Update event security logs documentation regarding logging charm operations #1254
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* WIP: enable pg_tracing * adapt render patroni function * Move pg_tracing conf to the correct location * fix lint and unit tests * use ubuntu 24.04 as base * fix issues + revert base to jammy * fix queries for plugin testing * downgrade psycopg2 version * update lock file * update psycopg2-binary too * revery psycopg2 versions and add ssl params * revert lock * use noble as base * use different workflow version * remove cache * edit plugin * fix integration tests * revert pgtracing config + add new snaps * try fixes * try new fixes * try fixing restart * try catching reload errors * adapt test_subordinates to remove ubuntu pro charm * try use newer branch for workflow * fix lock hash * use new branch for plugin too * remove old refs to pg 14 * specify cc version 3 on release workflow * remove juju 2.9 + refactor release workflow * remove libjuju constraint * fix release too * use new charm + small adjustments * fix lock file * fix build_charm issue * remove base from deploy calls * nits * Use `charmcraft test` & concierge (#762) * Update charmcraft.yaml build tools (#760) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6020] Better promote-to-primary unit scope error handling (#759) * Bump libs * Flip default scope * Better action failure * Wrong attr * Revert scope * Bump libs * Handle async replica switchover * Unit tests * Bump cosl * Disable Nextcloud test (#767) * Update canonical/data-platform-workflows action to v30 (#770) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Use _promote_charm.yaml (#771) Use `charmcraft promote` and auto-generate release notes * [DPE-5827] Set all nodes to synchronous replicas (#672) * Set all nodes to synchronous replicas * Fix template var * Also change config patching * Update sync nodes during upgrade * Revert are_writes_increasing changes * Add back logging * Try without logs * Tactical sleep * Log removal error * Remove logs * Tweak replication test * Pass down unit * Wait for test app to idle * Add comment * Port config changes * Copy policy test * Fix import * Missed param removal * Unit test * Missing attr * Add logs * Add timeout to connection * Log conn str * Fix num of standbys * Charm fixture * Remove stepdown hook * Config description * Revert conn str * Add async scaling test * Typo * Don't remove standby and primary * Update dependency psutil to v7 (#772) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency cryptography to v44.0.1 [SECURITY] (#764) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v30.0.2 (#765) * Update canonical/data-platform-workflows action to v30.0.2 * Update promote.yaml --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> * [DPE-6323] Handle missing stanza output (#727) * Handle missing stanza output * Update libs * Unit tests * Update canonical/has-signed-canonical-cla action to v2 (#773) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Define charm constants (#774) * Lock file maintenance Python dependencies (#743) * Lock file maintenance Python dependencies * Backoff boto3 1.36 --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> * Update charmcraft.yaml build tools (#768) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v30.1.3 (#776) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency uv to v0.6.3 (#780) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Sanitize PostgreSQL extra-user-roles arg (#782) * [MISC] Fix PostgreSQL lib function signature (#786) * [MISC] Skip backup and subordinate tests without creds (#789) * Bump libs * Skip backup tests without creds * Skip subordinate tests * Update tests/integration/test_subordinates.py Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> --------- Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> * Update dependency jinja2 to v3.1.6 [SECURITY] (#788) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Reduce required approvals on Renovate pull requests by 1 (#787) * Sync docs from Discourse (#748) Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v30.2.0 (#792) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency uv to v0.6.5 (#785) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Pg 16 sync main (#793) * Use `charmcraft test` & concierge (#762) * Update charmcraft.yaml build tools (#760) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6020] Better promote-to-primary unit scope error handling (#759) * Bump libs * Flip default scope * Better action failure * Wrong attr * Revert scope * Bump libs * Handle async replica switchover * Unit tests * Bump cosl * Disable Nextcloud test (#767) * Update canonical/data-platform-workflows action to v30 (#770) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Use _promote_charm.yaml (#771) Use `charmcraft promote` and auto-generate release notes * [DPE-5827] Set all nodes to synchronous replicas (#672) * Set all nodes to synchronous replicas * Fix template var * Also change config patching * Update sync nodes during upgrade * Revert are_writes_increasing changes * Add back logging * Try without logs * Tactical sleep * Log removal error * Remove logs * Tweak replication test * Pass down unit * Wait for test app to idle * Add comment * Port config changes * Copy policy test * Fix import * Missed param removal * Unit test * Missing attr * Add logs * Add timeout to connection * Log conn str * Fix num of standbys * Charm fixture * Remove stepdown hook * Config description * Revert conn str * Add async scaling test * Typo * Don't remove standby and primary * Update dependency psutil to v7 (#772) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency cryptography to v44.0.1 [SECURITY] (#764) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v30.0.2 (#765) * Update canonical/data-platform-workflows action to v30.0.2 * Update promote.yaml --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> * [DPE-6323] Handle missing stanza output (#727) * Handle missing stanza output * Update libs * Unit tests * Update canonical/has-signed-canonical-cla action to v2 (#773) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Define charm constants (#774) * Lock file maintenance Python dependencies (#743) * Lock file maintenance Python dependencies * Backoff boto3 1.36 --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> * Update charmcraft.yaml build tools (#768) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v30.1.3 (#776) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency uv to v0.6.3 (#780) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Sanitize PostgreSQL extra-user-roles arg (#782) * [MISC] Fix PostgreSQL lib function signature (#786) * [MISC] Skip backup and subordinate tests without creds (#789) * Bump libs * Skip backup tests without creds * Skip subordinate tests * Update tests/integration/test_subordinates.py Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> --------- Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> * Update dependency jinja2 to v3.1.6 [SECURITY] (#788) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Disable cache * Reduce required approvals on Renovate pull requests by 1 (#787) * Sync docs from Discourse (#748) Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> * Cleanup juju 2 tests * Linting * Integration test diffs * Try with series for ubuntu pro subordinate * Filter terminated units * Bump PG version * Disable pgaudit for timescale and postgis * Linting * Remove tests * Remove param for secrets * Linting * Idle when disabling pgaudit * Actually disable audit * Disable timescale in object test * Try to disable plugins between tests * Update canonical/data-platform-workflows action to v30.2.0 (#792) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Try to disable pgaudit in general --------- Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Sinclert Pérez <sinclert.perez@canonical.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> * Dual branch configs * Revert lib changes * Remove legacy rels * Restore pydantic rule * Remove legacy rels metadata * Remove manual dispatch * Create schema to test admin user privileges * Cleanup markers * Workaround for cluster restore test * Promote permadiff * Apply suggestions from code review Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Bump snaps --------- Co-authored-by: Shayan Patel <shayan.patel@canonical.com> Co-authored-by: Lucas Gameiro Borges <lucas.borges@canonical.com> Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <6687393+dragomirp@users.noreply.github.com> Co-authored-by: Sinclert Pérez <sinclert.perez@canonical.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
[DPE-6112] Sync main Merging two branches to avoid rebasing/squashing for long lasting huge branch.
* [MISC] Use latest/stable lxd (#804) * Use latest stable lxd * Test tweaks * Test tweaks * Update canonical/data-platform-workflows action to v31.0.1 (#805) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6874] Poll all members in the cluster topology script (#810) * Poll all members in the cluster topology script * Dual branch config * Unit tests and bugfixes * Add peers when starting the observer * Retry sync up checks --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* [MISC] Use latest/stable lxd (#804) * Use latest stable lxd * Test tweaks * Test tweaks * Update canonical/data-platform-workflows action to v31.0.1 (#805) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6874] Poll all members in the cluster topology script (#810) * Poll all members in the cluster topology script * Dual branch config * Unit tests and bugfixes * Add peers when starting the observer * Retry sync up checks * [DPE-6572] Add wal_keep_size config option (#799) * Add wal_keep_size config option Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove parameter addition Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Reset durability_wal_keep_size value to PG default Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Create pull_request_template.md (#814) * Create SECURITY.md (#822) * Update README file's security section (#827) * Refactor headings for syntax best practice * Update the Security section * Sync docs from Discourse (#796) Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> * [MISC] Conditional checksum calculation (#812) * Bump boto * Conditional checksum calculation * [DPE-6218] Static code analysis (#828) * Create tiobe_scan.yaml * Remove push trigger * Bump snap revisions * [MISC] Disable landscape subordinate test lxd (#831) * Set series for ubuntu-advantage test and disable the landscape test * Revert to LTS LXD --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: Andreia <andreia.velasco@canonical.com> Co-authored-by: Vladimir Izmalkov <48120135+izmalk@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
* disable pgaudit during extensions changes * Bump lib
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
backported from `postgresql-k8s-operator` This PR introduces juju user secrets for managing passwords. It contains the following changes: **Functionality:** - no longer support `get-password` and `set-password` actions - new config option `system-users` to configure a secret that includes the system users' password(s) - it is no longer possible to leave out the password parameter to trigger a password rotation as secrets cannot have empty values **Implementation:** - add handler for `secret_changed` event to `charm.py` - add method `get_secret_from_id()` to `charm.py` - trigger updating the system user passwords on `config_changed` - consider pre-configured system user passwords on `leader_elected` - remove `get_password` handler - replace `set_password` handler with `_update_admin_passwords()` method - `_update_admin_passwords()` is responsible for the actual business logic: - retrieving the passwords from the configured secret - checking if password updates need to be performed - calling the `postgresql.update_user_password()` method **Testing:** - remove integration tests that are no longer required, such as testing for empty password or testing if the output of get-password is the same as the output of juju show-secret - adjust integration test helpers for get_password() and set_password to use secrets - remove unit tests for get-/set-password actions
