Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Site Architecture You Can Edit Varnish Mobile? Ryan Lane Wikimedia Foundation Membase? Swift.

Published byRodger Edwards Modified over 7 years ago

Similar presentations

Presentation on theme: "The Site Architecture You Can Edit Varnish Mobile? Ryan Lane Wikimedia Foundation Membase? Swift."— Presentation transcript:

1 The Site Architecture You Can Edit Varnish Mobile? Ryan Lane Wikimedia Foundation Membase? Swift

2 Content

3 Interface

4 Software Development

5 Localization

6 Architecture Documentation

7 Admin logs

8 Architecture config files

9 Monitoring

10 Performance Statistics

11 Philosophy: Community Empowerment

12 Empowerment and Growth

13 Early Community: No staff

14 Current Ops Situation: No new non-staff

15 Current Dev Situation: Minimal staff and community project collaboration

16 OpenStack: An Empowerment Technology

17 Community Oriented Test and Development

18 Goals ● Improved staff and volunteer collaboration ● Privilege escalation for non-ops ● Environment for testing major changes

19 How to achieve these goals ● Build a production cluster clone ● Allow liberal access to the clone ● Provide a way to add new architecture without affecting clone ● Provide a way to make changes without root ● Provide a way to migrate changes to production

20 Basic use case ● Ops makes initial default project ● Clone of production cluster ● Move puppet configuration to git repo – Production and test/dev branches

21 Basic use case ● New projects mirror community or foundation initiatives ● Devs build architecture in new project ● Devs request merge for puppet changes via gerrit ● Project instances moved to default project and tested ● Project moved to production cluster

22 Implementation Details

23 Test/Dev Architecture

24

25 OpenStack Configuration ● Current: ● One zone: 1 controller, 3 compute nodes ● Future: ● Test/dev zone per datacenter ● Production zone per datacenter ● Wikimedia Labs

26 Test/Dev Architecture

27 OpenStackManager ● MediaWiki extension ● Support for instance, security group, address, volume, key, sudo, DNS, and LDAP management ● Using EC2 API ● Self-documenting via MediaWiki templates

28 Semantic MediaWiki Integration ● Templates contain semantic annotations ● Nova information queryable via annotations ● Queries displayable via numerous outputs ● Example: Display the sum of storage in GB used for instances in project “tesla” who have the puppet variable “storage_server” set to “true”

29

30

31 Test/Dev Architecture

32 LDAP Integration ● MediaWiki/Gerrit/Nova/Puppet/DNS with LDAP backend ● Using OpenDJ from ForgeRock ● Instances configured by puppet to use LDAP ● Wiki account = Shell account ● Nova projects = Posix Groups ● Special project role = Sudo access

33 Authn/Authz Design ● User accounts stored in LDAP ● Managed by MediaWiki (LdapAuthentication and OpenStackManager extensions) ● MediaWiki account = Nova/Gerrit/Shell account ● UUIDs for Nova, passwords for Gerrit/MediaWiki/sudo, SSH keys for shell access ● Default gid/shell via MediaWiki configuration ● Sudo policies managed via puppet and LDAP

34

35 Test/Dev Architecture

36 Puppet Integration ● Puppet w/ LDAP backend ● Instance creation = Puppet node LDAP entry ● Variables always added via MediaWiki: – Project – Instance creator's wiki user name, email address, and language ● More puppet classes and variables via MediaWiki config

37 Test/Dev Architecture

38 PowerDNS Integration ● PowerDNS w/LDAP backend ● Manages public and private domains ● Instance creation = Private DNS LDAP entry ● Can add public DNS entries to floating IPs

39

40 Test/Dev Architecture

41 CloudInit Integration ● Extensive use of CloudInit ● Default cloud init via MediaWiki config options ● Cloud-config, scripts, and upstarts supported ● Using to connect instances with puppet

42 Test/Dev Architecture

43 Gerrit Integration ● Puppet config in gerrit ● All test/dev members can branch ● First change approval by community ● Final approvals and merges by ops team

44 Join our community ● We are hiring ● We love contributors

45 Uses outside of Wikimedia ● Way to balance ops sanity and developer access ● Our architecture as a reference use

46 Uses outside of Wikimedia ● Self-documenting architecture ● Queryable architecture

47 Questions? Comments? Ryan Lane Wikimedia Foundation ryan@wikimedia.org IRC: Ryan_Lane on Freenode; channels: #openstack, #mediawiki, #wikimedia- operations, #wikimedia-tech

Download ppt "The Site Architecture You Can Edit Varnish Mobile? Ryan Lane Wikimedia Foundation Membase? Swift."

Similar presentations

Box User Days 1 – 2 april 2015. Box Enterprise Leuven –What? –Why? –How? Box Essentials –Adding content –Finding what you need.

Box User Days 1 – 2 april Box Enterprise Leuven –What? –Why? –How? Box Essentials –Adding content –Finding what you need.
© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.

© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.
Wikis in Binghamton University Libraries Abigail Bordeaux Erin Rushton Marcy Strong.

Wikis in Binghamton University Libraries Abigail Bordeaux Erin Rushton Marcy Strong.
Additional SugarCRM details for complete, functional, and portable deployment.

Additional SugarCRM details for complete, functional, and portable deployment.
Intro to Google Apps B3: Working in Google Drive.

Intro to Google Apps B3: Working in Google Drive.
Module 8 Configuring and Securing SharePoint Services and Service Applications.

Module 8 Configuring and Securing SharePoint Services and Service Applications.
Hands-On Microsoft Windows Server 20081 Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.

Hands-On Microsoft Windows Server Security Enhancements in Windows Server 2008 Windows Server 2008 was created to emphasize security –Reduced attack.
Sarasota Policy Wiki Why Wiki? To provide a new platform for community input on public policies and issues. To encourage engagement.

Sarasota Policy Wiki Why Wiki? To provide a new platform for community input on public policies and issues. To encourage engagement.
Created by: Maria Abrahms Modified Date: Classification: How to get it done Contributing to OpenStack.

Created by: Maria Abrahms Modified Date: Classification: How to get it done Contributing to OpenStack.
Cloud Standard API and Contextualization

Cloud Standard API and Contextualization
Sakai/OSP Portfolio UvA Bas Toeter Universiteit van Amsterdam

Sakai/OSP Portfolio UvA Bas Toeter Universiteit van Amsterdam
| nectar.org.au NECTAR TRAINING Module 10 Beyond the Dashboard.

| nectar.org.au NECTAR TRAINING Module 10 Beyond the Dashboard.
Object-Oriented Analysis & Design Subversion. Contents  Configuration management  The repository  Versioning  Tags  Branches  Subversion 2.

Object-Oriented Analysis & Design Subversion. Contents  Configuration management  The repository  Versioning  Tags  Branches  Subversion 2.
Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy.

Web Scripting [PHP] CIS166AE Wednesdays 6:00pm – 9:50pm Rob Loy.
© Wiley Inc. 2006. All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.

© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Module 11: Implementing ISA Server 2004 Enterprise Edition.

Module 11: Implementing ISA Server 2004 Enterprise Edition.
Planning a Group Policy Management and Implementation Strategy Lesson 10.

Planning a Group Policy Management and Implementation Strategy Lesson 10.
Drupal 7 LDAP Project Overview with Authentication and Authorization Examples

Drupal 7 LDAP Project Overview with Authentication and Authorization Examples
Magellan: Experiences from a Science Cloud Lavanya Ramakrishnan.

Magellan: Experiences from a Science Cloud Lavanya Ramakrishnan.
Support in setting up a non-grid Atlas Tier 3 Doug Benjamin Duke University.

Support in setting up a non-grid Atlas Tier 3 Doug Benjamin Duke University.

Similar presentations

Ads by Google