X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/442a871e7f3476938d0ebb3adbe3b9a7742f03ad..374cc9ffdd945cec08abbc3ff91b4b2b147cd840:/services/api/config/arvados_config.rb diff --git a/services/api/config/arvados_config.rb b/services/api/config/arvados_config.rb index 22a8fed58e..7dc6481008 100644 --- a/services/api/config/arvados_config.rb +++ b/services/api/config/arvados_config.rb @@ -17,6 +17,7 @@ # delete application.yml and database.yml. require 'config_loader' +require 'open3' begin # If secret_token.rb exists here, we need to load it first. @@ -36,51 +37,57 @@ EOS # Real values will be copied from globals by omniauth_init.rb. For # now, assign some strings so the generic *.yml config loader # doesn't overwrite them or complain that they're missing. - Rails.configuration.Login["ProviderAppID"] = 'xxx' - Rails.configuration.Login["ProviderAppSecret"] = 'xxx' + Rails.configuration.Login["SSO"]["ProviderAppID"] = 'xxx' + Rails.configuration.Login["SSO"]["ProviderAppSecret"] = 'xxx' Rails.configuration.Services["SSO"]["ExternalURL"] = '//xxx' WARNED_OMNIAUTH_CONFIG = true end -# Load the defaults -$arvados_config_defaults = ConfigLoader.load "#{::Rails.root.to_s}/config/config.default.yml" -if $arvados_config_defaults.empty? - raise "Missing #{::Rails.root.to_s}/config/config.default.yml" -end - -def remove_sample_entries(h) - return unless h.is_a? Hash - h.delete("SAMPLE") - h.each { |k, v| remove_sample_entries(v) } +# Load the defaults, used by config:migrate and fallback loading +# legacy application.yml +Open3.popen2("arvados-server", "config-dump", "-config=-", "-skip-legacy") do |stdin, stdout, status_thread| + stdin.write("Clusters: {xxxxx: {}}") + stdin.close + confs = YAML.load(stdout, deserialize_symbols: false) + clusterID, clusterConfig = confs["Clusters"].first + $arvados_config_defaults = clusterConfig + $arvados_config_defaults["ClusterID"] = clusterID end -remove_sample_entries($arvados_config_defaults) - -clusterID, clusterConfig = $arvados_config_defaults["Clusters"].first -$arvados_config_defaults = clusterConfig -$arvados_config_defaults["ClusterID"] = clusterID - -# Initialize the global config with the defaults -$arvados_config_global = $arvados_config_defaults.deep_dup # Load the global config file -confs = ConfigLoader.load "/etc/arvados/config.yml" -if !confs.empty? - clusterID, clusterConfig = confs["Clusters"].first - $arvados_config_global["ClusterID"] = clusterID - - # Copy the cluster config over the defaults - $arvados_config_global.deep_merge!(clusterConfig) +Open3.popen2("arvados-server", "config-dump", "-skip-legacy") do |stdin, stdout, status_thread| + confs = YAML.load(stdout, deserialize_symbols: false) + if confs && !confs.empty? + # config-dump merges defaults with user configuration, so every + # key should be set. + clusterID, clusterConfig = confs["Clusters"].first + $arvados_config_global = clusterConfig + $arvados_config_global["ClusterID"] = clusterID + else + # config-dump failed, assume we will be loading from legacy + # application.yml, initialize with defaults. + $arvados_config_global = $arvados_config_defaults.deep_dup + end end # Now make a copy $arvados_config = $arvados_config_global.deep_dup +def arrayToHash cfg, k, v + val = {} + v.each do |entry| + val[entry.to_s] = {} + end + ConfigLoader.set_cfg cfg, k, val +end + # Declare all our configuration items. arvcfg = ConfigLoader.new arvcfg.declare_config "ClusterID", NonemptyString, :uuid_prefix arvcfg.declare_config "ManagementToken", String, :ManagementToken +arvcfg.declare_config "SystemRootToken", String arvcfg.declare_config "Git.Repositories", String, :git_repositories_dir -arvcfg.declare_config "API.DisabledAPIs", Array, :disable_api_methods +arvcfg.declare_config "API.DisabledAPIs", Hash, :disable_api_methods, ->(cfg, k, v) { arrayToHash cfg, "API.DisabledAPIs", v } arvcfg.declare_config "API.MaxRequestSize", Integer, :max_request_size arvcfg.declare_config "API.MaxIndexDatabaseRead", Integer, :max_index_database_read arvcfg.declare_config "API.MaxItemsPerResponse", Integer, :max_items_per_response @@ -89,7 +96,7 @@ arvcfg.declare_config "API.RailsSessionSecretToken", NonemptyString, :secret_tok arvcfg.declare_config "Users.AutoSetupNewUsers", Boolean, :auto_setup_new_users arvcfg.declare_config "Users.AutoSetupNewUsersWithVmUUID", String, :auto_setup_new_users_with_vm_uuid arvcfg.declare_config "Users.AutoSetupNewUsersWithRepository", Boolean, :auto_setup_new_users_with_repository -arvcfg.declare_config "Users.AutoSetupUsernameBlacklist", Array, :auto_setup_name_blacklist +arvcfg.declare_config "Users.AutoSetupUsernameBlacklist", Hash, :auto_setup_name_blacklist, ->(cfg, k, v) { arrayToHash cfg, "Users.AutoSetupUsernameBlacklist", v } arvcfg.declare_config "Users.NewUsersAreActive", Boolean, :new_users_are_active arvcfg.declare_config "Users.AutoAdminUserWithEmail", String, :auto_admin_user arvcfg.declare_config "Users.AutoAdminFirstUser", Boolean, :auto_admin_first_user @@ -97,15 +104,17 @@ arvcfg.declare_config "Users.UserProfileNotificationAddress", String, :user_prof arvcfg.declare_config "Users.AdminNotifierEmailFrom", String, :admin_notifier_email_from arvcfg.declare_config "Users.EmailSubjectPrefix", String, :email_subject_prefix arvcfg.declare_config "Users.UserNotifierEmailFrom", String, :user_notifier_email_from -arvcfg.declare_config "Users.NewUserNotificationRecipients", Array, :new_user_notification_recipients -arvcfg.declare_config "Users.NewInactiveUserNotificationRecipients", Array, :new_inactive_user_notification_recipients -arvcfg.declare_config "Login.ProviderAppSecret", NonemptyString, :sso_app_secret -arvcfg.declare_config "Login.ProviderAppID", NonemptyString, :sso_app_id +arvcfg.declare_config "Users.NewUserNotificationRecipients", Hash, :new_user_notification_recipients, ->(cfg, k, v) { arrayToHash cfg, "Users.NewUserNotificationRecipients", v } +arvcfg.declare_config "Users.NewInactiveUserNotificationRecipients", Hash, :new_inactive_user_notification_recipients, method(:arrayToHash) +arvcfg.declare_config "Login.SSO.ProviderAppSecret", String, :sso_app_secret +arvcfg.declare_config "Login.SSO.ProviderAppID", String, :sso_app_id +arvcfg.declare_config "Login.LoginCluster", String +arvcfg.declare_config "Login.RemoteTokenRefresh", ActiveSupport::Duration arvcfg.declare_config "TLS.Insecure", Boolean, :sso_insecure -arvcfg.declare_config "Services.SSO.ExternalURL", NonemptyString, :sso_provider_url +arvcfg.declare_config "Services.SSO.ExternalURL", String, :sso_provider_url arvcfg.declare_config "AuditLogs.MaxAge", ActiveSupport::Duration, :max_audit_log_age arvcfg.declare_config "AuditLogs.MaxDeleteBatch", Integer, :max_audit_log_delete_batch -arvcfg.declare_config "AuditLogs.UnloggedAttributes", Array, :unlogged_attributes +arvcfg.declare_config "AuditLogs.UnloggedAttributes", Hash, :unlogged_attributes, ->(cfg, k, v) { arrayToHash cfg, "AuditLogs.UnloggedAttributes", v } arvcfg.declare_config "SystemLogs.MaxRequestLogParamsSize", Integer, :max_request_log_params_size arvcfg.declare_config "Collections.DefaultReplication", Integer, :default_collection_replication arvcfg.declare_config "Collections.DefaultTrashLifetime", ActiveSupport::Duration, :default_trash_lifetime @@ -115,7 +124,8 @@ arvcfg.declare_config "Collections.TrashSweepInterval", ActiveSupport::Duration, arvcfg.declare_config "Collections.BlobSigningKey", NonemptyString, :blob_signing_key arvcfg.declare_config "Collections.BlobSigningTTL", ActiveSupport::Duration, :blob_signature_ttl arvcfg.declare_config "Collections.BlobSigning", Boolean, :permit_create_collection_with_unsigned_manifest, ->(cfg, k, v) { ConfigLoader.set_cfg cfg, "Collections.BlobSigning", !v } -arvcfg.declare_config "Containers.SupportedDockerImageFormats", Array, :docker_image_formats +arvcfg.declare_config "Collections.ForwardSlashNameSubstitution", String +arvcfg.declare_config "Containers.SupportedDockerImageFormats", Hash, :docker_image_formats, ->(cfg, k, v) { arrayToHash cfg, "Containers.SupportedDockerImageFormats", v } arvcfg.declare_config "Containers.LogReuseDecisions", Boolean, :log_reuse_decisions arvcfg.declare_config "Containers.DefaultKeepCacheRAM", Integer, :container_default_keep_cache_ram arvcfg.declare_config "Containers.MaxDispatchAttempts", Integer, :max_container_dispatch_attempts @@ -137,15 +147,10 @@ arvcfg.declare_config "Containers.SLURM.Managed.DNSServerConfTemplate", Pathname arvcfg.declare_config "Containers.SLURM.Managed.DNSServerReloadCommand", String, :dns_server_reload_command arvcfg.declare_config "Containers.SLURM.Managed.DNSServerUpdateCommand", String, :dns_server_update_command arvcfg.declare_config "Containers.SLURM.Managed.ComputeNodeDomain", String, :compute_node_domain -arvcfg.declare_config "Containers.SLURM.Managed.ComputeNodeNameservers", Array, :compute_node_nameservers +arvcfg.declare_config "Containers.SLURM.Managed.ComputeNodeNameservers", Hash, :compute_node_nameservers, ->(cfg, k, v) { arrayToHash cfg, "Containers.SLURM.Managed.ComputeNodeNameservers", v } arvcfg.declare_config "Containers.SLURM.Managed.AssignNodeHostname", String, :assign_node_hostname arvcfg.declare_config "Containers.JobsAPI.Enable", String, :enable_legacy_jobs_api, ->(cfg, k, v) { ConfigLoader.set_cfg cfg, "Containers.JobsAPI.Enable", v.to_s } -arvcfg.declare_config "Containers.JobsAPI.CrunchJobWrapper", String, :crunch_job_wrapper -arvcfg.declare_config "Containers.JobsAPI.CrunchJobUser", String, :crunch_job_user -arvcfg.declare_config "Containers.JobsAPI.CrunchRefreshTrigger", String, :crunch_refresh_trigger arvcfg.declare_config "Containers.JobsAPI.GitInternalDir", String, :git_internal_dir -arvcfg.declare_config "Containers.JobsAPI.ReuseJobIfOutputsDiffer", Boolean, :reuse_job_if_outputs_differ -arvcfg.declare_config "Containers.JobsAPI.DefaultDockerImage", String, :default_docker_image_for_jobs arvcfg.declare_config "Mail.MailchimpAPIKey", String, :mailchimp_api_key arvcfg.declare_config "Mail.MailchimpListID", String, :mailchimp_list_id arvcfg.declare_config "Services.Controller.ExternalURL", URI @@ -198,7 +203,7 @@ end db_config = {} path = "#{::Rails.root.to_s}/config/database.yml" -if File.exist? path +if !ENV['ARVADOS_CONFIG_NOLEGACY'] && File.exist?(path) db_config = ConfigLoader.load(path, erb: true) end @@ -248,6 +253,11 @@ end if ::Rails.env.to_s == "test" && db_config["test"].nil? $arvados_config["PostgreSQL"]["Connection"]["dbname"] = "arvados_test" end +if ::Rails.env.to_s == "test" + # Use template0 when creating a new database. Avoids + # character-encoding/collation problems. + $arvados_config["PostgreSQL"]["Connection"]["template"] = "template0" +end if $arvados_config["PostgreSQL"]["Connection"]["password"].empty? raise "Database password is empty, PostgreSQL section is: #{$arvados_config["PostgreSQL"]}"