Changes between Version 20 and Version 21 of Internal/LoginService


Ignore:
Timestamp:
Jun 28, 2011, 5:46:42 PM (14 years ago)
Author:
seskar
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Internal/LoginService

    v20 v21  
    9292 === Apache configuration ===
    9393
    94 In order to use proxy you will have to install apache's proxy package and enable it.[[BR]]
     94The assumption is that user facing services are supported with Apache WEB server (and possibly on a separate machine). In order to make login AM pages available on the outside, Apache proxy service will be used. In order to use proxy you will have to install apache's proxy package and enable it.
    9595
    9696{{{
     
    100100}}}
    101101
     102Also, the assumption is that the access to all pages requiring user credentials is protected with ssl so we need to enable the ssl module
    102103
    103104{{{
     
    105106}}}
    106107
    107 /etc/apache2/sites-available/default
    108 
    109 !ServerName <server_name>
    110 
    111 !ProxyPass /status/orbit "http://<host>:<port>/public_html/"
    112 
    113 !ProxyPass /userManagement "http://<host>:<port>/login/userManagement"
    114 
     108We need to configure all the proxy URLs in the open  (i.e. in /etc/apache2/sites-available/default)
     109
     110In the following we are assuming that <host> is the internal hostname or IP address of the machine running the login AM, and <port> is the IP port on which the service is running (default is 5052 for OMF 5.2 services). For example, forn internal IP 172.16.250.7 and port 5025 the <host>:<port> would be: 172.16.250.7:5052.
     111
     112{{{
     113ServerName <server_name>
     114...
     115
     116  ProxyPass /status "http://<host>:<port>/public_html/"
     117  <Location /status>
     118    Order allow,deny
     119    Allow from all
     120  </Location>
     121
     122  ProxyPass /userManagement "http://<host>:<port>/login/userManagement"
     123  <Location /userManagement>
     124    Order allow,deny
     125    Allow from all
     126  </Location>
     127...
     128}}}
    115129
    116130Note: If you change baseURL and publicURL in login.yaml it is necessary to change corresponding values in apache default file.
    117131
    118 /etc/apache2/sites-available/default-ssl
    119 
    120  !ProxyPass /schedule/ http://<host>:<port>/login/ShowScheduler
    121 
    122  !ProxyPass /loginService/ http://<host>:<port>/login/
    123 
    124         <Proxy http://<host>:5052/login/*>
    125 
    126           !AllowOverride None
    127 
    128           order allow,deny
    129 
    130           allow from all
    131 
    132         </Proxy>
     132For SSL services (in /etc/apache2/sites-available/default-ssl) we need:
     133
     134{{{
     135...
     136  ProxyPass /schedule/  "http://172.16.250.7:5052/login/ShowScheduler"
     137  <Location /schedule>
     138    Order allow,deny
     139    Allow from all
     140  </Location>
     141
     142  ProxyPass /loginService/  http://172.16.250.7:5052/login/
     143  <Location  /loginService>
     144     AllowOverride None
     145     order allow,deny
     146     allow from all
     147  </Location>
     148  <Proxy http://<host>:5052/login/*>
     149     AllowOverride None
     150     order allow,deny
     151     allow from all
     152   </Proxy>
     153...
     154}}}
    133155       
    134  === Database ===
     156=== Scheduler Database ===
     157
    135158To create database run login.sql script file which is attached to this page. Resources table need to be fill out with data manually.
    136159
    137  === Example: ===
    138 INSERT into resources (machid,name,location,rphone,notes,minRes,maxRes) VALUES
    139 ('sc1431b400c5f130', 'grid', 'Orbit Facility', '(732) 932-6857', 'Main 400 node grid,30,120)
     160For example:
     161
     162{{{
     163#> mysql -p -u omf
     164Enter password:
     165mysql> use newScheduler;
     166mysql> INSERT into resources (machid,name,location,rphone,notes,minRes,maxRes) VALUES ('sc1431b400c5f130', 'grid', 'Orbit Facility', '(732) 932-6857', 'Main 400 node grid',30,120);
     167mysql> select * from resources;
     168+------------------+------+----------------+----------------+--------------------+--------+--------+--------+------------+----------+-------------+
     169| machid           | name | location       | rphone         | notes              | status | minRes | maxRes | autoAssign | approval | allow_multi |
     170+------------------+------+----------------+----------------+--------------------+--------+--------+--------+------------+----------+-------------+
     171| sc1431b400c5f130 | grid | Orbit Facility | (732) 932-6857 | Main 400 node grid | a      |     30 |    120 |       NULL |     NULL |        NULL |
     172+------------------+------+----------------+----------------+--------------------+--------+--------+--------+------------+----------+-------------+
     1731 row in set (0.00 sec)
     174
     175mysql> quit
     176Bye
     177#>
     178}}}
     179
     180Here:
     181
    140182 * machid – unique resource identifier
    141183 * name – resource name