Disable for now automatic discovery of projects

[enolfc]

Summary

In order to have a stricter control on what's published or not into the cloud-info-provider, disable the automatic discovery of projects and just use the static configuration of the projects as defined in the yaml files.

While we may be missing some projects (we can detect that!), it will allow us to better control when a VO is visible on AppDB and IM without changes on those. This change can be potentially reverted once we fully deprecate AppDB.

---

Related issue :

[brucellino]

@enolfc just for posterity - can you update the description with why this is being done now?

[sebastian-luna-valero]

Thanks!

[github-actions]

Ansible deployment: success

Deployment log

PLAY [all] *********************************************************************

TASK [Gathering Facts] *********************************************************
[WARNING]: Platform linux on host localhost is using the discovered Python
interpreter at /usr/bin/python3.10, but future installation of another Python
interpreter could change the meaning of that path. See
https://docs.ansible.com/ansible-
core/2.17/reference_appendices/interpreter_discovery.html for more information.
ok: [localhost]

TASK [grycap.motley_cue : set_fact] ********************************************
ok: [localhost]

TASK [grycap.motley_cue : Include Ubuntu tasks] ********************************
included: /root/.ansible/roles/grycap.motley_cue/tasks/Ubuntu.yml for localhost

TASK [grycap.motley_cue : Install requisites] **********************************
ok: [localhost]

TASK [grycap.motley_cue : Add apt KIT repository key ubuntu] *******************
changed: [localhost]

TASK [grycap.motley_cue : Add apt KIT repository ubuntu] ***********************
changed: [localhost]

TASK [grycap.motley_cue : Install motley-cue and pam-ssh-oidc] *****************
changed: [localhost]

TASK [grycap.motley_cue : Link python] *****************************************
ok: [localhost]

TASK [grycap.motley_cue : Install oidc-agent-cli] ******************************
changed: [localhost]

TASK [grycap.motley_cue : Install pip] *****************************************
ok: [localhost]

TASK [grycap.motley_cue : Install PyYAML] **************************************
ok: [localhost]

TASK [grycap.motley_cue : Install contextualise_ssh_server] ********************
changed: [localhost]

TASK [grycap.motley_cue : Enable OIDC in PAM] **********************************
ok: [localhost]

TASK [grycap.motley_cue : Create a directory /opt/motley_cue] ******************
changed: [localhost]

TASK [grycap.motley_cue : set SSH_AUTHORISE_OTHERS_IN_MY_VO] *******************
skipping: [localhost]

TASK [grycap.motley_cue : set eduPersonEntitlement] ****************************
ok: [localhost]

TASK [grycap.motley_cue : Clean up and show eduPersonEntitlement that will be used] ***
ok: [localhost] => {
    "msg": "urn:mace:egi.eu:group:cloud.egi.eu:role=auditor#aai.egi.eu"
}

TASK [grycap.motley_cue : set SSH_AUTHORISE_VOS] *******************************
ok: [localhost]

TASK [grycap.motley_cue : Set access token with IM for contextualise_ssh_server] ***
skipping: [localhost]

TASK [grycap.motley_cue : Set access token as extra-var for contextualise_ssh_server] ***
ok: [localhost]

TASK [grycap.motley_cue : Fail if OIDC_ACCESS_TOKEN is not set] ****************
skipping: [localhost]

TASK [grycap.motley_cue : Execute contextualise_ssh_server command] ************
changed: [localhost]

TASK [grycap.motley_cue : Copy conf files to /etc] *****************************
changed: [localhost] => (item=motley_cue.conf)
changed: [localhost] => (item=feudal_adapter.conf)

TASK [grycap.motley_cue : Enable PAM in SSHD] **********************************
ok: [localhost] => (item=ChallengeResponseAuthentication no)
changed: [localhost] => (item=KbdInteractiveAuthentication no)
ok: [localhost] => (item=UsePAM no)

TASK [grycap.motley_cue : Enable PAM in SSHD] **********************************
changed: [localhost] => (item=ChallengeResponseAuthentication)
changed: [localhost] => (item=KbdInteractiveAuthentication)
ok: [localhost] => (item=UsePAM)

TASK [catchall : Ensure cron is available] *************************************
ok: [localhost]

TASK [catchall : Install docker] ***********************************************
included: /var/tmp/egi/deploy/roles/catchall/tasks/docker.yml for localhost

TASK [catchall : Install dependencies] *****************************************
changed: [localhost]

