diff --git a/_articles/appdev-cdn.md b/_articles/appdev-cdn.md index beeaa65a..9773fef2 100644 --- a/_articles/appdev-cdn.md +++ b/_articles/appdev-cdn.md @@ -10,8 +10,8 @@ redirect_from: /articles/appdev-static-assets-cdn.html To help reduce load on the IdP application servers, increase resiliency to DDoS attacks, and allow for more robust error handling and maintenance pages we use Cloudfront to serve both static and dynamic -content. To smooth deployments, we serve static assets like images, CSS, and JavaScript from an S3 bucket -and dynamic content from the servers using Cloudfront path based behaviors. This solution prevents 404s +content. To smooth deployments, we serve static assets like images, CSS, and JavaScript from an S3 bucket +and dynamic content from the servers using Cloudfront path based behaviors. This solution prevents 404s when a browser accesses static content referenced in the newly deployed application server which then fails to load when directed to an older application server which does not have the new asset. @@ -36,6 +36,6 @@ to route requests to your static content. ## Further Information -See [Runbook: CloudFront CDN](https://github.com/18F/identity-devops/wiki/Runbook:-CloudFront-CDN) for technical +See [Runbook: CloudFront CDN](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-CloudFront-CDN) for technical and troubleshooting details. diff --git a/_articles/appdev-cloudwatch-dashboard-guide.md b/_articles/appdev-cloudwatch-dashboard-guide.md index 689a2578..5d26aca2 100644 --- a/_articles/appdev-cloudwatch-dashboard-guide.md +++ b/_articles/appdev-cloudwatch-dashboard-guide.md @@ -57,4 +57,4 @@ the experimental one will be created for all environments. ## Technical Information -For technical information on creating dashboards and alerts, see [Monitoring and observability: CloudWatch queries, alarms and dashboards](https://github.com/18F/identity-devops/wiki/Monitoring-and-observability:-CloudWatch-queries,-alarms-and-dashboards). +For technical information on creating dashboards and alerts, see [Monitoring and observability: CloudWatch queries, alarms and dashboards](https://gitlab.login.gov/lg/identity-devops/-/wikis/Monitoring-and-observability:-CloudWatch-queries,-alarms-and-dashboards). diff --git a/_articles/appdev-oncall-guide.md b/_articles/appdev-oncall-guide.md index 8850021e..6e6a13ad 100644 --- a/_articles/appdev-oncall-guide.md +++ b/_articles/appdev-oncall-guide.md @@ -31,7 +31,7 @@ See [Splunk On-Call]({% link _articles/platform-splunk-oncall.md %}) for more on Your first emergency contact should always be `@login-devops-oncall` - Make sure they are aware anytime things are going poorly. -For Login.gov and vendor emergency contact information see [Emergency Contacts](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference#emergency-contacts) +For Login.gov and vendor emergency contact information see [Emergency Contacts](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference#emergency-contacts) ## Handoff diff --git a/_articles/appdev-troubleshooting-production.md b/_articles/appdev-troubleshooting-production.md index 872cc14a..82655807 100644 --- a/_articles/appdev-troubleshooting-production.md +++ b/_articles/appdev-troubleshooting-production.md @@ -9,7 +9,7 @@ These are common scripts and tasks for lookup up data in production ## Prerequisites -Before you can access any systems, you will need to [set up AWS-vault](https://github.com/18F/identity-devops/wiki/Setting-Up-AWS-Vault) +Before you can access any systems, you will need to [set up AWS-vault](https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-AWS-Vault) ## SSM Documents @@ -59,7 +59,7 @@ events.log events for that user. For a full list of documented events, see [Analytics Events]({% link _articles/analytics-events.md %}) -See also [Troubleshooting Quick Reference - Cloudwatch Logs](https://github.com/18F/identity-devops/wiki/Troubleshooting-Quick-Reference#cloudwatch-logs) +See also [Troubleshooting Quick Reference - Cloudwatch Logs](https://gitlab.login.gov/lg/identity-devops/-/wikis/Troubleshooting-Quick-Reference#cloudwatch-logs) ### Cloudwatch Insights diff --git a/_articles/definition-of-done.md b/_articles/definition-of-done.md index 9d8818a2..46091638 100644 --- a/_articles/definition-of-done.md +++ b/_articles/definition-of-done.md @@ -93,7 +93,7 @@ Key items as part of an acceptance thread: - In the thread: - Include steps so that anyone can replicate and review. - Specify which environment changes were deployed to, and provide