Wiki Upgrade: Difference between revisions
(sandbox/dev boxes) |
No edit summary |
||
Line 64: | Line 64: | ||
</code> | </code> | ||
Revision as of 10:30, 21 December 2017
Eternal Wiki Upgrade Quest
This is the beginning of the wiki upgrade page....
Requirements
- https by letsencrypt
- debian 9
- no snowflakes, all our (known) devops culture at nb is ansible
- salt the passwords correctly
Chosen Technologies
- Ansible
- Debian 9
- Caddy
- Letsencrypt / Certbot
Ansible Roles
Noisebridge already has an ansible infrastructure repo, please join the Noisebridge github group and hack this: https://github.com/noisebridge/ansible/
- Certbot - https://github.com/geerlingguy/ansible-role-certbot
- Semantic Mediawiki - Mediawiki maintains some: https://phabricator.wikimedia.org/diffusion/1881/
- It may be useful to look at this one: https://github.com/yongxinL/ansible-mediawiki
Database Hacking
We need to upgrade a really old version of mediawiki and will likely need to futz with the database.
- Migrate to postgresql?
- make a git repo to store migration sql and other sql used for massaging the database contents
- Delete old passwords (md5 with no salt) and expire all user passwords?
- Write/publish public sql script to clean up the production database for public publishing
- Clean the database of spam/cruft?
- publish these scripts to the same sql script repo
MediaWiki-Vagrant
This potentially is a good environment for testing and migrating the database: https://www.mediawiki.org/wiki/MediaWiki-Vagrant
(more OpenStack Semantic MediaWiki images: https://wikitech.wikimedia.org/wiki/Portal:Cloud_VPS)
You'll need to follow this guide to get a dump of our database up and running: https://www.mediawiki.org/wiki/Manual:Moving_a_wiki
Password Rollover
We need to delete the password column and expire everyone's password. The old mediawiki only stores md5 hashed passwords with no salts, so we'll have to delete the whole thing
user_password_expires
MediaWiki version: ≥ 1.23
Date when user's password expires; null for no expiration date. Can also be set manually by calling User->expirePassword().