Help:Horizon FAQ

Cloud VPS
Cloud VPS technical documentation Cloud VPS and Toolforge at a glance Cloud VPS project Cloud VPS Infrastructure Cloud Services roles and user rights Cloud VPS administrator documentation Help and communication Glossary Technical documentation resources
Instances and access Set up a Cloud VPS Instance Set up a Cloud VPS Instance using MediaWiki-Vagrant Set up a Cloud VPS Instance using LAMP stack Access Cloud Services Instances Access Cloud Services Instances with PuTTY and WinSCP
Security and policies Security groups and firewall settings Configure sudo policies Server groups
Horizon, proxies and puppet About Horizon Manage floating IP addresses Proxy to reach Cloud VPS server Puppet compiler Standalone puppetmaster
Troubleshooting Locale errors LAMP issues
Additional documentation Resize root partition Development recommendations for easily moving to production
v · d · e

Overview

This page contains information about horizon.wikimedia.org.

About Horizon

Horizon.wikimedia.org is the web interface for creating and manipulating virtual machines ('Cloud VPS instances') and associated features within Cloud VPS. Horizon runs a customized version of OpenStack Horizon, which is the official tool for managing OpenStack deploys.

Horizon vs Wikitech

Horizon and Wikitech are preferred tools for specific processes.

Horizon

• User management within Cloud VPS projects
• Creation, deletion, starting, stopping of instances
• Management of instance firewalls (aka 'security groups')
• Creation and assignment of web proxies for instances
• Assignment of floating IPs to instances
• Manipulation of DNS records associated with floating IPs
• Management of project Sudo policies
• Management of puppet and hiera configuration for instances

Wikitech

• Individual user management
  • Account creation
  • Password & 2fa management
  • Management of SSH keys for instance access

Accessing Horizon

Any Wikimedia developer account holder with the 'projectadmin' role in a project has login access to horizon.wikimedia.org. The username, password, and two-factor authentication code are the ones associated with your developer account. Normal Toolforge and Cloud VPS project members can ignore Horizon for now, and possibly forever.

Horizon login requires 2FA

Horizon login requires a password and a second factor, the two-factor authentication code token. These credentials are shared with your developer account.

If you do not already have two-factor authentication (2fa) enabled for your developer account you can do so by visiting 'Preferences->User Profile' and clicking 'Enable two-factor authentication'.

Make sure you have a working SSH login to Cloud VPS before you enable 2FA. This will be helpful if you lose your back-up codes and need to retrieve them.

Retrieving back-up codes

To retrieve lost back-up codes, you will need to verify your identity with WMF Operations.

1. Contact WMF Operations
2. You will be provided with instructions to verify your identity
3. Once this is done WMF Operations will turn off 2fa for your developer account so you can re-enable it and reset your code.

Project creation and management

See Help:Cloud VPS project for information on requesting a new project as a Cloud VPS user.

Proxies and DNS

Creating a new subdomain of wmflabs.org requires cooperation between multiple projects (yours, and that project that owns wmflabs.org.) For this reason, domain creation is limited to Cloud VPS operators. Create a phabricator request and we'll get to it as soon as we can.

For reference, this is done using the wmcs-makedomain script.

Troubleshooting

If you have a large number of projects and can't view them all in the project menu. You can view a complete project list by selecting the 'Identity->Projects' tab. To view a specific project, click the 'Set as Active Project' button on the right-hand side of the table.

Communication and support

We communicate and provide support through several primary channels. Please reach out with questions and to join the conversation.