Hi All, Courage, I think it will be a great idea to the new Service you are working on with the rest of the community. Others might be able to help that way.
Also document the non scalable and scalable solution for managing the keys on Confluence and create JIRA issues for these problems. What do you think? On Tue, Apr 30, 2019 at 3:30 PM Courage Angeh <[email protected]> wrote: > I did not send a PR because like I earlier stated, the solution doesn't > scale. Imagine if we scale the provisioner microservice to say 4 instances, > each instance will generate its own set of RSA keys( 4 private and public > key pairs). Therefore managing the RSA keys becomes difficult. > > I am working on a microservice dedicated to provision RSA keys. In the > future, more responsibilities will be added to this microservice but in the > meantime, it will just provision RSA keys. > > Regards, > Courage. > > On Tue, Apr 30, 2019 at 1:40 AM Babajide Apata <[email protected]> > wrote: > >> Hi courage, my example is just for testing purpose, your solution is the >> best way to go because its scalable. >> >> You can do a PR to the project so others can take advantage of this new >> changes. >> >> Regards. >> >> On Tue, 30 Apr 2019, 06:19 Victor Manuel Romero Rodriguez, < >> [email protected]> wrote: >> >>> Hi Courage, >>> >>> That is the right direction! >>> >>> Well...I just missed to fork/clone your repository. >>> >>> https://github.com/Anh3h/fineract-cn-provisioner/ >>> >>> I have used the apache's repositories. Why not to send a PR to the >>> apache's main repository? >>> >>> Regards >>> >>> Victor >>> >>> >>> El 29/04/19 a las 23:59, Courage Angeh escribió: >>> >>> Hi Victor and Juhan >>> >>> My provisioner microservice is different. It generates the RSA keys and >>> distributes them to the other services. Yours doesn't do that so that is >>> why you get the error. Babajide solution quite similar to mine does not >>> scale. So now, I want to create a new microservice that will amongst other >>> things generate and distribute the RSA keys. If anyone comes up with a >>> better idea to manage the RSA keys in a scalable way please share :-D. For >>> now, I will just do that. >>> >>> Here are the changes I made to my version of provisioner: >>> https://github.com/apache/fineract-cn-provisioner/compare/develop...Anh3h:develop >>> >>> Feel free to check it out. If you need any extra help let me know. >>> >>> P.S: Sorry for the delayed reply. My computer got broken over the >>> weekend. >>> >>> Regards, >>> Courage. >>> >>> On Mon, Apr 29, 2019 at 2:54 AM VIctor Romero < >>> [email protected]> wrote: >>> >>>> Thank you Babajide, >>>> >>>> It was very clear! >>>> >>>> Regards >>>> >>>> Victor. >>>> >>>> Obtener BlueMail para Android <http://www.bluemail.me/r?b=14726> >>>> En 29 abr 2019, en 1:04 a. m., Babajide Apata <[email protected]> >>>> escribió: >>>>> >>>>> Yes, >>>>> In your application.properties file, those variable does not exist. >>>>> That's why you are having those exception thrown. >>>>> >>>>> Solution is to set those variables. >>>>> From your IDE, go to this package >>>>> org.apache.fineract.cn.provisioner, there inside the service, go to test >>>>> there is a test called GenerateRsaKeyPair >>>>> run the test and console the key pairs and the modulus copy it and add >>>>> the following variables to your application.yml file >>>>> >>>>> system.publicKey: >>>>> modulus: >>>>> 