Details
-
Type:
extRequest
-
Status: Closed
-
Priority:
Major
-
Resolution: Done
-
Fix Version/s: 2021
-
Component/s: FIWARE-LAB-HELP
-
Labels:None
-
HD-Node:Trento
Description
The region staff team are responsible of the virtual machines instantiated on their servers. Therefore each region staff should have the control of who access the virtual machines for support purposes and set and enforce the corresponding policy. It is not possible if the public keys are shared among all the regions. Additionally, it is also extremely insecure and a problem when a region leaves the federation.
A new service, called aiakos and deployed aiakos.lab.fiware.org, has been deployed in FIWARE Lab to manage support region ssh and gpg keys.
As region administrator, you should create your ssh, and gpg keys and upload it into the aikos service (you can obtain information about how create your keys in https://github.com/telefonicaid/fiware-aiakos/blob/develop/doc/README.rst#generating-a-ssh-key).
To upload your keys into the aiakos service, you should use just a POST operation
POST: https://jsapi.apiary.io/apis/fiwareaiakos/reference/aiakos-v1/add-key/post-key.html
You can find information about why ssh and gpg keys are needed in https://github.com/telefonicaid/fiware-aiakos/blob/develop/doc/README.rst#why-a-ssh-key-and-a-gpg-key-are-needed
Activity
Hi
I think they have not been uploaded. Could you try it again? Could you tell me what request you are doing. The endpoint is aiakos.lab.fiware.org:3000.
Regards,
Henar
Hi Henar,
Could you please tell us if the keys have been uploaded correctly.
Thanks
Trento Node team
To check that your key is uploaded, you can do a GET request:
http://aiakos.lab.fiware.org:3000/v1/support/
/sshkey
Tell us if you have any problem.
Hi all,
The support keys have been re-created and uploaded correctly for the Trento region.
Regards
Trento Node Team
Hi all,
The support keys have been created and uplaoded for the Trento region.
BR
Trento Node Team