Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use virtualenv instead of user pip #44

Closed
wants to merge 6 commits into from
Closed

Use virtualenv instead of user pip #44

wants to merge 6 commits into from

Conversation

johanvdw
Copy link
Contributor

I think it is cleaner to use virtualenv instead of a pip --user:

  • different instances use their own environment, which is nice in case of upgrades or plugin installs
  • at least in debian, pip is actively telling you not to use it, unless you specify --break-system-packages
error: externally-managed-environment

× This environment is externally managed
╰─> To install Python packages system-wide, try apt install
    python3-xyz, where xyz is the package you are trying to
    install.
    
    If you wish to install a non-Debian-packaged Python package,
    create a virtual environment using python3 -m venv path/to/venv.
    Then use path/to/venv/bin/python and path/to/venv/bin/pip. Make
    sure you have python3-full installed.
    
    If you wish to install a non-Debian packaged Python application,
    it may be easiest to use pipx install xyz, which will manage a
    virtual environment for you. Make sure you have pipx installed.
    
    See /usr/share/doc/python3.11/README.venv for more information.

note: If you believe this is a mistake, please contact your Python installation or OS distribution provider. You can override this, at the risk of breaking your Python installation or OS, by passing --break-system-packages.
hint: See PEP 668 for the detailed specification.

I'm opening as a draft PR because this will break arch compatibility.

rixx
rixx requested changes Sep 11, 2023
View reviewed changes
Copy link
Member

@rixx rixx left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you! I added a few comments. Additionally, I may be blind, but where are you setting pretalx_python?

templates/pretalx.service.j2
@@ -6,7 +6,7 @@ After=network.target
[Service]
User={{ pretalx_system_user_prefix }}%i
Group={{ pretalx_system_user_prefix }}%i
WorkingDirectory=/home/{{ pretalx_system_user_prefix }}%i/.local/lib/python{{ pretalx_system_python_version }}/site-packages/pretalx
ExecStart=/home/{{ pretalx_system_user_prefix }}%i/.local/bin/gunicorn --bind unix:/run/gunicorn/pretalx_%i --workers {{ pretalx_service_workers }} --max-requests {{ pretalx_service_workers_max_requests }} --max-requests-jitter {{ pretalx_service_workers_max_requests_jitter }} pretalx.wsgi
WorkingDirectory={{ pretalx_virtualenv }}/lib/python{{ pretalx_system_python_version }}/site-packages/pretalx
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You've removed the parametrisation (%i) in this service file, fundamentally changing how it's used. I don't think that's a good idea – while I personally don't run this ansible role anymore (in favour of something already using venvs, albeit more customized ones), changing the behaviour like that doesn't seem great.

tasks/requirements_debian.yml
@@ -16,6 +16,7 @@
- gcc
- gettext
- git
- npm
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Included this in a separate commit, just to get it merged while we talk about the rest here.

tasks/package.yml
state: latest # noqa package-latest
virtualenv: "{{ pretalx_virtualenv }}"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You're using |default(omit) in some places but not in others, is that intentional?

handlers/main.yml
become: true
become_user: "{{ pretalx_system_user }}"

- name: Compile pretalx javascript
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm, I don't think this is quite correct. Instead, we can just replace the collectstatic and compress commands with rebuild – rebuild runs collectstatic, compress and also compilemessages.

@johanvdw
Copy link
Contributor Author

I should probably have been clearer: I wanted to get some feedback about the idea of using virtualenvs in the first place, which is why I opened this PR as a draft in the first place. Will rework it a bit (and split the npm part) and open this again.

@johanvdw johanvdw closed this Sep 27, 2023
@rixx
Copy link
Member

rixx commented Sep 28, 2023

Yeah, absolutely in favour of using venvs in general, thank you for looking into this! Didn't mean to reject the PR entirely, just the implementation details :)

@johanvdw johanvdw mentioned this pull request Oct 21, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rixx rixx rixx requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@johanvdw @rixx