With the recent infra changes, there is now an http authentication request fronting the qa.scratch.drupal.org website. Unfortunately, it's also challenging scratchtestbot for all xmlrpc() communication attempts (and confirmation patch file downloads), which results in 'Failed to request next test: Authorization Required' errors on every cron run (each minute).
Would it be possible to remove this authentication request from the qa.scratch.drupal.org website ... at least for any request coming from scratchtestbot (hosted at scratchtestbot.osuosl.test)?
This is preventing me from validating a fix which would detect the PDO Exception which the testbots have silently missed in every D8 core test for the last 10 days. ;)
Comment | File | Size | Author |
---|---|---|---|
#3 | qa.staging.devdrupal.org_.conf_.txt | 872 bytes | drumm |
Comments
Comment #1
jthorson CreditAttribution: jthorson commentedHere's the list of paths/files which scratchtestbot will attempt to access. I can work around the xmlrpc.php path with a configuration change, but the patch file downloads are still blocked.
Comment #2
jthorson CreditAttribution: jthorson commentedDevel and Project_dependency can be removed (but I don't have sufficient permission to actually remove them). That should clear up the verify job.
Comment #3
drummAttached is the current vhost for reference. That part seems to be working well.
bzr status
still reportsCan those be removed or do they need to be kept somehow?
Comment #4
jthorson CreditAttribution: jthorson commentedI removed the git from project_issue_file_review ... wasn't aware the entire site was also a git repo.
Based on the log, however, there's nothing but an initial commit ... so I'm sure the history can be wiped. But it was initialized with root, so I can't do it.
Comment #5
jthorson CreditAttribution: jthorson commentedAh, shoot ... I messed up the file names above.
Note the extra 'review' directory in the following (most, but not all, of the above):
So the regex could use an optional 'review/' directory.
Comment #6
drummI added a / following review:
SetEnvIf Request_URI "^/sites/all/modules/project_issue_file_review/(review/)?[^/]*/confirmation/(apply|check|fail|install|pass|review|syntax)\.patch$" allow_all
Comment #8
jthorson CreditAttribution: jthorson commentedThe fix in #6 appears to be missing again, after the infra changes at the end of May:
It's either this, or a certificate problem ... but new 'staging' testbots will not pass their confirmation tests as a result.
Comment #9
jthorson CreditAttribution: jthorson commentedIn addition to #8, I need to know the actual IP for stagingwww, to apply the same HTTP 413 workaround that we did for production.
Comment #10
jthorson CreditAttribution: jthorson commentedThis is needed to facilitate Drupal.org D7 testing of PIFT.
Comment #11
drummI'm working on moving this to nginx configuration, which now does http passwords for staging.
Comment #12
drumm#6 should be fixed again. https://qa.staging.devdrupal.org/sites/all/modules/project_issue_file_re... does not ask for an http password.
Comment #13
drummFor #9, there is no load balancer to bypass. Nginx, Varnish, and Apache are all running on the same stagingwww box. (The bypass would be by using whatever port Apache is using internally, but that's firewalled off.) Was that workaround for #2002240: Test results not successfully being retrieved by Drupal.org or something else?
Comment #14
jthorson CreditAttribution: jthorson commentedTested, and looks good to go!