TASK [catchall : Docker repo key] **********************************************
changed: [localhost]

TASK [catchall : Add docker repo] **********************************************
changed: [localhost]

TASK [catchall : Install docker] ***********************************************
changed: [localhost]

TASK [catchall : Ensure docker config dir is present] **************************
changed: [localhost]

TASK [catchall : Configure docker] *********************************************
changed: [localhost]

TASK [catchall : Load site configuration] **************************************
ok: [localhost] => (item=/var/tmp/egi/sites/TR-FC1-ULAKBIM.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/DESY-CC.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CLOUDIFIN.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/IISAS-FedCloud-cloud.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/UA-BITP.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CENI.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CSTCLOUD-EGI.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/INFN-CLOUD-CNAF.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/NCG-INGRID-PT.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/EODC.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CYFRONET-CLOUD.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CESNET-MCCG2.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/WALTON-CLOUD.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/ILIFU-UCT.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/SCAI.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/IFCA-LCG2.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/BIFI.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/IN2P3-IRES.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/fedcloud.srce.hr.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/INFN-CLOUD-BARI.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CESNET-MCC.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/GRNET-OPENSTACK.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/ELKH-CLOUD.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CETA-GRID.yaml)
ok: [localhost] => (item=/var/tmp/egi/sites/CESGA-CLOUD.yaml)

TASK [catchall : Set site configuration variable] ******************************
ok: [localhost] => (item=site_incl_vars_TR-FC1-ULAKBIM)
ok: [localhost] => (item=site_incl_vars_DESY-CC)
ok: [localhost] => (item=site_incl_vars_CLOUDIFIN)
ok: [localhost] => (item=site_incl_vars_IISAS-FedCloud-cloud)
ok: [localhost] => (item=site_incl_vars_UA-BITP)
ok: [localhost] => (item=site_incl_vars_CENI)
ok: [localhost] => (item=site_incl_vars_CSTCLOUD-EGI)
ok: [localhost] => (item=site_incl_vars_INFN-CLOUD-CNAF)
ok: [localhost] => (item=site_incl_vars_NCG-INGRID-PT)
ok: [localhost] => (item=site_incl_vars_EODC)
ok: [localhost] => (item=site_incl_vars_CYFRONET-CLOUD)
ok: [localhost] => (item=site_incl_vars_CESNET-MCCG2)
ok: [localhost] => (item=site_incl_vars_WALTON-CLOUD)
ok: [localhost] => (item=site_incl_vars_ILIFU-UCT)
ok: [localhost] => (item=site_incl_vars_SCAI)
ok: [localhost] => (item=site_incl_vars_IFCA-LCG2)
ok: [localhost] => (item=site_incl_vars_BIFI)
ok: [localhost] => (item=site_incl_vars_IN2P3-IRES)
ok: [localhost] => (item=site_incl_vars_fedcloud.srce.hr)
ok: [localhost] => (item=site_incl_vars_INFN-CLOUD-BARI)
ok: [localhost] => (item=site_incl_vars_CESNET-MCC)
ok: [localhost] => (item=site_incl_vars_GRNET-OPENSTACK)
ok: [localhost] => (item=site_incl_vars_ELKH-CLOUD)
ok: [localhost] => (item=site_incl_vars_CETA-GRID)
ok: [localhost] => (item=site_incl_vars_CESGA-CLOUD)

TASK [catchall : EGI configuration directories] ********************************
changed: [localhost] => (item=/etc/egi)
changed: [localhost] => (item=/etc/egi/vos)

TASK [catchall : Image sync config] ********************************************
included: /var/tmp/egi/deploy/roles/catchall/tasks/sync.yml for localhost

TASK [catchall : Sync dirs] ****************************************************
changed: [localhost] => (item=/etc/egi/image-sync)
ok: [localhost] => (item=/var/cache/image-sync)

TASK [catchall : sync configuration] *******************************************
changed: [localhost]

TASK [catchall : Image sync cron] **********************************************
changed: [localhost]

RUNNING HANDLER [grycap.motley_cue : Restart sshd] *****************************
changed: [localhost]

RUNNING HANDLER [grycap.motley_cue : Restart motley-cue] ***********************
changed: [localhost]

RUNNING HANDLER [catchall : Restart docker] ************************************
changed: [localhost]

PLAY RECAP *********************************************************************
localhost                  : ok=40   changed=23   unreachable=0    failed=0    skipped=3    rescued=0    ignored=0