KokaKiwi
/
infrastructure
forked from Deuxfleurs/infrastructure
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
infrastructure/op_guide/create_database
History
Alex 9560f80852 mention secretmgr.py in create_database 2021-01-19 17:29:37 +01:00
..
README.md mention secretmgr.py in create_database 2021-01-19 17:29:37 +01:00

README.md

1. Create a LDAP user and assign a password for your service

Go to guichet.deuxfleurs.fr

  1. Everything takes place in ou=services,ou=users,dc=deuxfleurs,dc=fr
  2. Create a new user, like johny
  3. Generate a random password with openssl rand -base64 32
  4. Hash it with slappasswd
  5. Add a userpassword entry with the hash

This step can also be done using the automated tool secretmgr.py in the app folder.

2. Connect to postgres with the admin users

# 1. Launch ssh tunnel given in the README 
# 2. Make sure you have postregsql client installed locally
psql -h localhost -U postgres -W postgres

3. Create the binded users with LDAP in postgres + the database

CREATE USER johny;
CREATE DATABASE amazingapp OWNER johny;