Project

General

Profile

Actions

User story #4456

closed

Remove Rudder DIT internal information from rudder-web.properties

Added by François ARMAND almost 11 years ago. Updated over 4 years ago.

Status:
Resolved
Priority:
N/A
Assignee:
-
Category:
Web - Maintenance
UX impact:
Suggestion strength:
User visibility:
Effort required:
Name check:
Fix check:
Regression:

Description

Rudder web application configuration file ( /opt/rudder/etc/rudder-web.properties ) contains information about about Rudder internal LDAP DIT (i.e tree) organization, which is an internal only, developer related information.

There is no way that a Rudder user could change that and everything still work as exected - or at least, it may happen (well in fact, with quick&dirty test, it seems to work for mains things, kudo to dev), but we have ZERO value to expose that to user, beside making them wonder what the hell we are asking to configure, and freezing some internal choice forever.

Moreover, the properties are already marked as "should not be modified" and "internal value, do not touch".

The corresponding configuration properties are:

#
  1. LDAP DIT configuration #
  2. You should not have to modify the following properties, used to
  3. configure the inernal structure of the LDAP Directory. #
    ldap.node.base=cn=rudder-configuration
    ldap.rudder.base=ou=Rudder, cn=rudder-configuration
    ldap.inventories.software.basedn=ou=Inventories, cn=rudder-configuration
    ldap.inventories.accepted.basedn=ou=Accepted Inventories, ou=Inventories, cn=rudder-configuration
    ldap.inventories.pending.basedn=ou=Pending Inventories, ou=Inventories, cn=rudder-configuration
    ldap.inventories.removed.basedn=ou=Removed Inventories, ou=Inventories, cn=rudder-configuration

So, for 2.10, I propose to:

- remove that from rudder-web.properties,
- make the DIT structure what it is by convention, at the code level (i.e: in dev/services configuration, not in user related configuration)
- as migration path, make a script that checks that these properties have the default value, and remove them. In the hightly impropable case where a user changed these parameters, stop the migration and display a message asking to contact rudder development team to find the best way to help him (because we can't simply move the data around, if somebody did change these values, it may have had really really good and high motivation).

What do you think ? Jon, attributing to you for the discussion/validation, of course the implementation part would go other people.

Actions

Also available in: Atom PDF