manifests/issuesserver.pp - Issue 5735669590654976: #753 - set up an order system to let eyeo employees file order requests

Side by Side Diff: manifests/issuesserver.pp

Issue 5735669590654976: #753 - set up an order system to let eyeo employees file order requests (Closed)

Patch Set: #753 - set up an order system to let eyeo employees file order requests Created July 30, 2014, 4:54 p.m.

Left:
Right:

Use n/p to move between diff chunks; N/P to move between comments.

Jump to:

View unified diff | Download patch

OLD	NEW
1 node 'issues1' {	1 node 'issues1' {

2 include base	2

	3 include base, private::trac

3	4

4 class {'trac':	5 class {'trac':

5 domain => 'issues.adblockplus.org',	6 domain => 'issues.adblockplus.org',

6 certificate => 'issues.adblockplus.org_sslcert.pem',	7 certificate => 'issues.adblockplus.org_sslcert.pem',

7 private_key => 'issues.adblockplus.org_sslcert.key',	8 private_key => 'issues.adblockplus.org_sslcert.key',

8 is_default => true,	9 is_default => true,

9 }	10 }

10	11

	12 trac::instance {'trac':

	13 config => 'trac/trac.ini.erb',

	14 description => 'Adblock Plus Issue Tracker',

	15 environment => 'environment',

	16 location => '/',

	17 logo => 'adblockplus_logo.png',

	18 database => 'trac',

	19 permissions => "puppet:///modules/trac/permissions.csv",

	20 }

	21

	22 trac::instance {'orders':

	23 config => 'trac/orders.ini.erb',

	24 description => 'Eyeo Order System',

	25 environment => 'environment-orders',

	26 location => '/orders',

	27 logo => 'eyeo_logo.png',

	28 database => 'trac_orders',

	29 permissions => "puppet:///modules/trac/order-permissions.csv",

	30 }

	31

	32 # Transforming the auth_cookie table of the "new" Trac project into an

	33 # insertable view for the "old" project's table of the same name avoids

	34 # the need to convert the entire auth to htpasswd-file handling, which

	35 # would be the official way to go for achieving a shared authentication.

	36 exec { 'trac_auth_cookie_view':

	37 command => "mysql -utrac -p'${private::trac::database_password}' trac_orders --execute '

	38 CREATE VIEW auth_cookie_view AS SELECT * FROM trac.auth_cookie;

	39 RENAME TABLE auth_cookie TO auth_cookie_original, auth_cookie_view TO auth _cookie;'",
	Wladimir Palant 2014/07/31 09:46:53 Why the renaming? We don't want that empty table. Why the renaming? We don't want that empty table. So the following should do: DROP TABLE IF EXISTS auth_cookie; CREATE VIEW auth_cookie AS SELECT * FROM trac.auth_cookie; mathias 2014/08/01 13:59:46 Well, I still prefer my version: Beside having an Show quoted text On 2014/07/31 09:46:53, Wladimir Palant wrote: > Why the renaming? We don't want that empty table. So the following should do: > > DROP TABLE IF EXISTS auth_cookie; > CREATE VIEW auth_cookie AS SELECT * FROM trac.auth_cookie; Well, I still prefer my version: Beside having an implicit (thus cheap) backup, it's also atomic. Therefore, it fails early enough no matter what could go wrong. And the _original does not hurt anyone - but may provide important structure information for debugging after a future update or something like that. Thus, although I understand that it might be overkill in this particular situation, I do not see any reason to drop this practice - or that table. Wladimir Palant* 2014/08/01 14:11:13 Backup of an empty table that isn't used anywhere? Show quoted text On 2014/08/01 13:59:46, matze wrote: > Well, I still prefer my version: Beside having an implicit (thus cheap) backup, > it's also atomic. Backup of an empty table that isn't used anywhere? Also, why should we care here whether the operation is atomic? Show quoted text >And the _original does not hurt anyone - but may provide important > structure information for debugging after a future update or something like > that. I'm generally unhappy about crap left behind just because it might become useful at some point - that's what version control systems are for. I'd rather not waste time in a year or two trying to figure out what this table is good for. mathias* 2014/08/01 16:25:03 Since you prefer it without, I'll adjust it. But, Show quoted text On 2014/08/01 14:11:13, Wladimir Palant wrote: > On 2014/08/01 13:59:46, matze wrote: > > Well, I still prefer my version: Beside having an implicit (thus cheap) > backup, > > it's also atomic. > > Backup of an empty table that isn't used anywhere? Also, why should we care here > whether the operation is atomic? > > >And the *_original does not hurt anyone - but may provide important > > structure information for debugging after a future update or something like > > that. > > I'm generally unhappy about crap left behind just because it might become useful > at some point - that's what version control systems are for. I'd rather not > waste time in a year or two trying to figure out what this table is good for. Since you prefer it without, I'll adjust it. But, if you're interested,.. as I see it, it's not crap. It's documentation: As long as we do not mirror every external resource (including e.g. trac and APT packages for example), the original structure may change at any time and may cause strange effects in development after future releases. Every debugging developer would be happy if we left the original there. I've been there. A lot. Also; the atomic nature allows that thingy to fail if we do anything wrong (e.g. in the future) before every session is destroyed. I understand that this might be considered overkill in this particular situation. But I'm not used to dropping good practices just because they are not considered an requirement. It feels like an appendix operation without having a problem with the blind gut at all..
	40 unless => "mysql -utrac -p'${private::trac::database_password}' trac_orders --execute '

	41 SHOW CREATE TABLE auth_cookie' \| grep VIEW",
	Wladimir Palant 2014/07/31 09:46:53 How about: unless => "mysql -utrac -p'${private:: How about: unless => "mysql -utrac -p'${private::trac::database_password}' trac_orders --execute 'SHOW CREATE VIEW auth_cookie'" No need to grep, the exit code of the mysql command seems to be sufficient. mathias 2014/08/01 13:59:46 Agreed, done. Show quoted text On 2014/07/31 09:46:53, Wladimir Palant wrote: > How about: > > unless => "mysql -utrac -p'${private::trac::database_password}' trac_orders > --execute 'SHOW CREATE VIEW auth_cookie'" > > No need to grep, the exit code of the mysql command seems to be sufficient. Agreed, done.
	42 path => "/usr/bin:/usr/sbin:/bin:/usr/local/bin",

	43 require => [

	44 Exec["deploy_trac"],

	45 Exec["deploy_orders"],

	46 ],

	47 }

	48

	49 # Synchronizing e-mail and password information between the project

	50 # allows for logging in from any entry point - whilst maintaining a

	51 # registration form (and process) in one project only.

	52 cron {'trac_session_attribute_sync':

	53 ensure => present,

	54 user => trac,

	55 minute => '*/30',

	56 command => "mysql -utrac -p'${private::trac::database_password}' trac_orders --execute ' \

	57 INSERT INTO session_attribute (sid, authenticated, name, value) SELECT sid , authenticated, name, value \

	58 FROM trac.session_attribute WHERE authenticated = 1 AND name IN (\"email\" , \"password\") \

	59 ON DUPLICATE KEY UPDATE value=VALUES(value) ' >/dev/null

	60 ",

	61 require => Exec['trac_auth_cookie_view'],

	62 }

	63

11 class {'nagios::client':	64 class {'nagios::client':

12 server_address => 'monitoring.adblockplus.org'	65 server_address => 'monitoring.adblockplus.org'

13 }	66 }

14 }	67 }

OLD	NEW

« no previous file with comments | « no previous file | modules/discourse/manifests/init.pp » ('j') | modules/discourse/manifests/init.pp » ('J')