[01:36:43] <acosta_>	 !help hello guys, How can I get all wikidata items that are referenced by property using SPARQL?
[01:36:43] <wm-bot>	 acosta_: If you don't get a response in 15-30 minutes, please create a phabricator task -- https://phabricator.wikimedia.org/maniphest/task/edit/form/1/?projects=wmcs-team
[01:49:37] * zhuyifei1999_ thinks a channel 
[01:50:03] <zhuyifei1999_>	 like #wikidata is better for these questiions
[04:22:04] <bawolff>	 I tried to revert vandalism on https://phabricator.wikimedia.org/T131541 - but I can't seem to re-add both the cloud-services and toolforge tags back to the bug (adding one causes phab to remove the other)
[04:54:07] <zhuyifei1999_>	 bawolff: toolforge is now a sub-project of cloud-services, so just keep toolforge
[04:54:54] <bawolff>	 I'm mostly weirded out that I just can't set the bug back to the state it was prior to vandalism
[08:34:57] <Ester>	 hi all if I do ssh -i ~/.ssh/id_rsa epantaleo@login.tools.wmflabs.org 
[08:34:58] <Ester>	 Permission denied (publickey,hostbased).
[08:35:05] <Ester>	 I get permission denied
[08:35:27] <Ester>	 any tips?
[09:15:20] <annika>	 Ester: have you actually added your public key to https://wikitech.wikimedia.org/wiki/Special:Preferences#mw-prefsection-openstack?
[11:06:49] <Firefly_>	 !help Is it possible to have toolforge LDAP account password reset? The one saved in my browser's password manager doesn't work (I can only imagine I saved it incorrectly or it got corrupted(??))
[11:06:49] <wm-bot>	 Firefly_: If you don't get a response in 15-30 minutes, please create a phabricator task -- https://phabricator.wikimedia.org/maniphest/task/edit/form/1/?projects=wmcs-team
[11:10:19] <annika>	 Firefly_: maybe you are looking for https://wikitech.wikimedia.org/wiki/Special:PasswordReset?
[11:14:36] <Firefly_>	 @Annika, will that reset my LDAP account for access here: https://toolsadmin.wikimedia.org/auth/login/ ?
[11:15:21] <annika>	 yeah, if i'm not totally mistaken, they are the same ldap password and it is managed at wikitech
[13:01:06] <andrewbogott>	 Firefly_: annika is right (thanks annika!)
[13:03:17] <annika>	 :)
[13:49:00] <Ester>	 !annika: there was a problem with the network and ssh was not working. thanks for your help
[13:49:07] <Ester>	 annika: there was a problem with the network and ssh was not working. thanks for your help
[14:05:38] <Ester>	 hi all! me again! when I do: "npm build" I get "npm build
[14:05:38] <Ester>	 (node:23) fs: re-evaluating native module sources is not supported. If you are using the graceful-fs module, please update it to a more recent version." on the bastion
[14:05:38] <Ester>	 "
[14:06:48] <chicocvenancio>	 Ester: it is better to use kubernetes to build node.js things
[14:07:39] <Ester>	 I believe I did webservice --backend=kubernetes nodejs shell
[14:07:51] <Ester>	 webservice --backend=kubernetes php5.6 start
[14:08:02] <chicocvenancio>	 `webservice backend=nodejs shell` should get into a kubernetes pod with a more sane version of npm and node
[14:08:06] <Ester>	 but maybe I am doing something wrong
[14:08:13] <chicocvenancio>	 Oops
[14:08:28] <chicocvenancio>	 Backend=kubernetes nodejs
[14:09:09] <chicocvenancio>	 Ester: in what pod did you run npm build? 
[14:09:50] <Ester>	 sorry, how do I get the pod?
[14:10:59] <chicocvenancio>	 `webservice backend=kubernetes LANG shell` will get you into a pod
[14:11:25] <Ester>	 with -- before backend?
[14:11:37] <chicocvenancio>	 Yes, sorry
[14:12:12] <chicocvenancio>	 In that environment nodejs should have a more sane version
[14:12:27] <chicocvenancio>	 (and you can update npm if needed) 
[14:12:59] <Ester>	 I did
[14:13:00] <Ester>	 webservice --backend=kubernetes nodejs shell
[14:15:58] <Ester>	 how do I update npm?
[14:18:42] <chicocvenancio>	 npm install npm, I think, but lets see if that is needed
[14:18:57] <Ester>	 npm install
[14:18:57] <Ester>	 (node:11) fs: re-evaluating native module sources is not supported. If you are using the graceful-fs module, please update it to a more recent version.
[14:20:20] <Ester>	 npm -v
[14:20:20] <Ester>	 (node:23) fs: re-evaluating native module sources is not supported. If you are using the graceful-fs module, please update it to a more recent version.
[14:20:20] <Ester>	 1.4.21
[14:21:39] <paladox>	 npm 1.4 is really really old
[14:21:56] <Ester>	 yep
[14:22:07] <Ester>	 so you recommend i do npm install npm?
