An error occurred fetching the project authors.
- 06 Jul, 2016 1 commit
-
-
Vincent Pelletier authored
Avoids being spammed with WARNING ZODB.DB DB.open() has X open connections with a pool_size of 7 on zopes with more than 7 worker threads. Also, allows better hit-rate on volatile attributes in such case, as otherwise connections (and their cache) would be discarded when many threads would be made busy, decreasing performance.
-
- 12 May, 2016 1 commit
-
-
Tristan Cavelier authored
The promise is-process-older-than-dependency-set still fails if necessary, but does not kill the zope anymore.
-
- 07 Mar, 2016 2 commits
-
-
Tristan Cavelier authored
-
Tristan Cavelier authored
-
- 07 Dec, 2015 1 commit
-
-
Julien Muchembled authored
-
- 22 Oct, 2015 2 commits
-
-
Julien Muchembled authored
Commit 6f009a9f broke generation of zope-*.conf
-
Julien Muchembled authored
This is a follow-up of commit 6f009a9f
-
- 06 Oct, 2015 1 commit
-
-
Tristan Cavelier authored
-
- 05 Oct, 2015 1 commit
-
-
Julien Muchembled authored
-
- 02 Oct, 2015 1 commit
-
-
Julien Muchembled authored
-
- 31 Aug, 2015 1 commit
-
-
Sebastien Robin authored
When looking for emergency user, zope configuration is not fully loaded yet, thus if we do not set INSTANCE_HOME at startup, it will be wrong. With this change, setting an "access" file under erp5shared folder will work properly In the same time, fix HOME folder to not be in a tmp folder
-
- 28 Aug, 2015 1 commit
-
-
Sebastien Robin authored
When looking for emergency user, zope configuration is not fully loaded yet, thus if we do not set INSTANCE_HOME at startup, it will be wrong. With this change, setting an "access" file under erp5shared folder will work properly In the same time, fix HOME folder to not be in a tmp folder
-
- 24 Aug, 2015 1 commit
-
-
Vincent Pelletier authored
Add support for "hosts" aliasing in Zope instances. Add support for SASL relayhost with mandatory TLS encryption. Add mandatory TSL + SASL authentication, to not be an open relay. Wrap postfix commands with proper environment instead of symlink + source-able script. Add ipv6 listening support (untested). Drop non-required main.cf configuration options. Make postifx instance optional (requires postmaster address to be provided). Document and rework smtp-related parameters. Expose an userhosts hostname for smtp server. Add diversion support (solution to "prod clone sent mails to real customer"). Use etc/run rather than etc/service, for consistency (if it needs to be changed, it must be changed for all software types). Hook into syslog and setup local syslog daemon, with logrotate integration. Update TODO entries.
-
- 17 Jul, 2015 2 commits
-
-
Julien Muchembled authored
-
Saurabh authored
For performance reasons, the root partition requests subpartitions during initialization of sections, whereas such processing should normally be done during the update/install phase. The consequence is that partitions may be requested whereas they depend on sections that fail (usually just temporarily, because of missing returned parameters in the first runs). For example, the request of zope partitions depends on the generation of passwords: 1. password generated (__init__) 2. zope partitions requested (__init__) 3. password saved (install) As long as a failure happens between 2 and 3, zope parameters are always updated with a different password. In the case of NEO, the instanciation of zope partitions currently succeeds even if the list of master nodes is missing (note that there is a minor bug to fix here: whenever a NEO storage is not the main one, zope processes may start too early, and the user may have to restart zopes manually). The 'inituser_done' file is created but zope processes fail to start if NEO is used as main storage, and all this happens before the password was saved in the root partition ([neo-0-final] failing to install because 'admins' parameter returned yet). This was never an issue with ZEO because zopes start successfully at the same time the 'inituser_done' file is created. One way to solve this could have been to introduce a dummy dependency between [neo-0-final] and any other section generating a password. Quite ugly and we also found non-optimal to use a non-backuped file in the root partition to save such information, whereas we need anyway to publish them for the user. Therefore, we introduce a new 'publish-early' recipe for accessing and publishing desired parameters before any request of partitions. Of course, these must not be dropped by the usual [publish] section, and to avoid having to repeating them all manually, we have also added a '-extends' option to the 'publish' recipe. We use the same technique to autogenerate and configure cluster name for NEO, which helps us in minimizing the number of params one has to pass for requesting NEO. In the 'generate.password' recipe, the 'storage-path' can now be empty, when there's no need to save the generated password in a file.
-
- 08 Jul, 2015 1 commit
-
-
Saurabh authored
Before it was only possible to make an ERP5 cluster connect to a NEO cluster that was instanciated separately, by passing "name" and "master_nodes" connection parameters in "storage-dict". For an internal NEO DB, "name" and "master_nodes" is filled automatically and you must instead pass a "server" dict, with same parameters as in NEO SR. Currently, a NEO cluster name must be given. Later, we hope to generate a good name automatically. All this was implemented by refactoring NEO & ERP5 SR, with common files. For the ERP5 SR, the root partition also serves as "root" partition for NEO partitions: in other words, there's no second empty partition.
