First commits #3
Conversation
king-alexander
added
documentation
king-alexander
force-pushed
the
first-commits
branch
from
d05d1b6 to
8e8ea9a
Compare
king-alexander
requested review from
dav3r,
felddy,
jsf9k and
mcdonnnj
as code owners
Functions as expected! |
|
@king-alexander - Reminder to turn on the branch protections before or after you merge this one (or ask me to do it, if you lack the necessary permissions). |
files/docker-compose-dev.yml
Outdated
There was a problem hiding this comment.
I don't know that this file belongs in this project. In a deployment there is no reason for the Admiral source code to be on the instance. Any development work would involve pulling down a built Docker image with the changes being worked on and that would be done using the appropriate tag from Docker Hub.
There was a problem hiding this comment.
Removed in b390329.
You bring up a good point. The development configuration exposes a bash shell which runs the script to collect new certificates. Should that be shoved into docker-compose, or do we need to rethink how to probe the CT Search API?
There was a problem hiding this comment.
That is a good question. When does that script need to be run? It might make sense to create an issue to incorporate that as a docker-compose.override.yml configuration option if it would see regular use.
There was a problem hiding this comment.
I run the script every time I boot up the Admiral composition (on average, about once per week). I created cisagov/admiral-docker#13 to capture how we manage these Compose files as a unit of work.
There was a problem hiding this comment.
@mcdonnnj - Can this conversation be resolved?
king-alexander
force-pushed
the
first-commits
branch
2 times, most recently
from
df4546d to
5fff4cb
Compare
|
@king-alexander Why are the molecule tests failing? |
|
@king-alexander Any updates here now that cisagov/skeleton-ansible-role#139 has been merged? |
king-alexander
force-pushed
the
first-commits
branch
from
c0febdb to
142bdfb
Compare
king-alexander
force-pushed
the
first-commits
branch
from
7beb6c6 to
c543586
Compare
Your assumptions were correct. I noticed no issues with either image. |
|
Rebase after latest pull request is merged, then send up flare 🎇 |
These composition files will be deployed in the Ansible role.
This role executes 3 tasks: creating the `/var/cyhy/admiral` directory, installing the Docker Compose configuration, and installing the Docker Compose development configuration.
We verify that the correct directory exists with the correct files and permisions.
Update the README from the generic skeleton to details specific to this project. There are no requirements or role variables, but the project does depend on the Ansible Role for Docker.
Future development work should be done from a pre-built Docker image, so the development configuration does not belong in this project.
Co-authored-by: dav3r <[email protected]>
Co-authored-by: dav3r <[email protected]>
Co-authored-by: dav3r <[email protected]>
king-alexander
force-pushed
the
first-commits
branch
from
5ad989e to
7a6f4e1
Compare
Alphabetize owners and add myself as an owner for the .github directory.
These two variables provide the option to set ownership for any files or directories created by the role. I updated the README to reflect this new ability.
Use the role variables to set ownership for the Docker composition in addition to the admiral directory.
Co-authored-by: dav3r <[email protected]>
Co-authored-by: dav3r <[email protected]>
king-alexander
force-pushed
the
first-commits
branch
from
7a6f4e1 to
f0d543d
Compare
🗣 Description
These first commits modify cisagov/skeleton-ansible-role to install The Admiral. The changes group initial code, files, and documentation for the role so we can reuse them across deployments.
💭 Motivation and context
We want to use this role to ship the Admiral off to sea. See cisagov/cyhy_amis#639 for full details of the voyage.
🧪 Testing
I updated the default test scenario in 125e9eb. All 33 tests passed (in 19.34 seconds).
My testing environment was
pyenv 2.3.15runningPython 3.9.13.In addition, I successfully used the role to create the
/var/cyhy/admiraldirectory on my local machine and verified that the correct Docker Compose files were in place.✅ Pre-approval checklist
to reflect the changes in this PR.