|
Re: [cf-bosh] cf-services-contrib does not support cf v2
Marco Nicosia
Hi Remi,
toggle quoted messageShow quoted text
[I'm moving your post to cf-dev, and BCC'ing cf-bosh. The people you want to reach are more likely hanging out on cf-dev.] I just checked with Shannon, who was PM for services and harkens way back to the VMWare days of Cloud Foundry. He confirmed that they only support the v1 services API. cf-services-contrib-release was the initial set of five services that VMware had sponsored. They were deprecated and contributed to the community some time back. It looks like Ruben Koster has been gamely maintaining it for some time. I believe that Dieu's proposal to remove support for v1 service brokers would kill cf-services-contrib-release dead: https://lists.cloudfoundry.org/archives/list/cf-dev(a)lists.cloudfoundry.org/thread/BYNVNVTOI3PGCEP6MHF3A5EYY5UGMLL5/#TEKDER3QZXUNKTFFFWKQQGWWQREPHP43 -- Marco Nicosia Product Manager Pivotal Software, Inc. mnicosia(a)pivotal.io c: 650-796-2948
On Mon, Oct 19, 2015 at 2:14 AM, Remi Tassing <tassingremi(a)gmail.com> wrote:
Hi,
|
|
|
|
Re: HortonWorks, Hadoop, Tibco client base
Sheri Price <sheri.price@...>
Hi,
Would you like to acquire our recently compiled global data for Big Data & Business Intelligence users email list with all information fields for your marketing and new product launch events, we have Geography segmented data base available with us. The data set will have current user of various providers: HortonWorks, Hadoop, Amazon EMR, EMC, Greenplum, mongoDB, Cloudera, Actian, Splunk, QlikView, MicroStrategy, JasperSoft, Tibco, Oracle, SAP, IBM, MapR, Tableau. Also, we can connect you to the Datacenter users, Colocation users, CDN users, Hosting users, Virtualization users, Storage users, Security users and many other users... Please let me know if you would like to receive more information about some of our targeted lists out of thousands of tailored lists for your company. Thank you for your time and consideration in advance. Warm regards, Sheri Price Marketing Specialist We respect your privacy. If you want to stop receiving emails from us, please send a reply with the email subject line as "UNS"
|
|
|
|
Re: Some results running CloudController under JRuby
Amit Kumar Gupta
Awesome!
toggle quoted messageShow quoted text
Got some questions: - what are differences to pre-packaging dependencies? - any differences in pre-packaging time? - what differences for packaging/compilation dependencies? - any difference in packaging/compilation time? - there are going to be some new job and packages blobs, and maybe some old ones go away? what are the size differences? - any changes to start-up or update times during bosh deploy/update? Amit
On Mon, Oct 19, 2015 at 2:06 PM, Dieu Cao <dcao(a)pivotal.io> wrote:
Hi Steffen,
|
|
|
|
Re: Some results running CloudController under JRuby
Dieu Cao <dcao@...>
Hi Steffen,
Cool stuff. It's good to see there's some improvement under jruby. Would be interested to see how this performs on aws or on soft layer. Also, were you able to run CATS? Or is more work needed to deal with NATS etc? Other pros/cons that you've found? -Dieu CF CAPI PM On Mon, Oct 19, 2015 at 1:25 PM, Steffen Uhlig <Steffen.Uhlig(a)de.ibm.com> wrote: Hi,
|
|
|
|
Some results running CloudController under JRuby
Hi,
the Flintstone team recently spent some time researching the potential benefits of running the CloudController under JRuby. We were hoping to find evidence that JRuby (and the underlying JVM) would allow us to make better use of multiple cores, and maybe also lead to significant response time improvements when answering many parallel requests.
This exercise wasn't set up as a scientific benchmark; it is more of a spike that would allow us to judge whether it is worth investigating the next level of detail.
We would like to share some early results in the hope to get feedback from the community.
In our measurements, we saw 20..30% improvement in both average response time and throughput when 10 or more concurrent requests were made (using ApacheBench against the `/v2/orgs/*/spaces` endpoint).