27496997518027602740679038588957360788166388111745723226845051887812991739012227723332546243105385734111368736932032932620432772472716515003684527125446557010447735580711978806632360865138592893446775929132008752688756754824848632381874224028576258246649602269366673005512310064640825418647880309256755306993532415440472070158197572323027777474711257863763916264413397812817318423942185465458554343738802161836089905865850562315681021674135657336559899673599200895761373803184986638249778532585353688970016894869511370841246964409764310721813601840292548267423866614022874317712701218971621669991087235101713626702109 >>>>> exponent: 65537 >>>>> timestamp: 1553705925system.privateKey: >>>>> modulus: >>>>> 27496997518027602740679038588957360788166388111745723226845051887812991739012227723332546243105385734111368736932032932620432772472716515003684527125446557010447735580711978806632360865138592893446775929132008752688756754824848632381874224028576258246649602269366673005512310064640825418647880309256755306993532415440472070158197572323027777474711257863763916264413397812817318423942185465458554343738802161836089905865850562315681021674135657336559899673599200895761373803184986638249778532585353688970016894869511370841246964409764310721813601840292548267423866614022874317712701218971621669991087235101713626702109 >>>>> exponent: >>>>> 561796842648259152383679946757006059101801939082160053111151326392443900980169567138292558699942192928805449421731115198723766457740931284464250451210353538260669819225374057739608636318729509808584966799025889495250702575804085001744504416959329993625948966823046144229686790310115892329058573540058216825059047241723475118132580453649308791198807274830575086039445555884456525777999480443421178708813716083432869863053509277270956564037565527275973433021758135147494178230404572716471363941780229141916667576368904894867190517214053799120318348323425955090304041838551270452216693653535478473873254807774112781013 >>>>> >>>>> use the generated ones to replace the sample above. >>>>> >>>>> You might also need to set this >>>>> >>>>> system: >>>>> initialclientid: sillyRabbit >>>>> >>>>> Have a code-full day :) >>>>> >>>>> Regards >>>>> >>>>> On Mon, 29 Apr 2019, 01:12 Victor Manuel Romero Rodriguez, < >>>>> [email protected]> wrote: >>>>> >>>>>> *Hello,* >>>>>> >>>>>> >>>>>> *I have just pulled the repository from * >>>>>> >>>>>> https://github.com/openMF/fineract-cn-containers >>>>>> >>>>>> *Then I execute the commands* >>>>>> >>>>>> 1. Run *bash migration_script.sh* >>>>>> >>>>>> 2. Run *bash start-up.sh* >>>>>> >>>>>> *But then it gives error messages:* >>>>>> >>>>>> Generating RSA keys... >>>>>> grep: logs/provisioner.log: No such file or directory >>>>>> Error response from daemon: Container >>>>>> 18d9260749f1dc309acda9f11533773040ed8ace0060097a6e6721280171ae8d is not >>>>>> running >>>>>> >>>>>> Full log: https://pastebin.com/ixw4GihX >>>>>> >>>>>> *Looking at the docker logs of provisioner container I found this >>>>>> messages:* >>>>>> >>>>>> ***************************, >>>>>> APPLICATION FAILED TO START, >>>>>> ***************************, >>>>>> , >>>>>> Description:, >>>>>> , >>>>>> Binding to target >>>>>> org.apache.fineract.cn.provisioner.config.SystemProperties@4078695f >>>>>> failed:, >>>>>> , >>>>>> Property: system.publicKey.timestamp, >>>>>> Value: null, >>>>>> Reason: may not be empty, >>>>>> , >>>>>> Property: system.privateKey.exponent, >>>>>> Value: null, >>>>>> Reason: may not be null, >>>>>> , >>>>>> Property: system.publicKey.modulus, >>>>>> Value: null, >>>>>> Reason: may not be null, >>>>>> , >>>>>> Property: system.privateKey.modulus, >>>>>> Value: null, >>>>>> Reason: may not be null, >>>>>> , >>>>>> Property: system.publicKey.exponent, >>>>>> Value: null, >>>>>> Reason: may not be null, >>>>>> , >>>>>> , >>>>>> Action:, >>>>>> , >>>>>> Update your application's configuration, >>>>>> >>>>>> >>>>>> Full log: https://pastebin.com/AgDmSfNE >>>>>> >>>>>> Any clue? >>>>>> >>>>>> Regards >>>>>> >>>>>> Victor >>>>>> >>>>>> >>>>>>
