[01:04:00] <tgr>	 harej: I think OAuth is so ubiquitous today that adding such a plugin would be a valuable contribution to opensource on its own, and if Baserow has a decently sized user community, it probably wouldn't be super hard to find co-maintainers.
[01:04:23] <tgr>	 and you'd need OAuth anyway if you want to tie it to on-wiki user accounts in any way
[01:23:17] <wm-bb>	 <harej> I'm skeptical their developer community is very big
[01:23:53] <Platonides>	 it says it's based on django
[01:24:09] <Platonides>	 a django oauth plugin *might* work pretty much out of the box
[01:24:16] <wm-bb>	 <harej> Interesting
[01:40:08] <tgr>	 there are two big auth frameworks for django, authlib and social auth, authlib works out of the box with Wikimedia sites (see T230536#8105609), social auth has a MediaWiki plugin ( https://python-social-auth.readthedocs.io/en/latest/backends/mediawiki.html )
[01:40:08] <stashbot>	 T230536: Write OAuth auth plugin for Synapse (Matrix) - https://phabricator.wikimedia.org/T230536
[01:40:39] <tgr>	 but at a very superficial glance I did not see Baserow use any kind of auth framework
[01:41:28] <tgr>	 still, an OAuth 2 plugin should be pretty simple if their plugin system allows you sufficient flexibility
[01:41:53] <Platonides>	 I only skimmed their web and saw "build on django"
[01:42:20] <tgr>	 yeah but django doesn't come with an auth framework out of the box
[01:42:21] <Platonides>	 one would expect it to fit cleanly, but... 
[01:43:35] <Platonides>	 I don't know what's the default for django user accounts nor how auth plugins then hook into it
[03:09:34] <wm-bb>	 <harej> Default Django auth is very basic
[03:09:57] <wm-bb>	 <harej> By default you have one admin account with a username and password
[05:34:48] <tgr>	 any thoughts about https://meta.wikimedia.org/wiki/User_talk:Mindtonic#platformUX_app_OAuth ?
[05:36:20] <tgr>	 I feel fine about approving any app that does not need elevated privileges and does not violate the UCoC, if it does something misguided that's the developer's and users' responsibility. But this does look misguided, so maybe there's a more diplomatic approach?
[09:49:10] <taavi>	 !log admin stop wikitech_run_jobs.timer on labweb1001/1002, hosts pending decom
[09:49:27] <taavi>	 umm, where's stashbot?
[09:51:34] <RhinosF1>	 taavi: bunch of cloud tools timed out 5 minutes ago
[09:51:40] <RhinosF1>	 Op bot and wikibugs too
[09:57:09] <taavi>	 !log admin stop wikitech_run_jobs.timer on labweb1001/1002, hosts pending decom
[09:57:12] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Admin/SAL
[10:06:56] <valerio-bozzolan>	 !log wlm-it-visual add security groups for 80 and 443
[10:06:58] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Wlm-it-visual/SAL
[10:13:24] <valerio-bozzolan>	 Should the page [[wikitech:Help:Security groups]] say something about CIDR range: 172.16.0.0/21 in the examples?
[10:24:15] <valerio-bozzolan>	 BTW I don't understand how to have https://wlm-it-visual.wmcloud.org/ - enabled ingress :80 security group; having apache2 listening on :80; having curl http://172.16.1.187 working; created web proxy to that backend
[10:29:10] <valerio-bozzolan>	 !log wlm-it-visual add web proxy from hostname wlm-it-visual.wmcloud.org to backend :80 (but error HTTP 504)
[10:29:12] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Wlm-it-visual/SAL
[11:02:31] <taavi>	 valerio-bozzolan: you don't seem to have actually applied the security group to the instance
[11:05:15] <valerio-bozzolan>	 !log wlm-it-visual attach 'web' security group to instance 'wlmitvisual01' (thanks <taavi>)
[11:05:17] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Wlm-it-visual/SAL
[11:09:43] <CristianCantoro>	 hi, if I have a Cinfer volume that I have already prepared on one server and I want to attach it to another server, which options should I use in `/etc/fstab`?
[11:10:54] <taavi>	 CristianCantoro: can't you just use the `wmcs-prepare-cinder-volume` script?
[11:11:12] <CristianCantoro>	 that does not erase the content?
[11:12:00] <CristianCantoro>	 $ sudo wmcs-prepare-cinder-volume
[11:12:01] <CristianCantoro>	 This tool will partition, format, and mount a block storage device.
[11:12:19] <taavi>	 I don't think it will if there's an existing file system on the volume
[11:12:56] <taavi>	 on the list of volumes, it'll say if it's an existing volume or a new one that would be formatted
[11:13:36] <CristianCantoro>	 Attached storage devices:
[11:13:36] <CristianCantoro>	     sda:  (the primary volume containing /)
[11:13:37] <CristianCantoro>	     sdb: formatted as ext4, can be mounted
[11:14:02] <CristianCantoro>	 ok, it worked
[11:14:41] <CristianCantoro>	 it would be better if what the script was a little bit clearer in what it says
[11:15:50] <valerio-bozzolan>	 maybe in rude informal italian you mean, yeah
[11:20:22] <dhinus>	 the wiki is indeed a bit confusing because it says "This tool is only useful for newly-created block devices. It can not be used to reattach formatted volumes" https://wikitech.wikimedia.org/wiki/Help:Adding_Disk_Space_to_Cloud_VPS_instances
[11:21:41] <CristianCantoro>	 dhinus: yes, also that
[11:22:02] <CristianCantoro>	 I was under the impression that you use that command only to prepare cinder volumes
[11:22:25] <CristianCantoro>	 maybe `wmc-manage-cinder-volume` would be a better name
[11:22:49] <CristianCantoro>	 besides this... I am getting a `Bad message` error when removing some files
[11:23:03] <CristianCantoro>	 `cannot remove 'python3.5/site-packages/numpy/testing/nose_tools/noseclasses.py': Structure needs cleaning` (it's an old virtualenv)
[11:23:21] <CristianCantoro>	 `rm: cannot remove 'python3.5/site-packages/numpy/testing/__pycache__/decorators.cpython-35.pyc': Structure needs cleaning`
[11:28:49] <CristianCantoro>	 any clue?
[11:29:09] <CristianCantoro>	 should i create a new volume and copy the files there?
[11:31:04] <dhinus>	 never seen that error before, but from a quick google search it seems to point to filesystem issues. they might be recoverable, but creating a new volume is also an option. you might get the same error while copying files, though.
[11:31:21] <taavi>	 the internet says it probably means that the volume was somehow corrupted
[11:31:43] <taavi>	 I'm wondering how that happened.. how did you unattach the volume from the first instance?
[11:32:02] * dhinus lunch, back later
[11:32:52] <CristianCantoro>	 taavi: sudo umount `/srv`, and then go to Horizon Volumes > Manage attachments > Detach
[11:33:19] <taavi>	 that sounds like the proper way to do it, not sure what happened then
[11:34:24] <CristianCantoro>	 also,.. we are doing this to upgrade an old Debian stretch server but the problem that we faced was that some SQLite queries were taking forever on the new server (not on the old one)
[11:34:38] <CristianCantoro>	 now I am wondering if this was because of some problem with the volume
[11:37:15] <CristianCantoro>	 dhinus: ok, I will create a new volume, copying only what I need (these were virtualenvs that I can recreate)
[11:37:24] <CristianCantoro>	 and I will check if I am getting errors during the copy
[11:37:45] <taavi>	 maybe.. although didn't you mention the sqlite slowness problems before you moved the volume? where's the sqlite database stored?
[11:38:53] <CristianCantoro>	 on the volume
[11:39:26] <CristianCantoro>	 taavi: yes, sorry, I mentioned it here: https://phabricator.wikimedia.org/T306103
[11:39:49] <CristianCantoro>	 the point was that I did not have any real proof that it could be an issue with the volume
[11:39:53] <CristianCantoro>	 until now
[12:26:53] <Rook>	 !log paws resource requests for quota cc8556d3ae422b99bb60c26d6ac0ce6f1e285b07 T314432
[12:26:56] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Paws/SAL
[12:26:56] <stashbot>	 T314432: Request for proxy pod - https://phabricator.wikimedia.org/T314432
[15:12:51] <andrewbogott>	 !log admin stopping rabbitmq on cloudcontrol1xxx
[15:12:55] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Admin/SAL
[16:32:43] <taavi>	 !log admin restart neutron-l3-agent to pick up rabbit config changes
[16:32:45] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Admin/SAL
[17:16:05] <taavi>	 !log admin deleted all scheduler_fanout_ rabbit queues in an attempt to fix scheduling
[17:16:07] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Admin/SAL
[17:42:07] <valerio-bozzolan>	 !log wlm-it-visual add apache2 on :80 proxing to :8080 to be able to display nice error messages if Docker dies
[17:42:09] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Wlm-it-visual/SAL
[17:42:52] <valerio-bozzolan>	 !log wlm-it-visual remove rule about incoming :443 in  security group 'web' since it's unuseful
[17:42:53] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Wlm-it-visual/SAL
[19:31:01] <wm-bot>	 !log tools.pagepile-visual-filter <lucaswerkmeister> deployed 55f414200f (improve selected image styles)
[19:31:03] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Tools.pagepile-visual-filter/SAL
[20:06:17] <wm-bb>	 <bozzy> Do you think it has sense to update the :80 example, dropping 0.0.0.0/0 and adopting 172.16.0.0/21? for the least privilege logic
[20:06:17] <wm-bb>	 <bozzy> 
[20:06:19] <wm-bb>	 <bozzy> https://wikitech.wikimedia.org/wiki/Help:Security_groups
[20:08:30] <wm-bb>	 <bozzy> At least for a web proxy
[22:11:01] <wm-bot>	 !log tools.jouncebot <bd808> Updated bot to 28508a1
[22:11:03] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Tools.jouncebot/SAL