Perl 6 - the future is here, just unevenly distributed

IRC log for #confidant, 2015-12-03

| Channels | #confidant index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
06:33 propumpkin joined #confidant
10:11 da_ joined #confidant
10:11 da_ left #confidant
12:06 wm-bot joined #confidant
18:28 mattguy joined #confidant
18:28 mattguy hello...I was wondering about setting confidant up to work with Google OAuth...do you have an example of how you're using REDIRECT_URI?
19:43 Ryan_Lane mattguy: howdy
19:43 Ryan_Lane hm. let me look
19:44 Ryan_Lane mattguy: whoops. that's a legacy setting
19:45 Ryan_Lane pretty sure you just need AUTHOMATIC_SALT, GOOGLE_OAUTH_CLIENT_ID, and GOOGLE_OAUTH_CONSUMER_SECRET for google auth
19:45 Ryan_Lane and probably SESSION_SECRET
19:46 Ryan_Lane both AUTHOMATIC_SALT and  SESSION_SECRET are just long strings you create
19:58 mattguy Ryan_Lane: I'll take a look at those, thanks.
19:59 mattguy Spent a bulk of the morning trying to figure out how to disable SSL for Confidant...SSLIFY=false is what I had to do...am trying to get it to run in AWS ECS and don't really want to go through the hassle of setting up ssl certs/loadbalancer right now heh
20:00 Ryan_Lane mattguy: hahaha. well, make sure when you put it into production that you use ssl :)
20:01 Ryan_Lane mattguy: let me know if you run into any issues. also, if you have any fixes that make things work better for ECS, make some PRs or add github issues :)
20:03 Ryan_Lane bah. SSLIFY is missing from the generated docs. the downsides of not generating docs from code
20:03 mattguy yeah, I hated to be the guy to bash the existing docs
20:03 Ryan_Lane bash them :)
20:04 Ryan_Lane I banged out some quick docs for release, they definitely need improvement
20:06 mattguy so while I got you here...a couple questions I was wondering. is there specific configuration I need to do with the admin user I have tied to confidant? also, what about the role? I noticed when setting up the KMS encryption keys these were what glued the user and the roles together
20:06 mattguy policy-wise at least
20:07 mattguy by admin user I mean a AWS user I have setup
20:10 Ryan_Lane your admin user will need access to modify the KMS policies and such
20:10 Ryan_Lane and to create IAM roles, dynamo tables. autoscale groups (or individual nodes, if you do that), ELBs, etc.
20:11 Ryan_Lane IAM roles are essential to confidant. it's what it ties secrets to
20:12 Ryan_Lane the key policy just allows the admin to properly manage the key
20:13 Ryan_Lane well, it lets the admin manage the key and it lets confidant's IAM role encrypt and decrypt (and in the case of the auth key the ability to manage grants on the key)
20:16 mattguy ah ok, do you have an example policy for the admin user I can look at? that's if the policies are different than the ones used to setup the role?
20:18 mattguy if not that's ok...aws policy writing is probably my kryptonite as of late...sometimes it's written without understanding what it does
20:52 Ryan_Lane mattguy: the policy in the config docs should be almost exactly what you need
20:52 Ryan_Lane you'll just need to change the accountid and username and such
20:55 mattguy alrighty, i'll give it a try. thanks for the help so far
20:58 Ryan_Lane yw
20:58 Ryan_Lane let me know if you get stuck on anything
22:20 DanyC_ joined #confidant
23:26 mattguy joined #confidant
23:27 mattguy so quick question about dynamo...I created a table on AWS DynamoDB, but it's not finding it: TableDoesNotExist: Table does not exist: `Requested resource not found: Table: confidant-production not found
23:28 mattguy is there a configuration or something I should check?
23:29 Ryan_Lane hm
23:29 mattguy I manually created the confidant-production table through the aws web console...does that sound right?
23:29 Ryan_Lane yeah, that's fine
23:29 Ryan_Lane but your confidant node may not be allowed to access it
23:29 Ryan_Lane you need to modify your IAM permissions to give access to dynamo
23:30 Ryan_Lane http://lyft.github.io/confidant/basics/configuration/#confidant-iam-role-configuration
23:31 mattguy yup, I have those setup on the role...
23:35 mattguy the only dynamodb env variable I really set was: DYNAMODB_TABLE='confidant-production'
23:36 mattguy was looking at DYNAMODB_URL and wondering if I need to use that somehow

| Channels | #confidant index | Today | | Search | Google Search | Plain-Text | summary