Skip to content
Snippets Groups Projects
Commit 223b5a0e authored by Julien Leduc's avatar Julien Leduc
Browse files

Password for quarkdb is now mandatory with new eos 4.7.x

parent a6bc1a39
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
continuousintegration/docker/ctafrontend/cc7/opt/run/bin/ctaeos-mgm.sh
+ 3
3
View file @ 223b5a0e
...@@ -71,9 +71,6 @@ echo "mgmofs.tapeenabled true" >> /etc/xrd.cf.mgm ...@@ -71,9 +71,6 @@ echo "mgmofs.tapeenabled true" >> /etc/xrd.cf.mgm
# Add configmap based configuration (initially Namespace) # Add configmap based configuration (initially Namespace)
test -f /etc/config/eos/xrd.cf.mgm && cat /etc/config/eos/xrd.cf.mgm >> /etc/xrd.cf.mgm test -f /etc/config/eos/xrd.cf.mgm && cat /etc/config/eos/xrd.cf.mgm >> /etc/xrd.cf.mgm
# quarkDB only for systemd initially...
cat /etc/config/eos/xrd.cf.mgm | grep mgmofs.nslib | grep -qi eosnsquarkdb && /opt/run/bin/start_quarkdb.sh
# prepare eos startup # prepare eos startup
# skip systemd for eos initscripts # skip systemd for eos initscripts
export SYSTEMCTL_SKIP_REDIRECT=1 export SYSTEMCTL_SKIP_REDIRECT=1
...@@ -91,6 +88,9 @@ echo -n '0 u:daemon g:daemon n:ctaeos+ N:6361884315374059521 c:1481241620 e:0 f: ...@@ -91,6 +88,9 @@ echo -n '0 u:daemon g:daemon n:ctaeos+ N:6361884315374059521 c:1481241620 e:0 f:
touch /var/eos/config/${eoshost}/default.eoscf touch /var/eos/config/${eoshost}/default.eoscf
chown daemon:daemon /var/eos/config/${eoshost}/default.eoscf chown daemon:daemon /var/eos/config/${eoshost}/default.eoscf
# quarkDB only for systemd initially...
cat /etc/config/eos/xrd.cf.mgm | grep mgmofs.nslib | grep -qi eosnsquarkdb && /opt/run/bin/start_quarkdb.sh
# add taped SSS must be in a kubernetes secret # add taped SSS must be in a kubernetes secret
#echo >> /etc/eos.keytab #echo >> /etc/eos.keytab
#echo '0 u:stage g:tape n:taped+ N:6361736405290319874 c:1481207182 e:0 f:0 k:8e2335f24cf8c7d043b65b3b47758860cbad6691f5775ebd211b5807e1a6ec84' >> /etc/eos.keytab #echo '0 u:stage g:tape n:taped+ N:6361736405290319874 c:1481207182 e:0 f:0 k:8e2335f24cf8c7d043b65b3b47758860cbad6691f5775ebd211b5807e1a6ec84' >> /etc/eos.keytab
......
continuousintegration/docker/ctafrontend/cc7/opt/run/bin/start_quarkdb.sh
+ 7
0
View file @ 223b5a0e
...@@ -25,6 +25,13 @@ chown -R xrootd:xrootd ${QUARKDB_DIRECTORY} ...@@ -25,6 +25,13 @@ chown -R xrootd:xrootd ${QUARKDB_DIRECTORY}
cp -f ${QUARKDB_CONFIG} /etc/xrootd/xrootd-quarkdb.cfg cp -f ${QUARKDB_CONFIG} /etc/xrootd/xrootd-quarkdb.cfg
# quarkdb is starting as xrootd user and mgm as daemon
# the password file must be 400 for each service...
# for now copy and chown, later run quarkdb as daemon and use /etc/eos.keytab for both
cp /etc/eos.keytab /etc/eos.keytab.xrootd
chmod 400 /etc/eos.keytab.xrootd
chown xrootd:xrootd /etc/eos.keytab.xrootd
systemctl start xrootd@quarkdb systemctl start xrootd@quarkdb
systemctl status xrootd@quarkdb systemctl status xrootd@quarkdb
continuousintegration/orchestration/eos-config-quarkdb.yaml
+ 3
0
View file @ 223b5a0e
...@@ -8,8 +8,11 @@ data: ...@@ -8,8 +8,11 @@ data:
xrd.cf.mgm: | xrd.cf.mgm: |
mgmofs.nslib /usr/lib64/libEosNsQuarkdb.so mgmofs.nslib /usr/lib64/libEosNsQuarkdb.so
mgmofs.qdbcluster localhost:7777 mgmofs.qdbcluster localhost:7777
mgmofs.qdbpassword_file /etc/eos.keytab
xrootd-quarkdb.cfg: | xrootd-quarkdb.cfg: |
xrd.port 7777 xrd.port 7777
xrd.protocol redis:7777 /usr/lib64/libXrdQuarkDB.so xrd.protocol redis:7777 /usr/lib64/libXrdQuarkDB.so
redis.mode standalone redis.mode standalone
redis.database /var/lib/quarkdb/quarkdb1 redis.database /var/lib/quarkdb/quarkdb1
redis.password_file /etc/eos.keytab.xrootd
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

imprint | privacy | Conditions of Use