This is also click-changeable in the UI, and seems to not impact running
clusters from some testing.
This gives you a better name than i-asdfasdfasdfasdf.rabbit.lol which is
what you get by default on AWS.
This is mostly seen in logs and rabbitmqctl output.

Install jenkins nginx config to nginx_sites_available_dir

Add check to see if hive metastore is initialized.

Make it possible to run the newrelic play on a box without ec2 access

chmod and chown the edx_ansible_venv_dir to make vagrant provision more reliable

Jibsheet/multiple worker cluster detection

Many of our machines aren't granted DescribeInstances because there's no
real need.  This let's you -e in those vars instead.

This should have been set prior to https://github.com/edx/auth-backends/pull/9 being merged. We did not catch this problem until now because the library currently used for JWT validation, pyjwt, simply skips issuer validation if the issuer is set to None.

LEARNER-693

ECOM-3629

Robustify TLS nginx settings

Added the option to split env_extras by app

We can detect the SuspendedProcess properties that Asgard puts on the
ASG when it's being deleted.

Add HELP_TOKENS_BOOKS setting

Add a configuration setting for the edx language cookie

Upgrade Hadoop and Hive

This header will provide more information to downstream caches so they know which headers to consider when determining a match. This is especially important to ensure browsers do not cache incorrect CORS headers when switching between sites/tenants.

DEVOPS-5807

bake pip requirements into the loadtest worker AMI

This follows the same pattern as with the platform workers: (1) clone
the repo, (2) install requirements, (3) package the virtualenv into a
tarball which becomes part of the AMI.

PERF-393

* Updates paths for Hadoop and Hive installs, including Hadoop native library compiling.
* Initialize Hive metadata store schema

Always reboot when taking an AMI

Make changes for running analyticstack on 16.04.

* Replace llvm-gcc with gcc.
* Define new Hadoop services.
* Add retry when first using Hadoop.
* Add procps to debian packages to address bug.
* Increase memory allocation.

Not doing this means we can't guarantee filesystem integrity
and we've seen this bear out recently when several 16.04 instances had 0
length minos installs (the last task to run before the AMI is cut)

Add Enterprise Service worker username and API URL

add additional debian packages for notifier

[ENT-327] Set SESSION_EXPIRE_AT_BROWSER_CLOSE for IDAs

redirector play

After reading more on CORS (and sleeping!) I have finally corrected CORS
for static files, restricting access to our knwon hosts. Our initial
implementation was almost correct. It simply lacked the protocol—HTTP,
HTTPS—on the regex.

In my late-night push to just be done with this, I failed to go back to
"first principles" and actually understand CORS, choosing to rely on
various online "solutions". This lead to the unnecessary headers seen in
previous commits. Since we only care about GET requests for fonts, we
only need the single header. There is no need to handle preflight
OPTIONS requests because we aren't making such requests.

LEARNER-568

We have invested *numerous* man-hours in attempting to provide a
properly-secured CORS implementation. Unfortunately, our efforts
have only resulted in a lot of frustration, failure, and new
knowledge. For now, given the low risk of exposing these files, we
will move forward with the insecure option.

LEARNER-568

Remove reference to nginx var where nginx role isn't used

Finally figured out where I misunderstood nginx

LEARNER-568

LEARNER-568

LEARNER-568