What did you do? ================ 1. Login as a user with the import-mdn permission 2. Go to a MDN import page such as https://browsercompat.herokuapp.com/importer/5 3. Click "Reset" What happened? ============== An async task is queued to download the latest page. This posts the following warning to the logs: [2016-02-12 14:22:10,467: WARNING/Worker-4] /app/.heroku/python/lib/python2.7/site-packages/requests/packages/urllib3/util/ssl_.py:120: InsecurePlatformWarning: A true SSLContext object is not available. This prevents urllib3 from configuring SSL appropriately and may cause certain SSL connections to fail. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning . What should have happened? ========================== No InsecurePlatformWarning Is there anything else we should know? ====================================== We're restricted to fetching from MDN, so this seems low risk, but annoying. This can be fixed by adding some additional Python libraries, such as pyOpenSSL, but those require that the related libraries are installed in the Heroku instance. Experimentation is needed to find the right config.
Whiteboard: [specification][type:bug] → [specification][type:bug][bc:infra][bc:milestone=scooter]
Assignee: nobody → jwhitlock
Status: NEW → ASSIGNED
Commits pushed to master at https://github.com/mdn/browsercompat https://github.com/mdn/browsercompat/commit/09fd606779d1e162524e7fa9e0f9fc3330a4e809 bug 1247942 - Add SSL packages in production This emulates pip install requests[secure], to try to remove the InsecurePlatformWarning from urllib3. See https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning https://github.com/mdn/browsercompat/commit/0b4217c350b9b0203dde05d172733d76396a4848 Merge pull request #103 from mdn/secure_platform_1247942 bug 1247942 - Add SSL packages in production
Commits pushed to master at https://github.com/mdn/browsercompat https://github.com/mdn/browsercompat/commit/d17bb32eb3e4e241ef0e5ffd0809b89bb7f596f2 bug 1247942 - Add additional cryptography reqs enum34 and ipaddress are required for version prior to Python 3.5, as detected by Heroku. https://github.com/mdn/browsercompat/commit/c7d72ebf4f22db15c2c6710d71ed4f8cd8507d2b bug 1247942 - Add Python 3.4 to test matrix Python 3.4 is latest Python supported by Ubuntu LTS 14.04, a likely deployment OS. https://github.com/mdn/browsercompat/commit/5e7a82c77bddf1e542dabcc9f26a13479a655a42 bug 1247942 - Switch Heroku to Python 3.5.1 https://github.com/mdn/browsercompat/commit/821ecdbd7ae3830ef34c8e7855326e0953b8a52d Merge pull request #106 from mdn/secure_platform_2_1247942 bug 1247942 - More Heroku additions
Commits pushed to master at https://github.com/mdn/browsercompat https://github.com/mdn/browsercompat/commit/ddf5e12a2588efa67022702288fc389e96efa190 bug 1247942 - Update docs for py34/py35 https://github.com/mdn/browsercompat/commit/3888b8c2446685b7269d9e7d9fd3f33865c5cc44 bug 1247942 - Limit concurrency of async workers In Heroku, each worker opens at least one Redis connection, quickly bumping up against the connection limits.
Confirmed that warning does not appear when running weekly MDN scrape
Status: ASSIGNED → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → FIXED
Commit pushed to master at https://github.com/mdn/browsercompat https://github.com/mdn/browsercompat/commit/7aaa5d0e98e8b22a6936b87de0a1536ca89dc4d6 bug 1247942 - Add runtime.txt to MANIFEST.in
You need to log in before you can comment on or make changes to this bug.