Add changes to ensure azlinux and mcrypt images are working fine

.pre-commit-config.yaml

@@ -4,6 +4,7 @@ repos:
         hooks:
         -   id: detect-secrets
             args: ['--baseline', '.secrets.baseline']
+            additional_dependencies: ['gibberish-detector']
     -   repo: https://github.com/pre-commit/pre-commit-hooks
         rev: v4.6.0
         hooks:

.secrets.baseline

@@ -2412,57 +2412,6 @@
         "line_number": 44
       }
     ],
-    "kube/services/jobs/usersync-job.yaml": [
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "dbd5f43594a152b52261c8e21520a3989823fe55",
-        "is_verified": false,
-        "line_number": 64
-      },
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "1c062eaac9e6fa0766377d3cfc3e4a88982fecdb",
-        "is_verified": false,
-        "line_number": 67
-      },
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "694cfd0a009a42055e975de9111b2f3c6e8a3634",
-        "is_verified": false,
-        "line_number": 70
-      },
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "4b09a441cef18c75560f6c3caeafc96f2163c3fd",
-        "is_verified": false,
-        "line_number": 77
-      },
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "7e7478a28dcc3695a083b66b47243b050c813e2d",
-        "is_verified": false,
-        "line_number": 80
-      },
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "2f57bb00fcb93481c2be444e3e9f322b6cb5fadb",
-        "is_verified": false,
-        "line_number": 83
-      },
-      {
-        "type": "Secret Keyword",
-        "filename": "kube/services/jobs/usersync-job.yaml",
-        "hashed_secret": "ea73fcfdaa415890d5fde24d3b2245671be32f73",
-        "is_verified": false,
-        "line_number": 86
-      }
-    ],
     "kube/services/jobs/useryaml-job.yaml": [
       {
         "type": "Secret Keyword",
@@ -3253,5 +3202,5 @@
       }
     ]
   },
-  "generated_at": "2024-11-25T11:39:59Z"
+  "generated_at": "2024-12-10T19:30:47Z"
 }

kube/services/fence/fence-deploy.yaml

@@ -225,8 +225,9 @@ spec:
           - "-c"
           - |
             echo "${FENCE_PUBLIC_CONFIG:-""}" > "/var/www/fence/fence-config-public.yaml"
-            python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-public.yaml /var/www/fence/fence-config-secret.yaml > /var/www/fence/fence-config.yaml
+            poetry run python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-public.yaml /var/www/fence/fence-config-secret.yaml > /var/www/fence/fence-config.yaml
             bash /fence/dockerrun.bash && if [[ -f /dockerrun.sh ]]; then bash /dockerrun.sh; fi
+            poetry run gunicorn  -c deployment/wsgi/gunicorn.conf.py 
       initContainers:
       - name: fence-init
         GEN3_FENCE_IMAGE
@@ -262,7 +263,7 @@ spec:
           - "-c"
           - |
             echo "${FENCE_PUBLIC_CONFIG:-""}" > "/var/www/fence/fence-config-public.yaml"
-            python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-public.yaml /var/www/fence/fence-config-secret.yaml > /var/www/fence/fence-config.yaml
+            poetry run python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-public.yaml /var/www/fence/fence-config-secret.yaml > /var/www/fence/fence-config.yaml
             if fence-create migrate --help > /dev/null 2>&1; then
               if ! grep -E 'ENABLE_DB_MIGRATION"?: *false' /var/www/fence/fence-config.yaml; then
                 echo "Running db migration: fence-create migrate"

kube/services/jobs/usersync-job.yaml

@@ -93,7 +93,7 @@ spec:
             name: "projects"
       containers:
       - name: usersync
-        GEN3_FENCE_IMAGE
+        GEN3_FENCE_MCRYPT_IMAGE
         imagePullPolicy: Always
         env:
           - name: prometheus_multiproc_dir

kube/services/presigned-url-fence/presigned-url-fence-deploy.yaml

@@ -220,11 +220,12 @@ spec:
           - |
             echo "${FENCE_PUBLIC_CONFIG:-""}" > "/var/www/fence/fence-config-public.yaml"
             echo -e "ENABLE_DB_MIGRATION: false" > "/var/www/fence/fence-config-bonus1.yaml"
-            python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-public.yaml /var/www/fence/fence-config-secret.yaml > /var/www/fence/fence-config-step1.yaml
-            python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-bonus1.yaml /var/www/fence/fence-config-step1.yaml > /var/www/fence/fence-config.yaml
+            poetry run python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-public.yaml /var/www/fence/fence-config-secret.yaml > /var/www/fence/fence-config-step1.yaml
+            poetry run python /var/www/fence/yaml_merge.py /var/www/fence/fence-config-bonus1.yaml /var/www/fence/fence-config-step1.yaml > /var/www/fence/fence-config.yaml
             nginx_limit=$(cat /var/www/fence/fence-config.yaml | sed -n -e 's/^.*\"OVERRIDE_NGINX_RATE_LIMIT\": //p' | sed 's/.$//')
             if [ -z "$nginx_limit" ]; then
               nginx_limit=$(cat /fence/fence/config-default.yaml | sed -n -e 's/^.*OVERRIDE_NGINX_RATE_LIMIT: //p')
             fi
             export OVERRIDE_NGINX_RATE_LIMIT="$nginx_limit"
             ([[ ! -f /entrypoint.sh ]] || bash /entrypoint.sh) && /fence/dockerrun.bash && if [[ -f /dockerrun.sh ]]; then bash /dockerrun.sh; fi
+            poetry run gunicorn  -c deployment/wsgi/gunicorn.conf.py