To make changing the gunicorn configuration more easily let's move
configuration values from systemd service to separate configuration
file.
The file will live in /etc/mailman3/gunicorn.conf.py.
This will unify all the handlers to use first uppercase letter for
ansible-lint to stop complaining.
I went through all `notify:` occurrences and fixed them by running
```
set TEXT "text_to_replace"; set REPLACEMENT "replacement_text"; git grep
-rlz "$TEXT" . | xargs -0 sed -i "s/$TEXT/$REPLACEMENT/g"
```
Then I went through all the changes and removed the ones that wasn't
expected to be changed.
Fixes https://pagure.io/fedora-infrastructure/issue/12391
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
The config is now provided by the mailman3 package and it's the same
provided by the ansible role.
And we have two of them in the role, probably a oversight.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
The whoosh engine doesn't seem to be maintained anymore and when generating the
index it got stuck when the size was about 20 GB. Xapian on the other hand looks
more stable and much quicker when generating the index.
Unfortunately the xapian-haystack package is not available in Fedora/EPEL yet
and waiting for review to be finished.
Link to review bug: https://bugzilla.redhat.com/show_bug.cgi?id=2313507
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
This script is added to implement
https://pagure.io/fedora-infrastructure/issue/11427
The script was already executed on staging environment and finished without
issue. It could be executed multiple times and only affects list that don't have
the settings set yet. I will document this as another step to take when creating
a new list.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
The index generated by the hyperkitty-hourly script generated unusually big
index (around 1TB).
This script should help with generating the search index from scratch, after
that we can leave it to hyperkitty-hourly job again.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
Mailman has huge memory spikes after migration, those are caused by visiting
`/archives/search` URL. This is probably because of the search index still being
regenerated.
This patch will disable the search from both web UI and as a HTTP URL endpoint.
Fixes https://pagure.io/fedora-infrastructure/issue/12043
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
Set django to have 4 workers and have a retry longer than the timeout.
Disable local memcached and use the memcached01 instance.
Enabled debug logging on gunicorn to see what it's doing.
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
It seems that I forgot to actually create the certificates for new mailman
fedora archiver. Let's fix that.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
The fedora isn't available in allauth library and mailman user needs to have
access to initial-data.json
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
This JSON file contains authentication providers set up in mailman. This change
should allow it to be used in mailman3 role.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
The postorius was missing python3-cmarkgfm in dependencies which caused
rendering of info metadata in lists to throw 500 because markdown renderer was
missing.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
Waiting for static_root_dir change could skip files that were added to static
after the initial deployment. This should prevent that.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
Both become and become_user needs to be set to work. So the script was executed
as root which caused the hyperkitty log file to be created with root owner.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
This will add migration script for Fedora auth provider. This is only needed
when updating to Fedora auth provider using OpenID Connect.
Signed-off-by: Michal Konecny <mkonecny@redhat.com>
