GitLab Distribution Team Discussions, 19 Feb 2021

Previous Meeting Next Meeting

⏯

youtube image

►

From YouTube: Distribution - Exploration of Registry metadata database

Description

Exploration of implementing gitlab.com/gitlab-org/container-registry with metadata in PG12 database, within the Cloud Native GitLab environment.

See https://gitlab.com/gitlab-org/charts/gitlab/-/issues/2579

A

This computer and hope.

B

C

That doesn't just choke my.

B

Poor little machine out.

B

Go back to sharing my screen here.

B

So I just want to get everything up and online and then we'll figure out what we actually need to do inside of the application suite what we have to do to the database. What we have to do in terms of configuring things what we have to do to actually migrate things across and how we can do this without having you know the ability to necessarily run the commands inside of the operational.

B

B

Do either of you from package have any preemptive links that would be useful for us.

D

Yep, I can get.

B

B

What I'm probably looking for first, is a sample of what the config changes look like and what, if any, uh database configuration, also needs to be added to other components outside of the registry? I don't know if any of it.

B

D

So the second link that I shared is the registry configuration documentation. So if you open that and search for database, I could have linked the proper anchor, but it's the database section. You will see all options that we need to support right now and you'll see the documentation for each one of the parameters.

D

And this is only for the registry, so there is no need to update anything in github rails anywhere else. It's self-contained within the registry and the registry is the only component with the access to the database.

D

Okay and nothing changed for for the outside, so no one will actually be able to tell if the registry is running backed by a database or not. Probably the only difference that they will notice is that with a database it will be much faster to serve most of the api requests, but other than that, it's transparent.

B

Okay, so I'm when I'm looking at the the sample blob here in the dock, I'm also seeing a migration key. Is that going to be something that's important later on.

D

Yeah, so this is, this is a section that we intend to use for all settings related with the data migration, not database migrations, but data migration uh from an existing registry to a new one.

D

So all settings will be placed within this section, which is temporary.

E

D

Go away when we are done with the moderations.

C

B

I need to create a database.

D

Yeah, if you go to the first link that I shared, we also have some documentation.

D

D

A

Yeah, I don't see anything specific.

D

Within the database migrations, there is a section.

E

To create database.

D

There is nothing special about it, it's just a normal, create database and postgres, nothing else. Oh there. It.

B

It's is more like me trying to remember what the incantation is here, so that I can log in as the right user so that I can like.

C

E

B

Remember where they stuck the secrets I'll tell my head: that's what my brain is trying to.

B

C

So that's where the data is.

C

A

B

Don't this is just internal recording, it's a junk environment anyways.

B

So I'm not too worried.

B

And just wait a cat for a second.

B

Let's have a cat fight off screen, I figured I could stop that before it started entertaining. Maybe.

A

But okay, it's just straight up, create database. Okay,.

B

Now you have this document as registry dev. Does it really matter just as long as I supply it, the right name.

D

B

Could you repeat your documentation specifically has registry dev that looks like it's just a naming suggestion in this case I can just call it register.

F

Yeah any tag, just as long as you know what it is.

B

B

I'm gonna actually create a separate user for this.

C

B

We will want to create a separate user that owns the separate database in the future right now, I'm just going to cheat and use this one.

B

I can't count that from inside of postgresql it'll, look at me funny um who remembers how to post or sql chona.

E

C

B

Okay, so that now actually has a database. So with that in mind,.

C

B

Able to come over to the config map.

B

And populate you have this documented.

C

B

Really, I can just place it anywhere. It's a top level key.

B

B

We're gonna have to have fun with that one. uh I can't registry does not support, help and reload the config does it. I didn't think so. No.

D

B

So I'm gonna have to do a full, reconfig and then redeploy and get the container to.

B

B

uh Let's see here, I'm going to pull the database bits.

C

A

C

Services, a map.

A

A

Let me actually have this whole thing, separated out, of course,.

A

And you have host user port okay, I can grab chunk of this.

A

B

B

B

B

B

Do I care about any of the rest right now uh scheme is that the database name.

D

No is the schema which defaults to public. You can leave that.

B

Says it's required.

D

Right, that's right. Yeah.

E

D

C

B

Mode, don't need any of the other settings.

B

B

I believe this comes from higher up. Let me go find where this is defined.

B

Wow, I can type today.

B

Yep that's set high enough. I don't worry about that. One. Let's double check. The same goes with.

B

That is too high, which is not a big deal. We can deal with that.

C

Let's see actually registry container, let's pop a shell in here.

B

Nope, okay, so we have already have hitch number one. Your password has to be in your config map and you have no way of reading that content in outside of being in the config map.

B

So we have to find a way to inject the secret content. In now, we already have a methodology like this. We just have to include this functionality into how this gets populated.

D

Is it something similar to how it is done for the secrets for the buckets, for example,.

B

So like how we have this injection uh with the: where are you hidden away.

C

At we pull the deployment up.

B

Inside of the deployment we have an init container that then calls the script.

B

The script is mounted.

C

And I don't think we have yep.

B

Here we are, this script is actually what gets included here so we're gonna have to have this script basically inject the contents of the secret. If the database is actually enabled.

B

So we'll have to write this as well, because we can't directly put the password in.

B

Now the there's nothing else here that is actually super secret. It's literally just the the password that needs to be included.

B

I think I can safely use quoted values here I mean it is yaml, so yeah should be able to get around the quoted url and coded problems of passwords. So.

C

C

Let's go over here to the values.

B

File, we're gonna have to add a block.

C

B

And the way we detect whether something is enabled in this particular case is going to literally be. If the secret is mounted for the password file, then it must be enabled to put it in place.

C

We have this hidden off in.

B

B

Yep thanks code, I don't need you to be any more helpful, go away.

B

Good news is, we can literally just take this directly in and we're good, so we just can grab this right off the.

B

C

Right to the values.

B

C

B

Inline there, so actually, what we can just do is inline that directly.

B

So that should, in theory, should that that exist mounted in the container right into that before it passes it onto the actual operational.

C

Container, okay, so we're gonna.

A

Go to the bottom, we don't have.

B

Postgresql on here yet.

B

For now we're literally just gonna, let it have the same user so.

A

Do we have globals in here here we.

A

B

Then we have everything else will just come from above for now.

B

We'll have to deal with.

B

The other settings in regards to ssl and prepared statements during timeout later, let's see here, schema.

B

That's one that we're going to have to care about.

B

That much we're going to have to be a little careful of later.

B

For now, that in theory should be the base of what we need back.

C

To the deployment we still have, this.

C

B

Let me go check where that's defined over here. Thank.

C

You it's also in gitlab. That's up a tree. Let's go see what this is.

B

Oh, the zoom bar is in the way. That's why I can't click on anything.

C

C

B

Okay, this would actually put it in a different path, so.

C

We'll add one in here.

A

Storage profiling ends.

A

A

Let's grab this whole chunk here.

C

Go into our actual helpers over here over here. Thank you.

A

Take that chunk.

C

Off- and we just put that ads.

C

C

Did we do anything else? Nope.

B

Okay, like I said, we're gonna deal with the ssl later. We just need to get it far enough along to actually be able to start first.

A

Okay, so there's.

A

C

What do I have that just database yeah.

A

A

B

B

Go so that should, in theory, turn that on. If I tell it to so build.

B

B

B

Yep, let me try the syntax right.

C

Fake map- that's good! That's good! That should be fine.

B

Change this over to match the appropriate.

A

B

Should be all I need.

B

Dodged, hopefully I haven't broken anything, but we're about to find out. Okay that ran that's good.

C

So I want registry.

C

B

So here is our added snippet for the database.

B

That looks good there and we'll come down to database. True, I need to change.

B

That forgot about that.

A

You'll find ourselves the deployments.

B

Okay, I need to actually inject that secret mounts into both sets of containers. It's got to be in the init container in this container, so we have registry config, and this is the server config on the way out.

B

So as long as I have it defined in the registry secrets, volume should.

A

B

Registry server, config.

B

Yep there it is it's defined in registry secrets and it showed up. So what I do need to do is actually template. The registry.

B

E

B

This way, if nobody specifies it, it will just try to use the default kit lamp one for the purpose of this test. We don't want to do that in actual production.

B

Okay, try that again.

C

Fig map down here.

B

True registry gitlab password file all right.

A

A

B

Take the rest of these arguments.

B

B

C

A

B

All right, it seems to have fired up.

D

Which is weird because we haven't applied database migrations.

D

I believe we should have stopped.

F

The databases that it would have said something like hey you're using the database, don't use this in production.

D

B

Are must have gaffed something uh because that definitely had an error.

B

There's your warning that you were talking about, so that's something that that's we'll need to add to the notes to say when you run the when you actually try to deploy the chart. The return, don't say warning experimental feature.

D

Yeah, I'm going to open an.

E

D

For that panic, because it shouldn't be a panic, it should just be never and the.

E

B

Okay, so I'm gonna go ahead and check this now. I am currently running three zero. Zero, apparently, is that the correct version I should be checking.

F

Yeah, that's the latest released.

B

I just want to make sure there weren't changes. I was missing somewhere along the line. That's.

