Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
DBRepo
Manage
Activity
Members
Labels
Plan
External wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Deploy
Releases
Package registry
Model registry
Operate
Terraform modules
Analyze
Contributor analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
GitLab community forum
Contribute to GitLab
Provide feedback
Terms and privacy
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
FAIR Data Austria DB Repository
DBRepo
Commits
89d37f99
Verified
Commit
89d37f99
authored
11 months ago
by
Martin Weise
Browse files
Options
Downloads
Patches
Plain Diff
Updated guide
parent
c1f17f8b
Branches
Branches containing commit
Tags
Tags containing commit
No related merge requests found
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
.docs/installation.md
+8
-6
8 additions, 6 deletions
.docs/installation.md
with
8 additions
and
6 deletions
.docs/installation.md
+
8
−
6
View file @
89d37f99
...
...
@@ -47,10 +47,6 @@ curl -sSL https://gitlab.phaidra.org/fair-data-austria-db-repository/fda-service
Call the helper script to regenerate the client secret of the
`dbrepo-client`
and set it as value of the
`AUTH_SERVICE_CLIENT_SECRET`
variable in the
`.env`
file.
```
bash
curl
-sSL
"https://gitlab.phaidra.org/fair-data-austria-db-repository/fda-services/-/raw/release-1.4.5/.scripts/reg-client-secret.sh"
| bash
```
Update the rest of the default secrets in the
`.env`
file to secure passwords. You can use
`openssl`
for that, e.g.
`openssl rand -hex 16`
. Set
`auth_ldap.dn_lookup_bind.password`
in
`dist/rabbitmq.conf`
to the value of
`SYSTEM_PASSWORD`
.
...
...
@@ -69,7 +65,7 @@ Log into the Auth Service with the default credentials `admin` and the value of
:material-numeric-3-circle-outline:.
<figure
markdown
>

{ .img-border }

{ .img-border }
<figcaption>
Figure 1: Select the Identity Service provider.
</figcaption>
</figure>
...
...
@@ -78,10 +74,16 @@ but this is optional. Change the Bind credentials to the desired password :mater
the variable
`IDENTITY_SERVICE_ADMIN_PASSWORD`
in
`.env`
.
<figure
markdown
>

{ .img-border }

{ .img-border }
<figcaption>
Figure 2: Update the Identity Service admin user credentials.
</figcaption>
</figure>
Update the client secret of the
`dbrepo-client`
:
```
bash
curl
-sSL
"https://gitlab.phaidra.org/fair-data-austria-db-repository/fda-services/-/raw/release-1.4.5/.scripts/reg-client-secret.sh"
| bash
```
Also, update the JWT key according to the
[
Keycloak documentation
](
https://www.keycloak.org/docs/24.0.1/server_admin/index.html#rotating-keys
)
. To secure your
deployment traffic with SSL/TLS, tell the Gateway Service to use your certificate secret (e.g. from Let's Encrypt):
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment