Deploy Auth Grove to login.nasqueron.org
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	dereckson
	Mar 31 2015, 02:33

Description

Will be the fount of authentication, to log in to other applications with one account.

Revisions and Commits

rOPS Nasqueron Operations
	D1808	rOPSa7867d8fc322 Migrate auth-grove on Equatower
rDGROVE Docker image for Auth Grove
	D375	rDGROVEcc41e132174a Initial revision for Auth Grove's Docker image
rDII 502 error pages
	D376	rDIIf12291e0e1de 502 for login.nasqueron.org

Related Objects
Search...

Status	Assigned	Task
Open	None	T270 Implement SSO on forum.nasqueron.org
Resolved	dereckson	T271 Deploy Auth Grove to login.nasqueron.org
Open	None	T343 Provide a migration path from Espace Win accounts to Nasqueron accounts
Open	None	T347 Allow to register an account through a social login
Open	None	T344 Convert forum.nasqueron.org accounts into Nasqueron accounts
Resolved	None	T838 Disable gulp-notify
Wontfix	dereckson	T837 Investigate gulp issue to minimize CSS
Resolved	None	T836 Update MySQL users table in migration
Resolved	dereckson	T835 Commit storage/ folder
Resolved	dereckson	T839 Current URL detection code in views aren't coherent
Resolved	dereckson	T492 When using a front-end server with SSL termination, back-end serves http:// links.
Invalid	None	T878 Salt Auth Grove passwords
Resolved	dereckson	T840 Upgrade to Laravel 5.2
Resolved	dereckson	T1452 Upgrade PHP version in Auth Grove Docker image

Event Timeline

dereckson created this task.Mar 31 2015, 02:33

dereckson raised the priority of this task from to Normal.

dereckson updated the task description. (Show Details)

dereckson added a project: Auth Grove.

dereckson added a subscriber: dereckson.

Application name set to Auth Grove.

ASCII art logo possibilities could be found at P52.

dereckson renamed this task from Offer a login.nasqueron.org authentication service to Deploy Auth Grove to login.nasqueron.org.Apr 26 2015, 19:49

dereckson moved this task from Backlog to Epics & trackers on the Auth Grove board.

dereckson added a revision: D375: Initial revision for Auth Grove's Docker image.May 21 2016, 14:28

Docker image
I'm preparing rDGROVE with D375.

DNS

login.nasqueron.org. 86400 IN CNAME www3.nasqueron.org.

dereckson claimed this task.May 21 2016, 15:03

dereckson added projects: Servers, Nasqueron Docker deployment squad.

dereckson moved this task from Epics & trackers to Working on on the Auth Grove board.

dereckson moved this task from Backlog to Working on on the Nasqueron Docker deployment squad board.May 21 2016, 15:06

dereckson moved this task from Backlog to Working on on the Servers board.

dereckson added a revision: D376: 502 for login.nasqueron.org.May 21 2016, 15:35

MySQL

Dwellers

$ mysql-acquisitariat-client 
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 25258597
Server version: 5.7.11 MySQL Community Server (GPL)

Copyright (c) 2000, 2015, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

mysql> CREATE DATABASE login;
Query OK, 1 row affected (0.09 sec)

mysql> GRANT ALL PRIVILEGES ON login.* TO 'login'@'%' IDENTIFIED BY '…';                                                                        
Query OK, 0 rows affected, 1 warning (0.25 sec)

Password stored in K67.

dereckson added subtasks: T838: Disable gulp-notify, T837: Investigate gulp issue to minimize CSS, T836: Update MySQL users table in migration, T835: Commit storage/ folder.May 21 2016, 22:08

dereckson closed subtask T838: Disable gulp-notify as Resolved.May 21 2016, 22:13

dereckson created subtask T839: Current URL detection code in views aren't coherent.May 21 2016, 22:24

dereckson mentioned this in rDGROVEcc41e132174a: Initial revision for Auth Grove's Docker image.May 21 2016, 23:35

dereckson closed subtask T839: Current URL detection code in views aren't coherent as Resolved.May 22 2016, 20:23

