/[pdpsoft]/trunk/novalocal-test-delegserver/DS/README
ViewVC logotype

Contents of /trunk/novalocal-test-delegserver/DS/README

Parent Directory Parent Directory | Revision Log Revision Log


Revision 3155 - (show annotations) (download)
Tue Feb 14 15:06:38 2017 UTC (5 years, 7 months ago) by msalle
File size: 2714 byte(s)
Update for new code-base incl. signing

Update ansible scripts for id_token signing and sync with other DS installations
such as egi and RCauth.

1 ####################################################################################################
2 Ansible Deploy Script for Delegation Server
3 ####################################################################################################
4
5 How to use these scripts?
6
7 Before you can use these scripts, there are a couple of deployments
8 specific setting you will have to tweak.
9
10 1. It is assumed that you are configuring a single machine to be The
11 Delegation Server. This target machine is configured in an inventory
12 file called 'novalocal-delegserver' by its hostname/ip.
13 In case you want to configure more than one target, add your target
14 hostnames/ips to the '[delegserver]' group in the
15 'novalocal-delegserver' inventory file.
16
17 2. Configure every host specific variable in the 'host_vars' directory
18 for each of your targets from 1. Use the already existing file under
19 'host_vars' to see which variables to set
20
21 3. You should configure your environment specific varaibles in
22 'cafrontend_env.yml' and 'delegserver_env.yml'. These files contain
23 default from the two ansible roles: cafrontend and delegserver. Some
24 of them you may leave as default (some standard paths like
25 /etc/grid-security/), but others you should definitaly change
26 (passwords, urls)!
27
28 4. Make sure to look through the template files under
29 'roles/cafrontend/templates' and 'roles/delegserver/templates'.
30 Infrastructure specific information, such as iptables rules can be
31 found here. Make sure to customize these templates to your specific
32 infrastructure.
33
34 5. These deployment scripts do not contain the actual Delegation Server
35 package (oauth2.war) or it's helper tools (oa2-cli.jar)! This is
36 because these deployment scripts are meant to be used with any
37 Delegation Server version/flavour. Make sure to replace the files
38 marked .PLACEHOLDER under 'roles/delegserver/files/' with the real
39 software you want to deploy!
40 For rebuilding, see
41 https://github.com/rcauth-eu/aarc-delegation-server
42 which builds
43 ./delegation-server/target/oauth2.war
44 For rebuilding the oa2-cli.jar you need to enable the cli profile
45 (see ./oa4mp-server-admin-oauth2/pom.xml)
46 mvn -P cli package
47 which builds
48 ./delegation-server/target/oa2-cli.jar
49
50 6. Execute: 'ansible-playbook -i novalocal-delegserver delegserver.yml'.
51 Time to grab a coffee (or lunch)!

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28