]>
git.openstreetmap.org Git - chef.git/log
Tom Hughes [Wed, 8 Nov 2023 19:05:47 +0000 (19:05 +0000)]
Set SECRET_KEY_BASE for rails job runners
Tom Hughes [Wed, 8 Nov 2023 18:54:44 +0000 (18:54 +0000)]
Set SECRET_KEY_BASE_DUMMY when building assets
Tom Hughes [Wed, 8 Nov 2023 18:48:23 +0000 (18:48 +0000)]
Set memory limits for user slices on the dev server
Tom Hughes [Sun, 5 Nov 2023 15:11:21 +0000 (15:11 +0000)]
Disable RemoveIPC for reindex services
Tom Hughes [Sat, 4 Nov 2023 15:26:38 +0000 (15:26 +0000)]
Enable cgimap with ratelimit-upload option for tomh dev site
Tom Hughes [Fri, 3 Nov 2023 17:15:49 +0000 (17:15 +0000)]
Install libxml-twig-perl on the dev server
Tom Hughes [Thu, 2 Nov 2023 18:40:08 +0000 (18:40 +0000)]
Use sql_exporter to monitor rails queue lengths
Tom Hughes [Thu, 2 Nov 2023 18:19:39 +0000 (18:19 +0000)]
Add support for using sql_exporter to query postgres
Tom Hughes [Thu, 2 Nov 2023 11:39:44 +0000 (11:39 +0000)]
Drop rails71 dev site
Grant Slater [Wed, 1 Nov 2023 21:54:15 +0000 (21:54 +0000)]
discourse: increase smtp timeouts
Tom Hughes [Wed, 1 Nov 2023 20:27:28 +0000 (20:27 +0000)]
Drop alertmanager API block
The whole of alertmanager is IP restricted anyway.
Tom Hughes [Wed, 1 Nov 2023 09:02:35 +0000 (09:02 +0000)]
Allow domain level blocks on email senders
Grant Slater [Wed, 1 Nov 2023 16:57:40 +0000 (16:57 +0000)]
Revert "Allow domain level blocks on email senders"
This reverts commit
a54ccb43f33b675eed9ff85da0eebc951f0558c0.
Tom Hughes [Wed, 1 Nov 2023 09:02:35 +0000 (09:02 +0000)]
Allow domain level blocks on email senders
Grant Slater [Mon, 30 Oct 2023 13:45:31 +0000 (13:45 +0000)]
planet: allow redirect to eu or us bucket for all years
Grant Slater [Mon, 30 Oct 2023 13:41:52 +0000 (13:41 +0000)]
planet: wait for s3 replication to complete
Grant Slater [Mon, 30 Oct 2023 11:18:30 +0000 (11:18 +0000)]
planet: add S3 buckets to torrents
Grant Slater [Mon, 30 Oct 2023 10:55:01 +0000 (10:55 +0000)]
planet: first copy to s3
Tom Hughes [Mon, 30 Oct 2023 12:46:24 +0000 (12:46 +0000)]
Configure moderator limits for cgimap explicitly
Grant Slater [Sat, 28 Oct 2023 22:01:58 +0000 (23:01 +0100)]
podman: workaround ubuntu 22.04 crun bug
Grant Slater [Fri, 27 Oct 2023 21:11:28 +0000 (22:11 +0100)]
podman: avoid starting and immediate restart on first run
Guillaume RISCHARD [Thu, 26 Oct 2023 20:08:52 +0000 (16:08 -0400)]
civicrm + extensions version bump
Tom Hughes [Thu, 26 Oct 2023 14:33:42 +0000 (15:33 +0100)]
Install libbytes-random-secure-perl on the dev server
Grant Slater [Wed, 25 Oct 2023 08:22:39 +0000 (09:22 +0100)]
dns: bump dnscontrol to v4.6.0
Tom Hughes [Tue, 24 Oct 2023 06:08:41 +0000 (07:08 +0100)]
Publish global state for changesets after local state
Grant Slater [Tue, 24 Oct 2023 06:03:05 +0000 (07:03 +0100)]
planet: also sync to s3 changeset state config file
Tom Hughes [Sun, 22 Oct 2023 18:36:17 +0000 (19:36 +0100)]
Use S3 as the source for replication diffs for render servers
Grant Slater [Sun, 22 Oct 2023 19:14:06 +0000 (20:14 +0100)]
planet: cleanup redirects and add replication diff redirects
Guillaume Rischard [Sat, 21 Oct 2023 16:51:38 +0000 (12:51 -0400)]
Avoid double call to ip2region; consolidate rewrite conditions
Guillaume Rischard [Sat, 21 Oct 2023 16:25:09 +0000 (12:25 -0400)]
Use dual stack (IPv4/IPv6) S3 endpoints for public-facing planet
Fixes https://github.com/openstreetmap/operations/issues/983
Tom Hughes [Sat, 21 Oct 2023 23:04:07 +0000 (00:04 +0100)]
Switch palulukon to use postgres 16
Tom Hughes [Sat, 21 Oct 2023 14:07:49 +0000 (15:07 +0100)]
Make prometheus backup service fail on error
Tom Hughes [Sat, 21 Oct 2023 14:07:22 +0000 (15:07 +0100)]
Allow prometheus backup server to acess AWS cache
Tom Hughes [Sat, 21 Oct 2023 14:06:25 +0000 (15:06 +0100)]
Silence curl progress messages
Tom Hughes [Sat, 21 Oct 2023 14:05:34 +0000 (15:05 +0100)]
Enable prometheus backup timer
Tom Hughes [Sat, 21 Oct 2023 14:03:25 +0000 (15:03 +0100)]
Merge remote-tracking branch 'github/pull/631'
Tom Hughes [Sat, 21 Oct 2023 11:51:32 +0000 (12:51 +0100)]
Backup prometheus data to S3
Tom Hughes [Sat, 21 Oct 2023 10:52:13 +0000 (11:52 +0100)]
Disable progress messages for osm2pgsql
Tom Hughes [Fri, 20 Oct 2023 23:42:38 +0000 (00:42 +0100)]
Switch piasa to use postgres 16
Grant Slater [Fri, 20 Oct 2023 11:19:13 +0000 (12:19 +0100)]
planet: increase AWS upload max_bandwidth
Tom Hughes [Thu, 19 Oct 2023 20:19:45 +0000 (21:19 +0100)]
Enable prometheus admin API
Tom Hughes [Thu, 19 Oct 2023 20:15:27 +0000 (21:15 +0100)]
Make prometheus API blocks work
Tom Hughes [Thu, 19 Oct 2023 19:47:09 +0000 (20:47 +0100)]
Block external access to prometheus admin API
Tom Hughes [Wed, 18 Oct 2023 18:06:32 +0000 (19:06 +0100)]
Install libyaml-dev for rails
Guillaume RISCHARD [Tue, 17 Oct 2023 12:21:19 +0000 (08:21 -0400)]
civicrm version bump, corrected extension name
Tom Hughes [Sun, 15 Oct 2023 17:58:50 +0000 (18:58 +0100)]
Stop trying to URI encode passwords
Tom Hughes [Sun, 15 Oct 2023 17:42:31 +0000 (18:42 +0100)]
Make postgres exporter connect as the prometheus user
Tom Hughes [Sun, 15 Oct 2023 11:27:40 +0000 (11:27 +0000)]
Grant roles to newly created users
Tom Hughes [Sun, 15 Oct 2023 11:19:13 +0000 (12:19 +0100)]
Remove some old cleanup code
Tom Hughes [Sun, 15 Oct 2023 11:16:21 +0000 (11:16 +0000)]
Add a prometheus user to all postgres clusters
Tom Hughes [Sun, 15 Oct 2023 10:16:01 +0000 (11:16 +0100)]
Add support for granting roles to postgres users
Tom Hughes [Sat, 14 Oct 2023 14:23:25 +0000 (15:23 +0100)]
Switch nidhogg to use postgres 16
Tom Hughes [Fri, 13 Oct 2023 17:54:15 +0000 (18:54 +0100)]
Switch culebre to use postgres 16
Tom Hughes [Fri, 13 Oct 2023 16:54:51 +0000 (17:54 +0100)]
Add alert for interface redundancy
Tom Hughes [Fri, 13 Oct 2023 16:39:10 +0000 (17:39 +0100)]
Report bond mode for bonded interfaces
Grant Slater [Fri, 13 Oct 2023 15:47:35 +0000 (16:47 +0100)]
oxidized: add libyaml-dev requirement
Tom Hughes [Fri, 13 Oct 2023 08:05:47 +0000 (09:05 +0100)]
Use the directory name as the certificate name for uploads
Tom Hughes [Thu, 12 Oct 2023 18:05:13 +0000 (19:05 +0100)]
Statically configure backup replication metrics
Tom Hughes [Thu, 12 Oct 2023 16:17:18 +0000 (17:17 +0100)]
Set roundingPeriod explicitly for all jobs
Tom Hughes [Thu, 12 Oct 2023 15:54:39 +0000 (16:54 +0100)]
Split daily metrics into separate jobs
Tom Hughes [Thu, 12 Oct 2023 14:33:22 +0000 (15:33 +0100)]
Look back two days for S2 daily statistics
Grant Slater [Thu, 12 Oct 2023 04:21:27 +0000 (05:21 +0100)]
Revert "cloudwatch: add eu-north-1 for osm-main to collect replication metrics"
This reverts commit
7e0c2e2982f696e3d1e57c6ec4889fe1e6038446.
Grant Slater [Thu, 12 Oct 2023 04:21:23 +0000 (05:21 +0100)]
Revert "cloudwatch: Own job for Replication Metrics"
This reverts commit
6c92319de16d70a02efabb29a4ea2d84e83b8acc.
Grant Slater [Thu, 12 Oct 2023 03:09:43 +0000 (04:09 +0100)]
cloudwatch: Own job for Replication Metrics
Grant Slater [Thu, 12 Oct 2023 02:50:22 +0000 (03:50 +0100)]
cloudwatch: add eu-north-1 for osm-main to collect replication metrics
Tom Hughes [Wed, 11 Oct 2023 23:24:46 +0000 (00:24 +0100)]
Fix query interval for billing metrics
Grant Slater [Wed, 11 Oct 2023 22:09:12 +0000 (23:09 +0100)]
cloudwatch: Add other billed accounts
Tom Hughes [Wed, 11 Oct 2023 18:52:04 +0000 (19:52 +0100)]
Add monitoring for AWS billing metrics
Tom Hughes [Wed, 11 Oct 2023 18:18:33 +0000 (19:18 +0100)]
Add monitoring for some EC2 metrics
Tom Hughes [Wed, 11 Oct 2023 18:04:19 +0000 (19:04 +0100)]
Install awscli on prometheus server
Grant Slater [Wed, 11 Oct 2023 16:50:18 +0000 (17:50 +0100)]
cloudwatch: add account name comment
Grant Slater [Wed, 11 Oct 2023 16:36:54 +0000 (17:36 +0100)]
cloudwatch: add sts-region
Tom Hughes [Wed, 11 Oct 2023 14:48:45 +0000 (15:48 +0100)]
Add dummy openid connect key for tests
Tom Hughes [Wed, 11 Oct 2023 13:59:01 +0000 (14:59 +0100)]
Add additional roles and regions to S3 monitoring
Tom Hughes [Wed, 11 Oct 2023 07:59:52 +0000 (08:59 +0100)]
Enable some optional features for the cloudwatch exporter
Tom Hughes [Tue, 10 Oct 2023 23:58:52 +0000 (00:58 +0100)]
Restart cloudwatch exporter when the configuration changes
Tom Hughes [Tue, 10 Oct 2023 23:56:15 +0000 (00:56 +0100)]
Increase period for daily S3 metrics
Tom Hughes [Tue, 10 Oct 2023 23:32:12 +0000 (00:32 +0100)]
Configure cloudwatch exporter to collect S3 metrics
Tom Hughes [Tue, 10 Oct 2023 16:21:27 +0000 (17:21 +0100)]
Send osmdbt log files to S3
Tom Hughes [Tue, 10 Oct 2023 16:06:58 +0000 (17:06 +0100)]
Add AWS credentials for osmdbt uploads
Grant Slater [Fri, 6 Oct 2023 22:15:49 +0000 (23:15 +0100)]
wordpress: unpin wp-fail2ban release
Tom Hughes [Sun, 8 Oct 2023 09:29:59 +0000 (10:29 +0100)]
Switch odin and ysera to use postgres 16
Tom Hughes [Sun, 8 Oct 2023 09:13:04 +0000 (10:13 +0100)]
Fix user creation for new dev sites
Tom Hughes [Sun, 8 Oct 2023 09:00:31 +0000 (10:00 +0100)]
Add rails71 dev site
Tom Hughes [Sun, 8 Oct 2023 07:43:08 +0000 (08:43 +0100)]
Use local variables in functions to avoid damaging the global scope
Tom Hughes [Fri, 6 Oct 2023 21:40:16 +0000 (22:40 +0100)]
Ignore ancestry when switching svn branches
Guillaume Rischard [Fri, 6 Oct 2023 21:00:57 +0000 (17:00 -0400)]
Freeze mutable objects assigned to constants
Fixes cookstyle complaint:
Calling `DidYouMean::SPELL_CHECKERS.merge!(error_name => spell_checker)' has been deprecated. Please call `DidYouMean.correct_error(error_name, spell_checker)' instead.
Inspecting 597 files
...............................................................C.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................
Offenses:
cookbooks/db/recipes/master.rb:87:22: C: [Correctable] Style/MutableConstant: Freeze mutable objects assigned to constants.
CGIMAP_PERMISSIONS = { ...
^
cookbooks/db/recipes/master.rb:122:26: C: [Correctable] Style/MutableConstant: Freeze mutable objects assigned to constants.
PLANETDUMP_PERMISSIONS = { ...
^
cookbooks/db/recipes/master.rb:128:26: C: [Correctable] Style/MutableConstant: Freeze mutable objects assigned to constants.
PLANETDIFF_PERMISSIONS = { ...
^
597 files inspected, 3 offenses detected, 3 offenses auto-correctable
Guillaume RISCHARD [Fri, 6 Oct 2023 20:55:53 +0000 (16:55 -0400)]
civicrm version bump, new plugins, cleanup
Tom Hughes [Fri, 6 Oct 2023 15:40:57 +0000 (15:40 +0000)]
Simplify configuration of database permissions
Tom Hughes [Fri, 6 Oct 2023 08:52:40 +0000 (08:52 +0000)]
Ignore system tables and sequences
Tom Hughes [Fri, 6 Oct 2023 07:13:50 +0000 (08:13 +0100)]
Minimise permissions for planetdump and planetdiff users
Tom Hughes [Thu, 5 Oct 2023 19:01:28 +0000 (20:01 +0100)]
Run smokeping on prometheus servers
Tom Hughes [Thu, 5 Oct 2023 17:24:31 +0000 (17:24 +0000)]
Add additional PostgreSQL ACL permission decoding
https://www.postgresql.org/docs/current/ddl-priv.html#PRIVILEGE-ABBREVS-TABLE
Tom Hughes [Thu, 5 Oct 2023 17:07:56 +0000 (17:07 +0000)]
Manage permissions for database tables and sequences
Tom Hughes [Thu, 5 Oct 2023 16:02:17 +0000 (17:02 +0100)]
Remove role for nepomuk
Tom Hughes [Thu, 5 Oct 2023 15:45:05 +0000 (16:45 +0100)]
Drop role for firnen
Tom Hughes [Thu, 5 Oct 2023 13:29:56 +0000 (13:29 +0000)]
Add postgresql_sequence for managing sequences
Tom Hughes [Thu, 5 Oct 2023 13:29:21 +0000 (13:29 +0000)]
Limit postgresql_table to acting on tables
Tom Hughes [Thu, 5 Oct 2023 12:58:38 +0000 (13:58 +0100)]
Manage cgimap postgres user
Tom Hughes [Thu, 5 Oct 2023 12:58:13 +0000 (13:58 +0100)]
Drop gpximport postgres users that is no longer used