Deployment tooling/Cabal/2016-05-09
< Deployment tooling | Cabal
2016-05-09[edit]
Automation of key generation[edit]
- Two related tasks, each have patches that are needed to streamline the scap3 migration:
- T133211 - Automate the generation deployment keys (keyholder-managed ssh keys)
- https://gerrit.wikimedia.org/r/#/c/284418/
- TODOs
- Ensure scap key cannot be redefined in scap::target - https://phabricator.wikimedia.org/T132747
- Only specify deployment user, scap::target takes care of keys
- Keep keyholder puppet functions, remove ssh-keygen
- Possible keyholder fixups
- Ensure scap key cannot be redefined in scap::target - https://phabricator.wikimedia.org/T132747
Cross datacenter TLS[edit]
- Lots of open solutions
- TODOs
- Add faidon to tickets
- https://phabricator.wikimedia.org/T127498
Blocking RESTBase[edit]
- Checklist: https://phabricator.wikimedia.org/T93428
- Config deploys (haven't done it in production)
- Some puppet refactoring needed for ownership
- Untangle the scap deployment pieces of puppet
- Config --diff
- Config deploys (haven't done it in production)
Random Things[edit]
- New package tagged
- Filippo working on it this week \o/
- Migration continues
As Always[edit]
- Phase 2
- Phase 1
- Workboard https://phabricator.wikimedia.org/tag/scap3/
- Etherpad backed up to https://www.mediawiki.org/wiki/Deployment_tooling/Cabal
- Future document https://www.mediawiki.org/wiki/Deployment_tooling/Future
- Spreadsheet: https://docs.google.com/spreadsheets/d/1MlEsFxrLvdZdV_G82WEAIvBXr7ArO7nCEKaFClHhJEw/edit#gid=0