fix: aws issues that arose from going through the checklist
Description
Contains fixes and changes related to the AWS provider after running through the checklist.
Fixes:
- Minor pipeline rules so that infrastructure tests only run when scheduled.
- MongoDB for AWS now uses
mongodb+srv://
URLs to conform to DO's format. - Open edX S3 buckets are configured so that
- Objects in the root of the bucket
- Anything else isn't
- EKS provider is upgraded to the latest version
- K8s Dashboard version is so that it's consistent across deploys
- Metrics server that comes with the dashboard is disabled, in lieu of running our own metrics server.
- MongoDB
- Passwords in the MongoDB connection string are URL encoded
- Added extra vars required for the forum, SSL, Auth Mechanism and Auth Source
Once merged, I'll deploy a cluster on grove-stage-aws
again.
Dependencies
Testing instructions
I've deployed the changes to https://checklist-aws.kgcluster.opencraft.hosting.
- Check that you can access the discussion forums and post/upload
- Log into AWS and check the permissions on the edxapp bucket.
- Objects in the root should be publically accessible
- Any object within a folder should not be accessible without authentication
Checklist
If any of the items below is not applicable, do not remove them, but put a check in it.
-
All providers include the new feature/change -
All affected providers can provision new clusters -
Unit tests are added/updated -
Documentation is added/updated -
The TOOLS_CONTAINER_IMAGE_VERSION
in ci_vars.yml is updated -
The grove-template repository is updated
Edited by Keith Grootboom