Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

As a SA, I want the operational deployment of the service to be secure #187

Closed
3 tasks
tloubrieu-jpl opened this issue Apr 22, 2021 · 7 comments
Closed
3 tasks

As a SA, I want the operational deployment of the service to be secure #187

tloubrieu-jpl opened this issue Apr 22, 2021 · 7 comments
Assignees
@tloubrieu-jpl @collinss-jpl
Labels
B12.0 p.must-have requirement the current issue is a requirement
Milestone
11.Jesse.Owens

Comments

@tloubrieu-jpl
Copy link
Member

tloubrieu-jpl commented Apr 22, 2021
edited by jordanpadams

Motivation

...so that I accept to deploy it and feel comfortable with not risking to introduce a breach in our systems.

Additional Details

We need to check how the service will be deployed and useable by the UI and discuss it with SAs so that the solution is acceptable for them.

Acceptance Criteria

A plan accepted by SA's for the deployment of the API and acceptable by users for the accessibility of the UI.

Engineering Details

  • work with SAs to come up with a deployment strategy
  • document secure deployment
  • deploy on PDS I&T machine for testing
@tloubrieu-jpl tloubrieu-jpl added requirement the current issue is a requirement needs:triage labels Apr 22, 2021
@jordanpadams jordanpadams added this to the 08.Joan.Benoit milestone May 13, 2021
@tloubrieu-jpl tloubrieu-jpl self-assigned this May 13, 2021
@jordanpadams jordanpadams changed the title As a SA, I want the application to be deployed without security risks As a SA, I want the service operational deployment to be secure Jun 26, 2021
@jordanpadams jordanpadams changed the title As a SA, I want the service operational deployment to be secure As a SA, I want the operational deployment of the service to be secure Jun 28, 2021
@tloubrieu-jpl
Copy link
Member Author

See ticket https://itsd-jira.jpl.nasa.gov/servicedesk/customer/portal/16/DSIO-433

@jordanpadams
Copy link
Member

jordanpadams commented Jul 22, 2021
edited

Per breakout today:

  • @tloubrieu-jpl - SAs will setup basic auth through Apache Server for accessing UI and API

@tloubrieu-jpl
Copy link
Member Author

I created a ticket for the basic authentication configuration https://itsd-jira.jpl.nasa.gov/servicedesk/customer/portal/16/DSIO-466

@tloubrieu-jpl
Copy link
Member Author

Basic authentication works for both the UI and the back-end, see:
https://pds-gamma.jpl.nasa.gov/dois/

@tloubrieu-jpl
Copy link
Member Author

The deployment documentation is on: https://osr.jpl.nasa.gov/wiki/pages/viewpage.action?pageId=152502275

@gxtchen
Copy link

gxtchen commented Oct 17, 2021

@tloubrieu-jpl Can you create a user account for me to log in to https://pds-gamma.jpl.nasa.gov/dois/

@tloubrieu-jpl
Copy link
Member Author

Hi @gxtchen , I sent you the credential on lft jpl service. You should have received a regular email informing you.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tloubrieu-jpl tloubrieu-jpl

@collinss-jpl collinss-jpl

Labels
B12.0 p.must-have requirement the current issue is a requirement
Projects
None yet
Milestone
11.Jesse.Owens
Development

No branches or pull requests
4 participants
@gxtchen @jordanpadams @tloubrieu-jpl @collinss-jpl