Graphs:
We patched a CC VM to use JRuby 9000 under OpenJDK 8. WEBrick was used as we weren't able to quickly find a drop-in replacement for Thin (as used under MRI). All measurements were taken on a 2014 MacBook Pro running Cloudfoundry in a BOSH Lite environment. Simulating network latency by adding a 100 ms sleep to each request did not change the overall picture.
For more details see the spreadsheet* and our repository** with the test scripts.
Steffen
(on behalf of the Flintstone Team)
|
|
|
|
Re: Usage retrieval authorization was: Re: [abacus] Usage submission authorization
Jean-Sebastien Delfino
Hi Piotr,
A resource provider or another system component can present a client token with abacus.usage.read to read back the usage submitted to Abacus. I wouldn't recommend giving that scope to users of the Abacus reporting service as it'll give them too much power and visibility on usage from all orgs. The reporting service does not require the abacus.usage.read scope. Instead it delegates the authorization to get a report for a particular org to the account service (which you're responsible for implementing, as an integrator of Abacus). Any user token from the report request is passed to your account service, giving you a way to check that user's membership to the org and any groups you've defined in that org and the roles that user is entitled to. HTH - Jean-Sebastien - Jean-Sebastien On Mon, Oct 19, 2015 at 12:53 PM, Piotr Przybylski <piotrp(a)us.ibm.com> wrote: Does the user who would like to see their usage (e.g. services in the
|
|
|
|
Usage retrieval authorization was: Re: [abacus] Usage submission authorization
Piotr Przybylski <piotrp@...>
Does the user who would like to see their usage (e.g. services in the organization they own) need to have 'abacus.usage.read' scope as discussed below? Piotr -----Saravanakumar A Srinivasan/Burlingame/IBM@IBMUS wrote: ----- To: "Discussions about Cloud Foundry projects and the system overall." <cf-dev@...> From: Saravanakumar A Srinivasan/Burlingame/IBM@IBMUS Date: 10/15/2015 10:20PM Subject: [cf-dev] Re: Re: Re: Re: Re: Re: Re: [cf-dev][abacus] Usage submission authorization > what will be the scope for securing internal Abacus pipeline that Assk describes as system token ? It is 'abacus.usage.write'. Updated my previous statements to make it more specific: We have enabled scope based authorization for REST endpoints at usage collector and usage reporting service. While we are working on using system OAuth bearer access token at internal Abacus pipeline, Submitting usage to a secured Abacus needs a OAuth bearer access token with 'abacus.usage.write' system scope in addition to the resource provider specific scope(s) - 'abacus.usage.<resource_id>.write'. Thanks, Saravanakumar Srinivasan (Assk), -----Piotr Przybylski/Burlingame/IBM@IBMUS wrote: ----- To: cf-dev@... From: Piotr Przybylski/Burlingame/IBM@IBMUS Date: 10/15/2015 09:50PM Subject: [cf-dev] Re: Re: Re: Re: Re: Re: [cf-dev][abacus] Usage submission authorization Makes sense, and just to complete - what will be the scope for securing internal Abacus pipeline that Assk describes as system token ? Piotr
----- Original message -----
|
|
|
|
Re: REST API endpoint for accessing application logs
Ponraj E
Hi Warren,
Thanks. Reg #3:Even "wss://doppler.xx.xxx.xxxxxxxx.xxx:443" gives the same "invalid URI for request". -- Ponraj
|
|
|
|
Re: Acceptance tests assume a multi level wildcard ssl cert
Christopher Piraino <cpiraino@...>
Hi Felix,
toggle quoted messageShow quoted text
You are right, we have found this issue in one of our own environments as well, we have a story here <https://www.pivotaltracker.com/story/show/105340048> to address it by skipping verification explicitly for this test only. Previously, I believe that test only used an http URL when curling, recent updates to allow configuration of the protocol exposed this issue. We do not assume multi-level wildcard certs. The curl helper was also changed recently to set SSL verification internally for all curl commands <https://github.com/cloudfoundry/cf-acceptance-tests/commit/06c83fa5641785ebca1c6dedb36c2370415e3005>, so the skip_ssl_validation configuration should still be working correctly. If you want to see the tests pass, you could either set "skip_ssl_validation" to false or "use_http" to true and the test should work as intended. In any case, we are sorry for the failures and hopefully we can get a fix out soon. - Chris
On Mon, Oct 19, 2015 at 7:32 AM, Felix Friedrich <felix(a)fri.edri.ch> wrote:
Hello,
|
|
|
|
Re: REST API endpoint for accessing application logs
Warren Fernandes
Hi Ponraj,
I've replicated the behavior you are seeing. I'll get back to you for question #1 and #2 after some investigation. As for #3 set your DOPPLER_ADDR to wss://doppler.xx.xxx.xxxxxxxx.xxx:443. That is, use wss instead of https. Thanks.
|
|
|
|
Re: Cloud Foundry being used for an EU social learning games platform
Juan Antonio Breña Moral <bren at juanantonio.info...>
Hi Chris,
Many thanks for the Introduction. The Node Application: https://github.com/prosociallearnEU/cf-nodejs-dashboard is a WebApp to deploy in an easy way applications and bind later User provided Services. We are testing the solution with a Local CF instance (https://github.com/yudai/cf_nise_installer/) and Pivotal API. Currently, the WebApp is running in Pivotal for testing purposes. Maybe, the project could be used for this purpose: https://lists.cloudfoundry.org/archives/list/cf-dev(a)lists.cloudfoundry.org/message/6RSTWQISQVSIPJL7HURVMVBUT7Q6BRT2/ Cheers Juan Antonio
|
|
|
|
Doubt: Filter 2 Service Bindings with 2 parameters
Juan Antonio Breña Moral <bren at juanantonio.info...>
Hi,
I would like to filter using 2 criterias for this REST method: http://apidocs.cloudfoundry.org/221/service_bindings/list_all_service_bindings.html var filter2 = { 'q': 'app_guid:' + "65be2a2d-a643-4e01-b33d-8755d5934ae6", 'q': 'service_instance_guid:' + "9e541381-b34d-4a0c-b7da-1ff00a0ffef5" }; Currently, using this way, the REST method only filter for the latest parameter. Does exist a possibility for both criteria? Juan Antonio
|
|
|
|
Acceptance tests assume a multi level wildcard ssl cert
Felix Friedrich
Hello,
we've just upgraded our CF deployment from v215 to v220. Unfortunately the acceptance tests fail: http://pastebin.com/rWrXX1HA They reasonably fail. The test expects a valid ssl cert, but our cert is only valid for *.test.cf.springer-sbm.com not for *.*.test.cf.springer-sbm.com. The test seem to expect a multilevel SSL cert, I am not sure if that's reasonable or not. However, I wondered why this exact test did not fail in v215. I suspected that the way curl gets executed in the v220 tests changed and it apparently seems that I am right [1]. Thus I assume (!) that before curl's return codes did not get propagated, while they are now. (Return code 51 is "The peer's SSL certificate or SSH MD5 fingerprint was not OK." according to the man page.) Also the new way of executing ("curlCmd := runner.Curl(uri)") does not look like it gets the skipSslValidation value. As a fact running the acceptances tests with the skip_ssl_validation option still leads to this test failing. However the used library looks like it is able to skip SSL validation: https://github.com/cloudfoundry-incubator/cf-test-helpers/blob/master/runner/run.go Even if skip_ssl_validation would work, I am not very keen on activating that option since that also applies to all other tests, which are not using multi level wildcard certs. Besides of the fact that curl seems to validate SSL certs no matter if skip_ssl_validation is true or false, did you intentionally assume that CF uses a multilevel wildcard cert? Felix [1] https://github.com/cloudfoundry/cf-acceptance-tests/compare/353e06565a6a1a0d6b4c417f57b00eeecec604fa...72496c6fabd1c8ec51ae932d13a597a62ccf30dd
|
|
|
|
Re: CF-RELEASE v202 UPLOAD ERROR
Parthiban Annadurai <senjiparthi@...>
Hello All,
toggle quoted messageShow quoted text
Thanks All for the helpful suggestions. Actually, now we r facing the following issue while kicking bosh deploy, Done compiling packages > nats/d3a1f853f4980682ed8b48e4706b7280e2b7ce0e (00:01:07) Failed compiling packages > buildpack_php/9c72be716ab8629d7e6feed43012d1d671720157: Action Failed get_task: Task aba21e6a-2031-4a69-5b72-f238ecd07051 result: Compiling package buildpack_php: Compressing compiled package: Shelling out to tar: Running command: 'tar czf /var/vcap/data/tmp/bosh-platform-disk-TarballCompressor-CompressFilesInDir762165297 -C /var/vcap/data/packages/buildpack_php/9c72be716ab8629d7e6feed43012d1d671720157.1- .', stdout: '', stderr: ' gzip: stdout: No space left on device ': signal: broken pipe (00:02:41) Failed compiling packages (00:02:41) Error 450001: Action Failed get_task: Task aba21e6a-2031-4a69-5b72-f238ecd07051 result: Compiling package buildpack_php: Compressing compiled package: Shelling out to tar: Running command: 'tar czf /var/vcap/data/tmp/bosh-platform-disk-TarballCompressor-CompressFilesInDir762165297 -C /var/vcap/data/packages/buildpack_php/9c72be716ab8629d7e6feed43012d1d671720157.1- .', stdout: '', stderr: ' gzip: stdout: No space left on device ': signal: broken pipe Could Anyone on this issue? Regards Parthiban A
On 19 October 2015 at 14:30, Bharath Posa <bharathp(a)vedams.com> wrote:
Hi partiban
|
|
|
|
Re: Cloud Foundry Java Client V2
Ben Hale <bhale@...>
Will v1 receive support for individually addressable IPs, or will that be unique to v2?I believe that this falls under new APIs for V1 and won’t be completed. Basically, unless it’s a bug fix, I wouldn’t assume that it’ll come to V1. -Ben
|
|
|
|
Re: Defining a singular plan for all services
Paul Bakare
A custom built service.
toggle quoted messageShow quoted text
We're building a custom API Gateway for our apps.
On Fri, Oct 16, 2015 at 11:29 PM, CF Runtime <cfruntime(a)gmail.com> wrote:
What services do you want to define this default plan for?
|
|
|
|
Re: How to explicitly specify the password for the account admin?
Simon Johansson <simon@...>
We have this in our stub.
toggle quoted messageShow quoted text
properties.uaa.scim.users: - "admin|DESIRED_PASSWORD|scim.write,scim.read....... Works well.
On Mon, Oct 19, 2015 at 9:52 AM, Jim Lin <jimlintw922(a)gmail.com> wrote:
Hi all
|
|
|
|
Cloud Foundry being used for an EU social learning games platform
Christopher Frost
I stumbled across this and though other people might be interested.
