Jose/ansible_role_proxmox_provision
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docs 📝: Add 'API Utilities' section and update directory structure #10

Merged
Jose merged 4 commits from dev into main 2026-02-12 21:29:37 +01:00
Conversation 3 Commits 4 Files Changed 6 +99 -116
Jose commented 2026-02-12 21:21:27 +01:00
Owner
Copy Link

This commit adds a new section for API utilities in the documentation and updates the project's directory structure to better organize related files.

This commit adds a new section for API utilities in the documentation and updates the project's directory structure to better organize related files.
Jose added 2 commits 2026-02-12 21:24:09 +01:00
docs 📝: Add 'API Utilities' section and update directory structure c8e99821f1 
This commit adds a new section for API utilities in the documentation and updates the project's directory structure to better organize related files.
refactor ♻️: Refactor logrotate configuration for better organization and maintainability.
Some checks failed
ansible-lint / Ansible Lint (push) Failing after 6s
Details
Gitleaks Scan / gitleaks (push) Successful in 5s
Details
ai-reviews / Review PR (pull_request) Successful in 37s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details
ansible-lint / Ansible Lint (pull_request) Failing after 6s
Details
Gitleaks Scan / gitleaks (pull_request) Successful in 4s
Details
Markdown Lint / markdown-lint (pull_request) Successful in 5s
Details
a684702d7f 
This commit refactors the logrotate configuration by installing and customizing policies, replacing the logrotate command with a service restart in handlers, and adding new templates for Proxmox firewall and general logs. This improves the overall structure and manageability of the logrotate settings.
gitea-actions bot reviewed 2026-02-12 21:24:58 +01:00
gitea-actions bot left a comment
Copy Link

Review Summary

  • README.md: Summary: Addition of a new file for API utilities in the project.
  • defaults/main.yml: This change implements log rotation settings for Proxmox, which is a good step towards better system maintenance. However, there are some issues that need attention:
  • handlers/main.yml: Changes in the provided YAML file involve updating the method for reloading logrotate from running a command to using the service module. This change seems reasonable as it's more aligned with Ansible best practices, specifically utilizing Ansible modules instead of shell commands whenever possible. However, there are a few concerns: - Using become: true means the script will run as root by default, which increases security risks if not handled carefully (Score: 3). Consider limiting privilege escalation only when necessary and ensuring appropriate role-based access control (RBAC) is in place. - The change also adds an extra step to restart logrotate service (Score: 2). While this approach is more Ansible-centric, it may have implications on performance due to the additional call to the service module compared to a simple logrotate /etc/logrotate.conf command. Consider evaluating if this improvement justifies the potential performance trade-off.
  • tasks/logrotate.yml: Summary: The provided code snippet has been significantly reduced, focusing on ensuring the installation and configuration of logrotate for Proxmox logs, and adding custom policies for pve and pve-firewall logs. This change is a good practice for proper log management but omits previous rotation configurations for other main Proxmox logs. LGTM (With caution) - While there are potential issues with the removal of the original logrotate configuration and minor optimization suggestions, the overall change appears to be focused on ensuring the installation and configuration of logrotate for Proxmox logs, and adding custom policies for pve and pve-firewall logs. If these issues can be addressed or mitigated appropriately, the changes should not significantly impact the system's functionality.
  • templates/pve-firewall-logrotate.j2: Changes added a new template for Proxmox firewall log rotation configuration managed by Ansible. This new script appears well-structured and follows best practices. However, there is no critical issue or major problem found within the provided context. Here's a brief summary of the script: The script configures logrotate settings for Proxmox firewall logs (/var/log/pve-firewall.log) based on parameters set in Ansible playbooks (e.g., proxmox_logrotate_rotate, proxmox_logrotate_frequency, etc.). Additionally, it includes options for compression, delaycompress, missingok, notifempty, sharedscripts, and post-rotation script to restart pvefw-logger service if necessary. LGTM
  • templates/pve-logrotate.j2: Summary: This is a new logrotate configuration template for Proxmox VE's pveproxy service. The template includes options to rotate, compress, delay compression, handle missing logs, and notify on non-empty logs. It also has post-rotation scripts to reload or restart the relevant services. LGTM This new configuration looks good with no issues of significant concern. However, it is essential to check that the variables proxmox_logrotate_rotate, proxmox_logrotate_frequency, proxmox_logrotate_maxsize, proxmox_logrotate_compress, proxmox_logrotate_delaycompress, proxmox_logrotate_missingok, and proxmox_logrotate_notifempty are set correctly based on your system's requirements.
# Review Summary * **README.md**: **Summary:** Addition of a new file for API utilities in the project. * **defaults/main.yml**: This change implements log rotation settings for Proxmox, which is a good step towards better system maintenance. However, there are some issues that need attention: * **handlers/main.yml**: Changes in the provided YAML file involve updating the method for reloading logrotate from running a command to using the service module. This change seems reasonable as it's more aligned with Ansible best practices, specifically utilizing Ansible modules instead of shell commands whenever possible. However, there are a few concerns: - Using `become: true` means the script will run as root by default, which increases security risks if not handled carefully (Score: 3). Consider limiting privilege escalation only when necessary and ensuring appropriate role-based access control (RBAC) is in place. - The change also adds an extra step to restart logrotate service (Score: 2). While this approach is more Ansible-centric, it may have implications on performance due to the additional call to the service module compared to a simple `logrotate /etc/logrotate.conf` command. Consider evaluating if this improvement justifies the potential performance trade-off. * **tasks/logrotate.yml**: **Summary:** The provided code snippet has been significantly reduced, focusing on ensuring the installation and configuration of logrotate for Proxmox logs, and adding custom policies for pve and pve-firewall logs. This change is a good practice for proper log management but omits previous rotation configurations for other main Proxmox logs. **LGTM (With caution)** - While there are potential issues with the removal of the original logrotate configuration and minor optimization suggestions, the overall change appears to be focused on ensuring the installation and configuration of logrotate for Proxmox logs, and adding custom policies for pve and pve-firewall logs. If these issues can be addressed or mitigated appropriately, the changes should not significantly impact the system's functionality. * **templates/pve-firewall-logrotate.j2**: **Changes added a new template for Proxmox firewall log rotation configuration managed by Ansible.** This new script appears well-structured and follows best practices. However, there is no critical issue or major problem found within the provided context. Here's a brief summary of the script: The script configures logrotate settings for Proxmox firewall logs (`/var/log/pve-firewall.log`) based on parameters set in Ansible playbooks (e.g., `proxmox_logrotate_rotate`, `proxmox_logrotate_frequency`, etc.). Additionally, it includes options for compression, delaycompress, missingok, notifempty, sharedscripts, and post-rotation script to restart pvefw-logger service if necessary. **LGTM** * **templates/pve-logrotate.j2**: **Summary:** This is a new logrotate configuration template for Proxmox VE's pveproxy service. The template includes options to rotate, compress, delay compression, handle missing logs, and notify on non-empty logs. It also has post-rotation scripts to reload or restart the relevant services. **LGTM** This new configuration looks good with no issues of significant concern. However, it is essential to check that the variables `proxmox_logrotate_rotate`, `proxmox_logrotate_frequency`, `proxmox_logrotate_maxsize`, `proxmox_logrotate_compress`, `proxmox_logrotate_delaycompress`, `proxmox_logrotate_missingok`, and `proxmox_logrotate_notifempty` are set correctly based on your system's requirements.
ansible_role_proxmox_provision/tasks/utilities.yml Outdated
gitea-actions bot commented 2026-02-12 21:24:58 +01:00
Copy Link

[Score: 2] Addition of a new file for API utilities, ensure it includes necessary tasks and checks for maintainability and idempotency.

[Score: 2] Addition of a new file for API utilities, ensure it includes necessary tasks and checks for maintainability and idempotency.
defaults/main.yml Outdated
@@ -17,0 +24,4 @@
proxmox_logrotate_notifempty: true
# Destination override file
proxmox_logrotate_file: /etc/logrotate.d/99-proxmox-custom
gitea-actions bot commented 2026-02-12 21:24:58 +01:00
Copy Link

[Lines 15-27] [Score: 3] Adding a newline at the end of the file is important for readability and consistency in YAML files. It can potentially cause errors if the configuration tool doesn't handle missing newlines correctly.

[Lines 15-27] [Score: 3] Adding a newline at the end of the file is important for readability and consistency in YAML files. It can potentially cause errors if the configuration tool doesn't handle missing newlines correctly.
tasks/logrotate.yml
@@ -101,2 +6,2 @@
insertafter: EOF
notify: Logrotate reload
update_cache: yes
become: true
gitea-actions bot commented 2026-02-12 21:24:58 +01:00
Copy Link

[Lines 2-7] [Score: 2] The addition of a new task to ensure that the logrotate package is present on the system is a good practice for proper log management. However, it may not be necessary if the system already has logrotate installed by default or if an alternative solution for managing logs is in place.

[Lines 2-7] [Score: 2] The addition of a new task to ensure that the logrotate package is present on the system is a good practice for proper log management. However, it may not be necessary if the system already has logrotate installed by default or if an alternative solution for managing logs is in place.
tasks/logrotate.yml Outdated
gitea-actions bot commented 2026-02-12 21:24:58 +01:00
Copy Link

[Lines 1-111] [Score: 4] Removal of the original logrotate configuration may lead to inconsistencies in rotation policies for all main Proxmox logs, potentially causing issues with their management and maintenance. It is recommended to keep a backup or revert changes if necessary.

[Lines 1-111] [Score: 4] Removal of the original logrotate configuration may lead to inconsistencies in rotation policies for all main Proxmox logs, potentially causing issues with their management and maintenance. It is recommended to keep a backup or revert changes if necessary.
tasks/logrotate.ymy Outdated
gitea-actions bot commented 2026-02-12 21:24:58 +01:00
Copy Link

[Lines 12-13] [Score: 2] The choice of the destination directory for the custom pve logrotate policy seems appropriate as /etc/logrotate.d is the default location for logrotate configuration files in Debian-based systems.

[Lines 12-13] [Score: 2] The choice of the destination directory for the custom pve logrotate policy seems appropriate as /etc/logrotate.d is the default location for logrotate configuration files in Debian-based systems.
tasks/logrotate.ymy Outdated
gitea-actions bot commented 2026-02-12 21:24:58 +01:00
Copy Link

[Lines 24-25] [Score: 2] The choice of the destination directory for the custom pve-firewall logrotate policy seems appropriate as /etc/logrotate.d is the default location for logrotate configuration files in Debian-based systems.

[Lines 24-25] [Score: 2] The choice of the destination directory for the custom pve-firewall logrotate policy seems appropriate as /etc/logrotate.d is the default location for logrotate configuration files in Debian-based systems.
Jose added 1 commit 2026-02-12 21:25:20 +01:00
chore 📦: Update proxmox_logrotate_file path in defaults
Some checks failed
ansible-lint / Ansible Lint (push) Failing after 11s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
ai-reviews / Review PR (pull_request) Successful in 30s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details
ansible-lint / Ansible Lint (pull_request) Failing after 10s
Details
Gitleaks Scan / gitleaks (pull_request) Successful in 4s
Details
Markdown Lint / markdown-lint (pull_request) Successful in 5s
Details
c7a4e36b88 
This commit updates the default path for the `proxmox_logrotate_file` variable to ensure it aligns with the latest configuration standards.
gitea-actions bot reviewed 2026-02-12 21:26:06 +01:00
gitea-actions bot left a comment
Copy Link

