The nosetests command has some issues:

• it stumbles over the namespaced modules, and thus has a hard time taking a filename as an argument (it can't convert that filename to a module path)
• it doesn't necessarily import relengapi.app first, so it sometimes races with the population of the relengapi namespace.
  This can probably be fixed by a relengapi test command that takes the same args as nosetests, but sets up the environment correctly first.

https://nose.readthedocs.org/en/latest/doc_tests/test_addplugins/test_addplugins.html

The slavealloc UI and API should be moved to releng API.

It might make sense to move the allocator as well, although the design for
releng API was to not put mission-critical services directly on the API.
However, slavealloc clients are resilient to failure, so perhaps it isn't
mission-critical?

..and this causes failures.

======================================================================

ERROR: Failure: ImportError (cannot import name subcommands)

----------------------------------------------------------------------

Traceback (most recent call last):

File "/home/travis/virtualenv/python2.7.6/lib/python2.7/site-packages/nose/loader.py", line 411, in loadTestsFromName

addr.filename, addr.module)

File "/home/travis/virtualenv/python2.7.6/lib/python2.7/site-packages/nose/importer.py", line 47, in importFromPath

return self.importFromDir(dir_path, fqname)

File "/home/travis/virtualenv/python2.7.6/lib/python2.7/site-packages/nose/importer.py", line 94, in importFromDir

mod = load_module(part_fqname, fh, filename, desc)

File "/home/travis/build/petemoore/build-relengapi/docs/relengapi/blueprints/docs/__init__.py", line 6, in <module>

from relengapi import subcommands

ImportError: cannot import name subcommands

----------------------------------------------------------------------

There's a settings_example.py in the root directory now, but that's not
especially useful to users.

More useful would be something like

$ relengapi-setup .

which creates a settings.py with the basic required settings included, along
with comments.

@Callek said he'd take care of this in the next week or so.

Exactly how this is implemented depends on what we need. It's entirely possible to allow an HTTP request authenticated with a token to issue a new token (with the same or fewer actions). In that case, we'd want the ability to trace the tree of generated tokens in case, for example, a parent token had to be revoked.

Alternatively, we may want to be able to trace tokens back to the user who created them (perhaps indirectly).

Finally, we may just want some record of how the token was created, as a hint to deciphering its use.

Options:

1. Use to track "token tree" of tokens issued by tokens
2. Always trace back to a human
3. Just informational, so either an email or "token ###"

Within Mozilla, the best way to determine different permissions for different
people is to based decisions on LDAP group membership.

Blueprints should be able to open a DB connection only for a short segment of code, e.g.,

with g.db.connect('relengapi') as conn:
    conn.execute(..)

See djmitche@917f5c9#commitcomment-6389808

Releng API isn't meant to host big, cool web apps -- those should be on other hosts, and use oAuth to talk to the Releng API.

But we still need some amount of JS goodness to build some basic UIs for things like approving oAuth requests, issuing tokens, and so on. Those should all work in the same JS environment for consistency.

At the moment, despite my eagerness to try out AngularJS, that's limited to JQuery and the Altertify tool. Those limitations should be documented.

Travis should

• run tests
• verify packaging is catching all required files

A thought just occurred - we agreed that architecturally we would make sure no dependencies will get introduced on slave loan tool from relengapi, and that they would live in different directories and have their own python packages that don't contain any code crossover.

We can test this in the CI - we can either delete / move the slave loan tool subdirectory when building relengapi and vice versa - to make sure neither has a dependency on the other being present in the source tree. This gives us confidence that the split will be easier ready for relengapi 1.0.

I would even propose we fully remove one when we build/test the other - so we have two complete cycles in the travis setup - first delete slave loan tool, and build/test everything for relengapi, and then the other way around - restore slaveloan subdirectory, and completely ditch the relengapi base directory and other top level artifacts it contains, leaving just the slave loan subdirectory - and then do the full build/test cycle in that.

New Relic is disabled on the releng cluster at the moment, since it assumes Python-2.6.

That should be fixed, and minor modifications made to feed relevant data to NR.

When deploying relengapi components using the update script on relengwebadm, it should at least try to see if the schema is correct, and either fix the problem (run relengapi createdb) or fail with an explanation.

Recently after a deployment, we had problems, which could maybe have been caught at deploy phase: https://bugzilla.mozilla.org/show_bug.cgi?id=1019847#c6

Please also note that the createdb action was run to try to fix the problem, it reported no problems, but did not fix the problem (probably because it was a column rename rather than simply adding new schema objects such as tables).

I know we are planning to use a database migration tool, so until this is done, maybe a simple fail would be enough. Maybe we can run "relengapi createdb" against a "spare" schema, and then compare the two schema definitions (the spare vs actual schemas) and if there are differences, fail. This way we can drop and recreate the spare schema without losing data in the actual schema.

I'm putting this as a relengapi-1.0.0 feature, as I think this is pretty important, when we go live, to avoid bustage (as relengapi will very soon be a potentially tree-closing service, if it goes down - due to mozharness b2g_build.py reliance on mapper service).

At startup, relengapi prints the blueprints it is loading. That information should be presented via Python logging, instead.

Based on djmitche/mapper#3

Clobberer's UI should be in the releng API.

The buildslave interface should probably stay a separate service, so that
upgrades to relengapi aren't a high risk.

RelengAPI is deployed as versioned distributions, so the process looks something like this right now:

• bump the version number for the relevant distribution
• make an sdist tarball
• upload to releng pypi
• update requirements.txt on the admin host
• run ./update

We should automate some of that, at least, keeping in mind:

• upgrades of production code are risky
• incompatible API changes for consumers will be disruptive
• visibility of running versions for consumers is important

This is a leftover from #29.

It'd be helpful to have some really simple instructions for getting your own copy of relengapi running on your laptop.

• finish up skeleton and publicize in documentation

If you login and click your email address, you're linked to /userauth/account rather than the correct /auth/account.

It's sometimes useful to see all of the SQL queries that things issue in the logs.

SQLAlchemy supports this with an echo=True argument to engine construction. We don't want to turn this on all the time, though!

Need to disable this pylint test.

I have a feeling we'll hit needs for tz conversions often, so I feel we should monkeypatch datetime's module classes for all utc specific things, by default, to provide tzinfo in their return values.

We could also provide a helper to make no tz naive returns, (e.g. by using the tzlocal module and/or enforcing no tz-unaware calls)

@djmitche thoughts before I start to implement?

I think in the relengapi pep8 checks, these files aren't being checked, so I happened to spot this because of e.g. this failure in mapper:

https://travis-ci.org/petemoore/mapper/builds/26239093#L511

Here, it is running the pep8 checks against everything, and since we install build-relengapi using pip install -e it finds it.

I could get around this by checking out somewhere else - but I think it is good to have these files pep8 compliant anyway (and maybe we should have a separate issue to see why they are not checked in the relengapi pep8 tests - haven't looked into this yet).

Everything that awsmanager1 does could be done via relengapi. Among other things, that would avoid the desire to run automated SSH's to awsmanager1 so that it can use Amazon's HTTP API.

For slaveloan at least we'll need the ability to have something run periodically, (ala cron). This is primarily incase an older task fails we will want the ability to retry it.

Useful features could include:

• escalation in case of repeat failures
• One invocation-at-a-time (hard across multiple webheads)
• able to retrieve run-logs/status/return-code/value somehow --- especially if using celery tasks

@djmitche - Any thoughts as to implementation details, eta in terms of being able to achieve this, etc?

Erik Rose has a nice library called "blessings" that makes it easy to colorize output. Let's use that to beautify the console logging when developing.

Obviously this is minor and trivial :)

I learned about 'wrapt' at PyCon. It lets you build decorators that can work on instance methods, class methods, static methods, and functions.

Refer to these using something like

  :ra:permission:`base.tokens.issue`

and then index every occurrence.

Flask has a nice feature for "flashing" messages on the next page load. The UI
template should support that.

Keeping these two separate, and in subdirectories, is just confusing for me and probably others.

This can begin as simple proxy to the backend, with the appropriate backend
server selected intelligently.

It could morph into a more thorough implementation of the fronend, with AMQP
used to communicate with the imaging servers.

Buildapi is already mostly an API, and can be ported relatively easily to relengapi.

It is written in Paste/Pylons, so it's not a copy/paste job, but close.

The use of RabbitMQ on the backend to talk to master should probably be
replaced with Celery nodes running on the buildmasters.

We'll need some way for machines to authenticate to releng API. oAuth2 is not
suitable here, because its tokens are tied back to a "real" user. We don't
want all of our buidlslaves to stop working when someone gets removed from
LDAP!

Simple randomly-generated tokens could do the trick, but Hawk looks like a
promising way to implement this. It has the advantage of short-lived tokens,
in case they get disclosed.

The "frontend" is fairly simple, and a working version exists in the git history (git log jacuzzi-allocator should find it).

However, https://github.com/bhearsum/static-jacuzzis has two scripts to generate its content -- allocate.py and manage_jacuzzis.py, each of which are fairly expensive in their own way. Both draw configuration from the repository itself, and that configuration is accessible by sheriffs as well as by releng.

So we'd need to replace config.json by some kind of configuration table with a nice UI, and run the equivalent of allocate.py and manage_jacuzzis.py periodically in a celery task, with the output being written to the database for consumption by the "frontend".

These scripts depend on

• slavealloc (#11)
• schedulerdb - perhaps data available via buildapi (#13)
• usable_slaves.json (#14, I guess .. I'm not sure where the countless little crontasks fall right now)
  It doesn't need to wait until those are ported, but it might help.

(assuming it's being kept)

Users need some UI to be able to manage their oAuth2 associations and see their
permissions.

• Buildfaster (https://hg.mozilla.org/build/braindump/file/efb2abc7fba1/reports/buildfaster_report.py)
• Buildduty
• Slave-health
• Reportor

Reports should be generated on celery nodes, using beat for scheduling

Bootstrap makes it at least a little bit difficult to look bad.

Remaining:

• update documentation to include bootstrap and updated angular version
• add moment.js and use it for badpenny (and doc)
• use directives to make badpenny work better (TODO items)
• use directives to make tokens work better (TODO item)
• X fix documentation navbar
• remove reference to badpenny.css

The HTML view of the main landing page for the API should have a nicely
formatted list of links to interesting bits of any installed blueprints.

This should be simple to implement for blueprints.

This is done in some of the blueprints already, but isn't obvious from the SQLAlchemy docs.

This will allow us to support automatic DB updates.

This should be possible using Celery with Beat.

This will need some mechanism to ensure that one and only one Beat instance is running at any time.

• "badpenny" blueprint with a table of tasks, their last run, last status, etc.
• a way to register a task for scheduled execution
• display registered tasks in the UI
• 'relengapi badpenny --run' for crontasks
• logging support
  • move logs to their own table
  • connect with Python logging during Celery task execution
• locking support
  • as in, don't run a task while it's still running; but this needs a way to avoid tasks getting "wedged" when for example a celery node fails
• alerting support
  • probably left for after 1.0.0 -- a way to indicate what a "hard" failure of a task looks like, e.g., 10 out of the last 15 jobs failed, and use that to differentiate a "warning" task status from a "failed" task status.

Slaveapi is mostly backend tasks, which currently run on a single host.
They'll need to be switched around to run as Celery tasks, and tasks that must
wait for a significant time should operate in a way that they can continue if a
celery node fails.

Databases are specified in code, so it should be possible to include them in the generated documentation.

Branched from #2

Metrics about relengapi should get fed to graphite for trending.