Page MenuHomePhabricator
Create Task
Maniphest T313628

Define how to authenticate with Cassandra and test Flink POC
Closed, ResolvedPublicSpike
Actions

Description

Because our work with Flink is still in the POC stage, we currently don't have any infrastructure to support the different stages of development. In lieu of a staging environment we've been manually building the jar files and deploy Flink jobs on Yarn, which works fine for most of our development needs so far, but falls short when the job needs to authenticate to a separate service (i.e. Cassandra). I'm hesitant to have credentials laying around in a stat box so that Flink can pick it up, but there might not be any better alternatives right now.

Ideally we'd at least have some sort of deployment pipeline that can inject any necessary secrets so we don't have to personally deal with them. And ideally we'd have a staging environment so that the jobs aren't hitting production databases.

Semi-related: T311070 about Flink app config for Yarn

Related Objects
Search...

Event Timeline

tchin created this task.Jul 22 2022, 10:50 PM
Restricted Application changed the subtype of this task from "Task" to "Spike". · View Herald TranscriptJul 22 2022, 10:50 PM
Eevans added a subscriber: MoritzMuehlenhoff.Aug 3 2022, 7:49 PM

We are definitely going to need a Better Way™, but in the meantime I've made the credentials available to @tchin on one of the stat hosts. This is meant as a temporary fix.

@tchin I'm not sure what deployment and/or testing looks like right now -but if possible- please store these somewhere they can't easily be read by anyone else.

Once we've established the right way to secure this information, we'll need to change the password (or altogether recreate the user).

WDoranWMF moved this task from Backlog to Work in Progress ⚙️ on the Generated Data Platform board.Aug 4 2022, 1:18 PM
lbowmaker added a project: Event-Platform.Aug 15 2022, 2:15 PM
Restricted Application added a project: Data-Engineering. · View Herald TranscriptAug 15 2022, 2:15 PM
Ottomata removed a project: Generated Data Platform.Aug 15 2022, 2:21 PM
lbowmaker moved this task from Backlog to Sprint 00 on the Event-Platform board.Aug 15 2022, 2:23 PM
lbowmaker edited projects, added Event-Platform (Sprint 00); removed Event-Platform.
Ottomata moved this task from Next Up to In Progress on the Event-Platform (Sprint 00) board.Aug 15 2022, 2:40 PM
Ottomata mentioned this in T306895: Write dedicated cassandra authorization code to read password from file when loading.Aug 15 2022, 3:57 PM
WDoranWMF moved this task from In Progress to Done on the Event-Platform (Sprint 00) board.Aug 16 2022, 5:09 PM
JArguello-WMF closed this task as Resolved.Sep 1 2022, 12:13 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits