The service will use a MW user with specif rights to delete expired tokens, see T260247
This task is to ensure that proper secrets for that mechanism are in place
It's important to consider that this is not blocking 21th September target deploy since the funciontality will not be enabled yet
| Status | Subtype | Assigned | Task | ||
|---|---|---|---|---|---|
| Resolved | Jgiannelos | T260247 Push notification service should make deletion requests to MediaWiki for invalid or expired subscriptions | |||
| Resolved | jijiki | T262957 Set up secrets for Token clean-up |
FYI, for the Beta Cluster deployment, just yesterday I added a local commit to labs/private.git on deployment-puppetmaster04 to add a push_subscription_manager_password value to hieradata/common.yaml that is now being referenced from the instance config on deployment-push-notifications01. T262552#6464770
Of course we can adjust this later to align with the production configuration if need be.
@jijiki just FYI, I made the credentials available for you, ping me when you are ready for this task.
@MSantos I will get to it next week or the week after, unless you have a deadline to catch, thank you!
@jijiki thanks! This is not urgent, but please ping us when you're ready for it. I will assign it to you, since my part is done AFAIK.
@jijiki we are ready for this task, the needed work for this is done [1] and deployed [2].
[1] https://gerrit.wikimedia.org/r/c/mediawiki/services/push-notifications/+/643113
[2] https://gerrit.wikimedia.org/r/c/operations/deployment-charts/+/643331
@MSantos I will let you know when it is ready, what is your deadline? It will help me with the scheduling a bit. Thank you!
Thank you very much! If possible, it would be nice to have it this quarter. Let me know if you have any other questions or concerns.
@MSantos Credentials are in place, everything should be in place if you deploy again. Let me know if there is something not right:)