Page MenuHomePhabricator
Create Task
Maniphest T361547

stewards machines: Store a list of stewards with various details
Open, Needs TriagePublic
Actions

Description

Somewhere on the stewards* machines, we need to store a list of stewards with various details (preferably, as a yaml file). This is an example of an entry:

- sul_username: Martin Urbanec
  email_address: martin.urbanec@wikimedia.cz
  roles:
  - steward

For a full list, see stewards1001:/home/urbanecm/config/users.yaml for the current version.

Considering this list will contain email addresses, it should be private. Not sure how exactly to maintain it though: a local-only repo that is somehow synced with both of the machines? a private repo from GitLab? something else?

Details

SubjectRepoBranchLines +/-
stewards: create a local git repo for user db dataoperations/puppetproduction+20 -0
stewards: add config and export dirs, steward onboarder configoperations/puppetproduction+30 -2
Customize query in gerrit

Related Objects

Event Timeline

Urbanecm created this task.Apr 2 2024, 6:40 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptApr 2 2024, 6:40 AM
Urbanecm mentioned this in T351202: stewards1001 / stewards2001: automatically subscribe stewards to mailman lists (was: Enable API access for Mailman3).Apr 2 2024, 7:11 AM
gerritbot added a comment.Apr 2 2024, 9:12 PM

Change #1016441 had a related patch set uploaded (by Dzahn; author: Dzahn):

[operations/puppet@production] stewards: puppetize steward-onboarder config file and paths

https://gerrit.wikimedia.org/r/1016441

gerritbot added a project: Patch-For-Review.Apr 2 2024, 9:12 PM
Dzahn subscribed.Apr 2 2024, 9:15 PM

A local git repo that we rsync between machines sounds reasonable to me for this case.

gerritbot added a comment.Apr 8 2024, 9:45 PM

Change #1016441 merged by Dzahn:

[operations/puppet@production] stewards: add config and export dirs, steward onboarder config

https://gerrit.wikimedia.org/r/1016441

Urbanecm added a comment.Apr 8 2024, 10:05 PM
[urbanecm@stewards1001 ~]$ cat /etc/steward-onboarder/steward-onboarder.yaml 
# SPDX-License-Identifier: Apache-2.0
config_paths:
  roles: /srv/repos/onboarding-system/config/roles.yaml
  users: /srv/repos/users-db/users.yaml

export_base_dir: /srv/exports
[urbanecm@stewards1001 ~]$

Config file now exists within the system. /srv/repos/users-db now needs to be created (likely as a local-only git repo, but a different solution would work for me as well).

Running onboarder with the new config works (read as "without setting STEWARD_ONBOARDER_CONFIG), except it generates empty exports, as /srv/repos/users-db/users.yaml does not contain any users so far.

gerritbot added a comment.Apr 19 2024, 9:02 PM

Change #1022170 had a related patch set uploaded (by Dzahn; author: Dzahn):

[operations/puppet@production] stewards: create a local git repo for user db data

https://gerrit.wikimedia.org/r/1022170

gerritbot added a comment.Apr 23 2024, 8:44 PM

Change #1022170 merged by Dzahn:

[operations/puppet@production] stewards: create a local git repo for user db data

https://gerrit.wikimedia.org/r/1022170

Maintenance_bot removed a project: Patch-For-Review.Apr 26 2024, 6:03 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL