-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Refactoring/#258 used a non root user to run jupyter in the docker im…
…age ai lab (#231) * Use separate user for running Jupyter Additionally Same as AMI and VM Editions also the Docker Edition uses a non-root user for executing the ansible installation. * added dependency to gpg-agent * Added become for disabling core dumps * Improved Ansible output for pip install * fixed Ansible warning about providing a list of dictionaries to vars: See https://docs.ansible.com/ansible/latest/porting_guides/porting_guide_8.html#deprecated * Updated tests for docker Edition * Increased time out for commiting the Docker container As integration tests in test_create_dss_docker_image.py failed with timeout error in test_install_notebook_connector during docker.commit(). * Updated dependencies to fix vulnerabilities * Added free disk space to workflows/check_ci.yaml * Use user "jupyter" for EC2, too * Updated documentation * Updated dependency network-manager [CodeBuild] --------- Co-authored-by: Torsten Kilias <[email protected]>
- Loading branch information
Showing
42 changed files
with
400 additions
and
252 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
- name: Update and Upgrade apt Packages | ||
apt: | ||
upgrade: yes | ||
update_cache: yes | ||
become: "{{need_sudo}}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
- name: Add user 'jupyter' for running jupyter | ||
ansible.builtin.user: | ||
name: "{{ user_name }}" | ||
home: "{{ user_home }}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
4 changes: 4 additions & 0 deletions
4
exasol/ds/sandbox/runtime/ansible/roles/ansible_access/defaults/main.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
--- | ||
|
||
apt_dependencies: | ||
- sudo=1.8.31-1ubuntu1.5 |
16 changes: 16 additions & 0 deletions
16
exasol/ds/sandbox/runtime/ansible/roles/ansible_access/tasks/main.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,16 @@ | ||
- name: Install sudo | ||
apt: | ||
name: "{{apt_dependencies}}" | ||
state: latest | ||
install_recommends: false | ||
|
||
- name: Add dedicated user for executing ansible tasks | ||
ansible.builtin.user: | ||
name: "{{ my_ansible_user }}" | ||
- name: Add to sudoers | ||
community.general.sudoers: | ||
name: Add user ansible | ||
user: "{{ my_ansible_user }}" | ||
state: present | ||
nopassword: true | ||
commands: ALL |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -4,3 +4,4 @@ | |
regexp: ^[^#].*core | ||
line: '* hard core 0' | ||
create: true | ||
become: "{{ need_sudo }}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
20 changes: 0 additions & 20 deletions
20
exasol/ds/sandbox/runtime/ansible/roles/jupyter/tasks/install-pip-packages.yml
This file was deleted.
Oops, something went wrong.
Oops, something went wrong.