a link to that environment - - Favor using [Review Apps](https://github.com/18F/identity-devops/wiki/How-to-find-your-review-app) to allow previewing changes before merging to `main`. + - Favor using [Review Apps](https://gitlab.login.gov/lg/identity-devops/-/wikis/Review-Apps) to allow previewing changes before merging to `main`. - Provide screenshots and/or screen recording if possible - Sometimes, for tickets that don't have UI changes, includes a description of what changed and links to a Pull Request diff --git a/_articles/deploying-sp-to-prod.md b/_articles/deploying-sp-to-prod.md index 3c5aead8..0b6904b2 100644 --- a/_articles/deploying-sp-to-prod.md +++ b/_articles/deploying-sp-to-prod.md @@ -32,7 +32,7 @@ Here is a list of items that need to be completed to deploy the configuration fo **Prerequisites:** -Make sure you have prod-power access to run commands for aws-vault. You will have to go through steps listed in [identity-devops](https://github.com/18F/identity-devops/wiki/Setting-Up-AWS-Vault) repo for setting up your production access. +Make sure you have prod-power access to run commands for aws-vault. You will have to go through steps listed in [identity-devops](https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-AWS-Vault) repo for setting up your production access. **Step 1:** - make sure you are in the root directory of the identity-devops repository. diff --git a/_articles/devops-scripts.md b/_articles/devops-scripts.md index b43227e4..222f352f 100644 --- a/_articles/devops-scripts.md +++ b/_articles/devops-scripts.md @@ -13,7 +13,7 @@ Each script also has a `--help` with additional documentation. ## Prerequisites -Before you can access any systems, you will need to [set up AWS-vault](https://github.com/18F/identity-devops/wiki/Setting-Up-AWS-Vault) +Before you can access any systems, you will need to [set up AWS-vault](https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-AWS-Vault) ## `app-s3-secret` @@ -277,7 +277,7 @@ aws-vault exec prod-power -- \ ### `review-pass` -Activates a user that has a profile deactivated due to a pending ThreatMetrix review status. +Activates a user that has a profile deactivated due to a pending ThreatMetrix review status. Requires the user UUID from the `uuid-lookup` task. ```bash @@ -294,7 +294,7 @@ aws-vault exec prod-power -- \ ``` ### `review-reject` -Deactivates a user that has a pending ThreatMetrix review status with the reason "ThreatMetrix review rejected". +Deactivates a user that has a pending ThreatMetrix review status with the reason "ThreatMetrix review rejected". Requires the user UUID from the `uuid-lookup` task. ```bash diff --git a/_articles/incident-response-checklist.md b/_articles/incident-response-checklist.md index 4ccf5f30..f230a543 100644 --- a/_articles/incident-response-checklist.md +++ b/_articles/incident-response-checklist.md @@ -77,7 +77,7 @@ procedures. *Mitigate* (Continous) * Technical context shared with responders in the room -* [Incident Response Runbooks](https://github.com/18F/identity-devops/wiki/Incident-Response-Runbooks) used where appropriate and steps executed +* [Incident Response Runbooks](https://gitlab.login.gov/lg/identity-devops/-/wikis/Incident-Response-Runbooks) used where appropriate and steps executed * Creates parallel lines of investigation and mitigation to delegate to [other responders](#responder) *Resolve and Retrospect* @@ -110,7 +110,7 @@ procedures. * Once the situation is assessed, ping `@login-comms-oncall` *Mitigate* (Continous) -* **(Every 30 Minutes)** Check the [Incident Comms Playbook - ASSESS](https://docs.google.com/document/d/1kG7LXaEThJFJfCVP3jnimEvqbHKlFNvJ_PokZkpu1K8/edit#heading=h.vjtsg6mj5w6c) section +* **(Every 30 Minutes)** Check the [Incident Comms Playbook - ASSESS](https://docs.google.com/document/d/1kG7LXaEThJFJfCVP3jnimEvqbHKlFNvJ_PokZkpu1K8/edit#heading=h.vjtsg6mj5w6c) section * **(Every 30 Minutes)** [Update StatusPage]({% link _articles/statuspage-process.md %}#update) (if an incident is posted) *Resolve and Retrospect* @@ -166,7 +166,7 @@ procedures. # Resources * [Login.gov Security Incident Response Guide]({% link _articles/secops-incident-response-guide.md %}): IR guidance and overview, defer to the official IR plan -* [Emergency Contact List](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference#emergency-contacts): Private emergency contact list +* [Emergency Contact List](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference#emergency-contacts): Private emergency contact list * [Official