-
- 12 Jun, 2015 1 commit
-
-
Tristan Cavelier authored
-
- 18 Feb, 2015 1 commit
-
-
Vincent Pelletier authored
hosts-dict alone is not powerful enough: in some cases, we want to alias a foreign hostname in order to control access to it (ex: to make interface calls fail on a clone).
-
- 09 Dec, 2014 1 commit
-
-
Julien Muchembled authored
All parameters about SLA, i.e. computer-guid & instance-guid, are removed in favor of a new "sla-dict" parameter, which is easier to implement and much more versatile. All changes in the request parameters are incompatible. The old ones are ignored without warning/error. For compatibility, the reference of ZEO partition is still "zodb". Default settings were also fine. Default name of mount-point and FileStorage file is reverted to 'root' instead of 'main'.
-
- 08 Dec, 2014 1 commit
-
-
Julien Muchembled authored
We now use a version of ZEO that support ipv6 natively so this is useless. Although TIDStorage only supports ipv4, it's easier and better to fix TIDStorage rather than maintaining such hack in SlapOS.
-
- 19 Nov, 2014 1 commit
-
-
Julien Muchembled authored
-
- 18 Nov, 2014 3 commits
-
-
Julien Muchembled authored
In order not to conflict with a future integration of NEO in ERP5: - the input schema has a new parameter for external storages. - zodb-software-type & zodb is used only for internal storages and only ZEO is supported. NEO logging is also enabled for clients.
-
Julien Muchembled authored
New 'slapos-kill' from slapos.toolbox is used instead of 'killpidfromfile' This is required for NEO which does not write any pid file.
-
Julien Muchembled authored
The inline recipe for ERP5 has been improved and converted into recipe, which is reused for NEO. Templates are instanciated only if they're used, so no need anymore to wrap them with: {% if slap_software_type == software_type -%} ... {% endif %}
-
- 28 Aug, 2014 3 commits
-
-
Vincent Pelletier authored
Update users.
-
Vincent Pelletier authored
Implemented using libuserhosts. Only provided to zope processes so far, may be extended in the future with each process seeing different sets of aliases, with potentially different resolutions.
-
Vincent Pelletier authored
Also, do not tolerate missing instance-count internal zope partition parameter.
-
- 22 Apr, 2014 1 commit
-
-
Vincent Pelletier authored
Remove non-needed parameters, empty unused parameter. Move "inituser" closer to "user" and "password", as they are related.
-
- 05 Apr, 2014 2 commits
-
-
Vincent Pelletier authored
Move haproxy httpchk configuration per-listen as zope's webdav returns 401 on (at least) GET / . TCP-level checks are still active, which should be sufficient. Also, change zope_family_address_list check to getitem as it's more natural than concatenating. Also, stop using apache.zope.backend recipe to add support for per-port scheme so automatic ERP5Site creation knows which URL is really HTTP. Also, stop using certificate_authority recipe and call openssl directly when generating self-signed cert for https/webdavs support. Also, rework balancer parameters a bit (still undocumented). Also, make instance-balancer always publish ipv6 value (empty when no ipv6 available), so instance-erp5 always succeeds.
-
Vincent Pelletier authored
Dot not move longrequest-logger parameters out yet, as they belong to another section.
-
- 03 Apr, 2014 1 commit
-
-
Vincent Pelletier authored
Escaping is right, but "raw" context entry type does not de-serialise, so deadlock debugger password was stored in an unintended format. Moving deadlock_debugger_password to a buildout section involves required magic. Move other parameters for consistency. Also, honour deadlock_path parameter, which was previously ignored.
-
- 20 Mar, 2014 1 commit
-
-
Vincent Pelletier authored
Not perfect yet, as some strings end in configuration files for example and need escape mechanisms aware of individual configuration file syntaxes.
-
- 04 Feb, 2014 2 commits
-
-
Vincent Pelletier authored
-
Vincent Pelletier authored
-
- 03 Feb, 2014 1 commit
-
-
Vincent Pelletier authored
Also, generate password randomly if not provided instead of using an hardcoded value. Publish them as they can be generated internally.
-
- 10 Jan, 2014 1 commit
-
-
Kazuhiko Shiozaki authored
otherwise buggy slapos.core-1.0 will be used if exists.
-
- 04 Sep, 2013 1 commit
-
-
Vincent Pelletier authored
Fixes backend maxconn value: it's now equal to zope's number of threads. Instead, generate configuration file from template and wrapper from stand-alone recipe. One local-only feature is lost: haproxy-ctl command is not present, but its usage should be rare enough to not be a problem now. Socket is present anyway, so any tool able to access a unix socket would do (ex: socat).
-
- 16 Aug, 2013 1 commit
-
-
Julien Muchembled authored
Before, a random password was generated for each group of zopes.
-
- 06 Aug, 2013 2 commits
-
-
Vincent Pelletier authored
Also, rename test CA directories so it's obvious they are designated for tests.
-
Vincent Pelletier authored
Otherwise it's never evaluated, and in turn binary-link is not when unit tests are disabled. Also, follow surrounding coding style.
-