtestpuppetmaster2001 and I'm unsure if its still needed there?

It would also be useful to know in general what labtestpuppetmaster is still used for?

Let me chime in.

In past times, the general puppetmaster for cloud VMs (in project that dodn't have a local puppetmaster) was an actual hardware server. This got eventually moved to VMs inside the cloud (puppetmasters in https://openstack-browser.toolforge.org/project/cloudinfra). This is for our eqiad1 openstack deployment. We have another openstack deployment in codfw, called codfw1dev. More info here: https://wikitech.wikimedia.org/wiki/Portal:Cloud_VPS/Admin/Deployments

We are in the process of migrating this actual hardware server puppetmaster (labtestpuppetmaster2001) to virtual machines inside the codfw1dev deployment itself, see T242607: Create in-cloud puppetmaster for codfw1dev

thanks @aborrero