ProSocialLearn is an EU funded project to help children learn positive social skills through social gaming. Here is a quote from there "System Requirements and Architecture" document available on there website. "Continuing up the technology architecture stack, PSL is still exploring a number of open alternatives for building up a robust PaaS layer. However, during the editing of this deliverable, the ProSocialLearn consortium is already beginning to investigate the Cloud Foundry community (almost a de facto standard for Platform as a Service environments). PSL is planning to integrate the Cloud Foundry technology into the added value services of PSL. Cloud Foundry provides a platform that allows game providers and game operators to deploy, manage and scale cloud-based games quickly, and easily. " They have a Git repo where they are working on a NodeJS based client for the CF API and a Node based CF web console. This work seems to be being done by one developer from one of the consortium members based in Spain, Madrid. They have also released a proof of concept game as well but it doesn't look like they have formally launched yet. Links. http://prosociallearn.eu/ https://github.com/prosociallearnEU Chris. Christopher Frost - Pivotal UK Java Buildpack Team
|
|
|
|
Re: REST API endpoint for accessing application logs
Ponraj E
Hi ,
I executed the command with manually putting the outh token -pasting the o/p here: C:\WINDOWS\system32>curl -k -H "Authorization: bearer xxxx" "https://doppler.xx.xxx.xxxxxxxx:443/apps/e0dc9133-f800-416d-9e1f-ffeb8d02e4dd/recentlogs" --1f51e48e4a9bf243ed1e2ab55c090c4d2deb23a7ae255c5c1d8ad178acb9 ◄dea_logging_agent►♣0│┌üªπ╩áç¶j2z☺1é☺♀10.78.150.44B╜☺ Ç☺Mon, 19 Oct 2015 06:23:56 GMT express deprecated res.send(status, body): Use res.status(status).se nd(body) instead at app.js:7:7►☻↑╜╜üªπ╩áç¶"$e0dc9133-f800-416d-9e1f-ffeb8d02e4dd*♥App2☺1 --1f51e48e4a9bf243ed1e2ab55c090c4d2deb23a7ae255c5c1d8ad178acb9 router__0►♣0₧π╪á½╩áç¶j 10.78.149.103B╔♥router_z1z☺0é☺ app_url - [19/10/2015:06:23:41 +0000] "GET / HTTP/1.1" 2 00 0 40 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0. 2454.101 Safari/537.36" 10.78.148.7:59978 x_forwarded_for:"ip_addr" vcap_request_id:1cbd4f2d- 84c6-4ef9-6f44-e0c84a4d5e49 response_time:0.624678694 app_id:e0dc9133-f800-416d-9e1f-ffeb8d02e4dd ►☺↑└╥╪á½╩áç¶"$e0dc9133-f800-416d-9e1f-ffeb8d02e4dd*♥RTR2☺0 --1f51e48e4a9bf243ed1e2ab55c090c4d2deb23a7ae255c5c1d8ad178acb9 router__0►♣0Ç╩ΩεΓ╩áç¶j 10.78.149.103B╔♥router_z1z☺0é☺ app_url - [19/10/2015:06:23:56 +0000] "GET / HTTP/1.1" 2 00 0 40 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0. 2454.101 Safari/537.36" 10.78.148.7:59978 x_forwarded_for:"ip_addr" vcap_request_id:758c85b6- dfef-41dc-5def-dc76ccf01498 response_time:0.999714512 app_id:e0dc9133-f800-416d-9e1f-ffeb8d02e4dd ►☺↑█╜ΩεΓ╩áç¶"$e0dc9133-f800-416d-9e1f-ffeb8d02e4dd*♥RTR2☺0 --1f51e48e4a9bf243ed1e2ab55c090c4d2deb23a7ae255c5c1d8ad178acb9-- Questions: 1. What is this guid that the command prints multiple times? --1f51e48e4a9bf243ed1e2ab55c090c4d2deb23a7ae255c5c1d8ad178acb9-- 2. Some of the output is garbled and some are not. 3. As rohit said in the previous comment, I tried installing the noaa client library and executed the sample app to get the application logs : https://github.com/cloudfoundry/noaa go build -o bin/sample sample/main.go My DOPPLER_ADDR env is "https://doppler.xx.xxx.xxxxxxxx.xxx:443" So when i run the sample.exe, I get the o/p as ===== Error getting recent messages: parse "https://doppler.xx.xxx.xxxxxxxx.xxx:443": invalid URI for request Am not sure, how is this URI invalid? --- Ponraj
|
|
|
|
Re: CF-RELEASE v202 UPLOAD ERROR
Bharath
Hi partiban
toggle quoted messageShow quoted text
can u do a checksum of the tar file . it should come like this *sha1: b6f596eaff4c7af21cc18a52ef97e19debb00403* example: *sha1sum {file}* regards Bharath
On Mon, Oct 19, 2015 at 1:12 PM, Eric Poelke <epoelke(a)gmail.com> wrote:
You actually do not need to download it. if you just run --
|
|
|