Review Summary

  • README.md: Summary: Addition of API utilities and related changes in directory structure. Overall, the changes seem logical and well-structured. However, it's essential to review the dependencies between these files, ensure the correct order of execution, and maintain proper documentation for future reference. LGTM (with minor suggestions)
  • defaults/main.yml: Addition of Log Rotate Configuration
  • handlers/main.yml: Refactoring the log rotation handling for better maintainability and error management. [Score: 3] Moderate: Changed from ansible.builtin.command to ansible.builtin.service for better handling of logrotate service, which is a systemd managed service. Using 'command' could lead to unexpected behavior or errors with non-systemd systems.
  • tasks/logrotate.yml: Summary: The provided YAML file has been significantly shortened to include only the installation and configuration of the logrotate package along with custom policies for Proxmox and pve-firewall logs. This change improves maintainability by reducing redundancy. However, it potentially restricts the ability to manage individual log rotation settings independently. LGTM (With minor optimization suggestions)
  • templates/pve-firewall-logrotate.j2: New template for Proxmox firewall log rotation configuration using Ansible. The provided code appears well-structured and follows best practices, with no critical or major issues found. Some modifications could be suggested for better maintainability and readability. Here's a summary of the changes: LGTM
  • templates/pve-logrotate.j2: This appears to be a new configuration file for log rotation policy managed by Ansible for Proxmox. The added code sets up the rotation and compression options for the /var/log/pveproxy/access.log file, and includes post-rotation scripts to reload or restart related services. LGTM: Given that there are no critical, major, or moderate issues found in the provided diff, the changes look logical and well-structured for maintaining this log rotation policy.
# Review Summary * **README.md**: **Summary:** Addition of API utilities and related changes in directory structure. Overall, the changes seem logical and well-structured. However, it's essential to review the dependencies between these files, ensure the correct order of execution, and maintain proper documentation for future reference. LGTM (with minor suggestions) * **defaults/main.yml**: **Addition of Log Rotate Configuration** * **handlers/main.yml**: Refactoring the log rotation handling for better maintainability and error management. [Score: 3] Moderate: Changed from `ansible.builtin.command` to `ansible.builtin.service` for better handling of logrotate service, which is a systemd managed service. Using 'command' could lead to unexpected behavior or errors with non-systemd systems. * **tasks/logrotate.yml**: **Summary:** The provided YAML file has been significantly shortened to include only the installation and configuration of the logrotate package along with custom policies for Proxmox and pve-firewall logs. This change improves maintainability by reducing redundancy. However, it potentially restricts the ability to manage individual log rotation settings independently. LGTM (With minor optimization suggestions) * **templates/pve-firewall-logrotate.j2**: New template for Proxmox firewall log rotation configuration using Ansible. The provided code appears well-structured and follows best practices, with no critical or major issues found. Some modifications could be suggested for better maintainability and readability. Here's a summary of the changes: **LGTM** * **templates/pve-logrotate.j2**: This appears to be a new configuration file for log rotation policy managed by Ansible for Proxmox. The added code sets up the rotation and compression options for the `/var/log/pveproxy/access.log` file, and includes post-rotation scripts to reload or restart related services. **LGTM**: Given that there are no critical, major, or moderate issues found in the provided diff, the changes look logical and well-structured for maintaining this log rotation policy.
README.md
@@ -26,6 +26,7 @@
| Swap handling | ✅ | ✅ | ✅ |
| Logrotate protection | ✅ | ✅ | ✅ |
| Powertop auto-tune | ✅ | ✅ | ✅ |
| API utilities | ✅ | ✅ | ✅ |
gitea-actions bot commented 2026-02-12 21:26:06 +01:00
Copy Link

[Score: 2] Consider adding a brief description or purpose of the API utilities in the README file for better understanding and documentation.

[Score: 2] Consider adding a brief description or purpose of the API utilities in the README file for better understanding and documentation.
ansible_role_proxmox_provision/ansible_role_proxmox_provision/tasks/main.yml Outdated
gitea-actions bot commented 2026-02-12 21:26:06 +01:00
Copy Link

[Score: 2] The subscription.yml file is listed before the swap.yml and now before the utilities.yml, which might not be the desired order of execution. Verify that these files are executed in the correct sequence as per their functional dependencies.

[Score: 2] The subscription.yml file is listed before the swap.yml and now before the utilities.yml, which might not be the desired order of execution. Verify that these files are executed in the correct sequence as per their functional dependencies.
ansible_role_proxmox_provision/ansible_role_proxmox_provision/tasks/main.yml Outdated
gitea-actions bot commented 2026-02-12 21:26:06 +01:00
Copy Link

[Score: 2] The Swap configuration file is moved below the new utilities file, which might cause issues if dependencies exist between these two files. Consider reviewing the order or dependencies within the playbook.

[Score: 2] The Swap configuration file is moved below the new utilities file, which might cause issues if dependencies exist between these two files. Consider reviewing the order or dependencies within the playbook.
ansible_role_proxmox_provision/ansible_role_proxmox_provision/tasks/main.yml Outdated
gitea-actions bot commented 2026-02-12 21:26:06 +01:00
Copy Link

[Score: 2] Adding a new file for API utilities may require updating other parts of the codebase to reference this new file, ensuring consistency and maintainability.

[Score: 2] Adding a new file for API utilities may require updating other parts of the codebase to reference this new file, ensuring consistency and maintainability.
defaults/main.yml
@@ -17,0 +24,4 @@
proxmox_logrotate_notifempty: true
# Destination override file
proxmox_logrotate_file: /etc/logrotate.d/99-proxmox-custom
gitea-actions bot commented 2026-02-12 21:26:06 +01:00
Copy Link

[Lines 12-27] [Score: 2] The addition of new logrotate configuration options for Proxmox. This could potentially improve the management and storage of log files, but ensure there are no unintended consequences for services that may need to write to these logs frequently.

[Lines 12-27] [Score: 2] The addition of new logrotate configuration options for Proxmox. This could potentially improve the management and storage of log files, but ensure there are no unintended consequences for services that may need to write to these logs frequently.
Jose added 1 commit 2026-02-12 21:27:55 +01:00
refactor ♻️: Refactor task names for clarity and consistency
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 11s
Details
Gitleaks Scan / gitleaks (push) Successful in 5s
Details
ai-reviews / Review PR (pull_request) Successful in 33s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details
ansible-lint / Ansible Lint (pull_request) Successful in 11s
Details
Gitleaks Scan / gitleaks (pull_request) Successful in 5s
Details
Markdown Lint / markdown-lint (pull_request) Successful in 5s
Details
c6288877e8 
Renamed task labels to be more descriptive and consistent across the project, improving readability and maintainability.
gitea-actions bot reviewed 2026-02-12 21:28:45 +01:00
gitea-actions bot left a comment
Copy Link

Review Summary

  • README.md: Summary: The provided Git diff shows the addition of a new Ansible role for API utilities and the corresponding file in the project structure. No critical, major, or moderate issues are found. However, there is one minor optimization suggestion.
  • defaults/main.yml: Addition of Log Rotate Configuration for Proxmox
  • handlers/main.yml: Changes Summary: The code changes involve replacing the old Logrotate reload command with a new service restart method for 'logrotate'. The new approach uses Ansible's built-in service module to manage the 'logrotate' service. Potential Issue: - [Score: 2] Maintainability (Consistency)
  • tasks/logrotate.yml: This review focuses on the provided git diff, focusing on logic, security, performance, and maintainability aspects. The scoring legend is provided for reference. Overall Summary: The provided git diff includes changes that ensure the logrotate package is installed and creates custom logrotate configurations for PVE and PVE-firewall logs. Although there is a minor maintainability issue with removing the YAML document declaration, overall the changes look good and should not have any major negative impact on logic, security, performance, or maintainability.
  • templates/pve-firewall-logrotate.j2: Summary: Addition of a logrotate configuration template for Proxmox firewall logs. LGTM (Since no issues with Score >= 2 are found, no further comments or blocks are provided.)
  • templates/pve-logrotate.j2: New Ansible template for Proxmox logrotate policy added
# Review Summary * **README.md**: **Summary:** The provided Git diff shows the addition of a new Ansible role for API utilities and the corresponding file in the project structure. No critical, major, or moderate issues are found. However, there is one minor optimization suggestion. * **defaults/main.yml**: **Addition of Log Rotate Configuration for Proxmox** * **handlers/main.yml**: **Changes Summary:** The code changes involve replacing the old Logrotate reload command with a new service restart method for 'logrotate'. The new approach uses Ansible's built-in `service` module to manage the 'logrotate' service. **Potential Issue:** - [Score: 2] Maintainability (Consistency) * **tasks/logrotate.yml**: This review focuses on the provided git diff, focusing on logic, security, performance, and maintainability aspects. The scoring legend is provided for reference. Overall Summary: The provided git diff includes changes that ensure the `logrotate` package is installed and creates custom logrotate configurations for PVE and PVE-firewall logs. Although there is a minor maintainability issue with removing the YAML document declaration, overall the changes look good and should not have any major negative impact on logic, security, performance, or maintainability. * **templates/pve-firewall-logrotate.j2**: **Summary:** Addition of a logrotate configuration template for Proxmox firewall logs. **LGTM** (Since no issues with Score >= 2 are found, no further comments or blocks are provided.) * **templates/pve-logrotate.j2**: **New Ansible template for Proxmox logrotate policy added**
ansible_role_proxmox_provision/tasks/main.yml
gitea-actions bot commented 2026-02-12 21:28:45 +01:00
Copy Link

[Score: 2] It would be a better practice to use alphabetical ordering for the files in the tasks directory, making it easier to maintain and read.

[Score: 2] It would be a better practice to use alphabetical ordering for the files in the tasks directory, making it easier to maintain and read.
defaults/main.yml
@@ -17,0 +24,4 @@
proxmox_logrotate_notifempty: true
# Destination override file
proxmox_logrotate_file: /etc/logrotate.d/99-proxmox-custom
gitea-actions bot commented 2026-02-12 21:28:45 +01:00
Copy Link

[Lines 12-27] [Score: 3] This change adds log rotation configuration for Proxmox, which is generally a good practice for managing logs. However, it might be worth considering setting proxmox_logrotate_compress to delaycompress initially and then test its performance impact before making it permanent. Also, you may want to consider setting the proxmox_logrotate_maxage parameter to reflect your organization's log retention policy.

[Lines 12-27] [Score: 3] This change adds log rotation configuration for Proxmox, which is generally a good practice for managing logs. However, it might be worth considering setting `proxmox_logrotate_compress` to `delaycompress` initially and then test its performance impact before making it permanent. Also, you may want to consider setting the `proxmox_logrotate_maxage` parameter to reflect your organization's log retention policy.
handlers/main.ymal
gitea-actions bot commented 2026-02-12 21:28:45 +01:00
Copy Link

[Lines 18-22] [Score: 2] The new playbook uses a different syntax for handling the 'logrotate' service compared to the old command. It might be beneficial to maintain consistency and either stick with the new approach or use the old command consistently throughout the codebase.

[Lines 18-22] [Score: 2] The new playbook uses a different syntax for handling the 'logrotate' service compared to the old command. It might be beneficial to maintain consistency and either stick with the new approach or use the old command consistently throughout the codebase.
tasks/logrotate.yml
@@ -1,111 +1,30 @@
---
gitea-actions bot commented 2026-02-12 21:28:45 +01:00
Copy Link

[Score: 3] Removing the YAML document declaration is discouraged as it enables consistency across files and can help with understanding the structure of the playbook. Although not a critical issue, it is recommended to keep it for maintainability purposes.

[Score: 3] Removing the YAML document declaration is discouraged as it enables consistency across files and can help with understanding the structure of the playbook. Although not a critical issue, it is recommended to keep it for maintainability purposes.
templates/pve-logrotate.j2
@@ -0,0 +23,4 @@
/bin/systemctl try-reload-or-restart pveproxy.service
/bin/systemctl try-reload-or-restart spiceproxy.service
endscript
}
gitea-actions bot commented 2026-02-12 21:28:45 +01:00
Copy Link

[Lines 1-26] [Score: 3] Template hard-codes the log file path to /var/log/pveproxy/access.log. Consider using a variable or dynamic approach for better maintainability and reusability of this template.

[Lines 1-26] [Score: 3] Template hard-codes the log file path to `/var/log/pveproxy/access.log`. Consider using a variable or dynamic approach for better maintainability and reusability of this template.
Jose merged commit 5495a2ec81 into main 2026-02-12 21:29:37 +01:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
Documentation
bug
Something is not working
 ci-failed
action test workflow failed
 ci-pass
action test workflow pass
 duplicate
This issue or pull request already exists
 enhancement
New feature
 help wanted
Need some help
 invalid
Something is wrong
 question
More information is needed
 source
wontfix
This won't be fixed
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
Jose
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Jose/ansible_role_proxmox_provision#10
Delete Branch "dev"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?