OpenShift Origin installation over Fedora 19 (Mega Tutorial) – Part 5

OpenShift

OpenShift Origin

In this tutorial we’ll configure the OpenShift Origin Web Console. It has been written on Ruby and will allow access to users for create applications, offering the available application cartridges.

So let’s go…

Configuring web console

First wee need to install the package

yum install -y openshift-origin-console

After that, we’ll configure authentication. In the last post we configured access to broker API (the admin-console), but now we’ll configure the web console, the public access for users.
Same as admin-console, let’s configure BASIC authentication mechanism,
We must generate some random bits for the session security and we’ll do it in the file /etc/openshift/console.conf

echo "SESSION_SECRET=\"$(openssl rand -base64 64|tr -d \"\\n\")\"">> /etc/openshift/console.conf

Now let’s copy the configuration file authentication to work on.

cp /var/www/openshift/console/httpd/conf.d/openshift-origin-auth-remote-user-basic.conf{.sample,}

Ruby and their “gems”

We’ll verify that Ruby can resolve the needed dependencies.

cd /var/www/openshift/console
bundle --local
rake assets:precompile
chown -R apache:apache Gemfile.lock tmp

The command bundle –local must show something like

Your bundle is complete! Use `bundle show [gemname]` to see where a bundled gem is installed.

If yes, we can continue, else you need to review previous posts to verify you has installed all packages.

SELinux

The web console also requires a SELinux configuration, so we must enable the booleans and the contexts.

setsebool -P  httpd_unified=on 
setsebool -P  httpd_can_network_connect=on 
setsebool -P  httpd_can_network_relay=on 
setsebool -P  httpd_run_stickshift=on 
setsebool -P  named_write_master_zones=on 
setsebool -P  allow_ypbind=on 
setsebool -P  httpd_verify_dns=on 
setsebool -P  httpd_enable_homedirs=on 
setsebool -P  httpd_execmem=on
setsebool -P  httpd_read_user_content=on

semanage fcontext -a -t httpd_log_t '/var/log/openshift/console(/.*)?'
semanage fcontext -a -t httpd_log_t '/var/log/openshift/console/httpd(/.*)?'
semanage fcontext -a -t httpd_var_run_t '/var/www/openshift/console/httpd/run(/.*)?'

fixfiles -R rubygem-passenger restore
fixfiles -R mod_passenger restore

restorecon -RFvv /var/run
restorecon -RFvv /opt
restorecon -RFvv /var/log/openshift/console
restorecon -RFvv /var/www/openshift/console

Enabling services

It’s turn to start and enable the web console service for boot

systemctl start openshift-console.service
systemctl enable openshift-console.service

Now you can access http://broker.dmartin.es , but can not create applications yet because we haven't configured the node. But be patient, in the next post we will configure it.

See you soon.

One thought on “OpenShift Origin installation over Fedora 19 (Mega Tutorial) – Part 5

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.