Archive #23606
salt-master a besoin d’un utilisateur PostgreSQL dédié pour écrire les informations des tâches
Révisions associées
SaltStack: create a dedicated role for salt-master with sqitch
Waiting for a proper way to handle such need, I create the role
directly with sqitch like before.
Ref: #23526
- services/saltmaster/migrations/deploy/salt-runner-db.sql: create the
role and grant privileges.
- services/saltmaster/migrations/revert/salt-runner-db.sql: revoke
privileges and drop the dedicated role.
- services/saltmaster/migrations/verify/salt-runner-db.sql: verify
that the dedicated role can insert in the tables.
Ref: #23606
SaltStack: add volume for sqitch configuration in development
This permits to just restart the container in development
Ref: #23606
Vault: grant login to database admin
The creation of role by sqitch is not working because the temporary
user created by Vault does not have the “CREATEROLE” privilege.
In the mean time we autorise the database administrator to login
without password.
Ref: #23606
SaltStack: use “salt-runner_admin” to connect to PostgreSQL
The creation of role by sqitch is not working because the temporary
user created by Vault does not have the “CREATEROLE” privilege.
- services/saltmaster/salt-master-2017.conf: use “salt-returner_admin”
instead of “salt-admin”.
Ref: #23606
SaltStack: do not create a dedicated role with sqitch
The creation of role by sqitch is not working because the temporary
user created by Vault does not have the “CREATEROLE” privilege.
Ref: #23606
SaltStack: switch role before creating objects
Ref: #23606
SaltStack: switch role before creating objects
Ref: #23606
SaltStack: “salt-master” must start after “salt-ctrl”
The “salt-master” must be started after database and admin role
creation.
Waiting for a solution to orchestrate services within containers, we
will just wait 10 seconds before starting “salt-master”
- services/saltmaster/containerpilot.json5: add “wait-4-db” service
between start of “salt-ctrl” and “salt-master”.
Ref: #23606
SaltStack: configure container loggin level
- services/saltmaster/containerpilot.json5: use environment variable
“CONTAINERPILOT_LOGLEVEL”.
Ref: #23606
SaltStack: use double quotes en “containerpilot.json5”
Ref: #23606
Historique
#1 Mis à jour par Daniel Dehennin il y a presque 6 ans
- Tâche parente
#23526supprimé - Release mis à Zéphir-livraison-1
#2 Mis à jour par Daniel Dehennin il y a presque 6 ans
- Tracker changé de Tâche à Scénario
- Version cible
sprint 2018 14-16 Equipe MENSRsupprimé - Début
10/04/2018supprimé
#3 Mis à jour par Gilles Grandgérard il y a plus de 4 ans
- Tracker changé de Scénario à Archive