[14:22:46] * chicocvenancio is checking if that will work/solve things
[14:24:28] <chicocvenancio>	 doesn't quite work
[14:26:26] <chicocvenancio>	 npm install npm will install it as local module
[14:26:39] <Ester>	 nvm?
[14:26:42] <chicocvenancio>	 npm install -g npm will fail without root
[14:27:11] <Ester>	 :(
[14:27:29] <chicocvenancio>	 yeah, nvm is probably the answer here
[14:28:24] <Ester>	 hwo do i install nvm?
[14:31:08] <chicocvenancio>	 inside the nodejs shell
[14:31:33] <chicocvenancio>	 `curl -o- https://raw.githubusercontent.com/creationix/nvm/v0.33.11/install.sh | bash`
[14:34:19] <chicocvenancio>	 Ester: ^
[14:34:56] <Ester>	 did it
[14:34:57] <Ester>	 nvm install-latest-npm
[14:35:07] <Ester>	 Error: EACCES: permission denied, mkdir '/usr/local/lib/node_modules'
[14:35:16] <Ester>	 v
[14:35:18] <Ester>	 Please try running this command again as root/Administrator.
[14:36:07] <chicocvenancio>	 do `npm install node`
[14:36:10] <chicocvenancio>	 oops
[14:36:12] <chicocvenancio>	 nvm
[14:36:18] <chicocvenancio>	 `nvm install node`
[14:36:32] <chicocvenancio>	 then `nvm use  v10.1.0`
[14:39:12] <Ester>	 ok did it 
[14:39:14] <Ester>	 and now?
[14:39:36] <chicocvenancio>	 after the nvm use v10.1.0 you should have the latest node and npm
[14:40:46] <Ester>	 i see, I had to do nvm use --delete-prefix v10.1.0
[14:41:17] <chicocvenancio>	 does that get you into a working state?
[14:41:43] <Ester>	 checking
[14:41:45] <Ester>	 :)
[14:44:15] <firefly_>	 @annika Thanks, but I get "There is no user by the name "firefly". Usernames are case sensitive. Check your spelling, or create a new account." when I try that
[14:44:29] <firefly_>	 And that is my LDAP username (of that I'm sure! :P)
[14:45:07] <firefly_>	 https://wikitech.wikimedia.org/wiki/Special:ListUsers?username=firefly&group=&wpsubmit=&wpFormIdentifier=mw-listusers-form&limit=50
[14:45:12] <firefly_>	 Seems that there's no such user
[14:45:26] <firefly_>	 @andrewbogott ^
[14:45:55] <chicocvenancio>	 firefly_: what are you trying to achieve?
[14:46:26] <annika>	 firefly_: could you try Firefly with a capital f?
[14:46:28] <firefly_>	 I'm trying to reset my LDAP account password, i.e. the one used here: https://toolsadmin.wikimedia.org/auth/login/
[14:46:39] <firefly_>	 And @annika, I tried that, thanks though!
[14:46:49] <chicocvenancio>	 I see no firefly user in wikitech...
[14:46:53] <Ester>	 chicocvenancio: npm install
[14:46:53] <Ester>	 npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=3.10.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
[14:46:53] <Ester>	 npm WARN notice [SECURITY] randomatic has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=randomatic&version=1.1.7 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
[14:47:53] <chicocvenancio>	 npm i npm@latest -g should work after nvm use
[14:47:57] <chicocvenancio>	 Ester: ^
[14:48:08] <Ester>	 ok :)
[14:48:10] <chicocvenancio>	 firefly_: why are you sure that is the ldap user?
[14:48:40] <firefly_>	 @chicocvenancio see https://toolsadmin.wikimedia.org/tools/membership/status/303
[14:49:21] <firefly_>	 I also tried my Wikimedia account, but that doesn't work either (my WM account is being renamed soon, hence the different names)
[14:49:27] <chicocvenancio>	 it really seems you ldap user was not created
[14:49:45] <firefly_>	 Can that be fixed on the backend somehow?
[14:51:06] <chicocvenancio>	 yes, but I don't have access and I'm not sure someone from the team will be available today (being a Sunday and Mothers day). I recommend creating a phabricator task
[14:53:18] <firefly_>	 Will do
[14:53:20] <firefly_>	 Thank youU!
