Skip to content

gmarciani/yawa

BranchesTags

Repository files navigation

YAWA

YAWA Logo

Requirements

  • Configure the local development environment
make setup
  • Start Docker

Quick Start

Build containers

make build

# Or a specific container
make build container=[frontend|server|database|dbadmin|grafana|loki|prometheus]

Run containers

make run

# Or a specific container
make run container=[frontend|server|database|dbadmin|grafana|loki|prometheus]

Restart containers

make restart

# Or a specific container
make restart container=[frontend|server|database|dbadmin|grafana|loki|prometheus]

Describe containers

make describe

Login to a container

make login container=[frontend|server|database|dbadmin|grafana|loki|prometheus]

Cleanup everything (containers, images, volumes)

make clean

Open web interfaces on browser:

make open target=[frontend|server|server_swagger|database|dbadmin|grafana|loki|prometheus]

Build yawa-ops (the server must be running to update the OpenAPI spec used by the Python client)

make build_ops

Build OpenAPI spec

make build_openapi

Containers

The application is made of the containers below.

Name Url Documentation
frontend https://localhost:8010 README
server https://localhost:8002 README
database https://localhost:3307 README
dbadmin https://localhost:8003 README
grafana http://localhost:8005 README
prometheus http://localhost:8004 README

Certificates

Generate the certificates and keys using the project gmarciani-ca.

Trust the certification authority used for development:

  1. Open Keychain
  2. Open System Keychain
  3. File > Import Items: select the PEM file of the CA chain (intermediate-ca/certs/ca-chain.cert.pem)
  4. Select the root CA: GMARCIANI Root CA > Get Info > Trust > Select Always Trust

Restart the browser to make the change take effect.

Trust the certification authority in Postman:

  1. Open Postman
  2. Postman > Settings > Certificates
  3. Enable CA certificates
  4. Select the PEM file of the CA chain (ca-chain.cert.pem)

Configure the certificate for the server:

  1. Put the P12 file server/private/yawa.p12 in server/src/main/resources/secrets/certificates/yawa.p12

Configure the certificate for the frontend:

  1. Put the certificate server/certs/yawa.cert.pem in frontend/resources/certificates/yawa.cert.pem
  2. Put the key server/private/yawa.key.pem in frontend/resources/certificates/yawa.key.pem
  3. Put the CA chain intermediate-ca/certs/ca-chain.cert.pem in frontend/resources/certificates/ca-chain.cert.pem

Configure the certificate for the ops tools:

  1. Put the CA chain intermediate-ca/certs/ca-chain.cert.pem in ops/resources/certificates/ca-chain.cert.pem

Troubleshooting

Certificates

# Show server certificate
openssl s_client -showcerts -connect localhost:8010

# Validate the certificate with the CA bundle
openssl verify -verbose \
    -CAfile resources/certificates/ca-chain.cert.pem \
    resources/certificates/yawa.cert.pem

# Verify that a cert and a key match (the MD5 checksum must be equal)
openssl x509 -noout -modulus -in /Volumes/workplace/personal/yawa/frontend/resources/certificates/yawa.cert.pem | openssl md5
openssl rsa  -noout -modulus -in /Volumes/workplace/personal/yawa/frontend/resources/certificates/yawa.key.pem | openssl md5

References

  1. Spring Boot Reference
  2. Spring Boot API Docs
  3. Spring Gradle Plugin

About

Yet Another Web Application

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity

Stars

3 stars

Watchers

2 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages