August 2012 - aeolus-devel - Fedora Mailing-Lists

[PATCH conductor] Updating header username link

by Brian McLaughlin

Updating the username link in the header to go to the user's profile instead of being a duplicate link to /account to allow for dashboard development.

11 years, 8 months

1
1
0 / 0

Dictionary updates

by Angus Thomas

Remove the reference to "Pool Family" from the roles dictionary, and small changes to the Provider Selection strings

11 years, 8 months

2
3
0 / 0

[PATCH 0/1 conductor] BZ 839145 - New image creation with blank name and templates displays "undefined method 'empty?' for nil:NilClass"

by Tzu-Mainn Chen

Check for empty name; fix error handling. Mainn

11 years, 8 months

2
2
0 / 0

[PATCH] BZ #850571 - secure postgres access config - remove custom access config - use postgres-setup to generate secure config - switch ident (system user) auth to md5-passwd based accounts

by Mo Morsi

--- recipes/aeolus/files/pg_hba-ssl.conf | 7 ------- recipes/aeolus/files/pg_hba.conf | 4 ---- recipes/aeolus/manifests/conductor.pp | 23 ++++++++--------------- recipes/postgres/manifests/server.pp | 4 +--- recipes/postgres/manifests/user.pp | 12 ++++++------ 5 files changed, 15 insertions(+), 35 deletions(-) delete mode 100644 recipes/aeolus/files/pg_hba-ssl.conf delete mode 100644 recipes/aeolus/files/pg_hba.conf diff --git a/recipes/aeolus/files/pg_hba-ssl.conf b/recipes/aeolus/files/pg_hba-ssl.conf deleted file mode 100644 index 722867b..0000000 --- a/recipes/aeolus/files/pg_hba-ssl.conf +++ /dev/null @@ -1,7 +0,0 @@ -# we are still leaving Unix-domain sockets open, if we want to disable -# make sure to append "sslmode=require" and "-h localhost" to all psql -# commands -local all all trust -hostssl all all 127.0.0.1/32 md5 -hostssl all all ::1/128 md5 - diff --git a/recipes/aeolus/files/pg_hba.conf b/recipes/aeolus/files/pg_hba.conf deleted file mode 100644 index ef3f6f5..0000000 --- a/recipes/aeolus/files/pg_hba.conf +++ /dev/null @@ -1,4 +0,0 @@ -local all all trust -host all all 127.0.0.1 255.255.255.255 md5 -host all all ::1/128 md5 - diff --git a/recipes/aeolus/manifests/conductor.pp b/recipes/aeolus/manifests/conductor.pp index 30882c3..9fb8a66 100644 --- a/recipes/aeolus/manifests/conductor.pp +++ b/recipes/aeolus/manifests/conductor.pp @@ -96,37 +96,30 @@ class aeolus::conductor inherits aeolus { owner => 'postgres', group => 'postgres', notify => Service['postgresql'] } - file { "/var/lib/pgsql/data/pg_hba.conf": - source => "puppet:///modules/aeolus/pg_hba-ssl.conf", - require => Exec["pginitdb"], - owner => 'postgres', - group => 'postgres', - notify => Service['postgresql']} file { "/var/lib/pgsql/data/postgresql.conf": source => "puppet:///modules/aeolus/postgresql.conf", require => Exec["pginitdb"], owner => 'postgres', group => 'postgres', notify => Service['postgresql']} - } else { - file { "/var/lib/pgsql/data/pg_hba.conf": - source => "puppet:///modules/aeolus/pg_hba.conf", - require => Exec["pginitdb"], - owner => 'postgres', - group => 'postgres', - notify => Service['postgresql']} + } + exec{ "pgauthuser": + command => "/usr/bin/sed -i s/ident/md5/ /var/lib/pgsql/data/pg_hba.conf", + onlyif => '/bin/grep -q ident /var/lib/pgsql/data/pg_hba.conf', + require => Exec["pginitdb"], + notify => Service["postgresql"] } postgres::user{"aeolus": password => "v23zj59an", roles => "CREATEDB", - require => [Service["postgresql"], File["/var/lib/pgsql/data/pg_hba.conf"]] } + require => Service["postgresql"] } # Create aeolus database aeolus::rails::create::db{"create_aeolus_database": cwd => "/usr/share/aeolus-conductor", rails_env => "production", - require => [Postgres::User[aeolus], Package['aeolus-conductor']] } + require => [Postgres::User[aeolus], Exec['pgauthuser'], Package['aeolus-conductor']] } aeolus::rails::migrate::db{"migrate_aeolus_database": cwd => "/usr/share/aeolus-conductor", rails_env => "production", diff --git a/recipes/postgres/manifests/server.pp b/recipes/postgres/manifests/server.pp index 09ea6d7..1bd4b28 100644 --- a/recipes/postgres/manifests/server.pp +++ b/recipes/postgres/manifests/server.pp @@ -24,9 +24,7 @@ class postgres::server inherits postgres { } exec { "pginitdb": - command => "/usr/bin/initdb --pgdata='/var/lib/pgsql/data' -E UTF8", - user => "postgres", - group => "postgres", + command => "/usr/bin/postgresql-setup initdb", creates => "/var/lib/pgsql/data/PG_VERSION", require => Package["postgresql-server"], notify => Service["postgresql"], diff --git a/recipes/postgres/manifests/user.pp b/recipes/postgres/manifests/user.pp index a910a2e..e767e1d 100644 --- a/recipes/postgres/manifests/user.pp +++ b/recipes/postgres/manifests/user.pp @@ -2,13 +2,13 @@ define postgres::user($ensure='created', $password="", $roles=""){ case $ensure { 'created': { exec{"create_${name}_postgres_user": - unless => "/usr/bin/test `psql postgres postgres -P tuples_only -c \"select count(*) from pg_user where usename='${name}';\"` = \"1\"", - command => "/usr/bin/psql postgres postgres -c \ - \"CREATE USER ${name} WITH PASSWORD '${password}' ${roles}\""}} + unless => "/usr/bin/test `/usr/bin/su postgres -c \"psql postgres postgres -P tuples_only -c \\\"select count(*) from pg_user where usename='${name}';\\\"\"` = \"1\"", + command => "/usr/bin/su postgres -c \"/usr/bin/psql postgres postgres -c \ + \\\"CREATE USER ${name} WITH PASSWORD '${password}' ${roles}\\\"\""}} 'dropped': { exec{"drop_${name}_postgres_user": - onlyif => "/usr/bin/test `psql postgres postgres -P tuples_only -c \"select count(*) from pg_user where usename='${name}';\"` = \"1\"", - command => "/usr/bin/psql postgres postgres -c \ - \"DROP USER ${name}\""}} + onlyif => "/usr/bin/test `/usr/bin/su postgres -c \"psql postgres postgres -P tuples_only -c \\\"select count(*) from pg_user where usename='${name}';\\\"\"` = \"1\"", + command => "/usr/bin/su postgres -c \"/usr/bin/psql postgres postgres -c \ + \\\"DROP USER ${name}\\\"\""}} } } -- 1.7.10.2

11 years, 8 months

2
2
0 / 0

[PATCH] BZ #850571 - follow on fix taking care of existing pg_hba 'trust' configs

by Mo Morsi

'trust' instances will be changed to 'ident' after 'ident' instances are changed to 'md5', effectively bumping the securily level 'up' one for existing trust/ident instances --- recipes/aeolus/manifests/conductor.pp | 10 ++++++++-- 1 file changed, 8 insertions(+), 2 deletions(-) diff --git a/recipes/aeolus/manifests/conductor.pp b/recipes/aeolus/manifests/conductor.pp index 282d79c..200100d 100644 --- a/recipes/aeolus/manifests/conductor.pp +++ b/recipes/aeolus/manifests/conductor.pp @@ -103,12 +103,18 @@ class aeolus::conductor inherits aeolus { group => 'postgres', notify => Service['postgresql']} } - exec{ "pgauthuser": + exec{ "pg_auth_sys_user": command => "/usr/bin/sed -i s/ident/md5/ /var/lib/pgsql/data/pg_hba.conf", onlyif => '/bin/grep -q ident /var/lib/pgsql/data/pg_hba.conf', require => Exec["pginitdb"], notify => Service["postgresql"] } + exec{ "pg_auth_all_user": + command => "/usr/bin/sed -i s/trust/ident/ /var/lib/pgsql/data/pg_hba.conf", + onlyif => '/bin/grep -q trust /var/lib/pgsql/data/pg_hba.conf', + require => [Exec["pginitdb"], Exec["pg_auth_sys_user"]], + notify => Service["postgresql"] + } postgres::user{"aeolus": password => "v23zj59an", roles => "CREATEDB", @@ -119,7 +125,7 @@ class aeolus::conductor inherits aeolus { aeolus::rails::create::db{"create_aeolus_database": cwd => "/usr/share/aeolus-conductor", rails_env => "production", - require => [Postgres::User[aeolus], Exec['pgauthuser'], Package['aeolus-conductor']] } + require => [Postgres::User[aeolus], Exec['pg_auth_all_user'], Package['aeolus-conductor']] } aeolus::rails::migrate::db{"migrate_aeolus_database": cwd => "/usr/share/aeolus-conductor", rails_env => "production", -- 1.7.10.2

11 years, 8 months

1
0
0 / 0

[PATCH 0/1 conductor] BZ813218 - Component Outline Id should be renamed to image UUID in import image tab

by Tzu-Mainn Chen

Renamed Image ID to Provider's Image ID, as suggested by athomas. Mainn

11 years, 8 months

2
2
0 / 0

[PATCH conductor] RM 3635 - added better error message if deployment deletion failed (rebased)

by Jan Provazník

From: Jan Provaznik <jprovazn(a)redhat.com> A reason why deletion failed is now displayed. This required more changes (cleanups): - fixes formatting of flash error - moves destroy_deployment_config call into before_destroy callback - fixes setting of flash message on multi_destroy action - adds new exception to catch (most common) stop&destroy error - unstoppable instance --- src/app/controllers/deployments_controller.rb | 87 +++++++++++++++-------- src/app/models/deployment.rb | 25 +++---- src/app/views/layouts/_new_notification.html.haml | 7 +- src/config/locales/en.yml | 7 +- src/lib/exceptions.rb | 1 + src/spec/models/deployment_spec.rb | 10 +++ 6 files changed, 88 insertions(+), 49 deletions(-) diff --git a/src/app/controllers/deployments_controller.rb b/src/app/controllers/deployments_controller.rb index d9ec800..7df640b 100644 --- a/src/app/controllers/deployments_controller.rb +++ b/src/app/controllers/deployments_controller.rb @@ -256,53 +256,84 @@ class DeploymentsController < ApplicationController def destroy deployment = Deployment.find(params[:id]) - if check_privilege(Privilege::MODIFY, deployment) - begin - deployment.stop_instances_and_destroy! - flash[:success] = t('deployments.flash.success.deleted', :list => deployment.name, :count => 1) - rescue - flash[:error] = t('deployments.flash.error.not_deleted', :list => deployment.name, :count => 1) - end - else - flash[:error] = t('deployments.flash.error.not_deleted', :list => deployment.name, :count => 1) + cant_stop = false + errors = [] + begin + require_privilege(Privilege::MODIFY, deployment) + deployment.stop_instances_and_destroy! + rescue Aeolus::Conductor::Base::NotStoppableDeployment + cant_stop = true + errors = deployment.not_stoppable_or_destroyable_instances.map {|i| + t('deployments.errors.instance_state', + :name => i.name, + :state => i.state)} + rescue + errors = t('deployments.flash.error.not_deleted', + :name => deployment.name, + :error => $!.message) end + respond_to do |format| format.js do load_deployments render :partial => 'list' end - format.html { redirect_to pools_url(:view => 'filter', :details_tab => 'deployments') } - format.json { render :json => {:success => destroyed, :errors => failed} } + + format.html do + if errors.empty? + flash[:success] = t('deployments.flash.success.deleted', + :list => deployment.name, :count => 1) + elsif cant_stop + flash[:error] = {:summary => t('deployments.errors.cannot_stop', + :name => deployment.name), + :failures => errors} + else + flash[:error] = errors + end + redirect_to pools_url(:view => 'filter', :details_tab => 'deployments') + end + + format.json { render :json => {:success => errors.empty?, + :errors => errors} } end end def multi_destroy destroyed = [] - failed = [] + errors = [] - Deployment.find(params[:deployments_selected] || []).each do |deployment| - if check_privilege(Privilege::MODIFY, deployment) - begin - deployment.stop_instances_and_destroy! - destroyed << deployment.name - rescue - failed << deployment.name - end - else - failed << deployment.name + ids = Array(params[:deployments_selected]) + Deployment.find(ids).each do |deployment| + begin + require_privilege(Privilege::MODIFY, deployment) + deployment.stop_instances_and_destroy! + destroyed << deployment.name + rescue + errors << t('deployments.flash.error.not_deleted', + :name => deployment.name, + :error => $!.message) end end - # If nothing is selected, display an error message: - flash[:error] = t('deployments.flash.error.none_selected') if failed.blank? && destroyed.blank? - flash[:success] = t('deployments.flash.success.deleted', :list => destroyed.to_sentence, :count => destroyed.size) if destroyed.present? - flash[:error] = t('deployments.flash.error.not_deleted', :list => failed.to_sentence, :count => failed.size) if failed.present? respond_to do |format| - format.html { redirect_to params[:backlink] || pools_url(:view => 'filter', :details_tab => 'deployments') } + format.html do + if ids.empty? + flash[:error] = t('deployments.flash.error.none_selected') + elsif errors.present? + flash[:error] = errors + end + flash[:success] = t('deployments.flash.success.deleted', + :list => destroyed.to_sentence, + :count => destroyed.size) if destroyed.present? + + redirect_to params[:backlink] || + pools_url(:view => 'filter', :details_tab => 'deployments') + end + format.js do load_deployments render :partial => 'list' end - format.json { render :json => {:success => destroyed, :errors => failed} } + format.json { render :json => {:success => destroyed, :errors => errors} } end end diff --git a/src/app/models/deployment.rb b/src/app/models/deployment.rb index 6e5e5d7..5fe72f6 100644 --- a/src/app/models/deployment.rb +++ b/src/app/models/deployment.rb @@ -77,6 +77,7 @@ class Deployment < ActiveRecord::Base validates_presence_of :owner_id validate :pool_must_be_enabled before_destroy :destroyable? + before_destroy :destroy_deployment_config before_create :inject_launch_parameters before_create :generate_uuid before_create :set_pool_family @@ -164,28 +165,28 @@ class Deployment < ActiveRecord::Base [STATE_RUNNING, STATE_INCOMPLETE].include?(self.state) end + def not_stoppable_or_destroyable_instances + instances.find_all {|i| !(i.destroyable? or + i.state == Instance::STATE_RUNNING)} + end + def stop_instances_and_destroy! - if destroyable? - destroy_deployment_config - destroy - return + unless not_stoppable_or_destroyable_instances.empty? + raise Aeolus::Conductor::Base::NotStoppableDeployment, + I18n.t("deployments.errors.all_stopped") end - if instances.all? {|i| i.destroyable? or i.state == Instance::STATE_RUNNING} + if destroyable? + destroy + else self.state = Deployment::STATE_SHUTTING_DOWN - destroy_deployment_config # The deployment will be destroyed from an InstanceObserver callback once # all instances are stopped. self.scheduled_for_deletion = true self.save! # stop all deployment's instances - instances.each do |instance| - next unless instance.state == Instance::STATE_RUNNING - instance.stop(instance.owner) - end - else - raise I18n.t("deployments.errors.all_stopped") + instances.running.each {|instance| instance.stop(instance.owner)} end end diff --git a/src/app/views/layouts/_new_notification.html.haml b/src/app/views/layouts/_new_notification.html.haml index d807020..3150ef2 100644 --- a/src/app/views/layouts/_new_notification.html.haml +++ b/src/app/views/layouts/_new_notification.html.haml @@ -61,11 +61,8 @@ =image_tag 'flash_error_icon.png', :alt => 'Errors' %ul.flashes -if !flash[:error][:failures].blank? - -if flash[:error][:failures].length > 1 - -flash[:error][:failures].each do |k, v| - %li= [k, v.present? ? ": #{v}" : ''] - -else - %li= flash[:error][:failures] + -flash[:error][:failures].each do |k, v| + %li= v.present? ? "#{k}: #{v}" : k.to_s -else -flash[:error].each do |e| %li= e diff --git a/src/config/locales/en.yml b/src/config/locales/en.yml index 0faa9db..e8cda15 100644 --- a/src/config/locales/en.yml +++ b/src/config/locales/en.yml @@ -393,9 +393,7 @@ en: error: not_launched: "Some Assemblies will not be launched:" failed_to_launch_assemblies: "Failed to launch following Assemblies:" - not_deleted: - one: "The Deployment %{list} could not be deleted." - other: "The Deployments %{list} could not be deleted." + not_deleted: "The deployment %{name} could not be deleted: %{error}" none_selected: "You must select one or more Deployments." not_updated: one: "The Deployment %{list} could not be updated." @@ -411,7 +409,8 @@ en: other: "The Deployments %{list} were successfully updated." errors: config_server_connection: 'Cannot connect to the Config Server' - cannot_stop: "Stop cannot be performed on this instance." + cannot_stop: "The deployment %{name} can not be deleted because following instances can not be stopped:" + instance_state: "The instance %{name} is in state %{state}." all_stopped: "All Instances must be stopped or running" not_valid_deployable_xml: "seems to be not valid Deployable XML: %{msg}" match_not_found: "Match not found: %{errors}" diff --git a/src/lib/exceptions.rb b/src/lib/exceptions.rb index d56ddb3..200aa3f 100644 --- a/src/lib/exceptions.rb +++ b/src/lib/exceptions.rb @@ -47,6 +47,7 @@ module Aeolus module Base class ImageNotFound < StandardError; end class BlankImageId < StandardError; end + class NotStoppableDeployment < StandardError; end end module MultiError diff --git a/src/spec/models/deployment_spec.rb b/src/spec/models/deployment_spec.rb index aa78f50..17b0892 100644 --- a/src/spec/models/deployment_spec.rb +++ b/src/spec/models/deployment_spec.rb @@ -335,6 +335,16 @@ describe Deployment do lambda { Instance.find(inst1.id) }.should raise_error(ActiveRecord::RecordNotFound) lambda { Instance.find(inst2.id) }.should raise_error(ActiveRecord::RecordNotFound) end + + it "should raise an exception if some instances can not be stopped" do + @deployment.save! + inst1 = Factory.create(:mock_running_instance, + :state => Instance::STATE_PENDING, + :deployment_id => @deployment.id) + @deployment.reload + lambda { @deployment.stop_instances_and_destroy!}.should + raise_error(Aeolus::Conductor::Base::NotStoppableDeployment) + end end describe ".any_instance_running?" do -- 1.7.11.4

11 years, 8 months

2
1
0 / 0

[PATCH conductor] BZ848472

by Petr Blaho

This solves https://bugzilla.redhat.com/show_bug.cgi?id=848472 It is simple nil value check.

11 years, 8 months

1
1
0 / 0

[PATCH 0/1 conductor] BZ 848812 - Logs: Orderby "Proivder" is not listing "Provider" details in alphabetical order

by Tzu-Mainn Chen

The issue has to do with uppercase and lowercase strings; these are sorted as "ABCabc" instead of "AaBbCc". This patch changes this behaviour by downcasing the relevant strings during the sort. Mainn

11 years, 8 months

2
2
0 / 0

[PATCH 0/1 conductor] BZ 816170 - "undefined method 'environment' for nil:NilClass" when accessing a deleted image

by Tzu-Mainn Chen

This patch checks if the image is nil; if so, it redirects to the image index page and throws an error. A simple way to duplicate this bug is to browse to any particular image, and then add a random letter to the end of the URL (i.e., change the image id) Mainn

11 years, 8 months

2
2
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

aeolus-devel August 2012