Update TODO.

[wizard.git] / TODO

- [SCRIPTS] MediaWiki 1.9.3 and 1.6.7

- util.fetch() should use urllib under the hood, not httplib.  Code
  has to be changed.  We should log if we get redirected.
- Be a little more intelligent when perform web checks; for example,
  if we get a forbidden message, that probably means we go the right
  address but it's blocked off; if we get a 404 message, that probably
  means wrong address. Account Unknown is something particularly good
  to check for.
- Wordpress module can do something intelligent if we get redirected
  to the installation page.
- The need to run egg_info can make things a little fragile when pulling
  if you forget.  How can we make this less easily forgotten?

- Plugin-ify! Hook-ify! In more detail, applications should all be moved
  out into plugins, scripts specific behavior should be moved into
  plugins, and hooks need to be made available so that we can exert
  the correct level of control.

- [SCRIPTS] Wordpress needs to get rid of the siteurl hack, so that it
  actually has a fully-qualified URL http://foo.scripts.mit.edu/blah.
  This will also fix Wordpress's cron functionality.  We should be
  careful not to write over users who are on vhosts.  We should figure
  out who is still on twiddle paths.  We should make sure the redirect
  is handled correctly.

- Remerges aren't reflected in the parent files, so `git diff` output is
  spurious.  Not sure how to fix this w/o tree hackery.
- Sometimes users remove files. Well, if those files change, they automatically
  get marked as conflicted.  Maybe we should say for certain files "if they're
  gone, they're gone forever"?  What is the proper resolution?

- Parse output HTML for class="error" and give those errors back to the user (done),
  then boot them back into configure so they can enter in something different

- [SCRIPTS] If you try to do an install on scripts w/o sql, it will sign
  you up but fail to write the sql.cnf file. This sucks.

- [SCRIPTS] Web application for installing autoinstalls has a hard
  problem with credentials (as well as installations that are not
  conducted on an Athena machine.)  We have some crazy ideas involving a
  signed Java applet that uses jsch to SSH into athena.dialup and
  perform operations.

- Pay back code debt
    - Tidy up common code in callAsUser and drop_priviledges in shell;
      namely cooking up the sudo and environment variable lines
    - Summary script should be more machine friendly, and should not
      output summary charts when I increase specificity

- Other stuff
    - Add support for mypristine workflow
    - Figure out why Sphinx sometimes fails to crossref :func: but wil
      crossref :meth:, even though the dest is very clearly a function.
      Example: :func:`wizard.app.php.re_var`
    - The TODO extension for Sphinx doesn't properly force a full-rebuild
    - Make single user mass-migrate work when not logged in as root.  The
      primary difficulty is making the parallel-find information easily
      accessible to individual users: perhaps we can do a single-user
      parallel-find on the fly.
    - Don't use the scripts heuristics unless we're on scripts with the
      AFS patch.  Check with `fs sysname`
    - Make 'wizard summary' generate nice pretty graphs of installs by date
      (more histograms, will need to check actual .scripts-version files.)
    - It should be able to handle installs like Django where there's a component
      that gets installed in web_scripts and another directory that gets installed
      in Scripts.

- [SCRIPTS] ACLs is a starting point for sending mail to users, but it
  has several failure modes:
    - Old maintainers who don't care who are still on the ACL
    - Private AFS groups that aren't mailing lists and that we can't get
      to A question is whether or not sending mail actually helps us:
      many users will probably have to come back to us for help; many
      other users won't care.

[ XXX: metadata.rst ]

COMMIT MESSAGE FIELDS:

Installed-by: username@hostname
Pre-commit-by: Real Name <username@mit.edu>
Upgraded-by: Real Name <username@mit.edu>
Migrated-by: Real Name <username@mit.edu>
Wizard-revision: abcdef1234567890
Wizard-args: /wizard/bin/wizard foo bar baz

GIT COMMIT FIELDS:

Committer: Real Name <username@mit.edu>
Author: lockername locker <lockername@scripts.mit.edu>

OVERALL PLAN:

[ XXX: doc/deps.rst ]
* Some parts of the infrastructure will not be touched, although I plan
  on documenting them.  Specifically, we will be keeping:

    - get-homedirs.sh. which needs to be run as root on scripts.  Store
      in /mit/scripts/sec-tools/store/scriptslist

    - parallel-find.pl, and the resulting
      /mit/scripts/sec-tools/store/versions

[ XXX: doc/deploy.rst ]
      GET APPROVAL BEFORE PROCEEDING ANY FURTHER;
      THIS IS PUSHING THE CHANGES TO THE PUBLIC

      NOTE: The following commands are to be run on not-backward.mit.edu.
      You'll need to add daemon.scripts-security-upd to
      scripts-security-upd to get bits to do this.  Make sure you remove
      these bits when you're done.

   10. Run `wizard research appname`
       which uses Git commands to check how many
       working copies apply the change cleanly, and writes out a logfile
       with the working copies that don't apply cleanly.  It also tells
       us about "corrupt" working copies, i.e. working copies that
       have over a certain threshold of changes.

   11. Run `wizard mass-upgrade appname`, which applies the update to all working
       copies possible.

   12. Run parallel-find.pl to update our inventory

[ XXX: doc/metadata.rst ]
* The repository for a given application will contain the following files:

    - The actual application's files, as from the official tarball

    - A .scripts directory, with the intent of holding Scripts specific files
      if they become necessary.

        - .scripts/dsn, overriding database source name