Versions Compared

Old Version 1

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user rajesh rajendran

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Creating keycloak federation

...

1. (Deploy) ApplicationES                                                                                          # From Deploy Folder Deploy ApplicationES this will Provision Elasticsearch and create indices necessay for Sunbird Core

2. ESMapping (Under OpsAdministarion)                                                                  # Creates ES indexes

2. Postgres                                                                                                                # Provisions Postgres

3. PostgresDbUpdate                                                                                                # Creates the databases, assign roles, create users

...

  a. Login to keycloak using username admin and password as given in private "secrets.yml" file. # Login to keycloak by using <domainname>/auth
  b. Take the sso_public_key by navigating to: sunbird Realm > Realm Settings > keys > click Public Key(copy the key and update core_vault_sso_public_key)
  c. Create Admin Role in Sunbird realm: Roles > Add Role > add details in the form(Role Name: admin) > save > Enable Composite Roles > Under Composite Roles > Select (offline_access, uma_administration) and click add selected,  Permissions(enable Permissions).
  d. Assign permissions to admin-cli client in Sunbird realm: clients > admin-cli > Settings > Implicit Flow Enabled (ON) > Root URL: https://dev.sunbird.cf (your Domain) > Valid Redirect URIs: https://dev.sunbird.cf/* (Add another Link by clicking on "+") > Valid Redirect URIs: https://dev.sunbird.cf/ > Base URL: / > Admin URL: https://dev.sunbird.cf/* > Save
  e. In the Sunbird realm, Clients > admin-cli > Roles > Add Role: Role Name: admin (Save)> composite Roles (ON) > Composite Roles > Realm Roles > add admin,offline_access,uma_authorization > Permissions > Permissions Enabled (ON)

  f. Creating keycloak federation (Deployment Steps for Keycloak User Federation)

12. Player                                                                                                                    # Deploys Player service, used to display Frontend of App

Note: This player deployment job will fail first time and Jenkins will ask for In process Approval Script. Click on the approval link in the deploy job page and provide explicit approval for new java.io.File java.lang.String and method java.io.File exists. Now rerun Player deployment.

13. Learner                                                                                                                 # Deploys Learner Service, handles user management, helps in searching content
14. Content                                                                                                                 # Deploys Content service, Helps in creation of content
15. Telemetry                                                                                                              # Deploys Telemetry Service, Helps in sending telemetry to kafka
16. TelemetryLogstashDataPipeline                                                                                           # Deploys logstash container, which sends telemetry to kafka

...