Skip to content

deposit: Configure deposit to use keycloak in production

Related to T3184

Test Plan

octocatalog: deposit staging unchanged, production deposit migrated

$ bin/octocatalog-diff --octocatalog-diff-args --no-truncate-details --to staging deposit.internal.staging.swh.network
Found host deposit.internal.staging.swh.network
...
*** Running octocatalog-diff on host deposit.internal.staging.swh.network
I, [2021-03-29T15:24:06.732751 #11479]  INFO -- : Catalogs compiled for deposit.internal.staging.swh.network
I, [2021-03-29T15:24:08.483502 #11479]  INFO -- : Diffs computed for deposit.internal.staging.swh.network
I, [2021-03-29T15:24:08.483543 #11479]  INFO -- : No differences
*** End octocatalog-diff on deposit.internal.staging.swh.network
$ bin/octocatalog-diff --octocatalog-diff-args --no-truncate-details --to staging moma
...
*** Running octocatalog-diff on host moma.softwareheritage.org
I, [2021-03-29T15:30:29.356296 #17416]  INFO -- : Catalogs compiled for moma.softwareheritage.org
I, [2021-03-29T15:30:31.878794 #17416]  INFO -- : Diffs computed for moma.softwareheritage.org
diff origin/production/moma.softwareheritage.org current/moma.softwareheritage.org
*******************************************
  File[/etc/softwareheritage/deposit/server.yml] =>
   parameters =>
     content =>
      @@ -23,5 +23,9 @@
       extraction_dir: "/tmp/swh-deposit/archive/"
       swh_authority_url: https://deposit.softwareheritage.org/
      -authentication_provider: basic
      +authentication_provider: keycloak
      +keycloak:
      +  server_url: https://auth.softwareheritage.org/auth/
      +  realm_name: SoftwareHeritage
      +cache_uri: 127.0.0.1:11211
       allowed_hosts:
       - deposit.softwareheritage.org
*******************************************
*** End octocatalog-diff on moma.softwareheritage.org

Migrated from D5374 (view on Phabricator)

Merge request reports