Dba 656 #212

ranbeersingh1 · 2024-03-11T09:59:47Z

No description provided.

…ther_facts

bill-buchan

LGTM

pete-j-g · 2024-03-11T11:03:54Z

.github/workflows/oracle-db-backup.yml

@@ -135,7 +135,8 @@ jobs:
    environment: ${{needs.build_rman_target_name.outputs.TargetEnvironment}}
    runs-on: ubuntu-latest
    container:
-      image: ghcr.io/ministryofjustice/hmpps-delius-operational-automation:0.1
+      image: ghcr.io/ministryofjustice/hmpps-delius-operational-automation:0.40.0
+      options: --user root


What's the reason for running this job as root? The default ansible user should have all required permissions. If it doesn't we should fix it in the image

Left over from testing, removed.

pete-j-g · 2024-03-11T11:06:51Z

docker/delius-ansible-aws/Dockerfile

@@ -21,7 +21,8 @@ LABEL org.opencontainers.image.authors="HMPPS Probation Webops Team (probation-w
  org.opencontainers.image.source="https://github.com/ministryofjustice/hmpps-delius-operational-automation"

 RUN apk update --no-cache \
-  && apk upgrade --no-cache
+    && apk upgrade --no-cache \
+    && apk add gcc musl-dev python3-dev py-setuptools build-base libffi-dev openssl-dev openssh-client git make jq bash curl


Can you tell me why you want to re-add all of those packages? It feels like we are adding bloat to the image.

If something really is needed we could potentially go for a subset of these?

Kept only a small number of packages

ansible/group_vars/dev.yml

pete-j-g · 2024-03-11T11:09:33Z

docker/delius-ansible-aws/Dockerfile

-USER ansible
+# USER ansible
+
+ENTRYPOINT /bin/bash


This image is intended to simply be an ansible runner. Because of this, I don't think we should default the entry point to bash. Please correct me if I'm missing something

Commented out.

ranbeersingh1 added 23 commits March 7, 2024 15:19

Test new version of docker image 0.38.0

275901c

Add options to login as root user in container

fd32fc0

Test

ce28271

Merge branch 'DBA-653' into DBA-656

b0015ce

Comment out ansible user and introduce entrypoint

079f428

Test docker image beta version

05e32ee

Add binaries

c1f0871

Reduce packages

5ac1baf

Bump image version

fc07b77

Version for community.aws collection specified to work wih ansible ga…

b6b651d

…ther_facts

Bump image version

f6343bf

Debug collection

cd5b6b7

Options

8c464ae

Append collections path

7db3722

Bump image version

5402f06

Output ansible version

5c527d0

Remove output step

afc49cb

Down grade image version

0e9edbc

Output collection

1b323ad

Debug

692e898

Test

e11e6de

Merge branch 'main' into DBA-656

c6d6c02

Remove ENV and version

52c461a

ranbeersingh1 requested review from a team as code owners March 11, 2024 09:59

ranbeersingh1 temporarily deployed to development March 11, 2024 09:59 — with GitHub Actions Inactive

Correct image version and remove debug

da550d0

ranbeersingh1 temporarily deployed to development March 11, 2024 10:05 — with GitHub Actions Inactive

bill-buchan previously approved these changes Mar 11, 2024

View reviewed changes

Use latest image beta version

a2801d6

ranbeersingh1 dismissed bill-buchan’s stale review via a2801d6 March 11, 2024 10:15

ranbeersingh1 temporarily deployed to development March 11, 2024 10:15 — with GitHub Actions Inactive

Correct environment

442b0ff

ranbeersingh1 had a problem deploying to delius-core-dev-preapproved March 11, 2024 10:20 — with GitHub Actions Failure

Correct bucket name

c8ba1ad

ranbeersingh1 temporarily deployed to delius-core-dev-preapproved March 11, 2024 10:23 — with GitHub Actions Inactive

pete-j-g reviewed Mar 11, 2024

View reviewed changes

ranbeersingh1 added 3 commits March 11, 2024 11:11

Removed options

fae58da

Reduce number of packages

28f7d48

Comment out ENTRYPOINT

b331fa0

ranbeersingh1 temporarily deployed to delius-core-dev-preapproved March 11, 2024 11:17 — with GitHub Actions Inactive

Changes

e49407a

ranbeersingh1 temporarily deployed to delius-core-dev-preapproved March 11, 2024 12:19 — with GitHub Actions Inactive

Remove unprivileged user

905f090

ranbeersingh1 temporarily deployed to delius-core-dev-preapproved March 11, 2024 12:58 — with GitHub Actions Inactive

Reintroduce ansible user

be542db

ranbeersingh1 temporarily deployed to delius-core-dev-preapproved March 11, 2024 14:23 — with GitHub Actions Inactive

pete-j-g approved these changes Mar 11, 2024

View reviewed changes

ranbeersingh1 merged commit 6fee9de into main Mar 11, 2024
3 checks passed

ranbeersingh1 deleted the DBA-656 branch March 11, 2024 14:38

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dba 656 #212

Dba 656 #212

ranbeersingh1 commented Mar 11, 2024

bill-buchan left a comment

pete-j-g Mar 11, 2024

ranbeersingh1 Mar 11, 2024

pete-j-g Mar 11, 2024

ranbeersingh1 Mar 11, 2024

pete-j-g Mar 11, 2024

ranbeersingh1 Mar 11, 2024

Dba 656 #212

Dba 656 #212

Conversation

ranbeersingh1 commented Mar 11, 2024

bill-buchan left a comment

Choose a reason for hiding this comment

pete-j-g Mar 11, 2024

Choose a reason for hiding this comment

ranbeersingh1 Mar 11, 2024

Choose a reason for hiding this comment

pete-j-g Mar 11, 2024

Choose a reason for hiding this comment

ranbeersingh1 Mar 11, 2024

Choose a reason for hiding this comment

pete-j-g Mar 11, 2024

Choose a reason for hiding this comment

ranbeersingh1 Mar 11, 2024

Choose a reason for hiding this comment