Defaults from common and cookiecutter now give working appliance #473

wtripp180901 · 2024-11-11T15:51:12Z

Enables etc_hosts by default for working internal DNS
OpenOndemand now has working set of default variables
Creates default user to access OOD with
Default cluster suffix is now "internal" instead of "invalid"

sjpb · 2024-11-19T12:59:59Z

environments/common/inventory/group_vars/all/basic_users.yml

 basic_users_homedir: /home
-basic_users_users: []
+basic_users_users:


I don't think I like defining this here. This means any site which has basic_users enabled will suddenly get this new user which they didn't know they had ...

I think defining the password in the secrets is maybe OK, but could you look at whether e.g we can provide a basic_users.yml file with this in via cookiecutter? That would mean only new environments get the user added.

sjpb · 2024-11-19T13:01:12Z

environments/common/inventory/group_vars/all/basic_users.yml

 basic_users_homedir: /home
-basic_users_users: []
+basic_users_users:
+  - name: ood_user


Don't like this name, it's not just for OOD. I would call it "demo_user" I think, makes it clear its not supposed to be for production. And the stackhpc environment should be modified to use this too, rather than the current test user.

Same goes for secret name

sjpb · 2024-11-19T13:01:27Z

environments/common/inventory/group_vars/all/basic_users.yml

@@ -3,5 +3,10 @@
 # See: ansible/roles/basic_users/README.md 
 # for variable definitions.

+ondemand_user_password: "{{ vault_openondemand_default_user_password }}"


Don't need this indirection here really.

sjpb · 2024-11-19T13:02:39Z

environments/common/inventory/group_vars/all/openondemand.yml

+
+openondemand_auth: basic_pam
+
+openondemand_jupyter_partition: "{{ openhpc_slurm_partitions[0]['name'] }}"


Does this work OK for ordering? E.g. if you try

ansible all -m debug -a var=openondemand_jupyter_partition does it work, or does it complain something is undefined? I have a memory of the lexicographical ordering of openondemand.yml vs openhpc.yml being important here.

sjpb · 2024-11-22T11:07:57Z

@wtripp180901 when you get back to this pls can you update docs/production.md too?

wtripp180901 added 2 commits November 11, 2024 15:00

cookiecutter environment now has working defaults

b7cfe9a

updated docs

daa4b6d

wtripp180901 requested a review from a team as a code owner November 11, 2024 15:51

wtripp180901 requested a review from sjpb November 11, 2024 15:51

This was linked to issues Nov 11, 2024

Replace default suffix .invalid with .internal #458

Open

Problems with host DNS resolution when configuring services #469

Open

sjpb requested changes Nov 19, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Defaults from common and cookiecutter now give working appliance #473

Defaults from common and cookiecutter now give working appliance #473

wtripp180901 commented Nov 11, 2024

sjpb Nov 19, 2024

sjpb Nov 19, 2024

sjpb Nov 19, 2024

sjpb Nov 19, 2024

sjpb Nov 19, 2024

sjpb commented Nov 22, 2024


		openondemand_auth: basic_pam

		openondemand_jupyter_partition: "{{ openhpc_slurm_partitions[0]['name'] }}"

Defaults from common and cookiecutter now give working appliance #473

Are you sure you want to change the base?

Defaults from common and cookiecutter now give working appliance #473

Conversation

wtripp180901 commented Nov 11, 2024

sjpb Nov 19, 2024

Choose a reason for hiding this comment

sjpb Nov 19, 2024

Choose a reason for hiding this comment

sjpb Nov 19, 2024

Choose a reason for hiding this comment

sjpb Nov 19, 2024

Choose a reason for hiding this comment

sjpb Nov 19, 2024

Choose a reason for hiding this comment

sjpb commented Nov 22, 2024