{"id":"wikibase-cloud-migration-checklist","relativePath":"wikibase-cloud-migration-checklist.md","title":"Wikibase Cloud -> Self-Host Migration Checklist","markdown":"# Wikibase Cloud -> Self-Host Migration Checklist\n\nStatus: Active operational playbook (Cloud now, self-host later).\n\nPurpose: keep hosting costs low now with Wikibase Cloud while preserving a clean migration path to Docker/custom Wikibase when scale, control, or compliance needs increase.\n\n## Current state (pre-filled, non-secret)\n\n- Deployment mode: Wikibase Cloud (cost-first starter mode)\n- Cloud owner username: `Sundog358`\n- Primary project owner: `@rsung`\n- Canonical internal IDs: `https://lod.metamuseum.org/{type}/{ulid}`\n- Service account for automation: _pending setup_\n- MFA status on owner account: _verify and record_\n- Last credential rotation date: _record in runbook/release notes_\n- Self-host target mode (future): _TBD_ (`Docker Compose` or `Kubernetes`)\n\n## 1) Cloud-first baseline (do now)\n\n- [ ] Confirm owner account has MFA enabled.\n- [ ] Rotate temporary bootstrap password after first login.\n- [ ] Create a dedicated service/bot account for automation; do not automate with personal account credentials.\n- [ ] Store secrets only in environment variables/secret manager; never in committed files.\n- [ ] Record current Wikibase Cloud tenant URL, org owner, and backup owner in runbook.\n\n## 2) Portability guardrails (must stay true at all times)\n\n- [ ] Keep Meta Museum canonical IDs stable: `https://lod.metamuseum.org/{type}/{ulid}`.\n- [ ] Treat Wikibase Q/P identifiers as mapped externals, not canonical internal IDs.\n- [ ] Preserve bidirectional mapping table: internal ID <-> Wikibase entity ID.\n- [ ] Require source citation + rights metadata on publishable claims.\n- [ ] Keep write operations audit-logged (who, what, when, before/after references).\n\n## 3) Data model and schema discipline\n\n- [ ] Freeze a documented minimum property set for first publishing scope (object/work/agent/place/set + rights + citations).\n- [ ] Track schema changes with migration notes (new property, deprecation, mapping updates).\n- [ ] Define statement-reference requirements for publishable facts.\n- [ ] Maintain round/fixture-linked tests for publish payload shape and reference completeness.\n\n## 4) Backup and export routine (Cloud phase)\n\n- [ ] Schedule recurring full exports (items/properties/statements/references).\n- [ ] Keep at least two independent backup locations (primary + secondary).\n- [ ] Record restore drill owner and cadence (for example, monthly).\n- [ ] Run a restore drill at least once before any self-host cutover decision.\n\n## 5) Trigger criteria for self-host activation\n\nMove from Cloud to self-host when one or more are true:\n\n- [ ] Cost threshold exceeded for 2 consecutive cycles.\n- [ ] Required extension/feature unavailable in Cloud.\n- [ ] Compliance, data residency, or network control requirement cannot be satisfied in Cloud.\n- [ ] Performance/SLO needs require infra-level tuning not available in Cloud.\n\n## 6) Target self-host design decision\n\n- [ ] Choose platform: Docker Compose (starter) or Kubernetes (production scale).\n- [ ] Pick database and storage sizing profile with 12-month growth buffer.\n- [ ] Define auth/SSO strategy and service-account policy.\n- [ ] Define observability baseline (metrics, logs, alerts, backup-monitoring).\n- [ ] Define DR objectives (RPO/RTO) and test schedule.\n\n## 7) Dry-run migration (no public cutover yet)\n\n- [ ] Export from Wikibase Cloud snapshot N.\n- [ ] Import into self-host staging.\n- [ ] Run parity checks:\n - [ ] entity counts (items/properties/statements/references)\n - [ ] random sample semantic equivalence checks\n - [ ] external-ID mapping integrity\n - [ ] citation/reference completeness\n- [ ] Run application integration tests against staging endpoint.\n- [ ] Fix mapping or schema drift before production cutover planning.\n\n## 8) Production cutover checklist\n\n- [ ] Announce maintenance window and rollback window.\n- [ ] Freeze writes on Cloud publication path.\n- [ ] Take final export snapshot N+1 and checksum it.\n- [ ] Import N+1 into self-host production.\n- [ ] Reconcile counts and integrity checks.\n- [ ] Switch application publish target via configuration flag.\n- [ ] Run post-cutover smoke tests (read, write, references, rights, citation surfaces).\n- [ ] Unfreeze writes after verification sign-off.\n\n## 9) Rollback plan (must be prepared before cutover)\n\n- [ ] Keep Cloud environment available during rollback window.\n- [ ] Keep publish-target toggle reversible without code changes.\n- [ ] Document exact rollback operator and decision authority.\n- [ ] Rehearse rollback once in staging.\n\n## 10) Post-cutover stabilization\n\n- [ ] Monitor error rates, latency, and queue backlog for 7-14 days.\n- [ ] Re-run parity audit after first full sync cycle.\n- [ ] Capture lessons learned and update this checklist.\n- [ ] Decide Cloud decommission timeline only after stabilization is complete.\n\n## Ownership and review cadence\n\n- Owner: `@rsung` (or assigned platform owner)\n- Review cadence: monthly during Cloud phase; weekly during migration window\n- Last review date: _fill when first adopted_\n","sections":[{"level":2,"heading":"Current state (pre-filled, non-secret)","anchor":"current-state-pre-filled-non-secret"},{"level":2,"heading":"1) Cloud-first baseline (do now)","anchor":"1-cloud-first-baseline-do-now"},{"level":2,"heading":"2) Portability guardrails (must stay true at all times)","anchor":"2-portability-guardrails-must-stay-true-at-all-times"},{"level":2,"heading":"3) Data model and schema discipline","anchor":"3-data-model-and-schema-discipline"},{"level":2,"heading":"4) Backup and export routine (Cloud phase)","anchor":"4-backup-and-export-routine-cloud-phase"},{"level":2,"heading":"5) Trigger criteria for self-host activation","anchor":"5-trigger-criteria-for-self-host-activation"},{"level":2,"heading":"6) Target self-host design decision","anchor":"6-target-self-host-design-decision"},{"level":2,"heading":"7) Dry-run migration (no public cutover yet)","anchor":"7-dry-run-migration-no-public-cutover-yet"},{"level":2,"heading":"8) Production cutover checklist","anchor":"8-production-cutover-checklist"},{"level":2,"heading":"9) Rollback plan (must be prepared before cutover)","anchor":"9-rollback-plan-must-be-prepared-before-cutover"},{"level":2,"heading":"10) Post-cutover stabilization","anchor":"10-post-cutover-stabilization"},{"level":2,"heading":"Ownership and review cadence","anchor":"ownership-and-review-cadence"}],"html":"

