Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Switch off direct database access #449

Merged
merged 4 commits into from Aug 11, 2014
Merged

Switch off direct database access #449

merged 4 commits into from Aug 11, 2014

Conversation

voidspace
Copy link

No longer expose port 37017 on machines as direct mongo access is no longer required.

@voidspace
Copy link
Author

I've tested Amazon and openstack (canonistack) bootstrapping and a basic deploy to check they still function (all good). I've also confirmed that with current master I can telnet to port 37017, and that with this branch I can't.

@davecheney
Copy link
Contributor

What happens to 1.18.1 clients ? Do we need to continue to support them for
the 14.04 LTS cycle (as William likes to say, 'Forever')

On Fri, Aug 1, 2014 at 8:06 AM, Michael Foord notifications@github.com
wrote:

I've tested Amazon and openstack (canonistack) bootstrapping and a basic
deploy to check they still function (all good). I've also confirmed that
with current master I can telnet to port 37017, and that with this branch I
can't.


Reply to this email directly or view it on GitHub
#449 (comment).

@voidspace
Copy link
Author

An answer from William on this topic.

I'm pretty sure that 1.18 had switched to the API everywhere -- but it still needed direct-mongo-access code to interact with 1.16 installations. If we hadn't switched by then we screwed up royally by releasing it -- waiting for API everywhere was one of the big reasons we waited so long to release it.

I'm trying a 1.18 client with this branch now to check that basic functions work.

@voidspace
Copy link
Author

So, the 1.18 client doesn't like the "alpha" in our trunk version number. "juju status" works fine, but a deploy complains about the invalid agent version. As a smoke test "juju status" working fine is a good sign though...

@davecheney
Copy link
Contributor

Excellent news, my fears were unfounded.

On Fri, Aug 1, 2014 at 7:00 PM, Michael Foord notifications@github.com
wrote:

So, the 1.18 client doesn't like the "alpha" in our trunk version number.
"juju status" works fine, but a deploy complains about the invalid agent
version. As a smoke test "juju status" working fine is a good sign
though...


Reply to this email directly or view it on GitHub
#449 (comment).

@fwereade
Copy link
Contributor

fwereade commented Aug 1, 2014

This LGTM as far as it goes, but I'd also like to see a followup with upgrade steps (I guess?) that tell the environs to actually close any mongo port that was left open by the previous versions.

@voidspace
Copy link
Author

$$merge$$

@jujubot
Copy link
Collaborator

jujubot commented Aug 1, 2014

Status: merge request accepted. Url: http://juju-ci.vapour.ws:8080/job/github-merge-juju

@jujubot
Copy link
Collaborator

jujubot commented Aug 1, 2014

Build failed: Does not match ['fixes-1350983', 'fixes-1350911', 'fixes-1347715', 'fixes-1351030', 'fixes-1351019']
build url: http://juju-ci.vapour.ws:8080/job/github-merge-juju/206

@voidspace
Copy link
Author

Fixes-1253652.
$$merge$$

@jujubot
Copy link
Collaborator

jujubot commented Aug 1, 2014

Status: merge request accepted. Url: http://juju-ci.vapour.ws:8080/job/github-merge-juju

@jujubot
Copy link
Collaborator

jujubot commented Aug 1, 2014

Build failed: Does not match ['fixes-1350983', 'fixes-1350911', 'fixes-1347715', 'fixes-1351030', 'fixes-1351019']
build url: http://juju-ci.vapour.ws:8080/job/github-merge-juju/207

@voidspace
Copy link
Author

$$merge$$

@jujubot
Copy link
Collaborator

jujubot commented Aug 11, 2014

Status: merge request accepted. Url: http://juju-ci.vapour.ws:8080/job/github-merge-juju

jujubot added a commit that referenced this pull request Aug 11, 2014
@jujubot
Merge pull request #449 from voidspace/database-shutoff
55a9507 
Switch off direct database access

No longer expose port 37017 on machines as direct mongo access is no longer required.
@jujubot jujubot merged commit 55a9507 into juju:master Aug 11, 2014
@voidspace voidspace mentioned this pull request Aug 21, 2014
Merged
jujubot added a commit that referenced this pull request Aug 22, 2014
@jujubot
Merge pull request #576 from voidspace/db-shutoff-2
a6e2d46 
Shut-off direct database access

No longer expose port 37017 on machines, as direct mongo access is no longer required.

This is a repeat of PR 449 (effectively a revert of the revert).

#449

This was reverted because restore still used direct state access. Once PR 561 has been merged direct DB access can be shutoff (again).

#561
laszlokajtar pushed a commit to laszlokajtar/juju that referenced this pull request Oct 25, 2023
@Lukewh
Update to meta tags (juju#449)
9d82eaa
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
4 participants
@voidspace @davecheney @fwereade @jujubot