sc-portal/README.md

# Installation

    npm install

# Generate server certificates

From within the config/ directory:

    openssl genrsa -out key.pem
    openssl req -new -key key.pem -out csr.pem
    openssl x509 -req -days 9999 -in csr.pem -signkey key.pem -out cert.pem
    rm csr.pem

# Configuration

Ensure the config file in config/ matches your details.

The SSH key used must be the correct format, e.g. generated with:

    ssh-keygen -m PEM -t rsa -C "your@email.address"

# Running the server

    node bin/server.js config/prod.json

# Endpoints

## GET /*

This is where all the front-end code goes. All files will be served as-is as
found in that directory (by default a symlink to app/dist). The default is
static/index.html. There is no authentication; all files are public.

## GET /api/login

Call this endpoint to begin the login cycle. It will redirect you to the SSO
login page: an HTTP 302, with a Location header.

## GET/POST/PUT/DELETE/HEAD /api/*

All calls will be passed through to cloudapi. For these calls to succeed,
they MUST provide an X-Auth-Token header, containing the token returned from
SSO.

# Interaction cycle

client --- GET /api/login --------> this server
       <-- 302 Location #1 ----

client --- GET <Location #1> --> SSO server
       <separate SSO cycle>
       <-- 302 with token query arg

From now on call this server as if it were a cloudapi server (using [cloudapi
paths](https://github.com/joyent/sdc-cloudapi/blob/master/docs/index.md#api-introduction)),
except prefixing any path with "/api". Also always provide the X-Auth-Token.

For example, to retrieve a list of packages:

client --- GET /api/my/packages --> this server
       <-- 200 JSON body ------

The most useful cloudapi endpoints to begin with will be ListPackages,
GetPackage, ListImages, GetImage, ListMachines, GetMachine, CreateMachine and
DeleteMachine (see cloudapi docs).
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00			`# Installation`

			`npm install`

Update README with some key-related details. 2021-01-31 22:43:25 +02:00			`# Generate server certificates`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
			`From within the config/ directory:`

			`openssl genrsa -out key.pem`
			`openssl req -new -key key.pem -out csr.pem`
			`openssl x509 -req -days 9999 -in csr.pem -signkey key.pem -out cert.pem`
			`rm csr.pem`

			`# Configuration`

Update README with some key-related details. 2021-01-31 22:43:25 +02:00			`Ensure the config file in config/ matches your details.`

			`The SSH key used must be the correct format, e.g. generated with:`

			`ssh-keygen -m PEM -t rsa -C "your@email.address"`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
			`# Running the server`

			`node bin/server.js config/prod.json`

			`# Endpoints`

Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`## GET /*`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
			`This is where all the front-end code goes. All files will be served as-is as`
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`found in that directory (by default a symlink to app/dist). The default is`
			`static/index.html. There is no authentication; all files are public.`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`## GET /api/login`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
			`Call this endpoint to begin the login cycle. It will redirect you to the SSO`
Elaborate a bit on the login and interaction cycle in the README. 2021-02-02 17:20:21 +02:00			`login page: an HTTP 302, with a Location header.`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`## GET/POST/PUT/DELETE/HEAD /api/*`
Server uses TLS, sign all requests to cloudapi, and enable SSO. 2021-01-26 18:22:37 +02:00
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`All calls will be passed through to cloudapi. For these calls to succeed,`
			`they MUST provide an X-Auth-Token header, containing the token returned from`
			`SSO.`
Elaborate a bit on the login and interaction cycle in the README. 2021-02-02 17:20:21 +02:00
			`# Interaction cycle`

Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`client --- GET /api/login --------> this server`
Elaborate a bit on the login and interaction cycle in the README. 2021-02-02 17:20:21 +02:00			`<-- 302 Location #1 ----`

			`client --- GET <Location #1> --> SSO server`
			`<separate SSO cycle>`
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`<-- 302 with token query arg`
Elaborate a bit on the login and interaction cycle in the README. 2021-02-02 17:20:21 +02:00
			`From now on call this server as if it were a cloudapi server (using [cloudapi`
			`paths](https://github.com/joyent/sdc-cloudapi/blob/master/docs/index.md#api-introduction)),`
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`except prefixing any path with "/api". Also always provide the X-Auth-Token.`

			`For example, to retrieve a list of packages:`
Elaborate a bit on the login and interaction cycle in the README. 2021-02-02 17:20:21 +02:00
Changed how paths are handled by server.js, to more closely match the Angular dev environment. New paths: /api/login: redirects to SSO /api: all calls (other than above) are sent to cloudapi /: static content served from static/ All API calls to cloudapi now pass through server.js's HTTP /api, not /. The static/static path is now gone, since it was causing too much trouble. static/ is now a symlink directly to app/dist, which is where a fresh Angular build appears when app/ is built. 2021-04-10 22:14:09 +03:00			`client --- GET /api/my/packages --> this server`
Elaborate a bit on the login and interaction cycle in the README. 2021-02-02 17:20:21 +02:00			`<-- 200 JSON body ------`

			`The most useful cloudapi endpoints to begin with will be ListPackages,`
			`GetPackage, ListImages, GetImage, ListMachines, GetMachine, CreateMachine and`
			`DeleteMachine (see cloudapi docs).`