Wikibase Cloud -> Self-Host Migration Checklist

\n

Status: Active operational playbook (Cloud now, self-host later).

\n

Purpose: keep hosting costs low now with Wikibase Cloud while preserving a clean migration path to Docker/custom Wikibase when scale, control, or compliance needs increase.

\n

Current state (pre-filled, non-secret)

\n\n

1) Cloud-first baseline (do now)

\n\n

2) Portability guardrails (must stay true at all times)

\n\n

3) Data model and schema discipline

\n\n

4) Backup and export routine (Cloud phase)

\n\n

5) Trigger criteria for self-host activation

\n

Move from Cloud to self-host when one or more are true:

\n\n

6) Target self-host design decision

\n\n

7) Dry-run migration (no public cutover yet)

\n\n

8) Production cutover checklist

\n\n

9) Rollback plan (must be prepared before cutover)

\n\n

10) Post-cutover stabilization

\n\n

Ownership and review cadence

\n","updatedAt":"2018-10-20T01:46:40.000Z","checksum":"170657fcbf2b5758e15decd4f449b68c50fa4387128f505aa25d2579a6d3dd8e","checksumPrefix":"170657fcbf2b","anchorCount":12,"lineCount":107,"rawUrl":"/api/docs/content?path=wikibase-cloud-migration-checklist.md","htmlUrl":"/docs?doc=wikibase-cloud-migration-checklist.md","apiUrl":"/api/docs/content?path=wikibase-cloud-migration-checklist.md"}