P194 run-login

1	#!/bin/sh
2
3	# -------------------------------------------------------------
4	# Auth Grove
5	# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6	# Author: Sébastien Santoro aka Dereckson
7	# Project: Nasqueron
8	# Created: 2016-05-21
9	# Description: SSO for Nasqueron services.
10	# Image: nasqueron/auth-grove
11	# Services used: MySQL server (acquisitariat)
12	# Docker volume (/data/notifications/storage)
13	# -------------------------------------------------------------
14
15	# -------------------------------------------------------------
16	# Container parameters
17	# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
18
19	INSTANCE_NAME=login
20	PORT=25080
21	MYSQL_INSTANCE=acquisitariat
22	STORAGE=/data/login/storage
23	CANONICAL_URL=http://login.nasqueron.org
24
25	# -------------------------------------------------------------
26	# Database parameters
27	#
28	# Get credentials from zr
29	# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
30
31	MYSQL_HOST=mysql
32	MYSQL_USER=`ssh -4 -i /root/.ssh/id_zr zr@ysul.nasqueron.org getcredentials 67 username`
33	MYSQL_PASS=`ssh -4 -i /root/.ssh/id_zr zr@ysul.nasqueron.org getcredentials 67`
34	MYSQL_DB=$INSTANCE_NAME
35
36	# -------------------------------------------------------------
37	# Run the container
38	# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
39
40	# Checks container isn't running
41	docker-container-status $INSTANCE_NAME > /dev/null
42	if [ "$?" -lt 2 ]; then
43	echo "Container is already running."
44	echo "To force relaunch, try docker stop $INSTANCE_NAME ; docker rm $INSTANCE_NAME ; $0"
45	exit 1
46	fi
47
48	mkdir -p $STORAGE
49	chcon -Rt svirt_sandbox_file_t $STORAGE
50	chown 431:433 $STORAGE
51	docker run -t -d \
52	--link $MYSQL_INSTANCE:$MYSQL_HOST \
53	-p $PORT:80 \
54	-e DB_HOST=$MYSQL_HOST \
55	-e DB_DATABASE=$MYSQL_DB \
56	-e DB_USERNAME=$MYSQL_USER \
57	-e DB_PASSWORD=$MYSQL_PASS \
58	-e CANONICAL_URL="$CANONICAL_URL" \
59	--name $INSTANCE_NAME nasqueron/auth-grove
60
61	echo "Deployment done at `date`."
62	exit 0

dereckson added a subtask: T492: When using a front-end server with SSL termination, back-end serves http:// links..May 31 2016, 18:52

dereckson closed subtask T492: When using a front-end server with SSL termination, back-end serves http:// links. as Resolved.Jun 2 2016, 04:59

dereckson added a subtask: T878: Salt Auth Grove passwords.Jun 26 2016, 15:44

dereckson closed subtask T878: Salt Auth Grove passwords as Invalid.Jun 26 2016, 22:06

dereckson mentioned this in rDIIf12291e0e1de: 502 for login.nasqueron.org.Jul 21 2016, 11:58

dereckson added a commit: rDIIf12291e0e1de: 502 for login.nasqueron.org.Jul 21 2016, 11:59

dereckson added a commit: rDGROVEcc41e132174a: Initial revision for Auth Grove's Docker image.

Current status

Container is deployed, a procedure to spin a new container or upgrade the code inside the current container is documented at http://agora.nasqueron.org/Operations_grimoire/Login.

Still to do

There is a minimal level of features still to implement to use it for Nasqueron.

Then, we'll need to link services to it.

dereckson removed dereckson as the assignee of this task.Mar 8 2018, 21:07

dereckson added a revision: D1808: Migrate auth-grove on Equatower.Sep 22 2018, 09:26