You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+10-5Lines changed: 10 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -59,10 +59,14 @@ It takes a few clicks and filling out a form to install the product into your ow
59
59
```
60
60
3. Setup server's SSL certificates by running this from command line:
61
61
```shell
62
-
./scripts/server-cert-gen.sh .env nginx ssl
62
+
./bin/server-cert-gen.sh .env nginx ssl
63
63
```
64
64
The script will create an `ssl` sub-folder where the SSL certificates and/or public keys will be placed.
65
-
4. Launch the application services by running this from command line:
65
+
4. Create the following secrets with certificate passwords:
66
+
- `secrets/client_truststore_password.txt`
67
+
- `secrets/owner_cert_password.txt`
68
+
- `secrets/secretary_cert_password.txt`
69
+
5. Launch the application services by running this from command line:
66
70
```shell
67
71
docker-compose up --build
68
72
```
@@ -72,22 +76,23 @@ It takes a few clicks and filling out a form to install the product into your ow
72
76
* `secretary` stores root application's WebID certificate, keystore, and public key
73
77
* `server` stores the server's certificate (also used by nginx)
74
78
- `data` where the triplestore(s) will persist RDF data
79
+
- `datasets` where LDH persists agent metadata files
75
80
- `uploads` where LDH stores content-hashed file uploads
76
81
It should take up to half a minute as datasets are being loaded into triplestores. After a successful startup, the last line of the Docker log should read something like:
77
82
```
78
83
linkeddatahub_1 | 09-Feb-2021 14:18:10.536 INFO [main] org.apache.catalina.startup.Catalina.start Server startup in [32609] milliseconds
79
84
```
80
-
5. Install `ssl/owner/keystore.p12` into a web browser of your choice (password is the `$owner_cert_pwd` value supplied to `setup.sh`)
85
+
6. Install `ssl/owner/keystore.p12` into a web browser of your choice (password is the `owner_cert_password` secret value)
- Apple Safari: The file is installed directly into the operating system. Open the file and import it using the [Keychain Access](https://support.apple.com/guide/keychain-access/what-is-keychain-access-kyca1083/mac) tool (drag it to the `local` section).
84
89
- Microsoft Edge: Does not support certificate management, you need to install the file into Windows. [Read more here](https://social.technet.microsoft.com/Forums/en-US/18301fff-0467-4e41-8dee-4e44823ed5bf/microsoft-edge-browser-and-ssl-certificates?forum=win10itprogeneral).
85
-
6. For authenticated API access use the `ssl/owner/cert.pem` HTTPS client certificate.
90
+
7. For authenticated API access use the `ssl/owner/cert.pem` HTTPS client certificate.
86
91
If you are running Linux with user other than `root`, you might need to fix the certificate permissions because Docker bind mounts are owned by `root` by default. For example:
87
92
```shell
88
93
sudo setfacl -m u:$(whoami):r ./ssl/owner/*
89
94
```
90
-
7. Open **https://localhost:4443/** in the web browser or use `curl` for API access, for example:
95
+
8. Open **https://localhost:4443/** in the web browser or use `curl` for API access, for example:
0 commit comments