Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rework apt to use packagecloud repos as well (#640) #641

Merged
merged 1 commit into from
Sep 28, 2017
Merged

Rework apt to use packagecloud repos as well (#640) #641

merged 1 commit into from
Sep 28, 2017

Conversation

wyardley
Copy link
Contributor

Could use some feedback on this, especially in terms of whether the packagecloud repo key itself needs to be configurable, and whether using the mit pgp server is the best way to get the key (it seems safer than grabbing it from the packagecloud site directly).

I couldn't find an easy way around doing variable interpolation in the repo source in the spec tests, but open to suggestions / examples of how to do it better.

@bastelfreak
Copy link
Member

is packagecloud a third party service that generates the packages, or just a hosting platform used by the rabbitmq team? If it is the first option, the usage should be optional?

@wyardley
Copy link
Contributor Author

@bastelfreak in the case of repos_ensure being true (the only time this class should be called), we configure the official repo rather than the OS one or other user-configured ones. The linked issue has more detail, but they were both self-hosting and hosting via Packagecloud for a while (but without a proper yum repo), so we switched yum to use packagecloud when repos_ensure is set. Now, they're saying that they'll be dropping the self-hosted packages, so the packages are built (and signed) by RabbitMQ, but pushed to packagecloud, which hosts the repo and signs the repo metadata.

rspec doesn't yet have a with_server matcher, so need to check how recently that option was added to apt::key. Using a separate source from the download itself seems better to me, security-wise, but not sure what the min required version of apt is to use this style.

@wyardley
Copy link
Contributor Author

From https://github.com/puppetlabs/puppetlabs-apt/blob/master/CHANGELOG.md, it seems as if it used to be called key_server, but it has a default, so we should just take that; I'll take out the server param entirely in the call.

@wyardley wyardley force-pushed the use_packagecloud_for_apt branch from efb3c68 to ea5c9da Compare September 26, 2017 20:48
@bastelfreak
Copy link
Member

This fixes #640

@bastelfreak
Copy link
Member

@wyardley thanks for the explanation, I didn't see the issue :(

@wyardley wyardley mentioned this pull request Sep 26, 2017
Closed
@michaelklishin
Copy link

A couple of clarifications: Package Cloud is just a package distribution service. Team RabbitMQ publishes packages our build infra produces there. We won't be dropping the existing repo on rabbitmq.com but it will become a read-only archive.

@wyardley wyardley force-pushed the use_packagecloud_for_apt branch from ea5c9da to 4389ef7 Compare September 28, 2017 06:24
@wyardley
Copy link
Contributor Author

Updated with some feedback from the comments. This seems to work for me, and, as a bonus, I think actually makes more sense as well.

@wyardley wyardley force-pushed the use_packagecloud_for_apt branch from 4389ef7 to 3a52ad6 Compare September 28, 2017 06:32
@wyardley wyardley force-pushed the use_packagecloud_for_apt branch from 3a52ad6 to 7a1b6ef Compare September 28, 2017 06:34
@wyardley wyardley merged commit ae4b7ff into voxpupuli:master Sep 28, 2017
@wyardley wyardley deleted the use_packagecloud_for_apt branch September 28, 2017 07:57
@wyardley wyardley added the enhancement New feature or request label Sep 28, 2017
@wyardley wyardley modified the milestones: 7.1.0, v7.1.0 Sep 28, 2017
slm0n87 pushed a commit to slm0n87/puppet-rabbitmq that referenced this pull request Mar 7, 2019
@wyardley
Merge pull request voxpupuli#641 from wyardley/use_packagecloud_for_apt
7ba81da 
Rework apt to use packagecloud repos as well (voxpupuli#640)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bastelfreak bastelfreak bastelfreak approved these changes

Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@wyardley @bastelfreak @michaelklishin