Login.gov Incident Response plan](https://drive.google.com/file/d/1SVz5keBYiDSXvzBdkLFOqdnAplZWqL9D/view): The authoritative source for login * [TTS incident response process](https://handbook.tts.gsa.gov/security-incidents/) * [GSA IT - IT Security Procedural Guide: Incident Response](https://www.gsa.gov/cdnstatic/Incident_Response_%5BCIO_IT_Security_01-02_Rev_18%5D_03-26-2021docx.pdf) diff --git a/_articles/partnerships-test-ssns.md b/_articles/partnerships-test-ssns.md index 5e24ccaa..a3e6c60a 100644 --- a/_articles/partnerships-test-ssns.md +++ b/_articles/partnerships-test-ssns.md @@ -15,7 +15,7 @@ On rare occasions, a partner may require us to permit a validly-formatted SSN in 1. Have the partner provide a list of specific SSNs that need to be permitted 2. Have the latest version of the [`18F/identity-devops`](https://github.com/18F/identity-devops) repo cloned -2. Have sandbox access in AWS and [AWS Vault set up](https://github.com/18F/identity-devops/wiki/Setting-Up-AWS-Vault) +2. Have sandbox access in AWS and [AWS Vault set up](https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-AWS-Vault) ## Update the IdP Configuration diff --git a/_articles/platform-alerting.md b/_articles/platform-alerting.md index 4185c4da..dc337f3c 100644 --- a/_articles/platform-alerting.md +++ b/_articles/platform-alerting.md @@ -2,5 +2,5 @@ title: "Infrastructure Metrics and Alerting" layout: article category: Platform -redirect_to: https://github.com/18F/identity-devops/wiki/Troubleshooting-Quick-Reference#infrastructure-metrics +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Troubleshooting-Quick-Reference#infrastructure-metrics --- diff --git a/_articles/platform-aliases.md b/_articles/platform-aliases.md index 06931869..b758ba4a 100644 --- a/_articles/platform-aliases.md +++ b/_articles/platform-aliases.md @@ -4,5 +4,5 @@ description: "Reference/runbook for the custom commands created via the login-al layout: article category: Platform subcategory: References -redirect_to: https://github.com/18F/identity-devops/wiki/Custom-Aliases-and-Functions-for-identity-devops +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Custom-Aliases-and-Functions-for-identity-devops --- diff --git a/_articles/platform-aws-accounts-and-roles.md b/_articles/platform-aws-accounts-and-roles.md index dd258578..8caa3952 100644 --- a/_articles/platform-aws-accounts-and-roles.md +++ b/_articles/platform-aws-accounts-and-roles.md @@ -3,5 +3,5 @@ title: "AWS Accounts and IAM Groups/Roles" description: "Private list of AWS accounts, roles, and groups for human users" layout: article category: Platform -redirect_to: https://github.com/18F/identity-devops/wiki/AWS-Account-and-IAM-Configurations +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/AWS-Account-and-IAM-Configurations --- diff --git a/_articles/platform-baking-amis.md b/_articles/platform-baking-amis.md index 771ab75e..4d50556d 100644 --- a/_articles/platform-baking-amis.md +++ b/_articles/platform-baking-amis.md @@ -4,5 +4,5 @@ description: Runbook for creating new Base and Rails AMI images layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Baking-New-AWS-AMI-Images +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Baking-New-AWS-AMI-Images --- diff --git a/_articles/platform-deploy-devops-code.md b/_articles/platform-deploy-devops-code.md index 7baf54ef..0de113a7 100644 --- a/_articles/platform-deploy-devops-code.md +++ b/_articles/platform-deploy-devops-code.md @@ -4,5 +4,5 @@ description: Runbook for the process of deploying code from 18f/identity-devops layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Runbook%3A-Weekly-Platform-Deployments +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook%3A-Weekly-Platform-Deployments --- diff --git a/_articles/platform-disaster-runbooks.md b/_articles/platform-disaster-runbooks.md index bdd010e5..ca187812 100644 --- a/_articles/platform-disaster-runbooks.md +++ b/_articles/platform-disaster-runbooks.md @@ -4,6 +4,6 @@ description: Recovering from really really bad stuff layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Disaster-Recovery:-Recovering-RDS-and-KMS +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Disaster-Recovery:-Recovering-RDS-and-KMS --- diff --git a/_articles/platform-email.md b/_articles/platform-email.md index 286c8141..796d9bdf 100644 --- a/_articles/platform-email.md +++ b/_articles/platform-email.md @@ -92,7 +92,7 @@ Non-authoritative answer: _smtp._tls.login.gov text = "v=TLSRPTv1;rua=mailto:tls.reports@gsa.gov,mailto:tls-reports@login.gov" ~~~ -See [Runbook: Email - MTA-STS](https://github.com/18F/identity-devops/wiki/Runbook:-Email#MTA-STS) for implementation details. + ## Outbound Sending from @login.gov diff --git a/_articles/platform-external-services-and-limits.md b/_articles/platform-external-services-and-limits.md index 2eb69ba9..1d0931d7 100644 --- a/_articles/platform-external-services-and-limits.md +++ b/_articles/platform-external-services-and-limits.md @@ -4,5 +4,5 @@ description: Notes on rate and cost limited external services used by IdP and ou layout: article category: Platform subcategory: References -redirect_to: https://github.com/18F/identity-devops/wiki/External-Services-and-Limits +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/External-Services-and-Limits --- \ No newline at end of file diff --git a/_articles/platform-gitlab-prod-deploy.md b/_articles/platform-gitlab-prod-deploy.md index dfff94fe..68c52707 100644 --- a/_articles/platform-gitlab-prod-deploy.md +++ b/_articles/platform-gitlab-prod-deploy.md @@ -15,7 +15,7 @@ If you need to deploy Gitlab Production, there are two ways to do it * Deploy by hand Unfortunately, creating a HA gitlab instance with the omnibus package install -system that we are using is a HUGE pain to do, and for an org of our size, +system that we are using is a HUGE pain to do, and for an org of our size, not recommended by Gitlab, so an upgrade will cause an outage of 8-15 minutes. Sigh. Someday we hope to move to the k8s version which will result in an outage of seconds instead of minutes. @@ -33,8 +33,8 @@ we will have a manual deploy approval step so that we can control when they roll * **Make sure that the code you are pushing deployed cleanly to the gitstaging environment!!**. * Check to see if there are any background migrations still going. There should be none. If there are, either wait until they are - complete, or if they don't seem to be moving, - [contact gitlab support](https://github.com/18F/identity-devops/wiki/GitLab-Ultimate-Licensing-and-Support) + complete, or if they don't seem to be moving, + [contact gitlab support](https://gitlab.login.gov/lg/identity-devops/-/wikis/GitLab-Ultimate-Licensing-and-Support) and ask for help in getting the migrations unstuck. * Check that the repository mirroring for [identity-devops](https://gitlab.gitstaging.gitlab.login.gov/lg/identity-devops/-/settings/repository) and [identity-devops-private](https://gitlab.gitstaging.gitlab.login.gov/lg/identity-devops-private/-/settings/repository) diff --git a/_articles/platform-gitlab.md b/_articles/platform-gitlab.md index 85acf744..41a89e9f 100644 --- a/_articles/platform-gitlab.md +++ b/_articles/platform-gitlab.md @@ -28,7 +28,7 @@ Login.gov's Platform Teams support the GitLab service. For help from an on-call platform engineer you can Slack a question in `#login-devops` and `@login-devtools-oncall` For general GitLab support you can also directly use GitLab support. -See [GitLab Licensing and Support](https://github.com/18F/identity-devops/wiki/GitLab-Ultimate-Licensing-and-Support) +See [GitLab Licensing and Support](https://gitlab.login.gov/lg/identity-devops/-/wikis/GitLab-Ultimate-Licensing-and-Support) ## Getting an Account @@ -56,7 +56,7 @@ To log in: Note - If `secure.login.gov` is not available, existing Personal Access Tokens continue to function. We also have break-glass procedures if needed. -See [Runbook: GitLab Access Contingency Plan](https://github.com/18F/identity-devops/wiki/Runbook:-Gitlab-Access-Contingency-Plan) +See [Runbook: GitLab Access Contingency Plan](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-Gitlab-Access-When-IDP-is-Down) ## Personal Access Tokens @@ -92,13 +92,13 @@ a multitude of installed packages. Here are some troubleshooting resources: ### Login.gov GitLab Runbooks -* [GitLab Access when Login.gov Is Down](https://github.com/18F/identity-devops/wiki/Runbook:-Gitlab-Access-When-IDP-is-Down) -* [GitLab CI Troubleshooting](https://github.com/18F/identity-devops/wiki/Runbook:-Gitlab-CI-Troubleshooting) -* [GitLab Backup and Disaster Recovery](https://github.com/18F/identity-devops/wiki/Disaster-Recovery:-Gitlab-Backup-and-Restore) +* [GitLab Access when Login.gov Is Down](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-Gitlab-Access-When-IDP-is-Down) +* [GitLab CI Troubleshooting](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-Gitlab-CI-Troubleshooting) +* [GitLab Backup and Disaster Recovery](https://gitlab.login.gov/lg/identity-devops/-/wikis/Disaster-Recovery:-Gitlab-Backup-and-Restore) ## Getting Support from GitLab -See [GitLab Licensing and Support](https://github.com/18F/identity-devops/wiki/GitLab-Ultimate-Licensing-and-Support) +See [GitLab Licensing and Support](https://gitlab.login.gov/lg/identity-devops/-/wikis/GitLab-Ultimate-Licensing-and-Support) ## Gitlab Staging Environment diff --git a/_articles/platform-load-testing-process.md b/_articles/platform-load-testing-process.md index 8d52778b..d238df89 100644 --- a/_articles/platform-load-testing-process.md +++ b/_articles/platform-load-testing-process.md @@ -4,5 +4,5 @@ description: Process overview and instruction for performing load tests in AWS layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Load-Testing +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Load-Testing --- diff --git a/_articles/platform-making-changes-via-terraform.md b/_articles/platform-making-changes-via-terraform.md index e494f0c4..3a37377f 100644 --- a/_articles/platform-making-changes-via-terraform.md +++ b/_articles/platform-making-changes-via-terraform.md @@ -3,5 +3,5 @@ title: "Making Changes via Terraform" description: This is a guide to the various `terraform` directories in `identity-devops` and how to use them layout: article category: Platform -redirect_to: https://github.com/18F/identity-devops/wiki/Making-Changes-via-Terraform +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Making-Changes-via-Terraform --- diff --git a/_articles/platform-oncall-guide.md b/_articles/platform-oncall-guide.md index cb11cf89..363a30ac 100644 --- a/_articles/platform-oncall-guide.md +++ b/_articles/platform-oncall-guide.md @@ -34,10 +34,10 @@ Mission: Take care of production! #### Quick Reference -* [Oncall Guide Quick Reference](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference/) - +* [Oncall Guide Quick Reference](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference/) - emergency contact list and other private information * [Incident Response Checklist]({{site.baseurl}}/articles/incident-response-checklist.html) - when an incident arises -* [Troubleshooting Quick Reference]({{site.baseurl}}/articles/troubleshooting-quick-reference.html) - when you are troubleshooting and not sure where to start +* [Troubleshooting Quick Reference]({{site.baseurl}}/articles/troubleshooting-quick-reference.html) - when you are troubleshooting and not sure where to start * [Platform Rotations in Splunk On-Call](https://portal.victorops.com/dash/gsa_login#/team/team-oMJ7AAPwdFSwsMJc/rotations) - to check who is on call #### Responsibilities @@ -111,12 +111,12 @@ Mission: Support the Login.gov Platform's customers! In addition to the [LG Platform: Interrupts board](https://github.com/orgs/18F/projects/34) on GitHub, the following `identity-devops` wiki pages are helpful for most Interrupts responsibilities: -* [Setting Up your Login.gov Infrastructure Configuration](https://github.com/18F/identity-devops/wiki/Setting-Up-your-Login.gov-Infrastructure-Configuration) -* [Setting Up AWS Vault](https://github.com/18F/identity-devops/wiki/Setting-Up-AWS-Vault) -* [Building a Personal Sandbox Environment](https://github.com/18F/identity-devops/wiki/Building-a-Personal-Sandbox-Environment) -* [Common Infrastructure Commands and Shortcuts](https://github.com/18F/identity-devops/wiki/Common-Infrastructure-Commands-and-Shortcuts) -* [IAM Configurations](https://github.com/18F/identity-devops/wiki/IAM-Configurations) - for on/offboarding AWS IAM users -* [Making Changes via Terraform](https://github.com/18F/identity-devops/wiki/Making-Changes-via-Terraform) - for troubleshooting Terraform deployment issues +* [Setting Up your Login.gov Infrastructure Configuration](https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-your-Login.gov-Infrastructure-Configuration) +* [Setting Up AWS Vault](https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-AWS-Vault) +* [Building a Personal Sandbox Environment](https://gitlab.login.gov/lg/identity-devops/-/wikis/Building-a-Personal-Sandbox-Environment) +* [Common Infrastructure Commands and Shortcuts](https://gitlab.login.gov/lg/identity-devops/-/wikis/Common-Infrastructure-Commands-and-Shortcuts) +* [IAM Configurations](https://gitlab.login.gov/lg/identity-devops/-/wikis/IAM-Configurations) - for on/offboarding AWS IAM users +* [Making Changes via Terraform](https://gitlab.login.gov/lg/identity-devops/-/wikis/Making-Changes-via-Terraform) - for troubleshooting Terraform deployment issues #### Responsibilities @@ -162,12 +162,12 @@ Mission: Ship! #### Quick Reference -* [Runbook: Weekly Platform Deployments via Terraform](https://github.com/18F/identity-devops/wiki/Runbook:-Weekly-Platform-Deployments-via-Terraform) -* [Baking New AWS AMI Images](https://github.com/18F/identity-devops/wiki/Baking-New-AWS-AMI-Images) +* [Runbook: Weekly Platform Deployments via Terraform](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-Weekly-Platform-Deployments) +* [Baking New AWS AMI Images](https://gitlab.login.gov/lg/identity-devops/-/wikis/Baking-New-AWS-AMI-Images) #### Responsibilities -* **Prepare weekly `identity-devops` release and deploy it** following the [Weekly Platform Deployments guide](https://github.com/18F/identity-devops/wiki/Runbook:-Weekly-Platform-Deployments-via-Makefile#monday-release-prep) +* **Prepare weekly `identity-devops` release and deploy it** following the [Weekly Platform Deployments guide](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-Weekly-Platform-Deployments#release-prep) #### Procedures diff --git a/_articles/platform-scaling.md b/_articles/platform-scaling.md index 701735d9..660f82f3 100644 --- a/_articles/platform-scaling.md +++ b/_articles/platform-scaling.md @@ -4,5 +4,5 @@ description: Runbooks for scaling out or up various resources in anticipation of layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Infrastructure-Scaling +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Infrastructure-Scaling --- diff --git a/_articles/platform-secrets.md b/_articles/platform-secrets.md index b16e9f54..a3b205f2 100644 --- a/_articles/platform-secrets.md +++ b/_articles/platform-secrets.md @@ -3,5 +3,5 @@ title: "Platform: Secrets!" description: "List of configuration secrets and how to manage them" layout: article category: Platform -redirect_to: https://github.com/18F/identity-devops/wiki/Infrastructure-Secrets +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Infrastructure-Secrets --- diff --git a/_articles/platform-set-up-personal-sandbox.md b/_articles/platform-set-up-personal-sandbox.md index 50b5f0ad..3ed00c8d 100644 --- a/_articles/platform-set-up-personal-sandbox.md +++ b/_articles/platform-set-up-personal-sandbox.md @@ -4,5 +4,5 @@ description: 'This is a guide to follow when you are standing up your own person layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Building-a-Personal-Sandbox-Environment +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Building-a-Personal-Sandbox-Environment --- diff --git a/_articles/platform-setting-up-aws-vault.md b/_articles/platform-setting-up-aws-vault.md index 2cf539ca..e87d1eb2 100644 --- a/_articles/platform-setting-up-aws-vault.md +++ b/_articles/platform-setting-up-aws-vault.md @@ -4,5 +4,5 @@ description: This runbook is for getting set up with, and using, `aws-vault`, a layout: article category: Platform subcategory: How To -redirect_to: https://github.com/18F/identity-devops/wiki/Setting-Up-AWS-Vault +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Setting-Up-AWS-Vault --- diff --git a/_articles/secops-incident-response-guide.md b/_articles/secops-incident-response-guide.md index 9fb714d7..8b8e9b08 100644 --- a/_articles/secops-incident-response-guide.md +++ b/_articles/secops-incident-response-guide.md @@ -68,7 +68,7 @@ Initial steps: * Call in on-call members using the @login-appdev-oncall and @login-devops-oncall handles in Slack * Use @here in [#login-situation][login-situation] if still understaffed * After hours: - * Use Splunk On-Call page on-call engineers (See [Emergency Contacts](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference#emergency-contacts)). If you're unsure whether or not to page somebody, lean towards paging them as a way to get a fresh set of eyes. + * Use Splunk On-Call page on-call engineers (See [Emergency Contacts](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference#emergency-contacts)). If you're unsure whether or not to page somebody, lean towards paging them as a way to get a fresh set of eyes. * Roles are assigned when possible as responders join the incident: * **Situation Lead (SL)**: - Responsible for ensuring all following steps are completed. [Situation Lead Checklist]({% link _articles/incident-response-checklist.md %}#situation-lead) * **Technical Lead (TL)**: Leads technical investigation and mitigation. [Technical Lead Checklist]({% link _articles/incident-response-checklist.md %}#technical-lead) @@ -83,7 +83,7 @@ Roles proceed as follows: * Adjusts the severity of the incident based on [impact assessment](#impact-assessment) as needed * **Tech Lead (TL)**: * Leads technical response, delegating technical tasks as needed - * Checks for relevant [Incident Response Runbooks](https://github.com/18F/identity-devops/wiki/Incident-Response-Runbooks) and initiates use + * Checks for relevant [Incident Response Runbooks](https://gitlab.login.gov/lg/identity-devops/-/wikis/Incident-Response-Runbooks) and initiates use * Ensures screen sharing and other methods are used * **Scribe (SC)**: * Records significant activities in [#login-situation][login-situation] channel to create a timeline @@ -92,7 +92,7 @@ Roles proceed as follows: * Creates the Incident Review document by copying [Incident Review Google Doc](https://docs.google.com/document/d/1Yaqnb9QsHRrlaBvlTeO_qHGmuP-0h4z-CCustU8gBdk/copy) and shares a link in #login-situation * **Messenger (M)**: * Creates the official tracking issue for the incident: [Incident Template](https://github.com/18F/identity-security-private/issues/new?template=incidents.md) - * Uses [GSA IR Email Template](https://docs.google.com/document/d/16h4gDq9JeW8JBhBDswSvoGRWx6qQvX_4spyEZVbjlcA) to create and send notice to GSA Incident Response , IT Service Desk (or GSA IT Helpline called), and our [GSA ISSO and ISSM](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference/#emergency-contacts) **within 1 hour** of start of incident + * Uses [GSA IR Email Template](https://docs.google.com/document/d/16h4gDq9JeW8JBhBDswSvoGRWx6qQvX_4spyEZVbjlcA) to create and send notice to GSA Incident Response , IT Service Desk (or GSA IT Helpline called), and our [GSA ISSO and ISSM](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference/#emergency-contacts) **within 1 hour** of start of incident * If incident is an outage (problem impacting users' ability to use Login.gov), SL updates the [Login.gov StatusPage](https://logingov.statuspage.io/) following [StatusPage Process - Managing an Outage]({% link _articles/statuspage-process.md %}#managing-an-outage) * Checks the incident against the [Incident Response Thresholds for Communications](https://docs.google.com/document/d/19LfFyjlUeM2bbcztaMCswFm68FL5X51zzG1yNMQapz0/edit?skip_itp2_check=true&pli=1) and notify Login.gov comms before the incident reaches 50% of its length of time limit @@ -284,7 +284,7 @@ shared in the [#login-situation][login-situation] channel. ### Emergency Contacts -The [Emergency Contact List](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference#emergency-contacts) includes +The [Emergency Contact List](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference#emergency-contacts) includes contact and escalation information for Login.gov, GSA, and vendors. ### Crisis Comms diff --git a/_articles/statuspage-process.md b/_articles/statuspage-process.md index b9aa3838..9acca37d 100644 --- a/_articles/statuspage-process.md +++ b/_articles/statuspage-process.md @@ -119,7 +119,7 @@ partner communication if maintenance must be performed with less than 14 days notice. Where possible the recommended change window should be used for maintenance. -See [Runbook: Maintenance Window Tasks](https://github.com/18F/identity-devops/wiki/Runbook:-Maintenance-Window-Tasks) +See [Runbook: Maintenance Window Tasks](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-Maintenance-Window-Tasks) for the suggested time window. It is recommended that you reach out to the Partnerships team before scheduling maintenance in production, and that you do the same for our `sandbox` (integration testing) environment. diff --git a/_articles/troubleshooting-quick-reference.md b/_articles/troubleshooting-quick-reference.md index ee1fe2ee..31b9ca04 100644 --- a/_articles/troubleshooting-quick-reference.md +++ b/_articles/troubleshooting-quick-reference.md @@ -4,5 +4,5 @@ description: "List of things to check to triage active issues in production" layout: article category: "Development" subcategory: "References" -redirect_to: https://github.com/18F/identity-devops/wiki/Troubleshooting-Quick-Reference +redirect_to: https://gitlab.login.gov/lg/identity-devops/-/wikis/Troubleshooting-Quick-Reference --- diff --git a/_articles/vendor-outage-response-process.md b/_articles/vendor-outage-response-process.md index 3c490e43..e8add345 100644 --- a/_articles/vendor-outage-response-process.md +++ b/_articles/vendor-outage-response-process.md @@ -36,17 +36,17 @@ maintenance window, and restart server instances again. | vendor | runbook | |---------------------------|------------------------------------------------------------------------------------------------------------------------------------| -| AAMVA | [Runbook: AAMVA DLDV outage](https://github.com/18F/identity-devops/wiki/Runbook:-AAMVA-DLDV-outage) | +| AAMVA | [Runbook: AAMVA DLDV outage](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-AAMVA-DLDV-outage) | | Acuant | TBD | -| LexisNexis TrueID | [Runbook: LexisNexis TrueID outage](https://github.com/18F/identity-devops/wiki/Runbook%3A-LexisNexis-TrueID-outage) | -| LexisNexis Instant Verify | [Runbook: LexisNexis Instant Verify outage](https://github.com/18F/identity-devops/wiki/Runbook:-LexisNexis-Instant-Verify-outage) | +| LexisNexis TrueID | [Runbook: LexisNexis TrueID outage](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook%3A-LexisNexis-TrueID-outage) | +| LexisNexis Instant Verify | [Runbook: LexisNexis Instant Verify outage](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-LexisNexis-Instant-Verify-outage) | | LexisNexis Phone Finder | TBD | -| ThreatMetrix | [Runbook: ThreatMetrix outage](https://github.com/18F/identity-devops/wiki/Runbook:-ThreatMetrix-outage) +| ThreatMetrix | [Runbook: ThreatMetrix outage](https://gitlab.login.gov/lg/identity-devops/-/wikis/Runbook:-ThreatMetrix-outage) | Pinpoint | TBD | ### Contact Information -For escalation contacts at our vendors, see the "Proofing vendors" section of [On Call Guide Quick Reference](https://github.com/18F/identity-devops/wiki/On-Call-Guide-Quick-Reference#proofing-vendors). +For escalation contacts at our vendors, see the "Proofing vendors" section of [On Call Guide Quick Reference](https://gitlab.login.gov/lg/identity-devops/-/wikis/On-Call-Guide-Quick-Reference#proofing-vendors). ## Manually disable identity verification diff --git a/_articles/wargames-dungeon-masters-guide.md b/_articles/wargames-dungeon-masters-guide.md index 68cc5b47..88ea8fef 100644 --- a/_articles/wargames-dungeon-masters-guide.md +++ b/_articles/wargames-dungeon-masters-guide.md @@ -96,7 +96,7 @@ except for the [Prior to session] component of breaking something. A runbook scenario is one that focuses on executing a fixed runbook to verify and refine it. For example, you could conduct a Wargame where the team -is guided toward needing to use our basic [HA Test Contingency Plan Runbook](https://github.com/18F/identity-devops/wiki/HA-test---Contingency-Plan---Runbook) +is guided toward needing to use our basic [HA Test Contingency Plan Runbook](https://gitlab.login.gov/lg/identity-devops/-/wikis/HA-test---Contingency-Plan---Runbook) to recover from an availability zone outage that did not cleanly failover. These scenarios are also useful for addressing annual Contingency Plan Training @@ -191,7 +191,7 @@ Suggested flow: be seen as a failing by the DM * Limit the incident response time to around 40 minutes to leave enough time for post-game discussion and any planning for the next scenario. -* [Psychological safety](https://risk-engineering.org/concept/psychological-safety) +* [Psychological safety](https://risk-engineering.org/concept/psychological-safety) is a prerequisite for effective incident response and learning to take place, so be sure to take immediate action if you see signs of a room where players feel unable to openly share, question, and risk being wrong diff --git a/_articles/wargames-players-guide.md b/_articles/wargames-players-guide.md index e3e9799a..e46dc589 100644 --- a/_articles/wargames-players-guide.md +++ b/_articles/wargames-players-guide.md @@ -39,8 +39,8 @@ brand new to incident management. - [Workload Dashboard](https://us-west-2.console.aws.amazon.com/cloudwatch/home?region=us-west-2#dashboards?listOptions=~(filteringText~'workload~currentPageIndex~1)){:target="_blank"} of the environment that is being used for the war games ### Useful things to have up in a browser: -- [Incident response runbooks](https://github.com/18F/identity-devops/wiki/Incident-Response-Runbooks){:target="_blank"} -- [Troubleshooting Devops quick reference -- includes devops commands](https://github.com/18F/identity-devops/wiki/Troubleshooting-Quick-Reference){:target="_blank"} +- [Incident response runbooks](https://gitlab.login.gov/lg/identity-devops/-/wikis/Incident-Response-Runbooks){:target="_blank"} +- [Troubleshooting Devops quick reference -- includes devops commands](https://gitlab.login.gov/lg/identity-devops/-/wikis/Troubleshooting-Quick-Reference){:target="_blank"} - [Identity IdP Github](https://github.com/18f/identity-idp){:target="_blank"} - [Identity Devops Github](https://github.com/18f/identity-devops){:target="_blank"}