Closed Bug 1317546 Opened 9 years ago Closed 8 years ago

repair vr.mozilla.org CNAME mozvr.com (and SSL certificate)

Categories

(Infrastructure & Operations Graveyard :: WebOps: Other, task)

Product:
Infrastructure & Operations Graveyard
Component:
WebOps: Other
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: Atoll, Assigned: joeyk)

Details

(Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/3719])

vr.mozilla.org CNAME mozvr.com This CNAME exists, but it doesn't work anymore. http://vr.mozilla.org runs into a cloudflare error, because the mozvr site isn't configured with awareness of it, and https://vr.mozilla.org produces a cert name mismatch, for the same reason. :cvan, you were recently associated with a mozvr.com requests. Can you confirm that it's okay for us to delete vr.m.o from DNS and revoke its SSL certificate?
Flags: needinfo?(cvan)
Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/3719]
I don't recall receiving the cert, and I was having DNS issues. Can you send me the info again? I'd like to get it working, but I spent too much time on it and gave up.
Flags: needinfo?(cvan)
Can do! Could you please upload your GPG key fingerprint to https://login.mozilla.com/ so I can encrypt the private key to you?
Flags: needinfo?(cvan)
Summary: decom vr.mozilla.org CNAME mozvr.com (and SSL certificate) → repair vr.mozilla.org CNAME mozvr.com (and SSL certificate)
Assignee: server-ops-webops → jkrejci
hey :cvan shall we just defer this repair until you're ready to switch hosting to vr.mozilla.org? This should get repaired automagically when that happens. Let me know, thanks!
Assignee: jkrejci → server-ops-webops
I added my GPG key fingerpint to https://login.mozilla.com/
Flags: needinfo?(cvan) → needinfo?(rsoderberg)
Also need-info'ing Joey
Flags: needinfo?(jkrejci)
Hey cvan, do you just need the private key or the crt/pem as well?
Flags: needinfo?(jkrejci) → needinfo?(cvan)
Assignee: server-ops-webops → jkrejci
crt and pem. Thanks!
Flags: needinfo?(cvan)
Hi there, friendly ping? Sorry for keeping this for so long in your backlog, y'all.
Flags: needinfo?(jkrejci)
Hey cvan the cert was set to expire in May 2017, so I went ahead and renewed it preemptively as well. You're good to go until June 26 2018 now. I can't seem to get your GPG key imported though, the keyserver returns a "No Key Found". Can you re-upload that for me please so I can get those sent over to you? Thanks!
Flags: needinfo?(rsoderberg)
Flags: needinfo?(jkrejci)
Flags: needinfo?(cvan)
cvan, 'gpg --send-keys 0x3B7C9A275.....' will do the trick
atoll helped me. Joey, can you check again now?
Flags: needinfo?(cvan) → needinfo?(jkrejci)
:cvan Got it. Sent the GPG encrypted key and pem file your way via email.
Flags: needinfo?(jkrejci)
Hey cvan am I good to close this out?
Flags: needinfo?(cvan)
Thanks for your help, joeyk and atoll. The problem is comment 0 hasn't been fixed yet. Could we have vr.mozilla.org set up on Amazon CloudFront (have decided to not use Cloudflare) with a CNAME to `mozvr.github.io`? If y'all would rather I open a new bug for that, that's fine.
Flags: needinfo?(cvan) → needinfo?(jkrejci)
Tried reaching you over IRC the other day cvan, but can we meet up for a quick Vidyo chat Monday to get some clarification on what exactly needs to happen on our end? Let me know, thanks!
Flags: needinfo?(jkrejci) → needinfo?(cvan)
Hi, Joey, just messaged you on IRC and fox2mike too (he had messaged me earlier, but I also missed that). Anyway, the request is to add a record for Mozilla's Amazon CloudFlare account for the following: vr.mozilla.org ⇒ CNAME mozvr.github.io If there are more questions, I can meet with either/both of you on Vidyo today (Tuesday); let me know.
Flags: needinfo?(cvan)
Friendly ping. Just wanted to see if we can get this CNAME added for vr.mozilla.org?
Flags: needinfo?(smani)
(In reply to Christopher Van Wiemeersch [:cvan] from comment #18) > Friendly ping. Just wanted to see if we can get this CNAME added for > vr.mozilla.org? Hey Chris, Sorry about the delay on this, been super swamped over here in WebOps land. I put some time on the calendar to take care of this with ericz tomorrow. I will let you know once its completed, sorry again!
Flags: needinfo?(smani)
Thanks, no worries!
Set up CloudFront CDN Distribution Origin CNAME vr.mozilla.org mozvr.github.io Changed CNAME in inventory to point to CDN FQDN Target vr.mozilla.org CNAME d2x8l6w5zbpr4p.cloudfront.net This should hopefully accomplish what you wanted? If not let me know, thanks!
Flags: needinfo?(cvan)
Confirmed working now via browser and curl. Closing bug out. jkrejci-23847:.git jkrejci$ curl -I vr.mozilla.org HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Mon, 01 May 2017 20:12:40 GMT Content-Type: text/html Content-Length: 183 Connection: keep-alive Location: https://vr.mozilla.org/ X-Cache: Redirect from cloudfront Via: 1.1 3d183dc06807f77c9361cf878faaed82.cloudfront.net (CloudFront) X-Amz-Cf-Id: tdppnSS7wb6UUB73CHGEGH9knERNfahjWz32Gmo1z0NPJbsQu7rIIg== jkrejci-23847:.git jkrejci$ curl -I https://vr.mozilla.org HTTP/1.1 301 Moved Permanently Content-Type: text/html Content-Length: 178 Connection: keep-alive Server: GitHub.com Location: http://mozvr.com/ X-GitHub-Request-Id: 6C0A:1613A:31B212C:4100EEA:59079628 Accept-Ranges: bytes Date: Mon, 01 May 2017 20:10:16 GMT Via: 1.1 varnish, 1.1 1c618ea0f595386e66803b2a07e0f4dc.cloudfront.net (CloudFront) X-Served-By: cache-iad2133-IAD X-Cache-Hits: 0 X-Timer: S1493669417.854337,VS0,VE3 X-Fastly-Request-ID: e1801603bedbfe44d12a2ddff09a87119245fb3e Vary: Accept-Encoding Age: 494 X-Cache: Hit from cloudfront X-Amz-Cf-Id: rAlGHFYy47_fsUmDRjsTfxJJS_Yk2bX13mepIUZ41cT6yP0jW4_xOQ==
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
clearing the needinfo, ignore.
Flags: needinfo?(cvan)
Product: Infrastructure & Operations → Infrastructure & Operations Graveyard
You need to log in before you can comment on or make changes to this bug.