Uploaded image for project: 'Help-Desk'
  1. Help-Desk
  2. HELP-5687

FIWARE.Request.Lab.Budapest.Adding Region Support Keys

        Details

        • Type: extRequest
        • Status: Closed
        • Priority: Major
        • Resolution: Done
        • Fix Version/s: 2021
        • Component/s: FIWARE-LAB-HELP
        • Labels:
          None
        • HD-Node:
          Budapest

          Description

          The region staff team are responsible of the virtual machines instantiated on their servers. Therefore each region staff should have the control of who access the virtual machines for support purposes and set and enforce the corresponding policy. It is not possible if the public keys are shared among all the regions. Additionally, it is also extremely insecure and a problem when a region leaves the federation.

          A new service, called aiakos and deployed aiakos.lab.fiware.org, has been deployed in FIWARE Lab to manage support region ssh and gpg keys.

          As region administrator, you should create your ssh, and gpg keys and upload it into the aikos service (you can obtain information about how create your keys in https://github.com/telefonicaid/fiware-aiakos/blob/develop/doc/README.rst#generating-a-ssh-key).

          To upload your keys into the aiakos service, you should use just a POST operation
          POST: https://jsapi.apiary.io/apis/fiwareaiakos/reference/aiakos-v1/add-key/post-key.html

          You can find information about why ssh and gpg keys are needed in https://github.com/telefonicaid/fiware-aiakos/blob/develop/doc/README.rst#why-a-ssh-key-and-a-gpg-key-are-needed

            Activity

            Ascending order - Click to sort in descending order
            10 older comments
            Hide
            Permalink
            henar Henar Muñoz added a comment -

            Hi
            I thinks there were some problems due to the region name budapest2. Could you try it again?
            Thanks,
            Henar

            Show
            henar Henar Muñoz added a comment - Hi I thinks there were some problems due to the region name budapest2. Could you try it again? Thanks, Henar
            Hide
            Permalink
            WIGNER Budapest Node Helpdesk added a comment -

            Hi,
            we tried, but we got the same response from the server.

            Bests,
            Gergő

            Show
            WIGNER Budapest Node Helpdesk added a comment - Hi, we tried, but we got the same response from the server. Bests, Gergő
            Hide
            Permalink
            jesus.perezgonzalez Jesus Perez added a comment -

            Hi Budapest Node Helpdesk

            After fix some problems in the server, could you try again?
            Thank you and sorry for the inconvenience.

            Regards,
            Jesus

            Show
            jesus.perezgonzalez Jesus Perez added a comment - Hi Budapest Node Helpdesk After fix some problems in the server, could you try again? Thank you and sorry for the inconvenience. Regards, Jesus
            Hide
            Permalink
            WIGNER Budapest Node Helpdesk added a comment -

            Hi,

            now we got different error message when we send the pgp:

            Reply: Error: invalid key<br>    at saveKeyToFile (/opt/fiware/fiware-aiakos/lib/routes/v1.js:123:25)<br>    at /opt/fiware/fiware-aiakos/lib/routes/v1.js:162:13<br>    at /opt/fiware/fiware-aiakos/lib/routes/openstack.js:235:13<br>    at IncomingMessage.<anonymous> (/opt/fiware/fiware-aiakos/lib/routes/openstack.js:96:21)<br>    at IncomingMessage.emit (events.js:117:20)<br>    at _stream_readable.js:944:16<br>    at process._tickDomainCallback (node.js:492:13)

            Bests,
            Gergő

            Show
            WIGNER Budapest Node Helpdesk added a comment - Hi, now we got different error message when we send the pgp: Reply: Error: invalid key<br>    at saveKeyToFile (/opt/fiware/fiware-aiakos/lib/routes/v1.js:123:25)<br>    at /opt/fiware/fiware-aiakos/lib/routes/v1.js:162:13<br>    at /opt/fiware/fiware-aiakos/lib/routes/openstack.js:235:13<br>    at IncomingMessage.<anonymous> (/opt/fiware/fiware-aiakos/lib/routes/openstack.js:96:21)<br>    at IncomingMessage.emit (events.js:117:20)<br>    at _stream_readable.js:944:16<br>    at process._tickDomainCallback (node.js:492:13) Bests, Gergő
            Hide
            Permalink
            WIGNER Budapest Node Helpdesk added a comment -

            It is worked with 'curl' command, and keys are in the server.

            Show
            WIGNER Budapest Node Helpdesk added a comment - It is worked with 'curl' command, and keys are in the server.

              People

              • Assignee:
                WIGNER Budapest Node Helpdesk
                Reporter:
                henar Henar Muñoz
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: