[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: How to do Mongo Auth ?

On 17/12/14 15:34 +0530, Kavita Kawale wrote:
  Hi  N. Harrison Ripps,
  I tried in this way but still I am unable to do Mongo authentication.
  Kavita Â

To use the mongo auth plugin, the following steps should be done on all broker
1) Install rubygem-openshift-origin-auth-mongo

2) Configure the plugin in
  /etc/openshift/plugins.d/openshift-origin-auth-mongo.conf (there is an
  example file in the directory that can be used as a template).

3) Remove/rename the openshift-origin-auth-remote-user.conf file from

4) Modify /etc/openshift/console.conf set CONSOLE_SECURITY=basic
  You may need to also comment out the REMOTE_USER* options in the
  console.conf as well, but I'm not entirely sure.

5) Remove/rename any remote-user plugin config files ending in .conf from
  /var/www/openshift/broker/httpd/conf.d/ and

6) You will probably want to remove the remote-user auth plugin from the hosts
  as well (rubygem-openshift-origin-auth-remote-user)

7) Restart openshift-broker and openshift-console. Any errors should be found
  in their respective log files:
  /var/log/openshift/{broker,console}/production.log and

Jason DeTiberus

  On Mon, Dec 15, 2014 at 9:51 PM, N. Harrison Ripps <[1]nhr redhat com>

    Hey Kavita--
    On 12/15/2014 11:08 AM, Kavita Kawale wrote:

    Thanks N. Harrison Ripps !
    I have created *openshift-origin-auth-remote-user.conf* inside
    *as well as inside* /var/www/openshift/console/httpd/conf.d/* and
    below content inside that file â

    That filename is incorrect. Change the name to
    'openshift-origin-auth-mongo.conf' and try again...

    *# The host:port for your MongoDB server*
    *# The user to connect to your MongoDB*
    *# The password to connect to your MongoDB*
    *# The database within your MongoDB to use for auth*

  But after restarting openshift-broker service, it is thowing below
  error -
  Invalid command 'MONGO_HOST_PORT="<Host Name>:27017"', perhaps
  or defined by a module not included in the server configuration
  Please let me know where I am doing wrong
  On Mon, Dec 15, 2014 at 8:58 PM, N. Harrison Ripps <[2]nhr redhat com>

  > Hi Kavita--
  > I can see that you were having a discussion about this with Brenton
  > week:

  > [3]https://lists.openshift.redhat.com/openshift-archives/
  > dev/2014-December/msg00012.html

  > So it seems like you may need some guidance on what the mongo auth
  > file should contain.

  > Here's an example of the file:
  > [4]https://github.com/openshift/origin-server/blob/master/
  > plugins/auth/mongo/conf/openshift-origin-auth-mongo.conf.example

  > In your MongoDB system located at MONGO_HOST_PORT, you need to tell
  > which mongo user to log in as (MONGO_USER, MONGO_PASSWORD) and then
  > specific database you want OpenShift to use for auth records

  > You can test that your setup is correct by trying to manually run the
  > following from your broker:


  > Assuming you are able to connect, verify the datastore with:

  > db.<MONGO_DB>.find()

  > The openshift-origin-auth-mongo.conf file that you create should live
  > /var/www/httpd/conf.d/ and there should be no other auth conf files

  > You can see more info in the docs here:

  > [5]http://www.openshift.org/documentation/oo_deployment_
  > guide_comprehensive.html#configure-an-authentication-plugin

  > Hope this helps!

  > On 12/15/2014 04:17 AM, Kavita Kawale wrote:

  >> Hi,

  >> Is anybody can tell me steps to do mongo authentication ?

  >> I want to do mongo authentication instead of LDAP or Basic.

  >> Thanks,
  >> Kavita

  >> _______________________________________________
  >> dev mailing list
  >> [6]dev lists openshift redhat com
  >> [7]http://lists.openshift.redhat.com/openshiftmm/listinfo/dev


  1. mailto:nhr redhat com
  2. mailto:nhr redhat com
  3. https://lists.openshift.redhat.com/openshift-archives/
  4. https://github.com/openshift/origin-server/blob/master/
  5. http://www.openshift.org/documentation/oo_deployment_
  6. mailto:dev lists openshift redhat com
  7. http://lists.openshift.redhat.com/openshiftmm/listinfo/dev

dev mailing list
dev lists openshift redhat com

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]