From 115d0bb8fc2255457a1fce6f2f969968388d392c Mon Sep 17 00:00:00 2001 From: Sietse Snel Date: Tue, 9 Apr 2024 16:47:05 +0200 Subject: [PATCH] MSL API: use empty app key by default and describe procedure for setting key more clearly in README. --- README.md | 15 ++++++++++++++- environments/development/host_vars/epos-msl | 1 + 2 files changed, 15 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 6a5816e..6e376fb 100644 --- a/README.md +++ b/README.md @@ -52,6 +52,19 @@ Upgrade EPOS-MSL instance: ansible-playbook playbook.yml ``` +## Updating the MSL API app key + +If you have deployed the server using the default empty MSL API app key, generate +a random one: + +``` +sudo -u www-data /usr/bin/php8.0 artisan key:generate +sudo -u www-data /usr/bin/php8.0 artisan config:cache +``` + +Then copy this key from `APP_KEY` in `/var/www/msl_api/.env` to the Ansible configuration of +the server. + ## Database creation/seeding for the MSL API You currently need to manually trigger creation and seeding of the MSL API database, as well as linking its storage @@ -78,7 +91,7 @@ The main configuration settings are: |msl_api_app_url | application URL for the MSL API web service, e.g. https://epos-catalog.mydomain.nl/webservice | |msl_api_asset_url | asset URL for the MSL API web service, e.g. https://epos-catalog.mydomain.nl/webservice | |ckan_api_token | the MSL API uses this value to authenticate to the CKAN API. this should currently be the API key (not API token!) of the ckanadmin account. The current way to use this field is: deploy the catalog using a dummy value for this parameter, log in on CKAN using the ckanadmin account, generate an API key, replace the dummy value in the host\_vars file with the real API key, and run the playbook a second time. -|msl_api_app_key | the MSL API application key. The current way to configure this is to deploy the application, generate the app key by running `/usr/bin/php8.0 artisan key:generate` in /var/www/msl\_api. Finally copy the generated key in /var/www/msl\_api/.env to the host\_vars file. +|msl_api_app_key | the MSL API application key. The current way to configure this is to deploy the application, generate the app key by running `sudo -u www-data /usr/bin/php8.0 artisan key:generate && sudo -u www-data /usr/bin/php8.0 artisan config:cache` in /var/www/msl\_api. Finally copy the generated key in /var/www/msl\_api/.env to the host\_vars file. # CKAN catalog diff --git a/environments/development/host_vars/epos-msl b/environments/development/host_vars/epos-msl index 88ba38e..6cc8dee 100644 --- a/environments/development/host_vars/epos-msl +++ b/environments/development/host_vars/epos-msl @@ -26,4 +26,5 @@ ckan_harvest_password: testtest # CKAN harvest user ('harvest') p msl_api_database_password: testtest msl_api_app_url: http://epos-msl.ckan.test/webservice msl_api_asset_url: https://epos-msl.ckan.test/webservice +msl_api_app_key: "" ckan_api_token: none