C

C

B

I'm going to delete that pod and then try to get it to tell me what the contents of that configuration file are before it dies.

C

Why don't I do it.

C

Registry, edit, this.

B

I'm going to do the thing you should never.

B

B

I'm configured to use midio, so my keys are transient, but now I can go back to the pods and because I've updated the config map to spit out the configuration we can inspect from the logs. What actually happened like did it have a problem with the password did. Is the format wrong? Did it not actually populate the content?

B

Yeah, I'm pretty sure, that's why it blew up.

A

B

Let's, let's find out what we did so we type out something.

B

We have quote, add db, underscore password file at and in the configuration script.

B

Apparently I am now slytherin with parcel time.

B

So now that we know that's a super easy fix, let's just go edit. That particular.

B

A

E

F

You should still expect a failure, since there's not been migrations applied, that's interesting, but not that failure.

B

This is why you see the gaf I can tell you. The password doesn't actually have the at symbols at the end.

A

C

It didn't remove them.

B

It did for the access and secret keys, but it did not for the password.

B

Did I gaff something here.

B

I'll bet you that I'm staring at the fact that I didn't put the at symbols.

C

D

B

Thankfully super easy fix so we'll go.

B

Watch the logs of this one.

A

B

There you go and then there's your fatality. You were talking about the database, so the only problem is in kubernetes unless you have something that goes and does that you're going to have anywhere between 1 and 10 of these things. Just doing this constantly right, because it's going to come up looking at the database, realize that nothing is there and then scream at us.

B

So this becomes the question of where do we run this command?.

F

Can't hear you, I just said the cloud.

C

The cloud the cloud.

B

Yeah there's a lot of those outside right. Now, it's pretty bright, but that's because it's all white everywhere, um let's see so the the way in which we do most of the database related migrations for everything else is: there's actually a migrations pod that will go and run the migrations.

B

Prefect I'm using this as an example because they have it built in. They will actually run the migrations at start, but again, pre-effect doesn't behave the way the registry does because it operates as a stateful set, so it only ever starts one container at a time, whereas the registry will restart anywhere between 1 and 30 at a time and that's where the the race happens.

B

So the question is: should we have a container, or even this container before the actual? The actual operational registry runs attempt to run migrations.

D

It looks like it's a good idea, because migrations are embedded there, so we can, you can just use one of the pots to run the motherboards progressions.

B

Okay, I'm going to bed, we don't have this in task. Runner.

B

Nope: okay, the the task runner is the quintessential equivalent of being able to run get lab rails or get lab control.

B

So really, what I need is like a one-off pod, that's running the registry container with all of the configuration, but.

B

At the same time, I need to make sure that that doesn't try to start the registry.

B

A

Containers containers.

B

And the default is serve right for the registry.

B

Does that container have busy box or.

D

I think it's soul point okay,.

B

This is not the way to do it by the way.

F

Yeah, it's built with the whatever cng base go images. I.

B

Think, oh because I need to put it into a sleep, so I can jump into it after it's actually operational.

C

B

And let's see, how do we do this in the task? Runner pod? It's like wild, true sleep, 1000 or something like that. Something crazy.

G

You can sleep in dfinity too. Sometimes you check.

C

B

So we do shell dash c and then.

B

E

C

B

Okay and then I need registry.

D

F

E

F

A config big path passed to it: okay,.

B

So argument dash config.

F

uh No, it's uh let's say um positional arguments just go at the end.

B

Oh, it goes at the end. Okay,.

B

The health checks failed by the way, so I only had so much time to run the command no less, because I didn't edit the health.

E

F

Needs to be postgresq12.

D

Oh yeah, because we are using partitioning.

B

Let me fix that.

C

F

I may have seen that error before and spent longer to figure that out.

B

Yep, okay, I need to make sure I was passing the right argument.

B

Okay, so I need postgres 12. I need that and then I need to manually jump in or have a method to jump in and actually run that command.

C

C

B

I could run a second init container and have it just do that at every single startup that will prove this out. It's not the right way to do it in the end, because then we're trying to run migrations on every single pod start, which gets us into that race condition as we described before, but that's kind of the. I can do that quick and try. It.

A

And knit containers containers error.

A

I can grab all of.

A

B

Now init containers happen in defined order, so I know that the configuration will run and then migrations will run in that specific order, whereas if.

A

I have something.

B

It's what's called a sidecar pattern, whereas you're running something beside the operational container, they start at the same time.

D

There is a typo there in the name.

C

B

I actually don't need secrets at all, because the config is all I need, because it's now been populated.

B

Okay and I'll have it run a script also out of the values file. That makes it easy for us to do.

B

B

B

There I'm just going to run a status and then that so that we can save time, is there a difference in return code if the status is anything, but all of them are up.

D

B

A good question.

D

I like to look out.

B

The reason I ask is it would be able for us. It would save us the time of even attempting the migrations in the event that all of them are up or all of them that it knows about are up.

D

C

D

A success uh regardless of the status, but we can change that. Okay, what would be ideal? What do you think it will be the ideal.

B

I don't know exactly: I haven't really put too much thought on it. It's more like I'm thinking of ways to prevent us from even needing to make the call if.

B

If the migrations already has the the normal pattern of check it, if I'm good just move on, then this may not necessarily be a thing. I'm just you know, spitballing things as I do this.

F

Yeah, I don't, I don't have to look at it, but I don't think there's an efficiency gain from doing it. That way, I think that is kind of what up does, because it just takes a step if it needs to at the.

B

End, okay, so I need to add to the server config.

B

Actually you know what I do.

C

I need that, no, I know I can put it in the server config.

A

B

Secrets: yeah, okay, yeah. We do want that there so I'll just grab that outright.

B

This way, I don't have to alter anything else right now in terms of making sure that I'm adding the actual amount of the script that we just did.

A

So now I should be able to run config migrations, migrations, migration, script.

A

Well, that's a script.

B

And that's configured.

C

I don't see a change in this mount.

A

Where are we getting configured.

B

B

Oh almost missed.

B

B

So I can do that.

B

You have to have the content of your script in the config map to be able to mount it. Whoops.

A

B

We can tell it to run migrations. Okay now we should be in a happy spot.

C

B

C

B

Just take the whole thing down and then delete the pvc, because I have to get rid of the old database.

E

C

Okay instantly.

G

Do we need to make sure only one pod comes up because of those race conditions, or is it okay right now.

B

Perfect example of, let's see what happens if we do.

A

B

It with two pods trying to start at once. If we do, then we know right away. That's a.

B

B

So one thing in regards to the notes that we have on the issue is.

B

I don't see any.

B

Way to run these without actually popping into a registry which is somewhat counter to the way that admins currently expect to interact with the application suite or at least as deployed by our helm, chart they don't directly run commands on the registry binary or on any binary. You don't go into the web service container and then run rails because that's actually serving application.

B

We have the task runner. So if you want to do get a rails console or do a task runner or run a rate command that all happens inside of that container, we may have to find slash document the way that we want to do this for the registry and or include the registry binary and configuration inside of the task runner so there we so that we have that administrative interface so that people can pop in and look at what's going on with the database, where its migration states are. If everything's happy anything like that.

B

Okay, why are we getting crash loop back off?

B

I haven't made the database.

E

G

Did you need to own the database as gitlab.

B

Because I created it from the data that get live user, I should.

G

Be logged in okay, yeah.

B

I thought I was able to just pop in and run the registry binary before, but.

D

Do you need the full pet to the v-net to the binary.

B

Apparently, I may I'm mildly surprised that it complained that it didn't have it.

G

What image is used for the init container.

B

Oh, thank you. Thank you. Thank you. That makes a whole lot of sense. Whoops.

B

Busy box is not going to have the registry binary in it: ding ding ding. We have a winner.

F

We'll open an issue up stream fix that.

B

Yeah, I don't think alpine is going to be like yeah, let's just package busybox with the registry binary from kit lab and be like uh what.

B

I mean that'd be one way to make sure we're disseminating, but all.

B

B

uh Migrate, apparently, I didn't send the right command.

B

Oh because I did migrations instead of migrate, that.

E

B

B

We'll have fun playing with database import in a.

B

E

E

B

Apparently I typed that wrong. Where did that end up?

B

Is it config.yml, so it can take that yaml.

D

Yeah, I think so.

B

Oh, it's not even in there it's in the configmap.

B

Consistency: what does that.

E

C

See where does that amount to deployments.

B

Etc, docker registry.

A

And our script populates.

B

Etc, docker registry we're trying to get config.yaml and with this config.yml.

C

We have it typed here: registry, config, yaml and then the one we have.

B

Is mountain path to registry? Oh because we're not at the same mount path as the operational container see: registry server. Config here is etcetera, doctor registry, but in here it's just registry. Hence.

B

Oops now that path will actually.

B

A

A

B

I'm looking through the issue I have on the calendar item and then going through the expected outcomes that are present.

B

In regards to the container, I don't see any additional dependencies in terms of compilation. I do see that we need to have a functional database where to function so we need to have access to a server. There has to be an appropriately configured database and someone has to have actually populated, said database with the expected structure runtime dependencies.

B

That's obviously that connection in that database, additional configuration and network access- that's fairly straightforward. At this point, we need to be able to configure the necessary bits of the that, and the registry binary needs to be able to reach wherever that server is over the network.

B

Otherwise, I don't think anything else. Changes.

B

In regards to the registry chart, we need to have the change to the configuration script, so that's actually populating the password in because there's no method to read secrets from files, um and we know that we can just inject it right into the actual secrets mount as the part of the configure script.

B

The requirements on the database is the one that we need to figure out, which is the actual automation for ensuring that that state is correct and that the migrations are populated and are up to date to match.

B

That's the piece that we're going to sort out and then again the question here of like: where do we have this functionality or insert this functionality so that people have the ability to get in and run the necessary commands on the registry itself?.

B

I do have a comment here in regards to the task runner on whether or not we're going to put this into that as that interface and then what needs to be placed into there as a general rule. If we put things into that, one that that container has access to just about everything anyways.

B

So it's just a matter of adding in the necessary config population and making sure that, what's in the registry, gets populated also into the task runner chart.

D

Would that build the the registry binary? uh Do we do already something like that or that's.

B

What we wouldn't build the registry binary again, we would actually just incorporate it from the image. So we would take the gitlab container registry image out of the cng. We would add a step in the task manager or task runner container creation that would actually copy the binary in.

B

There'd be no point for us to to build it twice. It would be problematic.

C

B

Which of these do I want desired character? Okay, that's not behaving like pods. I have two functional pods.

E

B

Okay, so f8d ran the migrations and this one, which was a couple of seconds.

B

Apparently. I also said migrations.

B

That, hence the confusion of what just happened.

B

Okay, let's go over.

B

Here, registry.

B

And let that run and then we're going to flip back, go to the pond.

B

Okay, so we're pulling only the default container, we're not pulling the logs from the migrations in the.

C

B

huh I guess I've never actually tried to use stern to read from those containers.

B

Okay, that doesn't work to get an egg container logs note. The self.

B

B

That one did not try to run migrations.

B

Interesting, so I'm gonna go, do what you're not supposed to do and then we're gonna go see what happens when we really restart from scratch again.

G

Doesn't normally get mad when there's active connections to the database.

C

D

E

Don't keep the.

A

D

Open, uh we just fetch a connection whenever there is no request.

B

Apparently that here we go, this one ran it.

B

Okay, so this is the output of migrations um status mitch. So this is saying these are all the migrations I know about, and you can see that applied is not set so and then it turns around and runs.

B

That, whereas this one you'll see that it has time stamps.

B

I don't have one on the last item. My guess is that this came up while the first one was in the middle of running it. So it's a case of now. We can see that it's entirely possible for them to come up and not be entirely settled.

B

And this one says: oh no, everybody was done by the time. I got here, we're good. So that's we didn't hit it, but you can see we. You could run across a scenario where you have more than one container trying to actually operationally run the migrations. At the same time,.

B

Just due to too many of them, starting at once,.

B

hmm Okay, but at least we can manage to see this functions.

B

Let me grab a giant white screen, sorry about the eyes.

A

Myself, a new project.

C

Visualize public.

G

So only your chrome window is flickering now.

B

There how's that so apparently it's chrome on the window that because it's hardware accelerated rendering is probably messing with the compositor causing the flicker okay, fun.

G

Yeah and then your terminal window becomes non-transparent anymore.

B

Right because I turned off compositing yeah all right now,.

A

C

Don't really want to build. I just need to tag so.

C

Copy that, for a second.

B

Oh look at that. Why not succeeded already you never know. I keep that secret around, so I don't have to fight with it. Okay, so I should be able to push.

C

The one I just tagged.

B

Okay, so we have a functional and existing container there now.

B

Anything particular in here that I should care about.

D

No way horse just says.

B

Just that it works, because you can see there's the auth into the repo and then me uploading the manifest.

B

Okay, so what should be tried here, then also is to run this without the database. Steve still leave it with postgres12 run it with the database configuration off right. So the register is running in that fashion, upload a different container and then turn the database back on and then try to import.

B

That right to to migrate from the file system to the database is, I need to have one in place on a on the traditional method and then migrate that forward into the database. Correct.

D

B

A

D

Thinking about integrating the import comments right now,.

B

No okay yeah, because we actually like data location, has to be a manual step. Yeah.

D

Because we will likely only use the import to laser service, uh not really as a separate cli. It was for small registries. If people want to use that to do the imports, but uh at least for now and at least for new club.com, we will need a separate service running that to continuously to move the data. So I don't think we will need support in charts for that in the street chart. That is.

B

Right in the end, it doesn't matter altering data location like that. You have to do that as an operational manual step. So yeah I mean the.

B

We will need to document how to generate a pod that has the capability of doing that, um but it'll probably be wherever we put this administrative container behavior right. If we do it in the task runner, then we can tell people how to do that or how to generate a cron job that does batches at a time right, something that can trigger that kind of behavior moving.

B

C

F

Yeah and just a small registries, in this case, they're like up to 10 15 terabytes, because our perspective is kind of off at this.

B

B

I'm not going to push that yet, because I have to reconfigure that database come back here and I'm going to set set land registry database. Oops not get live registry just register that database.

B

B

And then they'll rerun the deploy and it will come up this time. The registry won't have database configured at all, which should prove really interesting on what exactly does or does not exist for the asdf image.

F

If you want to play around with this, we have a little seed script in the uh under our documentation, uh doc get lab scripts c.s.h and that should generate some decent container images just to test out um data transfer rubbish collection, stuff like that they're just made to make unique layers.

B

Okay, um I won't be able to use this one, though, because I won't operate on localhost, like the only no. The only way that would work is, if I literally injected this into the contents of this into the registry container and then operated it, because localhost isn't seen by me.

B

Oh and it crashed back up because I I still have functions in there that are trying to do something. Probably.

C

B

Probably helps if I remember to only try and run migrations when the database is on.

B

Otherwise, it could get a little weird.

A

B

Let's try that.

B

B

Okay, that time it came up.

B

B

I don't think I've seen that message before.

F

That's a cross repository blob mount because you have visibility into the other repository.

F

You have right access to it. I should say actually.

B

Yeah, I just I don't think I've ever actually seen the messages like. Oh how.

C

F

Yeah, it's to make users freak out we'll get an issue occasionally with that.

B

Okay, while this still sees it, I don't know I'll actually be able to pull it or not, but it sees it clean up. Disabled.

C

Okay, well, there's that back to administrator.

C

B

Make sure everything's happy and showing yep.

C

B

Now we'll redeploy it with it enabled again.

B

I guess I could have pulled a different version of alpine and pushed that.

B

B

B

Okay, let's back up with the database, so I actually have to go into one of those containers.

B

Oh, that works not what I wanted, but it.

B

B

There we go, there's the I was normal is the only one that tries to pull in.

B

It's interesting. It said it tried to pull an asdf, but it already had it in the database.

F

Yeah it has to it has to look at everything, that's just how the the file system works, but you can't really.

F

You can only get the full fire hose of information.

B

Right, that's fine! I was just like. I was confused on what was going on there. So are we still writing the file system, even though we're doing it in the database? Just not, then, then, not relying on the file system.

F

um Yeah, there's like a mirror, mirror fs uh in the migration stanza. I think mike is away from.

E

F

But yeah, but um by default we are mirroring to the boss system, as we write to the database just in case there is something that really goes wrong. We have a way to just like move, get all the kids off out of the pool move back to the file system, at least until we are more sure, more burned in time with the database.

B

I'm just trying to understand what the state is. So that's good to know. That means we don't have to make sure we have an export function that works inside of the cloud native right away. So I was like.

A

B

Okay, so you can specify an individual one and require empty database okay, so these are probably things people are going to want to know. Well what I have documented pretty well, which I'll be fair. I haven't gone and read it yet.

A

C

Dangling bulbs.

B

Yep, so I'm just going to go ahead and run this without the dry run and I'm going to for the giggles of it.

B

B

Apparently I typo something again: oh cause. It's just root, not administrator, because it's my actual username, not my printed one. That figures.

B

Okay and the ui has no idea of the difference, so that's good.

B

Mitch did anything come up in your mind yet.

G

No, I was just going to mention. I did see a log message earlier, that it says tag already present in database. So that's good.

A

Yeah looks good.

B

Okay, so the good news is, it looks like you can only just flip the database on or off without too much of an issue like this. Is us testing it out? Yes, I know that joao and la you already know this, but we don't so now. We know it's not going to break anything if somebody turns it on and then turns it back off again so per design.

F

Yeah we tried to make it some somewhat resilient. We figured it was an important important feature.

B

Okay, so at this point going back to the outcome points.

B

Network policy wise. We need to note that if you, if you do network policy, you need to make sure you have egress to the database because otherwise can be a bit of a problem. um The only runtime dependencies of the database in the right place and by place I mean present and.

E

B

In terms of the chart we know now, what needs to be done? The biggest trick is that we need to figure out if we assume that this database will be owned by the gitlab user or if it'll be separately, owned and operated and how that will be done.

B

The good news is that the charts already have the functionality to delineate that difference. um You can point it at the same server and just tell it a different username and a different secret and it'll be happy.

B

So we'll probably end up with the names being slightly different: it's not the window. I wanted to move this window where we have in the values.

B

Db name, this may end up for us being.

B

Values here we are, it may end up being the full word database and I can understand why you didn't want database dot database.

B

That would be confusing, um but the way in which we template it in for for where that setting comes from is everywhere else. It's coming from p, sql dot database.

B

So, for the sake of the chart, what we may end up doing is having the property there be the same name, annoying as that might be, and then pulling that in as a part of our template behaviors. Yes, I know that's uncomfortable to think about, but we'll make it work is the point yeah, but don't worry. I can give you more headaches if you want to see the problems I was facing last night.

B

So that's really. The only thing I think is that's distinctively different.

B

Yeah user password, like the rendered names to the application, won't be any different.

B

It's just that the properties and the way we populate them in may be different from the configuration perspective at the.

D

User, it makes sense to make it more consistent for users.

A

Okay, so enabled will.

B

Be a straight flag, host and port. We.

A

Use host and port in the same fashion.

B

Tls, it's not shown here, but we have the ssl configuration options over.

A

B

We are uh psequel.ssl, you can provide all of these things. We actually have an open ticket to make this configurable or more configurable right now. You either have it on and populate the certs. You have it off.

B

It met needs at the time and we didn't think far enough had, but it's an easy fix in the future.

B

So the next question after this now that we know that it can, we can get it up, we can get it running and there's very little real world modification. That needs to be done. We need to figure out the right way to run migrations and where to run them at so normally you would expect to only ever run one copy of the migrations, correct, yeah, that's right.

B

C

B

The way we do migrations.

B

Is there is a job that's generated and that that job generates this pod, and this is basically sitting inside of the same task runner container. So if we put the registry binary and its configuration into the task runner container, we can do the same kind of migration as a part of this job. Here we would have a script such as db migrate, but then we would have a different script that was um like registry db migrate.

B

That would only fire in the event that the registry's database was turned on.

B

So most people who are deploying the helm chart and just doing helm upgrade they do that and they the shared secrets, job fires, to make sure that all of their secrets are in play and created.

B

And then, after that job fires, everything gets deployed, and then this fires up now what this this job does is go and actually wait for the postgres and redis to be up and reachable and then proceeds to very shortly thereafter turn around and run the migrations. If they're deemed necessary the registry container, we would need to add something in there similar to what we have for web service, which tells it to wait until it's at a happy state and that's the trick.

B

That's the trick that comes back. We have to know from a programmatic fashion. Are we up to date yet, and we have to figure out what that method of detection is right. So if I pop out of this container description.

B

Bim, just let me out, I didn't mean to hit q, I meant to hit colonqueue.

B

So if I come down to web service here and I go to edit.

B

Where I pass, the internet containers no go lag and they're ordering and the.

E

B

C

A

C

B

That's just still the giant one: okay in it containers we have our certificates, which basically it makes sure that our custom cas work, and then we have our next image, which is configure, which runs the same configuration script very similar, which is a very similar script to the way the registries configure container does to populate its configuration, and then we have dependencies what this container does. Is it actually contains that same wait for depth script that the task runner does, but it has one more thing where it actually goes and checks.

B

What is my current migration status and if the code base is newer than the migrations, it won't start.

C

E

A

This next cavity.

E

B

Now, what we end up doing here is we actually have to parse the output of what the status of the database is versus. What the code base is obviously that's kind of hard to do in terms of the registry.

B

The best we could do is literally check the last line of the migrations and see if it has a timestamp, that's about the best we could do um do you think it would make sense if there was a flag on my great status, that you could say quiet and have it return uh a non-zero exit code in the event that not all of your migrations are healthy.

D

Yeah, basically, an up-to-date check right. If it's up to date it would return zero. Otherwise it would return one yeah. I think we can do.

B

That that would that would definitely help us having to do this.

B

What would be useful is in that regard, let me show you what this one does in terms of an actual operational.

B

Container scrolling and scroll way up, so what dependencies does is it actually reaches out through the configuration and tries to talk to the the database like it makes sure that it's actually there before it tries to just check on what the status of the migrations are, and you can see as the container started. You know, there's no migrations, and this is what I'm expecting and then once the database has actually been initialized, it will come up and say: oh yeah, migrations are up to date now, meaning in in terms of rails.

B

Their migrations are time stamped, so they know that this one is after this one in in an ordinal fashion, so they can actually distinctively say. Well, I'm now newer than that. When I we're good right the migrations, there follow the same pattern that you're, employing in the registry, which is there forward only so an older copy should safely be able to run right.

D

The registry binary already has a version comment. I believe the database migrate. That is a command which is version. It will tell you the production.

B

Okay, um that'll tell you what the current status is well.

D

Exactly so perhaps we could have a flag.

D

To return a non-zero status code, if the, if the current version is not the latest one, that means if there is a migration to be applied.

B

Right because the best I would be able to do.

B

C

uh Let's see pipe tail attack and.

F

um The migrate up command also has a dry run flag and that that output might be more machine friendly.

C

B

It would help if I ran the correct dollar sign question mark okay,.

F

D

No migration, so just anything.

F

You should get a.

D

Message either way: it's not saying anything. Can you just check the help message to make sure that that's the correct comment.

D

Try wrong yeah: it is okay.

D

Yeah, that's great. I was just expecting to see a message, uh nothing to go away or something like this.

B

Okay, well, a zero return is decent.

B

I'm not sure I love just going. Did I get any output or not from from putting the sre hat on for a minute like if I try to run this to dry, run, okay, well, output of blank and return code of zero tells me everything's fine,.

F

Yeah I mean we, the exit error code. um Flag makes a lot of sense, but I think we can either put it on the status command or we can put it on the dry run or they up command. Withdraw um it just depends on like what kind of output you want. If you want something, because I think the status command is more like a humorous looking at this, and it's not really designed to be machine parsed.

F

So that's kind of where I'm going with that. Okay.

B

So from an administrator's perspective, going hey tell me the status of the database. Migrations means something under my grade status.

B

If I'm sending it a special flag like exit code, then that's when I would expect to zero or a one, and then I, if I don't get that, then I can inspect the individual output without the exit code kind of like grep dash q.

G

We might also want a specific exit code for migrations not being up to date and not, for example, just it can't connect to the database, so it returns a one. We fail on that. You.

B

Have a therapist: this might not matter.

G

So maybe like an exit code of two for migrations not being up to date, an exclude of one for something aired like a connection.

B

Because you probably return one now in the event that you try to run status and can't talk to the database yeah.

A

F

um You know if I could just be um and then migrations exit code right and you can choose your own adventure. There.

B

I was hoping I could just like be nasty and just rip the password out and see what happens.

B

C

B

So yeah functionally speaking, if we could no matter which command it is just be able to know quickly, programmatically without having to do the the dance that we have to do over here. That would be great.

G

Or if it's, uh if these commands return, json, for example, we could jq for an exit code of for a certain message. You know, if we're not sure about exit codes, we could check for a certain error code string.

D

Would it be okay to just return something like okay, not okay? That's.

B

Okay, now, okay, we'll be fine.

D

But under a specific flag, uh if it is okay, aggression wise, if not okay, then there are some migrations to be applied, and in that way we can distinguish between. We don't have to mess with the exit uh codes um and we won't run in any fun issues, for example connected a lot of ways, and then we really don't know if that's a problem with the connection or if the database is updated or not. So I think if you were to return just uh not okay,.

B

That works yeah, because then you would have a zero for a success and then the content report would be telling you whether or not it was or was not.

C

B

And you'd have a one in the event of an actual failure to speak to the database or drop connection or password invalid or whatever.

D

Okay, and that would be better to be a separate command which only outputs that single line right instead of adding something to the status command like another line. At the end, because from where I understand the the the problem is looking at this output and try to figure it out. If there are any lines without the opponent right.

B

Right um so let's say that I wanted to do this right now. If I do this command up here,.

B

This is what I get back and then my detection is whether or not there's anything in the field after this, so it would be tail two head one. This is the cheater method. I could probably do something better in awk and then cut the limiter.

A

C

B

Right, there's effectively what I get so, if I do date equals.

B

I can type today just telling you.

B

Right basically, this is what I end up doing is read the entire output in and I don't know how long it's going to be or how many characters or what's going on, and I'm assuming you never change anything about this output right as long as that always stays correct, so that you're always outputting.

B

The second field has nothing in it ever and that's what means this is not up. Then I'll know. This particular container knows that there's something to still be done.

B

You see the number of, like ifs and ifs and nevers that happen there. That's that's where my concern comes in okay,.

D

Yeah, it's fine. We can add something we'll we'll figure out uh and then on the mr for youtube center.

F

Yeah, I'm wondering if you guys could open up an issue like think about like what's your ideal command? What's your ideal output and open an issue on the registry because I think that's yeah, the only snag I can see is is post deployment migrations, but that's relatively.

B

Small, that will be something we have to care about, though, so that would be running the same thing, but with.

D

Yeah they always run by defaults. We can see you can skip them by using the s flag.

B

But I don't have a way to do that when I check the status.

F

B

F

C

Status was just.

F

Wasn't intended for machine reading so, but we can change it, but that's where that kind of gets to be. It wasn't designed for that sort of territory.

D

F

Have a separate.

D

Check for post deployment migration, so whatever that command is, uh if you pass the s-flag, for example, it will give you: okay, not okay, considering post-deployment migrations, if you, if you don't use the s-flag, it will just tell you, okay, depending on the regular.

B

Migration d- oh not od,.

B

It's days like this because that's that's, the thing is like: if I do a dry run, what does the program actually do like? How many cycles am I wasting? Is it trying to touch the database in any way or just what does dry run actually do.

D

It will check the database status and check at the migrations that the binary knows about, and then it will match one against the other and show you the ones that are pending to be applied.

C

A

B

Maybe we can make this function, it's not great, but maybe we can make this function at least for now.

B

Mitch, what's running through my head is: if we can do up dash d and then there's we have obviously have to see what the up is. um When we do po pre and post as we would with the operator, you would run it when you're operating in a mode that has pre and post. You would run it with the dash s to skip and then that status would be there. The only concern would be being certain that migrate up dry, run, respects that flag and only outputs those items that it would operate.

B

Should the skip post deployments be active.

B

So that's the only thing: I'd have to be sure about.

F

Looks like at the very end, there's just something hey: if we're not a dry run, go through and do what we talked about. Basically, so all of the skip skip post deployments. All that kind of stuff is, is included, driver rip, driver or.

C

B

In theory, at least mitch, what we can probably do is update what we just injected as a migration container right and instead have it do bring this.

B

Up where we have this doing uh migrate up, we would actually just have it do migrate.

B

uh Migrate up, dry run, skip post migrations, where post migrations would be a basically a flag.

G

We'll put migrate up in the common migrations job.

B

A

B

Do that because otherwise, the way it effectively gets handled is if people are doing manual migration handling, is they pop into the task runner container and then run database migrate or that scripts db migrate, which, as soon as they like, let's say they have 40 pods already operational and they run they can run db migrate and run just the pre-migrations and then run db migrate and then runs the post migrations.

B

So we would have them do the same thing and it would be like registry db migrate and then they could run all the migrations or pre-migrations and then post migrations.

B

Because then, we would just have to make sure we check the state the dependencies container.

B

um Does that make sense.

A

C

Okay, so my question.

B

To you, then, is if it makes sense to package the registry and all of its configuration into the task. Runner noting the task runner already has all of the object, storage bits prepared.

B

So that we'd be able to effectively do what I'm doing now just come in and connect and show that everything is online and then on scripts db migrate, except we would of course, be doing registry dp, migrate.

B

Does that command doesn't require the service to be operational at all, effectively is like a secondary command outside of serve and everything else correct. It would need to have the configuration file to match and it would need to have oh boy, we're going to relocate properties like crazy. If we do that.

C

B

We would have to populate the configuration contents and the secret content, so just let her.

C

C

G

What do you mean by the relocating properties.

B

Well, for example, the registry database right now is literally under registry database, but for the task runner to know about the registry, because it's not get lab registry or global registry configuration it's it's a top level in the registry chart and the task runner is inside of the the git lab subchart.

B

So it doesn't know anything about the registry other than the host name for the registry.

G

Just thinking out loud, would it make sense to have a registry migrations job and tell it to wait until it's done until the registry chart deploys, so that the greater gitlab chart doesn't have to be aware of the registry chart's properties?

G

Does that make sense.

B

I do generally agree.

B

That would then basically tell people to just shell into the registry container.

B

I don't 100 love it, but it could work.

G

Yeah because you're right otherwise we'll have to start cross pollinating those properties.

G

Yeah, unless there's a registry task runner pod too,.

G

G

Does registry have to be top level.

B

No, it doesn't have to be top level, um it.

G

Could go into a git lab.

B

I mean at this point most definitely it could one of the reasons it was originally top level is. We were using the upstream division, but now we're not so we could relocate it and say 14.

G

Yeah then there's not that cross-pollination issue you just put it under global or underground. I mean.

B

Well, the task runner still wouldn't directly have map to it, so we would still have some issues. The registry configuration would end up being global. At that point,.

A

B

The only way, oh, I hate this idea. The only way to make the task runner actually know about everything would be to actually have the task runner rendered by the base.

B

B

um It's property.

A

B

uh Joao and haley is basically because the task runner is get lab, dot, gitlab tasker, test runner. It doesn't know about the things above itself, so it doesn't actually know anything about git lab, let alone dot registry, because.

A

B

Entirely in a different.

B

B

Okay, so for now it seems like we'd actually just need a registry migrations job.

B

Like a separate one,.

G

And shell into the registry containers for any manual commands for now.

B

Yeah, at least for now, in the way things are designed, I don't love it obviously, but that's probably our best bet. At least that gets us functional. That gets us operational with our own sre teams, and it gets us to the point where we can do the further continuous development on this.

B

It's the most direct path, even if it's far from what I deem ideal, whether it's ideal or not,.

G

Yeah, that can be the first draft and then second draft is putting the registry chart under the get lab chart, because really it is the get lab registry. At this point.

G

And they can share values.

B

To some degree, but I think we can discuss that one in the future um when it comes to pre and post migrations.

B

That's the question that I then have for the two of you joanne haley is: are we expecting to do pre and post migrations in gitlab.com production.

D

B

Okay, so we need to start with that thought mitch.

B

Is that we'll have the job which will deploy only if migrations are directly enabled, and there still has to be some kind of means for our sres to actually go in and manually run them, which is semi-problematic, as we saw earlier. If you can't get the pod to start because it's expecting a service, it's really hard to run a command in it.

G

Is this where we'd have another like post migrations job? That would wait until all the other resources are created and then kick off post migrations.

B

Well, pre and post migrations: don't work from the manual step without having the operator, um so that's the only place. There's actually function right now. Unless you you go in and manually run the db scripts.

B

So, like I'm I'm in here and if.

B

I come in here and that's where I would handle the uh I'm, not even the right script.

B

We actually have a specific thing that will actually trigger whether it's doing pre or post, whereas it's a little bit different when you're doing it from other jobs.

B

So I don't know that we'll be able to make a pre and post job. We can explore that, but we may be overstepping.

B

But we'll have to take that one into account.

G

Just think about those post install helm, hooks.

B

Well, the problem is, we, don't just need post we'll have to play with that long story of history of fun of hell which don't work in openshift, so we still have to figure it out. From that perspective, anyways.

C

A

B

Let's, let's go back to the the issue: real quick and go through the expected outcomes to which ones we can resolve right now.

B

So the first point is regarding the container itself and any additional dependencies that are needed for compiler function. There's no visible additional needs for compilation.

B

Because it's apparently working right now, I don't know what else to tell you runtime dependencies for the application to properties properly start, and that is a functional and seeded database.

B

So what we need to do is that dependencies, init container and doing the scripting that we need to do to figure out the current state which I've closed it out, but we've we've seen essentially is read the status output and see if the last line happens to be blank in the second field.

D

Yeah, regarding that have a look at the the message that I just posted here in the chats. So I think we could do something like this on the version comment just that just having an up-to-date flag, and if that is passed, we just return. Okay, not okay, depending if there are migrations to be applied or not, and we can also filter out post deployment so that the job can check them separately so check if the pre-migrations are up to date, check if both are up to date or check.

D

If the the post deployment migrations are up to date, will that work, or at least make your life easier.

B

So the first one that I'm seeing here that yes, this would simplify things first, yes, um because command pipe to tail pipe to head pipe to cut yeah. It's.

D

B

But it's not ideal by far yeah, um so the first, the first one you have here, would just check all of them pre or post yeah, and then the second one would check only effectively free.

D

D

Would you need something to check just the post ones.

B

uh Not necessarily uh because, if we're at the point, where we're checking post and there are migrations to be run, it's.

D

Only post yeah, that's it can only be post migrations, okay,.

B

Should only be post migrations, um the only other thing would be some sort of indicator on every migration that told us whether it was whether it was a pre or a post, um and that would be a matter of the joy of figuring it out from an output. I mean your program knows whether the prayer boasts. The output doesn't really tell me.

D

Okay, yeah, we can. We can add this at least.

B

Starting with something that gives us less that we have to do, that's that's good enough, um because we can work with that. That's a very, very simple shell script that we don't even have to write a shell script for because we can just pass it as one command right, because you know what we would do is we would run this command and then, if it was successful, check its output and if it's output was n.

B

Okay, then our shell script would exit 2., whereas if it failed to run it would terminate the shell, which would then result in us exiting 1.. So if it's all good and exit 0 and the init containers move down to the next one, if it's a failure of the database, it will exit one and we'll know as a failure with the migration status.

B

We'll know what's going on there and we can just go back into the loop traditionally. What we do is check it sleep for a second or two check it again, just in case they're, actively running right, because it's cheaper for most pods.

B

It's cheaper to wait and just check it a couple of times and then die then to die and cause a complete restart.

D

Okay, okay, we can do this.

B

So I wasn't sure if anybody was picking up the random person revving the engine outside- oh well, that's that's good to know that less is coming through the mic today.

C

Mentioned as well, I hear.

F

E

Lower than I thought it would be, it's.

F

Like a bigger thicker displacement engine, I thought it would be.

B

I mean I could turn up the gain on the mic and you'd probably hear it more, but I might gain turn to like two of 20.

B

Yeah, the junction to out of town is right there across the field, and people like to gun.

F

It yeah we have like a big street race bust near me. It's crazy.

B

Okay, so at this point I'm going to hit stop share. I think we have most of our points to walk through I'm going to walk through the expected outcomes and go with what I can off of this, and this this will feed us into what we need to actually get done in terms of the methodology.

B

For now we're going to put off any alterations to the task runner because as mitch- and I pointed out this just this- it's too broad and sweeping to make that change. At this point, the chart is going to be the significant portion of things that need to get done. I don't see anything inside the container itself. That needs an alteration.

B

um We may actually do is put that db migrate, script, the the wait for depths and db migrate type of check. We may put matching scripts that we have into the container itself so that we can use the exact same container and just run scripts.

B

You know wait for depths and it will wait for we can do whatever scripting we want and it will be bound to the version of the registry that is actually inside and running as opposed to the literally injecting it through a config map.

B

um The config map injection is the cheater way of making sure that we can get something into it without actually having to rebuild the container.

B

It works, but if you know how to do it, the right way to push put it in container and save yourself time.

B

The chart wise niche- that's the only thing that we're going to have to fuss with the gitlab registry chart will have to possibly add a job item to postgres, somehow or we'll have to know from the top level that postgres needs another job.

B

Because we have to figure out the database, basically that's the problem.

B

So that chart you.

G

Mean to automatically create.

E

B

Yes, the the pieces.

G

Do the same for prefect.

B

We really really should yeah.

C

B

So drow and haley, I appreciate your time I believe mitch does too. I can speak for him in this regard to walk us through and help us figure out what was going on and what we can go for.

B

Having you on hand versus us trying to read through the docs probably saved us over an hour, and we definitely appreciate that from here. I think mitch and I can take it we'll put the entry into the issue we'll make sure that you get followed up and we will begin the work that we can manage from there um mitch.

B

You- and I have a follow-up item to put on through the registry, which is to put a description in for joao on having that migration status behavior so that we can quickly do it versus having to do the pipe jank as I'll refer to it.

B

So I is there anything else that the two of you need from us before we proceed.

D

Yeah, I think we're in a good position to start working on this.

B

Okay, awesome thanks for your time mitch. Please stick around.

G

Sure, thank you both.

B

So now, let's, let's figure out the hardest problem on it. If we can automate the creation of the registry user and how we do that, um so I'm going to pull the registry values out of the way I don't need its helper file. Actually, I don't really don't need that or that or that or that or that.

C

Okay, so I need to go to.

G

I'm going to share too.

B

Here we are yeah you're.

C

Right, just one: okay, yeah share.

B

And then, let's make sure I don't put any chrome windows over here.

B

So in here we have postgresql username gitlab.

B

We have it set, I don't know that actually does a whole lot. What we do here is, we add, an extra custom and knit scripts extra volumes. Custom.

A

Edit scripts, this is where it goes.

G

Oh yeah that chart automatically creates users if you pass them in.

B

Trevor, what we deal.

B

C

C

A

Where did this come.

A

From this came from our.

E

B

So this might be something that's actually fairly easy for us to get to.

C

C

B

This is where we go and create the extensions if they're not ready as a part of our own system,.

C

C

G

Yeah, I think that postgres chart has an init script both baked in that will automatically create the username and database that you hand to it.

B

Yeah I'm wondering if there's a way to create not.

G

C

Stop share for a second.

G

Here's their chart, github.

B

I'm just looking on artifact hub versus github that silly.

B

B

Really, we just need to figure out how to get it to create an extra.

B

B

G

You can pass in a dictionary of init db scripts.

B

Yeah, I'm trying to see an example of what that actually.

B

G

In order to execute the scripts, they must be located inside the chart. Folder files, slash docker entry point, init, db.d.

B

Right, which is where we put the init revision.sh, that we make.

G

So I guess we can just put shell or sql scripts in there and it'll execute them.

A

Let's check that.

C

A

C

B

That chrome window out of the way.

A

Share the screen again.

B

Okay, so when I say, let's.

C

B

Means, let's go, stick our nose in a container.

G

I think it shared, I don't see anything.

C

Oh, what the heck share that.

C

C

B

There's pre-init db and then there's init.

B

B

So I think we would end up just adding something else in here. That would then do that.

E

B

G

Yeah, it's not documented at least not on this page, but.

B

So we are actually in init db and not pre and it to be.

A

Looks like it put it. Oh.

B

No, I see, I see what happened is we ended up having init revision specifically placed into pre and db, but it's mounting the entirety of the secret. There.

B

Oh we're we're overwriting, that's why so you see this in the db scripts config map.

G

B

Right, it's bogus because we're actually overriding that so there is a.

B

B

Okay, we're going to check helpers because it's where it belongs.

G

Template slash init db config map also template slash helpers, yeah.

B

Yeah, the initially config map is this, and then we have the postgresql and it to be script cm. We actually override that template and then insert our init db scripts.

B

So we need to find this guy.

G

Right above it's just yeah, it's getting config map name.

B

Yeah and then, which.

G

Is that I guess.

B

Yeah you basically, we inject a config map name and then this is our config map.

G

So we could add one here for prefect too.

C

B

So somewhat we still don't have their secrets mounted.

G

Yeah to tell it the password.

C

B

So then, what we actually need to do is here comes the flicker off those deflector, so this consumes container.

B

C

B

And let's say we're looking at.

A

12 scripts.

A

A

C

C

B

Up custom edit scripts.

B

So we have postgresql custom, pre-emit, scripts and custom net scripts and we are jacking into.

B

G

Scripts yeah, our mountain path is pretty in it.

C

E

C

C

B

B

Configmap is not what we need to mess with.

C

C

Okay, stateful set.

C

C

Okay, if we provide.

B

A postgresql config do that extended config. Do that password custom edit scripts, so we can pass secrets in.

B

Sort of that's actually a problem because that's literally just a block secret.

B

A

G

E

B

Yeah, that's pretty much.

B

It you either have it as a config map or as a secret.

B

So, according to their.

C

C

Secret with the need to be scripts that.

B

Contain sensitive information can be used with.

C

Config map or init db scripts value is.

B

Evaluated as a.

B

B

Okay, so we'll go up to their.

C

Helpers init db script.

B

B

Oh, I just love tpl.

A

C

A

G

Say what can we do with this? If anything, so we would need the shared secrets job to create a secret that has multiple.

G

Users to find in their right and then I guess it's smart enough to read.

E

B

So this is where the the drink starts to come to play right, and then I mean we're looking this from the perspective of both prey effect and registry, because.

C

B

Values in it to be secret, printf.

C

B

But the staple set itself literally is secret name.

G

Now do we necessarily have to do this within the postgres chart? Couldn't we have our own job or in it container, just go create users with a connection to postgres just execute a sql.

B

B

So the only trick is that, like task runner doesn't have the postgres user password, it doesn't get it because it doesn't need it needs a super user um and I don't think gitlab has the ability to create in in our chart on our postgres. I don't believe that it has the ability to do that, but let's find.

B

B

Yeah, so we need it to be operated on the postgres. Like that's half the problem with.

B

Perfect is that you have to pop in pop into the database and go create the thing and then right um and truth be told you would run into this problem. If you were using external databases, you have to go, create these users ahead of time.

G

Yeah we're basically just making it a nice city.

C

G

I see an issue where they suggested this and it got closed.

G

You can send the issue link.

B

In their container.

G

uh I guess it's on their chart.

B

Oh, that's p, um postgresqlh.

G

G

G

Yeah they just point to their inner db.

G

Alternative, so we just need a way to get the secrets in there.

G

So we just need a secret with multiple users passwords in it.

C

G

And then have a bash script that creates them using the secrets from those.

G

G

Maybe we can just use extra volumes.

B

That would get us that at least for the init db, um so this is something we can technically manage to do.

B

E

B

That are saying like I want to be able to update the passwords on users uh by just changing the config and letting it bounce.

B

That's not my immediate concern, because technically the init db should be what's needed. So, let's finish walking through the process of what actually happens um in my route, ensure the user exists. um You know create the that for the daemon, my route change, my read, write pre-init pre-initialization scripts. What does this do and then initialize and then custom and net scripts allow running custom, initialization scripts, so at least in theory, um we'll have to find out exactly when this fires and when this fires it looks like a net fires after the database is up.

B

Considering that enable extensions happens.

C

B

Db we have pg password to do yeah, we're basically running a command here that goes and enable extensions. um So, theoretically we can do the exact same thing.

B

There is a hiccup.

A

C

The way this is configured we go.

B

Back to values, we say, use password file, true, and then we do existing secret bogus. The reason we do. This is the same thing we override this secret, so we go to our templates and we go to postgresql.

B

Postgresql secret name: we turn around and call hours which turns around and pulls the postgresql password. There's one secret right so effectively what we would need to do.

B

B

Lots a lot I need to clean this.

E

B

Come on cannabis.

C

Come on hello here we go.

B

All right, so, if we go in here, we have postgresql password, postgresql postgres, password right.

B

We would effectively have to have more of these one for everybody and then we would deal with like whose naming is what and recreate the database if we just create the extra database as the user.

C

C

Let me copy this see paste.

C

B

And then we of course have to have the postgres password.

B

So that we're using the same username and password- and we just created the extra databases that could do it.

B

Right, that's where we could have. You know like registry registry.database.name,.

B

Can you do create database that don't.

E

B

See if that gives me anything better.

B

Looking for postgres docs, looking at 11.

G

Nope, this will have to be 12 right.

B

Right but prefect doesn't require 12.. Oh.

G

You're, just thinking again from a.

B

More perspective of will this work for more than one thing right now. That's all.

B

Like, instead of enable extensions, we said, you know, create additional db.

B

B

Now the init db should, in theory only fire. If there's no data on the disk.

B

There is no way to do if not exist or anything like that on the database effectively. What you have to do is, if you want to make sure it doesn't exist, you go hey. Does this database exist.

G

Yeah this one says: drop database. It exists and then create database.

G

This is the workaround.

B

Create database, if not exist, the workaround is drop database and then create.

A

G

B

Care about data- that is that's not no, that's, not a workaround. That's a it's! Only dev.

G

It's weird that other things can work with if exists, if not exists, but not this one.

G

But yeah, I guess, try to select the database and if you can't then create one not pretty.

A

B

Now, what we need to go double check are the names of these.

B

Values to make sure they're the right ones in the container they renamed them once in the past, and we're like. Oh.

C

Yeah, this is fun.

B

There you are I'm like too many windows, okay,.

C

D

E

C

B

Oh look: they're packaging.

B

C

C

C

B

Let's figure out where.

B

B

B

Postgres password postgres postgres password.

G

What's the difference there.

B

So this is the postgresql postgres password is the actual postgres user, password aka the super user password, and then this is the postgresql user password. So there's a postgresql.

B

Press user name user username, that's the one that the the postgres password goes to postgres username, but postgres post, yes, post address postgres password post to postgres, postgres, username, postgres,.

G

So postgres username is gitlab. Is that right? Yes, so it's the user supplied one that will get generated. Okay,.

B

C

B

E here and we go running down the environment.

B

You'll see postgres user is get lab.

B

And then we say that.

C

B

File is here and then it loads those contents from there cool.

G

B

So you can see your postgres postgres, that's where we yeah. I know.

B

That's where it looks.

G

Gaming is hard.

B

The postgresql environment variable to pull out the username postgres passwords file. Contents, that's where that is cool. That's not confusing at all.

B

See that's how we override right.

C

C

Okay, so closing this.

B

Back over here, getting the zoom toolbar out of the way when it stops moving.

A

Around back into postgres.

C

And we come to staple set again.

B

We go up into the.

A

End this version.

C

B

That's all that's metrics there. You go extra volume ounces here, so what we would do is use extra volume mounts and have it mount the secret.

B

um This does not render us a template, though, so our secrets then are statically named, which is problematic.

G

Like we can't include the release name in them,.

A

G

Yeah so we'd have to make it a template.

B

Which we can't do.

A

Yeah because it's too many.

B

So like we can't just inject extra.

B

We can't just inject extra secrets separately. We actually have to add them to the existing secret.

G

Which is not a big deal, I guess.

A

B

Environment variables from.

A

B

Map they do not have a methodology.

B

From loading extra environment variables from any secrets which is okay, so we then have to look at the only thing we have available to us, which is inside the volume mounts.

B

So these passwords are here so we're looking for postgres ql password volume within the volumes.

A

B

Password it just blatantly maps the entire secret, so the plus side is you can mount secret, but you have to have all the passwords present.

A

B

So we can probably figure something out in here where we would.

B

You can feel it feel free to interject at any.

B

G

Yeah, I guess we'd have to have that one secret and have keys for each user. We want to create and and then in this loop, just lock them all behind if blocked like, if prefect enabled create the user, if registered database enabled create the user and do the same thing in the shared secrets when you're creating that postgresql password secret, I guess about to do new lines or something and condition those new lines on.

G

If prefect, enabled in an f registry database enabled.

G

This would just be a quality of life improvement, though right, like today, we have to manually, create the prefect database, so yeah.

B

um And the thing is, nobody would get it from upgrade. Remember that nobody would get it from upgrade.

B

They would get it on a major upgrade when you go from 11 to 12, but they would not get it on an upgrade of just the chart if they've already installed, and they want to turn this on. They have to go manually, create either the user and the database or just the database and use the same. That kind of thing.

G

True because it's a one one shot deal.

B

So the question becomes: should we have more databases under the gitlab user.

G

As opposed to more databases under separate users,.

A

G

Yeah, it's just a separation of duties thing. I guess right mostly semantics, partially security.

C

We still need to fix.

C

A

C

D

C

C

B

Okay, let's go figure out where this is.

G

G

The search bar and vs code is pretty helpful, too left hand, side.

B

Oh, it's in a root.

E

E

B

Okay, so that's where we actually set the default.

B

And because these are root templates in theory, we can add them into the db.

A

C

So so we could do create.

C

B

And then do this for that.

B

We would obviously have to change which file we pull yeah.

C

We would have.

B

Static names because we know where we're mounting what the name of that password is. But then so we'll have to update shared secrets to generate the passwords, and it should, in theory, generate the passwords one way or another.

B

E

B

This script will fail until you populate the extra value.

G

I was just thinking since we're in a template. Right now we can just conditionally include createprefect.shiftprefect.

G

C

B

A way so we were just looking at it in the stateful.

B

Set the extra end from cm.

B

And from configmapref that will allow us to populate more values, so we could.

B

No, that's not great.

G

But that config map is ours right, so we can just write in there. If.Values.Prefect.Enabled.

B

Oh this one here yeah, we can do that. I was more thinking like what will the password key possibly be, and the good news is. We technically already know that.

B

So the postgres postgres password at the file always currently ends up.

C

A

Postgresql password.

B

Volumes so where does that get mounted.

C

The right one, that's the right one.

B

It it ends up in here, so we know where that path always ends up. So we would.

B

Do there's a shell function for that camera, the name of it um where you you get the path off of the name, so we would do the same thing. We would select the path off of the postgres password file, yank, that off and then populate that value, plus the name of the key for the prefect.

G

Secret password, you thinking a base name.

B

It would normally be p sql password secret key.

B

But in this particular case we would populate this because, whatever that value is is whatever the value is, it is in the file system.

A

B

Theory we can do.

A

B

It's mildly annoying because then the registries controller templates for password and etc end up here instead of up there, but I don't think we really have another option. The good news is that actually.

A

It gives us the.

B

Ability yuck gives us the ability to set that value here.

B

We don't have to try and relocate anything in the test, runner or its properties or the registry to a different location.

B

That allows us to address it somewhat.

A

It's not perfect, but it'll work.

B

All right, so that's that's somewhat explored. We can use init db config map because of the order of operations involved to create additional users.

B

We can't use that to update users and we can't use that to create databases just because there's nothing. We can do about.

B

B

But it would make initial setup and testing for those people doing so much easier.

G

It's true it's at least a one-time thing either way, but would definitely be good to have since the rest of it's automated.

E

B

And what I would probably do is have it create them. Anyways, like have shared secrets, generate the passwords one way or another so that when it came on it'll happen, the way shared secrets works, it checks. If the secret already exists, it doesn't actually check if the key exists in the secret and it wouldn't hurt to.

G

Have extra keys yeah, it wouldn't hurt to have the extra keys, even if they're not being.

G

B

Okay, so just out of curiosity, what is prefix default.

B

Literally named secret.

A

B

Okay, so we we could, in theory, is the point make what we need to do happen.

C

B

B

B

So what you're saying.

G

G

Yeah, do we do we take that script name and mount it specifically somewhere, because if we do, we'd also want to block that.

B

In yeah this one, this one doesn't because we're overriding the init db. The init revision is only there for the sake of the pre-init db, and that's the one that we add the extra volume out for.

G

Cool yep, so this way that script would never get loaded into that snap in directory would never execute.

F

B

And yes, in this particular case, I am quite intentionally leaving blank lines.

B

So what we would end up needing to do is load as that one go and connect to that database and then create the other database. So.

C

B

B

Actually, I wouldn't even use that I would just template it right in wouldn't.

G

G

Yep and then we'll have to create the role as well and set the.

B

Password, okay, um I was thinking something sideways, so we'll actually want this.

C

B

Because we'll need to use the appropriate username.

B

B

Yep, we would do this and we would create the user and then set the password and then create database as that user or technically we could be sanerer than that.

B

And then we can do it as postgres to create the user and then create the database and then alter the database owned by the user. Actually, we can just do owner.

G

Yep, just unfortunately, we'll still need those secrets mounted to set the password, but we do everything else says: root.

G

Oh create database with user yeah.

C

E

C

G

Create role, I think, with login great role, role, name with login.

F

C

And then what do.

B

We need it to do because then we can just create the database for it and let go.

B

Because that's all we need, isn't it.

G

We have set the password for that role.

B

Yeah you're right right, like I'm sitting there going wait, how is there not a password.

G

B

E

G

C

B

With where option can be any of these things,.

