New Hub: Pangeo JupyterHub (GCP) #482
Comments
|
Ideally we can have the current name https://us-central1-b.gcp.pangeo.io/ alias / redirect to the new hub. |
Progress Update#489 looks good to merge to deploy a new cluster. Unfortunately, we're blocked by an organisational constraint that prevents external IP addresses from being assigned. This will need intervention by @rabernat
In the meantime, I will test a full deploy on the |
yuvipanda
changed the title
|
From talking to @rabernat at the pangeo cloud meeting, we should make sure this has a support deployment (#456), with https://github.com/jupyterhub/grafana-dashboards setup. https://github.com/yuvipanda/python-popularity-contest should also be setup. |
Progress updateWe now have a cluster deployed into the new project! 🎉 I will begin working on deploying a staging hub |
|
@rabernat @TomAugspurger I'd love to understand Pangeo's authentication system a little more for working on a hub config.
(From pangeo-data/pangeo-cloud-federation#874) 2i2c hubs also use Auth0 but, as far as I understand, we still connect to a GitHub handle or Google Account. I'd love to know more about what's happening under the hood so I can translate the workflow. |
|
@sgibson91 I've added a to-do item for that one since it seems like a non-trivial thing to keep track of it their policy deviates from what we're used to doing |
|
I might be wrong about this, but my understanding is that filling out that form dumps your info into a Google Sheet. Then https://github.com/pangeo-data/pangeo-cloud-federation/blob/staging/.github/workflows/UpdateMembers.yml runs daily and automatically approves people using something in https://github.com/pangeo-data/pangeo-cloud-federation/blob/staging/.github/scripts/update_membership.py (adding to GitHub org? I haven't looked closely). I'm not sure if there's any additional configuration on the auth0 side. |
|
So the info we're collecting is a GitHub handle and so we'll want an auth config like the below, with a filter for the appropriate GitHub org (so it's not everyone on GitHub!). Does that sound right? |
|
I had a quick chat with @consideRatio in JupyterHub's gitter about GitHub teams being accepted by the GitHubOAuthenticator, like organisations are. It is apparently a feature that has been requested via other pathways, and rather than reimplement everything in https://github.com/pangeo-data/pangeo-cloud-federation/tree/staging/auth0, we should just make an upstream contribution to the OAuthenticator repo. (For comparison, GitLabOAuthenticator already accepts teams so this isn't wildly out-of-scope for the project.) I think this will also make the code we need to maintain on 2i2c's end less complex. Update: someone has already beaten me to it! jupyterhub/oauthenticator#449 |
Is the GitHub team/org here an "and" conditional or an "or" conditional? Update: I think this is an "and" by virtue of how GitHub structures orgs and teams |
Ok, I did not realize this. I am getting lots of panicked messages from students. Can we put a redirect at https://pangeo.2i2c.cloud? |
|
I did the above in Namecheap following https://www.namecheap.com/support/knowledgebase/article.aspx/385/2237/how-to-redirect-a-url-for-a-domain/ Hopefully it works and the docs say it should take ~30 mins to start working |
|
Just noting that redirection in not yet working. |
|
The redirect was also the issue of last night's certificates problem so I have removed it. TL;DR: I don't think it's possible to have the redirect you requested. Let me explain what happened: We have two DNS zones: 2i2c.cloud managed by 2i2c through Namecheap, and pangeo.io managed by the Pangeo community through Hurricane Electric (though I have access).
We set it up this way such that if the IP address of our LoadBalancer changes for any reason, we only need to update the A record in Namecheap and Pangeo will inherit the changes automatically. You can see how this would be critical for cases where we do not have access to the desired domain. So when we setup the redirect from I have now removed the redirect and our certificates have gone back to normal. I logged into the prod hub with no issue in a private browser. |
|
Thanks for the explanation. As of right now, I am still getting |
|
Perhaps? We should be using us-central1-b.gcp.pangeo.io anyway as the Load Balancer won't allow traffic from pangeo.2i2c.cloud now. |
choldgraf
moved this from Needs Refinement
to Ready to work
in DEPRECATED Engineering and Product Backlog
|
The migration seems to have done great! I am so incredibly pleased with the entire process. Thanks to everyone and especially @sgibson91 for leading this effort! 👏 🏆 🏅 Can we switch off the old cluster now? |
|
@rabernat we've got a blog post ready to go live that announces that the Pangeo cluster is now running on the 2i2c deployment: 2i2c-org/2i2c-org.github.io#85 In the post, it suggests that on November 22nd (next Monday), the old cluster will be shut down. We were hoping that would be enough time for one last migration push. Is that OK with you? I know that cost is a concern here, so if you think that the timeline needs to be accelerated let us know. |
|
Sure, sounds fine! Can we cross-post this blog post on the Pangeo blog? (It's Medium unfortunately 🤮 ) |
I'm happy with that |
|
@rabernat that sounds good to me, how do we do that? |
|
I think we just copy-paste the rich text into medium. It would be great for @sgibson91 to be the official author on medium--for that Sarah you will need to let me know your medium account name and I'll add you as an author. If you don't want to do that, I can just publish it under my name and acknowledge you as the author in the text. Either way we will link to the original 2i2c post. I'm fine to have the 2i2c post be the "main" post; the Pangeo blog is just a nice continuous record of major milestones for the project, so it will be good to have it show up there. |
|
|
Ok done! You should be able to submit a story to https://medium.com/pangeo/. I would probably make the 2i2c post live first and then just copy-paste the text over to medium. |
|
Thank you @rabernat! |
Update: Blog post is up!We've posted a blog post about this one (2i2c-org/team-compass#272) and are now directing users to the Pangeo hub running on 2i2c's infrastructure! What is remaining for us to consider this one complete? Is the task list above correct or are we missing something? I believe that as of right now, these tasks remain:
|
|
@rabernat I submitted the blog to Pangeo's medium 🚀 |
|
I've just set off the command to delete the old |
|
This news makes me so happy. Thank you @sgibson91! |
|
Just want to echo @rabernat - thanks @sgibson91 for all of your hard work in helping transition Pangeo to the next phase of its infrastructure 🚀 |
|
Thanks folks!
@choldgraf shall we track this in 2i2c-org/team-compass#136 and close this one? |
choldgraf
moved this from Ready to work
to In progress
in DEPRECATED Engineering and Product Backlog
|
@sgibson91 that works! |
|
Note - I closed up https://github.com/orgs/2i2c-org/projects/24/views/1 so that we can keep that one focused around the major JupyterHub migration for Pangeo. For subsequent projects with Pangeo, we can create focused project boards around those topics as well. There were two more items in there, but it wasn't clear to me whether @sgibson91 considered those as part of the migration itself. If so, I think that we should re-focus efforts around those issues now, but if the Pangeo hub as-it-stands works well, then I think we can tackle those in subsequent efforts around that hub |
choldgraf
moved this from In progress
to Complete
in DEPRECATED Engineering and Product Backlog
Background
The Pangeo Project currently runs a number of JupyterHubs and BinderHubs for their community, but do not have dedicated resources to operate and maintain this infrastructure. We have plans to migrate these hubs to 2i2c infrastructure so that we can provide this service for them. This issue will track the migration of the JupyterHub currently hosted on GCP.
Current hub config location: https://github.com/pangeo-data/pangeo-cloud-federation
Sources of info:
Setup Information
Important Information
Deploy To Do
admin
Set up cluster
pangeo-integration-te-3eeaproject for Pangeo pilot hubs #488Set up hubs
The text was updated successfully, but these errors were encountered: