-
Notifications
You must be signed in to change notification settings - Fork 92
♻️(tilt) use hem dev-backend chart #683
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
base: main
Are you sure you want to change the base?
Changes from all commits
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
@@ -13,8 +13,9 @@ egress: | |||||||||||||||||
| {{- end }} | ||||||||||||||||||
| {{- end }} | ||||||||||||||||||
| redis: | ||||||||||||||||||
| address: redis-master:6379 | ||||||||||||||||||
| address: dev-backend-redis:6379 | ||||||||||||||||||
| password: pass | ||||||||||||||||||
| username: user | ||||||||||||||||||
| s3: | ||||||||||||||||||
|
Comment on lines
+16
to
19
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Redis ACL username likely incorrect; use 'default' or parametrize via secret Mirror the shared dev-backend Redis ACL user. - username: user
+ username: default📝 Committable suggestion
Suggested change
🤖 Prompt for AI Agents |
||||||||||||||||||
| access_key: meet | ||||||||||||||||||
| secret: password | ||||||||||||||||||
|
|
||||||||||||||||||
| Original file line number | Diff line number | Diff line change | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
@@ -14,8 +14,9 @@ livekit: | |||||||||||||
| port_range_end: 60000 | ||||||||||||||
| tcp_port: 7881 | ||||||||||||||
| redis: | ||||||||||||||
| address: redis-master:6379 | ||||||||||||||
| address: dev-backend-redis:6379 | ||||||||||||||
| password: pass | ||||||||||||||
| username: user | ||||||||||||||
|
Comment on lines
+17
to
+19
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Redis ACL username should match dev-backend-redis (likely 'default') To avoid NOAUTH errors, align with the Redis chart’s ACL user (commonly 'default'). - username: user
+ username: default📝 Committable suggestion
Suggested change
🤖 Prompt for AI Agents |
||||||||||||||
| keys: | ||||||||||||||
| turn: | ||||||||||||||
| enabled: true | ||||||||||||||
|
|
||||||||||||||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -35,12 +35,21 @@ backend: | |
| LOGIN_REDIRECT_URL: https://meet.127.0.0.1.nip.io | ||
| LOGIN_REDIRECT_URL_FAILURE: https://meet.127.0.0.1.nip.io | ||
| LOGOUT_REDIRECT_URL: https://meet.127.0.0.1.nip.io | ||
| DB_HOST: postgres | ||
| DB_NAME: meet | ||
| DB_USER: dinum | ||
| DB_PASSWORD: pass | ||
| DB_HOST: dev-backend-postgres | ||
| DB_NAME: | ||
| secretKeyRef: | ||
| name: dev-backend-postgres | ||
| key: database | ||
| DB_USER: | ||
| secretKeyRef: | ||
| name: dev-backend-postgres | ||
| key: username | ||
| DB_PASSWORD: | ||
| secretKeyRef: | ||
| name: dev-backend-postgres | ||
| key: password | ||
| DB_PORT: 5432 | ||
| REDIS_URL: redis://default:pass@redis-master:6379/1 | ||
| REDIS_URL: redis://user:pass@dev-backend-redis:6379/1 | ||
|
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Redis configuration inconsistency detected The Redis URL format differs across services:
This inconsistency will cause connection failures for the summary and celery services. Apply this diff to fix the Redis URL inconsistency: - CELERY_BROKER_URL: redis://default:pass@redis-master:6379/1
- CELERY_RESULT_BACKEND: redis://default:pass@redis-master:6379/1
+ CELERY_BROKER_URL: redis://user:pass@dev-backend-redis:6379/1
+ CELERY_RESULT_BACKEND: redis://user:pass@dev-backend-redis:6379/1Also applies to: 163-164, 196-197 🤖 Prompt for AI Agents |
||
| STORAGES_STATICFILES_BACKEND: django.contrib.staticfiles.storage.StaticFilesStorage | ||
| {{- with .Values.livekit.keys }} | ||
| {{- range $key, $value := . }} | ||
|
|
@@ -58,8 +67,8 @@ backend: | |
| FRONTEND_USE_FRENCH_GOV_FOOTER: True | ||
| FRONTEND_USE_PROCONNECT_BUTTON: True | ||
| FRONTEND_MANIFEST_LINK: "https://docs.numerique.gouv.fr/docs/1ef86abf-f7e0-46ce-b6c7-8be8b8af4c3d/" | ||
| AWS_S3_ENDPOINT_URL: http://minio.meet.svc.cluster.local:9000 | ||
| AWS_S3_ACCESS_KEY_ID: meet | ||
| AWS_S3_ENDPOINT_URL: http://dev-backend-minio.meet.svc.cluster.local:9000 | ||
| AWS_S3_ACCESS_KEY_ID: dinum | ||
| AWS_S3_SECRET_ACCESS_KEY: password | ||
|
Comment on lines
+70
to
72
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. S3 configuration inconsistency across services The S3 configuration is partially updated:
This will cause S3 connection failures for summary and celery services. Apply this diff to fix the S3 configuration: For summary service (around lines 153-155): - AWS_S3_ENDPOINT_URL: minio.meet.svc.cluster.local:9000
- AWS_S3_ACCESS_KEY_ID: meet
+ AWS_S3_ENDPOINT_URL: http://dev-backend-minio.meet.svc.cluster.local:9000
+ AWS_S3_ACCESS_KEY_ID: dinumFor celery service (around lines 186-188): - AWS_S3_ENDPOINT_URL: minio.meet.svc.cluster.local:9000
- AWS_S3_ACCESS_KEY_ID: meet
+ AWS_S3_ENDPOINT_URL: http://dev-backend-minio.meet.svc.cluster.local:9000
+ AWS_S3_ACCESS_KEY_ID: dinumAlso applies to: 153-155, 186-188 🤖 Prompt for AI Agents |
||
| AWS_STORAGE_BUCKET_NAME: meet-media-storage | ||
| AWS_S3_REGION_NAME: local | ||
|
|
||
| Original file line number | Diff line number | Diff line change | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
@@ -14,8 +14,9 @@ livekit: | |||||||||||||
| port_range_end: 60000 | ||||||||||||||
| tcp_port: 7881 | ||||||||||||||
| redis: | ||||||||||||||
| address: redis-master:6379 | ||||||||||||||
| address: dev-backend-redis:6379 | ||||||||||||||
| password: pass | ||||||||||||||
| username: user | ||||||||||||||
|
Comment on lines
+17
to
+19
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Redis ACL username should match dev-backend-redis (likely 'default') Same rationale as other env files; keep credentials consistent with the shared Redis. - username: user
+ username: default📝 Committable suggestion
Suggested change
🤖 Prompt for AI Agents |
||||||||||||||
| keys: | ||||||||||||||
| turn: | ||||||||||||||
| enabled: true | ||||||||||||||
|
|
||||||||||||||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -35,12 +35,21 @@ backend: | |
| LOGIN_REDIRECT_URL: https://meet.127.0.0.1.nip.io | ||
| LOGIN_REDIRECT_URL_FAILURE: https://meet.127.0.0.1.nip.io | ||
| LOGOUT_REDIRECT_URL: https://meet.127.0.0.1.nip.io | ||
| DB_HOST: postgres | ||
| DB_NAME: meet | ||
| DB_USER: dinum | ||
| DB_PASSWORD: pass | ||
| DB_HOST: dev-backend-postgres | ||
| DB_NAME: | ||
| secretKeyRef: | ||
| name: dev-backend-postgres | ||
| key: database | ||
| DB_USER: | ||
| secretKeyRef: | ||
| name: dev-backend-postgres | ||
| key: username | ||
| DB_PASSWORD: | ||
| secretKeyRef: | ||
| name: dev-backend-postgres | ||
| key: password | ||
| DB_PORT: 5432 | ||
| REDIS_URL: redis://default:pass@redis-master:6379/1 | ||
| REDIS_URL: redis://user:pass@dev-backend-redis:6379/1 | ||
| STORAGES_STATICFILES_BACKEND: django.contrib.staticfiles.storage.StaticFilesStorage | ||
| {{- with .Values.livekit.keys }} | ||
| {{- range $key, $value := . }} | ||
|
|
@@ -57,8 +66,8 @@ backend: | |
| FRONTEND_TRANSCRIPT: "{'form_beta_users': 'https://grist.numerique.gouv.fr/o/docs/forms/3fFfvJoTBEQ6ZiMi8zsQwX/17'}" | ||
