Upgrade pulseguardian to python 3
Categories
(Taskcluster :: Operations and Service Requests, task)
Tracking
(Not tracked)
People
(Reporter: dustin, Assigned: dustin, Mentored)
Details
This is a pretty simple Flask app and most (all?) of its dependencies are available in Py3. So it should be pretty quick to upgrade the app itself.
Site: https://pulseguardian.mozilla.org/
Repo: https://github.com/mozilla-services/pulseguardian
This is a somewhat un-owned application at Mozilla that is currently the responsibility of a team full of Go and JS programmers, so we could use some help from someone skilled in Python. I'll be happy to help!
Comment 1•5 years ago
|
||
Looks like flask-secure-headers is an upstream dep that also needs porting or replacing/removing as a dependency. It looks like some Mozillians have attempted to port it: https://github.com/twaldear/flask-secure-headers/pull/9
Assignee | ||
Comment 2•5 years ago
|
||
That looks very unmaintained (no changes in 4 years). Likely we'll need to do what @jeffbryner did and set the relevant headers "manually".
Assignee | ||
Comment 3•5 years ago
|
||
Coop I can take a look at the code bits of this during our "break". Maybe I get something done, maybe not :)
Assignee | ||
Comment 4•5 years ago
|
||
Aki, can you take a peek at https://github.com/mozilla-services/pulseguardian/pull/246? You're not in the org so I couldn't flag you for review..
Comment 5•5 years ago
|
||
This now blocks https://github.com/mozilla-services/pulseguardian/pull/242 because gunicorn 20.0.0 doesn't support python 2.7.
Updated•5 years ago
|
Comment 6•5 years ago
|
||
Stamping. If you need deeper flask review, that may not be me.
(I do see diffs if I clone Tarek's master into flask_secure_headers. The 3 patches after the vendor seem sane.)
Assignee | ||
Comment 7•5 years ago
|
||
Deployment thoughts:
- for the webapp, rollback is pretty easy and we can just QA "manually"
- for the backend queue-monitoring bit, we can deploy it in a read-only fashion and see what it logs, thereby avoiding the risk of some subtle bug causing it to delete everyone's queues or something crazy.
https://github.com/mozilla-services/pulseguardian/pull/249 is the best I can think of for "read-only fashion". Coop, what do you think about that patch? How about timing?
Comment 8•5 years ago
|
||
(In reply to Dustin J. Mitchell [:dustin] (he/him) from comment #7)
https://github.com/mozilla-services/pulseguardian/pull/249 is the best I can think of for "read-only fashion". Coop, what do you think about that patch? How about timing?
The approach is sane and non-destructive. I don't think we're beholden to any particular timing here since this service really is off to the side.
If you're around and can peek at the logs, I'd be happy to roll this out this morning.
Assignee | ||
Comment 9•5 years ago
|
||
OK, this is landed now, after
https://github.com/mozilla-services/pulseguardian/commit/bf3f07825fdfa40b76c342117d91120782e9d310
and
https://github.com/mozilla-services/pulseguardian/commit/1925594e815e77f2d09b208bbc385fd09a65c1f5
The non-destructive bit is reverted.
I created https://orange-antelope.rmq.cloudamqp.com/#/queues/%2F/queue%2Fdustin%2Ftesty to see if it will successfully delete a queu.
Assignee | ||
Comment 10•5 years ago
|
||
..I got a queue length warning..
Assignee | ||
Comment 11•5 years ago
|
||
..and it successfuly deleted that queue.
Description
•