* [MISC] Use latest/stable lxd (#804) * Use latest stable lxd * Test tweaks * Test tweaks * Update canonical/data-platform-workflows action to v31.0.1 (#805) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6874] Poll all members in the cluster topology script (#810) * Poll all members in the cluster topology script * Dual branch config * Unit tests and bugfixes * Add peers when starting the observer * Retry sync up checks * [DPE-6572] Add wal_keep_size config option (#799) * Add wal_keep_size config option Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove parameter addition Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Reset durability_wal_keep_size value to PG default Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Create pull_request_template.md (#814) * Create SECURITY.md (#822) * Update README file's security section (#827) * Refactor headings for syntax best practice * Update the Security section * Sync docs from Discourse (#796) Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> * [MISC] Conditional checksum calculation (#812) * Bump boto * Conditional checksum calculation * [DPE-6218] Static code analysis (#828) * Create tiobe_scan.yaml * Remove push trigger * [MISC] Disable landscape subordinate test lxd (#831) * Set series for ubuntu-advantage test and disable the landscape test * Revert to LTS LXD * Update charmcraft.yaml build tools (#815) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Update snapped PostgreSQL (#832) * [DPE-6345] LDAP I: Create access groups (#823) * [DPE-6345] LDAP II: Include charm libs (#824) * [DPE-6345] LDAP III: Define config and handlers (#825) * [DPE-6345] LDAP IV: Define snap service (#838) * [DPE-6345] LDAP V: Define mapping option (#849) * [MISC] Disable network cut tests on arm (#844) * Disable network cut tests on arm * Back to LXD 5 * [DPE-6815] disable pgaudit during extensions changes (#842) * disable pgaudit during extensions changes * Bump libs * Lock file maintenance Python dependencies (main) (#816) * Lock file maintenance Python dependencies * Fix linting --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: Andreia <andreia.velasco@canonical.com> Co-authored-by: Vladimir Izmalkov <48120135+izmalk@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Sinclert Pérez <sinclert.perez@canonical.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* Separate storage pools Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix charm test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix async replication Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix replica bootstrap Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix data directory removal on restore Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix backup do microceph test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix upgrade integration tests Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add test to check new multiple storages Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add storages'descriptions Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix test_charm_garbage_ignorance Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix restore cluster test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix storage re-use test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
* Separate storage pools Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix charm test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix async replication Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix replica bootstrap Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix data directory removal on restore Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix backup do microceph test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix upgrade integration tests Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add test to check new multiple storages Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add storages'descriptions Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix test_charm_garbage_ignorance Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix restore cluster test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix storage re-use test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Reduce volume size * List storage * Poor man's jubilant * Cleanup * Correct charm path * Fix base * Debug missing storage * Wait for storage to be available --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
* Split HA tests Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix spread configurations Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
* (wip) segregate address for `database` endpoint * list on available addresses * include async repl support * not pods * fix unit label/name conversion * fixes for async * lint fixes * integration test * spread config for integration test * unit test fixes * update jubilant * fix endpoint name * bump jubilant * log need to collected within the context manager * avoid breaking when unit is leaving the cluster * out-of-sync members must be outed from online members * sometimes, a stopped member can be down and still be shown as streaming, but with out-of-sync * increase tests timeouts
Uses `charm-refresh` Python package: https://github.com/canonical/charm-refresh Only supports refreshing to/from postgresql charm code with refresh v3
Tests are flaky
This reverts commit 3d6ed10.
This reverts commit 2f6131a.
Leftover after reverting hard-coded charm version in #866 Force merge to unblock unit test for followup merges.
Currently, the charm refresh compatibility version gets marked as dirty since the working tree is not clean This causes all refreshes to get marked as incompatible Follow up to #866
Tests are flaky
* Add docs tmpfs warning Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add custom words Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix typo Co-authored-by: Andreia <andreia.velasco@canonical.com> * Reorganise warning text Co-authored-by: Andreia <andreia.velasco@canonical.com> * Remove quote Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix Juju anchors Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: Andreia <andreia.velasco@canonical.com>
* refactor charm version explanations and update releases page * add intersphinx for postgresql 14 * small edits to sync with 14 * small edit * sync with 14 * Added feature lists back to modern charm versions * Removed irrelevant legacy information in favor of redirection to PostgreSQL 14 * fix broken references
* Wait for ip to generate leader cert * Regenerate cert if common name is host * Add info message on internal cert generation
* DPE-8337 Disable Patroni config to prevent possible dataloose Disable Patroni config options explecitely: remove_data_directory_on_rewind_failure and remove_data_directory_on_diverged_timelines. P.S. they are disabled by default in Patroni. (cherry picked from commit 10ace6a) * Force config change for upgrade --------- Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* Add refresh home page and upgrade guide * separate glossary and add rollback guide * update releases page * fix broken link * update releases page and fix glossary heading * remove extra heading level * fix typo * add some small clarifications * prioritize refresh terminology * fix toctree * (wip) apply some feedback * fix errors * Add refresh home page and upgrade guide * separate glossary and add rollback guide * update releases page * update releases page and fix glossary heading * remove extra heading level * fix typo * add some small clarifications * prioritize refresh terminology * fix toctree * (wip) apply some feedback * fix errors * Update landing page * Fix reference * Fix pause-after-unit-refresh * Fix rst link * Add snap revision * remove duplicate page and undefined terms * draft * update link * update link * punctuation * Remove refresh glossary entries * Use rst inline links as workaround * feedback * fix link * feedback * feedback * separate halt section (#1179) * revert changes to releases.md to fix merge conflicts * feedback --------- Co-authored-by: Carl Csaposs <carl.csaposs@canonical.com>
…rmission after reboot (#1156) * Update single kernel library and add integration test for checking that tmpfs storage works after reboot Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lock file Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add spread test file Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Point library to commit Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update library version Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix storage permissions after restore Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Revert "Fix storage permissions after restore" This reverts commit 7263ae4. Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update library for correct permissions comparison and set the right permission when the instance is bootstrapped Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib version Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
* Set strict sync mode * Check sync units as well * Bump libs
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* Lock file maintenance Python dependencies * Add substrate --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
* Update lib to handle new invalid database name and to handle storage ownership and permissions Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update lib Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* add new syntax highlighting * update and polish architecture page (wip) * add target to section
Closes: #1225 Thanks to Nobuto Murata for the fix!
* [MISC] Use latest/stable lxd (#804) * Use latest stable lxd * Test tweaks * Test tweaks * Update canonical/data-platform-workflows action to v31.0.1 (#805) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6874] Poll all members in the cluster topology script (#810) * Poll all members in the cluster topology script * Dual branch config * Unit tests and bugfixes * Add peers when starting the observer * Retry sync up checks * [DPE-6572] Add wal_keep_size config option (#799) * Add wal_keep_size config option Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove parameter addition Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Reset durability_wal_keep_size value to PG default Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Create pull_request_template.md (#814) * Create SECURITY.md (#822) * Update README file's security section (#827) * Refactor headings for syntax best practice * Update the Security section * Sync docs from Discourse (#796) Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> * [MISC] Conditional checksum calculation (#812) * Bump boto * Conditional checksum calculation * [DPE-6218] Static code analysis (#828) * Create tiobe_scan.yaml * Remove push trigger * [MISC] Disable landscape subordinate test lxd (#831) * Set series for ubuntu-advantage test and disable the landscape test * Revert to LTS LXD * Update charmcraft.yaml build tools (#815) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Update snapped PostgreSQL (#832) * [DPE-6345] LDAP I: Create access groups (#823) * [DPE-6345] LDAP II: Include charm libs (#824) * [DPE-6345] LDAP III: Define config and handlers (#825) * [DPE-6345] LDAP IV: Define snap service (#838) * [DPE-6345] LDAP V: Define mapping option (#849) * [MISC] Disable network cut tests on arm (#844) * Disable network cut tests on arm * Back to LXD 5 * [DPE-6815] disable pgaudit during extensions changes (#842) * disable pgaudit during extensions changes * Bump libs * Lock file maintenance Python dependencies (main) (#816) * Lock file maintenance Python dependencies * Fix linting --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> * Update dependency uv to v0.6.16 (#847) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-6664] Make username mandatory in set-password (#846) * Make username mandatory * Second get password method * Default in get-password * Add conditional expose directive (#853) * Lock file maintenance Python dependencies (#854) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Mandatory scope for promote action (#856) * Update charmcraft.yaml build tools (#860) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Lock file maintenance Python dependencies (#861) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Sync docs from Discourse (#850) Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com> * [MISC] Extend relation-user listing syntax (#868) * Sync libs (#884) * Remove runner password (#913) * [DPE-6898] User->databases pg_hba rules (#885) * Restrict each user to their allowed databases Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix unit tests Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix sync users on replicas Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix unit test Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add default landscape user permission Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Increase sleep time in pg_hba test, fix user->database mapping for upgrade from stable and skip event trigger function code when not a superuser Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Improve users list check Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix raft reinitialisation in tests Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Decrease the amount of API calls by one Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Check users list directly Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Tweak test fast interval Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Improvements to avoid replica restart while syncing from primary Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix linting Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update charmcraft.yaml build tools (#871) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Remove JujuVersion warning in 14/edge (#933) * Remove JujuVersion warning * Update libs * Refactor v14 documentation for Sphinx (#919) * initial starter pack transfer * update conf.py * import processed discourse pages * fix internal references and some broken URLs * fix some style errors * organize navigation * remove h1 heading anchors * add images to repository * edit home page * update .readthedocs.yaml * remove docs/requirements.txt from .gitignore scope * fix incorrect paths * remove shell syntax from code blocks * remove juju 2 banners * fix dropdown formatting * fix and polish admonitions, collapsible, and misc formatting * remove v16 docs * remove reference to nonexistant page * Join all tutorial pages * rename how-to-guides to how-to * polish cloud deployment guides and rename leftover how-to-guide references * polish and sync how-to guides with k8s * remove discourse sync workflow * specify channel on all deploy commands * misc polishing, add version to side nav * add pg 16 admonitions * ignore docs folder in charm workflows * sync misc. pages with k8s * Minor README update with new documentation link * add new section to CLI-helpers reference * pin commit for v16 tag on markdown lint workflow for added security * Update README.md * remove sphinx python dependency check workflow * Update index.md: add link to roles.md (#928) --------- Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: Alex Lutay <1928266+taurus-forever@users.noreply.github.com> * [DPE-7511] Fix the auth username pattern (#941) * Fix auth username pattern Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix another ocurrence of the pattern Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update PG to 14.18 (#943) * [DPE-7521] Fix HBA rules for Landscape related through PgBouncer (#946) * Fix HBA rules for Landscape related through PgBouncer Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update comment Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Order users and databases Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Add unit test for relations_user_databases_map property Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Fix typo Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * DPE-6662 Fix pgbackrest logs names on logs rotation (#939) (#949) The pgBackRest activity (backup creation, stanza initialisation, etc) could take minutes, as a result every minute logs rotation could move the current log A.log to A.log_$date.log and will be moved further as logrorate rule operates all *.log files in the folder: > /var/snap/charmed-postgresql/common/var/log/pgbackrest/*.log { ... It results in: -rw------- 1 postgres postgres 0 Feb 18 09:25 all-server.log -rw------- 1 postgres postgres 0 Feb 18 09:19 all-server.log-20250218_09:18.log -rw------- 1 postgres postgres 0 Feb 18 09:20 all-server.log-20250218_09:18.log-20250218_09:19.log -rw------- 1 postgres postgres 0 Feb 18 09:21 all-server.log-20250218_09:18.log-20250218_09:19.log-20250218_09:20.log -rw------- 1 postgres postgres 0 Feb 18 09:22 all-server.log-20250218_09:18.log-20250218_09:19.log-20250218_09:20.log-20250218_09:21.log -rw------- 1 postgres postgres 0 Feb 18 09:23 all-server.log-20250218_09:18.log-20250218_09:19.log-20250218_09:20.log-20250218_09:21.log-20250218_09:22.log -rw------- 1 postgres postgres 1793 Feb 18 09:24 all-server.log-20250218_09:18.log-20250218_09:19.log-20250218_09:20.log-20250218_09:21.log-20250218_09:22.log-20250218_09:23.log The poposed fix: * move the log file to the new name without .log suffix. * use datetime format matching MySQL charms Example: -rw------- 1 postgres postgres 12 Feb 18 09:28 all-server.log -rw------- 1 postgres postgres 322 Feb 18 09:29 all-server.log-20250218_0918 -rw------- 1 postgres postgres 7344 Feb 18 09:30 all-server.log-20250218_0918 (cherry picked from commit ffa77b2) * Update Python dependencies (#904) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v31.1.1 (#872) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Add redirects for all charmhub pages (14) (#961) * feat: add rediraffe sphinx extension and discourse redirects for each page * convert tabs to single space * fix: minor style issues in README.md and CONTRIBUTING.md * comment out old redirect extension to avoid confusion * Update dependency requests to v2.32.4 [SECURITY] (#956) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Backport #959 to 14/edge (#963) * Lock file maintenance Python dependencies (#874) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * fix: add forward slash to redirect paths (#964) * fix typo (#965) * Update dependency uv to v0.7.13 (#951) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Rename team (#972) * [MISC] Check is_user_in_hba output (#973) * Check is_user_in_hba output * Drop extra parameter * Update canonical/data-platform-workflows action to v32 (main) (#873) * Update canonical/data-platform-workflows action to v32 * Update libs and release flow --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> * Lock file maintenance Python dependencies (#976) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency uv to v0.7.14 (#995) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Lock file maintenance Python dependencies (#996) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MISC] Don't restart during initial sync (#1000) * Don't restart during initial sync * Catch relations map exceptions * Lock file maintenance Python dependencies (#1011) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-7549] Add compression and restore max-process (#1009) * Add compression and restore max-process * Update libs * typo: "chances" to "changes" (#1018) * remove markdown linter action (#1028) * Fix automatic doc checks (#1006) * Fix spellcheck * Fix some broken URLs * fix remaining broken urls * add missing backticks to toctrees * small spellcheck fix * DPE-7723: Update releases.md: fix arch for revs 429/430 (#1046) ## Issue https://canonical-charmed-postgresql.readthedocs-hosted.com/14/reference/releases/ says rev 430 is amd64 rev 429 is arm64 This is wrong: ``` juju download postgresql --revision 429 unp ./postgresql_r429.charm -d ./r429 grep amd ./r429/manifest.yaml - amd64 ``` ## Solution Update docs with proper pinning. Fixes: #1045 * [DPE-6259] pgbackrest config perms (#1038) * Remove read access to pgbackrest conf file * Update libs * Set extra user roles config for the test app * Fix data-int base * Set channel and series in ne rel tests * Fix MicroStack links (#1063) * [DPE-7594] Sync up pg_hba changes and remove trigger (#1070) * Port user hash * Blocking test app * Update canonical/data-platform-workflows action to v32.2.1 (#1065) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Lock file maintenance Python dependencies (#1020) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Migrate config .github/renovate.json5 (#1074) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update charmcraft.yaml build tools (#1010) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-7871] Reorder map logic (#1075) * Reorder map logic Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove unneeded check Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * [DPE-7594] Add custom users to pg_hba filter (#1073) * Add custom users to pg_hba filter * Fix unit test * Tests for async replication.py (#1033) * def test_can_promote_cluster(): * test_handle_database_start * _on_async_relation_changed * test_on_secret_changed first if * change a lit bit * add tests for stop database function * still need some upgrades * add this * add learning * test__configure_primary_cluster * clean up * we don't need import application * start test__on_async_relation_departed * format * done test__on_async_relation_departed * test_on_async_relation_joined * test_on_create_replication * test_promote_to_primary * add test * test_wait_for_standby_leader * formatize * formatize 2.0 * test_get_partner_addresses * test_handle_replication_change * test_handle_forceful_promotion * add tests * test_on_async_relation_broken * formatize * finishing * need some help * date * add aplications * format * promote_standby_cluster is none * add unit name --------- Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> * Lock file maintenance Python dependencies (#1077) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Add SNAP revisions to Releases page (#1086) * Add SNAP revisions to Releases page For end-users, it is hard to find the proper/expected SNAP revison for the specific Charm revision in Git. This should simplify it. * fix broken URLs --------- Co-authored-by: andreia <andreia.velasco@canonical.com> * Update canonical/data-platform-workflows action to v32.2.2 (#1088) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update GitHub actions to v5 (#1090) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Lock file maintenance Python dependencies (#1091) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update charmcraft.yaml build tools (#1089) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency uv to v0.8.12 (#1103) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * DPE-7968 Bump snap revision (remove python3-boto3 for CVE-2023-37920) (#1109) * Lock file maintenance Python dependencies (#1104) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update canonical/data-platform-workflows action to v32.2.3 (#1102) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update Charmhub home page (14) (#1110) * Update metadata.yaml * Update VM terminology * Lock file maintenance Python dependencies (#1121) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update dependency uv to v0.8.13 (#1119) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update charm libs (#1127) * Update canonical/data-platform-workflows action to v35 (#1120) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Enable ceph test on arm (#1129) Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Update dependency uv to v0.8.14 (#1130) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Don't block if the snap cannot be installed (#1136) * Lock file maintenance Python dependencies (#1131) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Add back raft encryption check (#1146) * DPE-8299 Bump disk cleanup timeout 1=>10 (#1148) * [DPE-8005] Handle empty region (#1157) * Handle empty region * Handle invalid stanza name * DPE-8296 Bump PostgreSQL to 14.19 (#1147) * Lock file maintenance Python dependencies (#1143) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * DPE-8296 Downgrade promote.yaml to _promote_charm.yaml@v31.1.1 (#1161) D-p-w v32+ requires refresh v3 versioning, otherwise: https://github.com/canonical/postgresql-operator/actions/runs/17777132580 > Invalid workflow file: .github/workflows/promote.yaml#L28 > error parsing called workflow ".github/workflows/promote.yaml" -> > "canonical/data-platform-workflows/.github/workflows/_promote_charm.yaml@v35.0.2": > failed to fetch workflow: workflow was not found. * Remove reinits (#1168) * [MISC] Config hash (#1166) * Use Patroni API for is_restart_pending * Cached props * Magic sleep and legacy rel names * Hash config value and restart only on change * Tweaks * Legacy interface fix * Fix legacy test * Increase idle period * Wrong username * Remove copypasta * Update versions and release documentation (14) (#1158) * Refactor charm version explanation pages * refactor releases reference pages * Move all legacy information to legacy charm page * Add feature lists back to modern charm versions page * fix broken references * [MISC] Fix smoke test (#1184) * Volume tests * Manually deploying * [DPE-8337] Disable Patroni config to prevent possible data loss (#1173) * DPE-8337 Disable Patroni config to prevent possible dataloose Disable Patroni config options explecitely: remove_data_directory_on_rewind_failure and remove_data_directory_on_diverged_timelines. P.S. they are disabled by default in Patroni. * DPE-8337 Fix integration tests * Force set the rewind config --------- Co-authored-by: Dragomir Penev <dragomir.penev@canonical.com> * Lock file maintenance Python dependencies (#1176) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [DPE-8430][DPE-8427] Mute error message to debug and creation of access roles (#1186) * Mute error message to debug * Create access roles * Move setup of access roles to upgrade granted * Try to use mnt for storage * Skip disk cleanup * Update charmcraft.yaml build tools (#1142) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * DPE-8470 Bump snap for Patroni to 3.3.8 (#1197) * [MISC] Set strict sync mode (#1196) * Set strict sync mode * Try bootstrapping with false strict mode * Move increase writes check * Try to cleanup only if the test didn't fail * Add checks for strict mode * Revert "Add checks for strict mode" This reverts commit 85b7f61. * Try using env to detect test failure * Remove redundant arg * Try stopping instead of cleaning * Only set strict mode if there are multiple active units * Check sync units as well * Update dependency ops to v3 (#1019) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Lock file maintenance Python dependencies (#1203) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * DPE-8395 Remove old revision of Juju Secret (#1195) * Remove old revision of secret Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove secrets' old revision on upgrade Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove all previous secret revisions Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Handle juju/juju#20782 Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Revert "Handle juju/juju#20782" This reverts commit 0e29e0e. Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Reapply "Handle juju/juju#20782" This reverts commit 0e23c96. Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Handle juju/juju#20794 Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Consider all secrets created by the charm Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Check for secrets support Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Remove upgrade logic Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * DPE-8470 Temporary revert to Ops 2 (#1208) Issue: Some tests start failing ops v3 (especially self-healing). It requires investigation, but 14/stable is long waited for PS6 fixes. Solution: Temporary reverting ops to previous version 2 to release the next 14/stable * Revert self healing 3 --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: Andreia <andreia.velasco@canonical.com> Co-authored-by: Vladimir Izmalkov <48120135+izmalk@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Sinclert Pérez <sinclert.perez@canonical.com> Co-authored-by: swetha1654 <swetha.swaminathan@canonical.com> Co-authored-by: Alex Lutay <1928266+taurus-forever@users.noreply.github.com> Co-authored-by: Mykola Marzhan <303592+delgod@users.noreply.github.com> Co-authored-by: Tushar <30565750+tushar5526@users.noreply.github.com> Co-authored-by: Gere_X <52193900+Gere321123@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* Add security event logging documentation Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * ignore terraform URLs in linkchecker --------- Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> Co-authored-by: andreia <andreia.velasco@canonical.com>
* Porting tests WIP * Tweak async repl test * WIP * Remove disk cleanup * Add password getter * Tweaks * Upgrade test * Back to backports * Switch to get primary action * Add continuous writes fixture * add upgrade from stable * Wait for idle * Try to handle force refresh * Don't wait for maintenance * Typed params * Tweak actions * Tweaks * Tweak upgrade test * Retry start in case of ro transaction * Tweak tests * Abort test run on first failure * Upgrade test * Fix skip pre-refresh-check test * Async replication test WIP * Async replication tweaks * Move rerelate test up * Async replication tweaks * Scale up and more tweaks * Handle leadership name in async clsuter * Deploy in one go * Patch at base * Enable scale up test * Retry consistency check on main cluster scale down * Apply suggestions from code review Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com> * Code review improvements --------- Co-authored-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
Make it easier to track changes to LXC images downloaded by Juju to help troubleshoot issues such as https://chat.canonical.com/canonical/pl/spbm6i4hwprrbqb13e9tfuuuyc
* remove blocked state * Remove TODO
* Run resume refresh on the last unit * Try last unit * Always wait
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
…ations Signed-off-by: Marcelo Henrique Neppel <marcelo.neppel@canonical.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Issue
For the SSDLC requirements, the event security logging documentation should also inform whether the operations performed by the charm are also logged.
Solution
Port of #1253.
Document that the charm operations call the workload, which already logs the relevant underlying operations.
Checklist