| FRONTEND_FEEDBACK: "{'url': 'https://grist.numerique.gouv.fr/o/docs/cbMv4G7pLY3Z/USER-RESEARCH-or-LA-SUITE/f/26'}" | ||
| FRONTEND_MANIFEST_LINK: "https://docs.numerique.gouv.fr/docs/1ef86abf-f7e0-46ce-b6c7-8be8b8af4c3d/" | ||
| AWS_S3_ENDPOINT_URL: http://minio.meet.svc.cluster.local:9000 | ||
| AWS_S3_ACCESS_KEY_ID: meet | ||
| AWS_S3_ENDPOINT_URL: http://dev-backend-minio.meet.svc.cluster.local:9000 | ||
| AWS_S3_ACCESS_KEY_ID: dinum | ||
| AWS_S3_SECRET_ACCESS_KEY: password | ||
|
Comment on lines
+69
to
71
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 💡 Verification agent 🧩 Analysis chainAlign MinIO endpoint/keys with dev-backend across all components Backend now targets dev-backend-minio with AKID=dinum. Summary and Celery still point to old MinIO/creds (see Lines 159-161 and 193-195) and will break after consolidation. Please update them too (separate comments below). 🏁 Script executed: #!/bin/bash
set -e
# locate the template file
echo "Locating values.meet.yaml.gotmpl:"
fd values.meet.yaml.gotmpl
# show all AWS_S3_* occurrences with context
echo -e "\nAWS_S3_* entries with context:"
rg -n 'AWS_S3_' -C2 src/helm/env.d/dev-keycloak/values.meet.yaml.gotmpl
# locate Summary block around AWS_S3 entries
echo -e "\nContext around 'Summary':"
rg -n 'Summary' -C3 src/helm/env.d/dev-keycloak/values.meet.yaml.gotmpl
# locate Celery block around AWS_S3 entries
echo -e "\nContext around 'Celery':"
rg -n 'Celery' -C3 src/helm/env.d/dev-keycloak/values.meet.yaml.gotmplLength of output: 2207 Align Summary & Celery MinIO config Update AWS_S3_ENDPOINT_URL, AWS_S3_ACCESS_KEY_ID and AWS_S3_SECRET_ACCESS_KEY in src/helm/env.d/dev-keycloak/values.meet.yaml.gotmpl to match the backend’s dev-backend-minio settings:
🤖 Prompt for AI Agents |
||
| AWS_STORAGE_BUCKET_NAME: meet-media-storage | ||
| AWS_S3_REGION_NAME: local | ||
|
|
||
| Original file line number | Diff line number | Diff line change | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
@@ -14,8 +14,9 @@ livekit: | |||||||||||||
| port_range_end: 60000 | ||||||||||||||
| tcp_port: 7881 | ||||||||||||||
| redis: | ||||||||||||||
| address: redis-master:6379 | ||||||||||||||
| address: dev-backend-redis:6379 | ||||||||||||||
| password: pass | ||||||||||||||
| username: user | ||||||||||||||
|
Comment on lines
+17
to
+19
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Redis ACL username should match dev-backend-redis (likely 'default') Ensure LiveKit can authenticate against the new Redis instance. - username: user
+ username: default📝 Committable suggestion
Suggested change
🤖 Prompt for AI Agents |
||||||||||||||
| keys: | ||||||||||||||
| turn: | ||||||||||||||
| enabled: true | ||||||||||||||
|
|
||||||||||||||
This file was deleted.
This file was deleted.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
💡 Verification agent
🧩 Analysis chain
Verify if meet-summary and meet-celery resources need explicit dependencies
The
meet-backendresource has comprehensive dependencies, but there's no explicit resource definition formeet-summaryandmeet-celeryservices that also depend on Redis and MinIO.🏁 Script executed:
Length of output: 545
Add Tilt k8s_resource definitions for meet-summary and meet-celery
bin/Tiltfile lacks
k8s_resourceentries formeet-summaryandmeet-celeryeven though their helm templates exist. Both depend on Redis and MinIO—add:k8s_resource('meet-summary', resource_deps=['dev-backend-redis', 'dev-backend-minio:statefulset'])k8s_resource('meet-celery', resource_deps=['dev-backend-redis', 'dev-backend-minio:statefulset'])🤖 Prompt for AI Agents