E

B

With login, so in theory, you can do with password or password null.

B

Password set the roles password, it's only useful as having a logon attribute, but you can, unless define one for roles without it specifying empty string.

A

Will set the password null, but that is not the case before post score is 10.

B

The encrypted keyword has no effect, but is accepted for backwards compatibility.

C

G

Interesting, there's a create user command line tool with just normal flags.

C

A

G

This is old, though, let me go to 12.

G

I can send you this, I don't know if it's necessarily any easier but might read more nicely.

G

Assuming these commands are in that container.

B

Well, we also have to consider the that these need to exist at 11.

G

Oh yeah, I should have clicked 11.

A

So create user.

B

Okay, so let's see if they are in that container.

C

C

C

B

Export it yeah- let's not drive ourselves nuts, so we can skip this because we're.

A

Going to create it.

C

And then we can do this out of the way create user?

C

C

E

C

B

Oh, it doesn't need to create new roles, never.

C

Mind doesn't need super.

G

G

I'm not sure if the password flag is interactive is non-interactive.

G

It seems to be a.

G

B

Preschool diet invalid argument. Try help help. I don't know who you are go away.

B

Definitely fun um so it doesn't need to create roles.

B

It doesn't create super users.

B

We do this way, it's not a super user, it doesn't need roles and it doesn't need databases.

B

Pw prompt assign a password to new role.

B

Yeah, you know what I think I kind of like the other one.

G

Yeah, I think it's only interactive. um I just put in chat you. Can you can just yeah exactly what you said: create user password type it in that's, probably better.

C

C

B

Now, that's the only question is: how do we get the environment variable in.

B

G

You see yeah, because you're gonna have to cat it out.

B

Right now, how do I get it into the query.

G

Yeah, I guess uh pg password's gonna have to be cat. The.

B

B

There we're running it from shell, so I'll just interpolate.

A

B

So, there's that in theory that should.

B

B

B

Straightforward.

E

G

I moved over to my desk and I think I lost your screen share.

B

Oh, I turned my screen chair off when you got disconnected.

G

G

Yeah seems like that would work just throw in the secret and.

G

Create role with login password create database.

C

G

That should do it.

B

So I'm going to copy and paste this for perfect. You know I'm going to take prefect out for now.

B

B

B

Offs all those templates aren't going to render because they don't exist yet.

C

C

Right, okay, so.

B

I'm going to grab.

C

C

A

C

Smell that up, yeah.

B

I'm not even in the right tree go to the right tree, jason.

B

Because that's what they actually have in their config.

C

G

Won't be under global, though, will it.

B

No I'm going to take the global out in a second okay.

B

I need that one there, this one's going.

B

B

And my secret is no longer that it's the same.

B

B

What do we call that.

B

C

B

That's it right. There.

C

So we get that from.

B

I know what's in front of me and I'm just missing it there. We.

B

C

A

C

B

That should cover everything we need.

B

A

Bring those into alignment come over here.

B

Did I like make them insanely hard to read p sequel, password key okay.

G

I think there's one more global registry. At the end, there.

E

B

This user password secret.

C

C

Here and then we do does that spit that out quoted yes, it does.

C

Don't like quoting the thing yeah.

A

Technically, it should work.

G

I would think so yeah.

C

C

User database password t database.

C

Yep, this database gets the tv name and user gets database.

C

C

B

B

I remember to save the file.

B

Don't, oh because I don't actually have that specified in the registry zone, values.

G

File you'd think that would trigger the default, but.

G

B

Oh because I have these in this gitlab registry instead of registry.

B

B

Yep that one's gotta get loud in front of.

A

It so we're just gonna go like this. The.

C

G

Paste since registry is top level.

A

Would we want it to.

G

Have gitlab before it.

B

For now, I'm just going to put them in there. This.

G

B

Not perfect, it's not supposed to be perfect. We're proving.

G

Things out just curious.

B

Since it's not normally top level, we wouldn't- um we do already have several in there that are.

A

Okay, so let's see here, uh post grabsql.

A

Templates, no, no! No!

A

B

B

Put the door name off of that export, pg password and then export use your password. I guess I don't actually need to export. I can just do it that way and it would.

C

A

A

G

G

You don't need a semicolon at the very end of that change command. Do you so just to split up commands.

C

B

It's exploded command. I do need this, though I need to continue the string to a new line or it's gonna get.

B

B

B

G

Did we create the secret insured secrets, update the postgres secret.

G

B

E

Down cheat just copy paste.

B

We'll have to put that into the behaviors and all this stuff.

G

Where does that come from in the first.

G

E

E

B

This is something that happened at like nine or ten. They, this happened in their container and they started going, and if you had something with underscore file in it, they would go through and export the content of the file that you requested and then gank the original by unsetting. It.

B

So we have that we have this in place in the event that we're not in that version. That now has the read the file in and then unset the original.

G

A very interesting pattern.

B

It's not wrong! It's just like. Oh that's right! That's not going to exist.

C

B

I almost forgot the good news is we know that this path is always where it's going to be.

G

Until it's not.

C

So basically I go like this.

B

Take the cord off at that end of it one off of.

C

C

G

A

First, try.

G

The owners get lab on these, I guess create with owner, didn't do what we wanted it to, or the registry container is still logging in with the gitlab user and not the registry user.

G

It's going to be gitlab.registry right.

G

If you're talking, I can't hear you still need it.

B

This here will actually need slightly readjusted, because this is the secret generator. So if we go to the helpers.

C

C

B

There we go, I didn't need to alter that one. I need to alter this one.

G

Is that the key we're expecting.

G

Yeah uh below database underscore password, oh key path: okay,.

E

C

B

Because one's at the upper level and one's the lower level.

B

So what we have here is actually not.

B

B

B

Because I have it in the values file.

G

B

Go back to the config map and I don't need the default at all, and I just do.

E

B

B

Nothing like consistency.

G

Are you going to have to recreate the database, though,.

G

Since now, there's a the table already exists with the wrong owner.

C

B

No it'll just connect with the other user, we'll find out. It's.

G

Going to try to connect as the registry user, yeah.

B

Registry database user and help because you can't do that.

E

A

E

G

uh Use username yeah.

B

We should really make that username.

B

Really, I don't even need that, because it'll always be there.

B

Come back to it later cleaned it up, my head hurts already where.

E

B

I can't use this.

B

Because that'll blow up in the same fashion, because again it's not.

B

B

I'm just going to set the base.

B

This is why you don't try and do this all in one shot, while your head's still brained.

A

Open editors and ftd you.

C

Became user name.

C

E

E

B

So is it initializing or what.

G

Is it stuck on a secret.

B

Did I get the password name.

B

Wrong! It's right. There.

G

You complain about dash secret or dash password.

G

I can't remember.

C

Oops, that's not.

B

G

Wanted that looks right.

C

ah Because it's somehow double quoted.

C

Oh because we quoted the quote, the quote:.

B

I really don't know why the secret name is quoted.

B

Did we cut and release four nine.

G

B

Because there's an issue here.

B

That's saying that taskrunner v 13.9.0 image is not available.

G

I see a 490 tag. Is that how I would check.

B

B

Okay, somebody's just.

B

E

B

So four nine stable exists.

E

B

That's great that you went here too.

C

G

It's not even telling you.

D

A

Containers registry.

B

Restart count waiting so that never happened. Migrations terminated with an error.

G

It's just not giving us logs, I mean if before it created that schema as the gitlab user, then the registry user wouldn't be able to.

G

Connect to that right, yeah permission denied.

B

B

Boom away, it goes.

B

B

B

And there's an issue raised at 1153 a bunch of four nine stable images, not.

B

B

From random chinese user.

C

B

Hn at chz 8494.

G

Must have checked out the repo and tried to deploy it.

B

Yeah, I have no doubt there are something on 4.9 and it's got tagged images now almost on this, but it's not actually released.

E

B

Themselves also, we haven't actually released 490 tarball.

B

Which makes me wonder if some of the fixes that were supposed to be in in this release were actually in.

A

Okay, so those are in now.

C

G

No manual intervention look at that.

G

Sweet you could do the same thing for prefect.

B

Oh, hopefully, with less pain in the head.

B

Because I really don't want to like move half of postgresql to global, just dopes or registry to global just for postgrad.

G

C

A

A

Can it stop share.

B

Okay, this recording is now like four and a half hours long. So I'm going to let that stop and we can go from here. We know we prove that we can't automate the database with actual without actually having to touch task. Runner task runner is needed in order to be able to have the registry commands operate inside of it. That's a no go for now, so we can make it and they can run the individual commands from one of the.

E

B

Containers not loving it, but it's better than absolutely nothing and it's the least impactful change right now.

C

B

Branch is an utter mess.

G

C

B

We'll go from this I'll, take what I have. I will make it into a proper branch and push it up and then immediately stop the pipelines, um and then we can play with it from there for the various components we use as a source tree and then destroy it when we're done.

G

Okay sounds good.

B

All right, I'm going to get over to maintainer dudes, it's the last hour of my day and hope fridays go fast. So thanks for hanging out double checking.

A

B

Worked and thinking through a couple things that didn't cross my mind.

G

Sure, anytime, see ya.