[14:54:29] <chicocvenancio>	 you're welcome
[14:56:29] <foop_>	 !help i am a walrus
[14:56:29] <wm-bot>	 foop_: If you don't get a response in 15-30 minutes, please create a phabricator task -- https://phabricator.wikimedia.org/maniphest/task/edit/form/1/?projects=wmcs-team
[15:08:51] <Ester>	 chicocvenancio: after "npm i npm@latest -g" I did "npm install"
[15:09:00] <Ester>	 up to date in 86.772s
[15:09:01] <Ester>	 [!] 54 vulnerabilities found [12189 packages audited]
[15:09:01] <Ester>	     Severity: 14 Low | 32 Moderate | 8 High
[15:09:01] <Ester>	     Run `npm audit` for more detail
[15:09:48] <Ester>	 now running npm audit
[15:09:56] <Ester>	 and trying to solve vulenrabilities
[15:09:59] <chicocvenancio>	 npm is warning you about security vulnerabilities in installed packages
[15:16:38] <Ester>	 do I need to solve those vulnerabilities? I'm trying but don't seem like they go away
[15:17:32] <chicocvenancio>	 it really depends what they are, I recommend creating a phabricator task and asking for people with more knowledge than me with node.js to look at it
[15:18:52] <Ester>	 ok thanks
[15:19:01] <Ester>	 :)
[15:34:04] <Ester>	 chicocvenancio: I get GET https://tools.wmflabs.org/etytree.css 404 ()
[15:34:25] <Ester>	 after webservice --backend=kubernetes php5.6 start
[15:35:37] <chicocvenancio>	 https://tools.wmflabs.org/etytree/etytree.css
[15:35:58] <Ester>	 https://tools.wmflabs.org/etytree
[15:36:05] <Ester>	 the browser gives me error
[15:36:10] <Ester>	 doesnt' load the css
[15:37:00] <chicocvenancio>	 the trailling slash is important for relative paths
[15:37:14] <chicocvenancio>	 https://tools.wmflabs.org/etytree/ will work
[15:37:31] <Ester>	 oh
[15:37:35] <Ester>	 ok
[16:05:00] <Ester>	 chicocvenancio: I am updating the bundle.js file but i don't see updates in the visualization
[16:05:18] <Ester>	 even though I restart the webservice
[16:05:28] <chicocvenancio>	 maybe browser cache?
[16:05:43] <chicocvenancio>	 a restart shouldn't be needed
[16:06:22] <Ester>	 correct!
[16:06:27] <Ester>	 thanks so much...
[18:18:02] <awight>	 Looking for docs on how to configure the firewall on a cloud VPS instance.  Not the security group, but the node's firewall.
[18:18:31] <chicocvenancio>	 internal to the node?
[18:19:22] <awight>	 yes, thanks.  Looks like I should be trying to configure "ferm" via puppet?
[18:22:09] <chicocvenancio>	 I don't have any insight into interanal firewalls in VPS. I don't think there is any docs either
[18:22:22] <chicocvenancio>	 *internal
[18:23:06] <awight>	 hehe that's what I'm finding as well...
[18:26:38] <awight>	 Strange business, I also discovered that there *is* a ferm service declared for the thing I'm looking at.
[18:28:03] <paladox>	 awight yep
[18:28:07] <paladox>	 though you could use:
[18:28:38] <paladox>	 awight sudo iptables -A INPUT -p tcp --dport 5666 -j ACCEPT
[18:28:52] <paladox>	 but that will be loss on a reboot of the server
[18:29:16] <awight>	 :) Looks like I was depending on a requirement between roles, which didn't exist.
[18:29:24] <awight>	 Thanks, paladox!
[18:29:30] <paladox>	 your welcome :)
[18:32:35] <awight>	 I think this will do the trick, as long as the role is included: https://phabricator.wikimedia.org/source/operations-puppet/browse/production/modules/profile/manifests/ores/web.pp;7d958a8d80be32c0c9ba565cae3182bf2af44869$16
[18:35:15] <awight>	 Strangely seems to not work.  I put the iptables bandage on, will come back to this soon.
[22:29:02] <Krinkle>	 I don't know if there's a known issue with the replicas at the moment, but I've had several users complain today/yesterday that user/revision queries from GUC at https://tools.wmflabs.org/guc/ are taking well over 100 seconds to complete. I can reproduce this myself as well.
[22:29:28] <Krinkle>	 Example: https:// tools.wmflabs.org /guc/?user=Krinkle&debug=true 
[22:29:35] <Krinkle>	 Once it completes, the bottom shows debug information. 
[22:30:08] <Krinkle>	 In my case, it seems all queries are <0.1s second, except one random one which seems to take 128s seconds for a single simple user table query for ab.wikipedia.org on s1.web
[22:30:45] <Krinkle>	 +0s: Create connection to s1.web.db.svc.eqiad.wmflabs
[22:30:45] <Krinkle>	 +0.1s: Query all wikis for matching revisions
[22:30:45] <Krinkle>	 +128.72s: Query user data for ab.wikipedia.org
[22:30:45] <Krinkle>	 +0.03s: Query contributions on ab.wikipedia.org [..] all other wiki, with less than 0.1s for user/contrib  queries.
[23:59:54] <chicocvenancio>	 !log tools.paws manually stop several inactive user servers
[23:59:55] <stashbot>	 Logged the message at https://wikitech.wikimedia.org/wiki/Nova_Resource:Tools.paws/SAL