bcdevops / openshift-wiki Goto Github PK
View Code? Open in Web Editor NEWGitbook URL of WIKI
Home Page: https://pathfinder-faq-ocio-pathfinder-prod.pathfinder.gov.bc.ca/
License: Apache License 2.0
Gitbook URL of WIKI
Home Page: https://pathfinder-faq-ocio-pathfinder-prod.pathfinder.gov.bc.ca/
License: Apache License 2.0
openssl rand -base64 48 > passphrase.txt
openssl genrsa -aes128 -passout file:passphrase.txt -out server.key 2777
openssl req -new -passin file:passphrase.txt -key server.key -out server.csr -subj "/C=CA/ST=British Columbia/L=Victoria/O=Government of the Province of British Columbia/OU=FLNRORD/CN=example.gov.bc.ca"
Can we get a page on the best practices for CronJobs and Jobs?
Some sources
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/RequestSSORealm.md
(do not delete) devhub page: undefined
update this.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/ServiceDefinition.md
(do not delete) devhub page: /BC-Government-SSO-Service-Definition
Refine the service definition. It is to vague. We should have a meeting as a team to discuss what terms of service and agreement we would like to have with users of the sso service and the team that would be supporting it.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/RequestSSORealm.md
(do not delete) devhub page: undefined
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/StartingANewProject.md
(do not delete) devhub page: undefined
update this to include rocketchat contact and ministry information.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/OCPStorageServices.md
(do not delete) devhub page: /Persistent-Storage-Services
Perusing through the document I found it difficult to identify that we should be provisioning netapp.
Perhaps there could be a TL;DR section?
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/OCP4ServiceOverview.md
(do not delete) devhub page: Service-Overview-for-BC-Government-Private-Cloud-as-a-ServiceOpenshift-4-Platform
We need a new namespace which we are developing within the Ministry Of Education.
Application name is Education Data Exchange . It will be used for communication between the BC schools and Ministry.
New Namespace - Education Data Exchange ( EDX )
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestUserAccess.md
(do not delete) devhub page: /How-to-Request-New-User-Access-to-OpenShift
Full name: Joseph Jin
Full name: Arthur Newman
Full name: Ryan Draper
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/RequestSSORealm.md
(do not delete) devhub page: https://developer.gov.bc.ca/Authentication-and-Authorization/Requesting-a-SSO-Realm-to-be-created
this document should add tags as frontmattter to improve searchability
tags:
- keycloak
- realm
- client
- authentication
- idir
- bceid
Hi Devhub team!
I'm kicking off a new product team for FOI modernization. I'm the PO.
I need to add the following users to the BCGOV org:
GitHub User Access Request:
Full name: Abin Antony
GitHub ID: abin-aot
GitHub Repo: https://github.com/bcgov/foi-flow
Full name: Adam Coard
GitHub ID: acoard-aot
GitHub Repo: https://github.com/bcgov/foi-flow
Full name: Divya Viswanath
GitHub ID: divyav-aot
GitHub Repo: https://github.com/bcgov/foi-flow
Full name: Jaklyn Harrietha
GitHub ID: jharrietha-aot
GitHub Repo: https://github.com/bcgov/foi-flow
Full name: Sumathi Thirumani
GitHub ID: sumathi-thirumani-aot
GitHub Repo: https://github.com/bcgov/foi-flow
Full name: Molly Pilchar
GitHub ID: mpilchar
GitHub Repo: https://github.com/bcgov/foi-flow
Full name: Matt Prodan
GitHub ID: m-prodan
GitHub Repo: https://github.com/bcgov/foi-flow
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestUserAccess.md
(do not delete) devhub page: https://developer.gov.bc.ca/Getting-Started-on-the-DevOps-Platform/How-to-request-new-user-access-to-OpenShift
links point to pathfinder Slack - need to be update to Rocket.Chat
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestGitHubUserAccess.md
(do not delete) devhub page: undefined
I'm new to bcgov git - how do I link my git account (now with my gov email and 2FA) to the bcgov git and request a repository?
git account: @joburgar
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/AQUA/AQUAServiceDefinition.md
(do not delete) devhub page: /BC-Government-Aqua-Cloud-Service-Definition
Project 3cd915: Looking for the report of an aqua scan that might have been done. My Dev's are telling me that they saw a report and need it to actions the issues?
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestGitHubUserAccess.md
(do not delete) devhub page: undefined
Please provide GIthub user access for: Nick Corcoran
The request should include:
Project name: DevSecOps
Project description: Building a new cloud enabled security model for network applications
Approver's name (and @ the person's Rocketchat account): Todd Wilson
GitHub ID of the repo Owner (following the Access Request): Nick Corcoran
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/OCPStorageServices.md
(do not delete) devhub page: undefined
This document is not clear on guidance for using netapp. It should also make it VERY clear that gluster can no longer be provisioned
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/Vault/VaultServiceDefinition.md
(do not delete) devhub page: /BC-Government-Vault-Secrets-Management
This page appears to say Vault is widely available. However, it is not clear on how to use it. When searching the bcgov
org on github, I was only able to find a single project. rocketchat using the vault.hashicorp.com
family of annotations. This project is using a service account named plate-vault. Olena said in rocketchat on March 30, that they were working on opening access to Vault to dev teams in April. In June, I asked for an update or estimated timelines and received with no response. At a minimum header or callout should be added to the Vault Secrets Management page if it is still restricted access.
The page does not give any direction or links to how dev teams would add secrets to their vault. This would be understandable if service is still not available.
In the section, How to Request, a link to all-namespaces/secrets
is given. Regular users cannot access this page. One gets an error: Restricted Access - You don't have access to this section due to cluster policy.
Since this section indicates that since I have a project namespace, I have an associated Kubernetes service account for accessing Vault.
In this section, we are told to visit the #vault channel on RocketChat.
. The channel does not exist and should probably be channel #devops-vault
. Also, this channel does not appear to be monitored as a request for updates/estimated timelines in early June, 2021 has gone unanswered.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/ServiceOverview.md
(do not delete) devhub page: undefined
Please remove this page. As per Zorin Samji, it is no longer needed in DevHub
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestGitHubUserAccess.md
(do not delete) devhub page: undefined
Please provide GIthub user access for: Stephanie Bacon
The request should include:
Project name: DevSecOps
Project description: Building a new cloud enable security model for network applications
Approver's name (and @ the person's Rocketchat account): Todd Wilson
GitHub ID of the repo Owner (following the Access Request): Stephanie Bacon/stephanie.bacon
openssl rand -base64 48 > passphrase.txt
openssl genrsa -aes128 -passout file:passphrase.txt -out server.key 2777
openssl req -new -passin file:passphrase.txt -key server.key -out server.csr -subj "/C=CA/ST=British Columbia/L=Victoria/O=Government of the Province of British Columbia/OU=FLNRORD/CN=example.com"
cp server.key server.key.org
openssl rsa -in server.key.org -passin file:passphrase.txt -out server.key
openssl x509 -req -days 36500 -in server.csr -signkey server.key -out server.crt
References:
http://crohr.me/journal/2014/generate-self-signed-ssl-certificate-without-prompt-noninteractive-mode.html
Keep a list of requests handled.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/Networking.md
(do not delete) devhub page: https://developer.gov.bc.ca/Getting-Started-on-the-DevOps-Platform/OpenShift-Networking-Pathfinder-Project-Config
This information is out of date and references openshift 3.7
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestGitHubUserAccess.md
(do not delete) devhub page: undefined
Page speaks of creating a "GitHub Repo Request", but: (1) this is no longer needed as members of the BCGov GitHub organization can create their own public repositories; and (2) there is, therefore, no such request type in the devops-requests issue tracker.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/RequestSSOClient.md
(do not delete) devhub page: undefined
As per Zorin Samji, this page is no longer needed in DevHub. It can be deleted or archived.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/StartingANewProject.md
(do not delete) devhub page: https://developer.gov.bc.ca/Getting-Started-on-the-DevOps-Platform/How-to-request-a-new-OpenShift-project.
The link to their requests channel points to Slack, there are probably more that need to updated to Rocket chat as well.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/Networking.md
(do not delete) devhub page: /BC-Gov-OpenShift-networking-overview
This information should be updated with OCP4 details so that teams can use it for network planning.
bcgov-c
organizationbcgov
organization (repo creation is open atm)path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/ServiceDefinition.md
(do not delete) devhub page: /BC-Government-SSO-Service-Definition
Text to add:
The corporate Privacy Impact Assessment is now completed and signed off. This means basic deployments can refer to the corporate PIA avoiding re-work. Teams must still detail in their program PIA how they are using identity providers in their application context.
We should write up a new service definition instance to concisely describe the Keycloak/SSO service.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/RequestSSORealm.md
(do not delete) devhub page: /Requesting-a-SSO-Realm-to-be-created
_servicecard
does not exist in KeyCloak/OIDC, consider remove it or provide clarification for adding BCSC as IDP.
Update the following slack link to rocket.chat:
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/ServiceDefinition.md
(do not delete) devhub page: undefined
Could not access BC Dev Exchange RocketChat - https://chat.pathfinder.gov.bc.ca/channel/devops-alerts -- via my GitHub account. Message received: Fail to connect to KeyCloak, please refresh!
We are developing an agile tool called GLADIS and need single sign on. We were advised by Clecio Varjao that a realm was required.
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/RequestSSORealm.md
(do not delete) devhub page: /Requesting-a-SSO-Realm-to-be-created
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/RequestSSORealm.md
(do not delete) devhub page: https://developer.gov.bc.ca/Authentication-and-Authorization/SSO-Realm-Creation
update slack reference to Rocket
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/OCPStorageServices.md
(do not delete) devhub page: /Persistent-Storage-Services
To make the content more surfaceable we should add tags to the frontmatter for this document.
Keywords like 'pvc' and 'netapp' do not result in this document when searching on the devhub
tags:
- netapp
- gluster
- net app
- nfs
- storage
- pvc
- persistant
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/API/KongAPI.md
(do not delete) devhub page: /API-Gateway-(powered-by-Kong-CE)
This content is very outdated and no longer needed on DevHub as it has been superseded by new BC Gov API Services content. We've seen multiple teams find this content and be confused or reach wrong conclusions about our service, including that it is inactive or using an outdated version of the Kong gateway. Thanks!
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/RH-SSO/ServiceDefinition.md
(do not delete) devhub page: /BC-Government-SSO-Service-Definition
The links to request a new realm point to rocket chat - need to update to devops-requests
path: (do not delete) https://github.com/BCDevOps/openshift-wiki/blob/master/docs/OCP/Networking.md
(do not delete) devhub page: /BC-Gov-OpenShift-networking-overview
"Openshift Silver 4.x Networking" link goes nowhere, i.e. 404 on Documize.
Ignore
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.