[FOLIO-1759] Create folio-ansible roles for deploying edge modules in reference environments Created: 30/Jan/19 Updated: 03/Jun/20 Resolved: 17/Feb/19 |
|
| Status: | Closed |
| Project: | FOLIO |
| Components: | None |
| Affects versions: | None |
| Fix versions: | None |
| Type: | New Feature | Priority: | P3 |
| Reporter: | Wayne Schneider | Assignee: | Wayne Schneider |
| Resolution: | Done | Votes: | 0 |
| Labels: | ci, platform-backlog | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Issue links: |
|
||||||||||||||||||||||||||||||||
| Sprint: | Core: Platform - Sprint 56, Core: Platform - Sprint 57 | ||||||||||||||||||||||||||||||||
| Story Points: | 5 | ||||||||||||||||||||||||||||||||
| Development Team: | Core: Platform | ||||||||||||||||||||||||||||||||
| Description |
|
Roles need to be created in folio-ansible for provisioning edge modules separately from standard Okapi modules. One possible approach:
The edge module role would need to:
Hongwei Ji David Crossley any thoughts on what I'm missing? |
| Comments |
| Comment by Hongwei Ji [ 30/Jan/19 ] |
|
Wayne Schneider looks good. Edge modules do not have perm defined because they live outside of Okapi. The modules they depend on have perm defined. But those perms will be assigned to the new institution user, not admin user since edge API key is tied to the institution user not admin user. Of course, we can make things simpler by letting admin user to play both roles. |
| Comment by Wayne Schneider [ 07/Feb/19 ] |
|
Ran into an issue with the "institutional user" required by edge modules: my original plan was just to use the default admin user (diku_admin) as the institutional user, but unfortunately the edge-common library doesn't allow for an underscore in the IU username. Craig McNally is writing tickets to update the library to remove this limitation (see the linked stories for more detail). It is probably a better practice to create an IU specifically for edge modules, but that complicates completing the edge-module role. |
| Comment by Wayne Schneider [ 12/Feb/19 ] |
|
Plays have been added to the role to create the institutional user. All that remains is to update the Vagrantfile and AWS network config to expose port 8000. |
| Comment by Wayne Schneider [ 12/Feb/19 ] |
|
|
| Comment by Wayne Schneider [ 17/Feb/19 ] |
|
Adam Dickmeiss suggested a different approach, using Okapi to manage the Docker containers and proxy the edge endpoints as the supertenant. There are some advantages and disadvantages to this approach. Pros:
Cons:
Either approach would work for our reference environments. At this point it's probably not worth redoing the roles for the convenience of using Okapi to proxy the edge modules, but it's worth documenting the alternative approach here. |