Book Image

OpenShift Cookbook

By : Shekhar Gulati
Book Image

OpenShift Cookbook

By: Shekhar Gulati

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
OpenShift Cookbook
Shekhar Gulati
Oct, 2014 | 430 pages
No titles found
Table of Contents (19 chapters)
OpenShift Cookbook
OpenShift Cookbook
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Getting Started with OpenShift
Getting Started with OpenShift
A brief introduction into OpenShift
Creating an OpenShift Online account
Creating OpenShift domains using the web console
Creating a WordPress application using the web console
Uploading SSH keys using the web console
Working with the SSH key passphrases
Cloning the application to the local machine
Deploying your first change
Checking the application's gear quota and limits
Installing the OpenShift rhc command-line client
Setting up an OpenShift account using rhc
Enabling the autocomplete feature in an rhc command-line client
Viewing the account details using rhc
Specifying a different OpenShift server hostname
Updating rhc
2
Managing Domains
Managing Domains
Introduction
Creating a domain using rhc
Renaming a domain using rhc
Viewing domain details using rhc
Adding viewer members to a domain using rhc
Adding an editor member to a domain using rhc
Adding an admin member to a domain using rhc
Viewing all the members in a domain using rhc
Removing members from a domain using rhc
Restricting gear sizes for a domain using rhc
Leaving a domain using rhc
Deleting a domain using rhc
3
Creating and Managing Applications
Creating and Managing Applications
Introduction
Creating an OpenShift application using the rhc command-line client
Specifying your own template Git repository URL
Starting/stopping/restarting an application
Adding and managing add-on cartridges
Adding a cron cartridge to an application
Using downloadable cartridges with OpenShift applications
Viewing application details
Cloning the application Git repository using rhc
SSH into the application gear using rhc
Running a command in the application's SSH session using rhc
Setting application-specific environment variables
Taking and restoring application backups
Tracking and rolling back application deployments
Configuring the default Git branch for deployment
Doing manual deployments
Configuring and doing binary deployments
Using your own custom domain name
Cleaning up the application
Deleting the application
4
Using MySQL with OpenShift Applications
Using MySQL with OpenShift Applications
Introduction
Adding a MySQL cartridge to your application
Adding a phpMyAdmin cartridge to your application
Accessing a MySQL database from your local machine
Connecting to a MySQL cartridge from your local machine using MySQL Workbench
Updating the MySQL max connections setting
Updating the MySQL configuration settings
Performing scheduled MySQL database backups
Using an Amazon RDS MySQL DB instance with OpenShift
5
Using PostgreSQL with OpenShift Applications
Using PostgreSQL with OpenShift Applications
Introduction
Adding the PostgreSQL cartridge to your application
Accessing the PostgreSQL cartridge from your local machine
Connecting to the PostgreSQL cartridge using pgAdmin from your local machine
Updating the PostgreSQL max_connections setting
Using the .psqlrc configuration file to configure the OpenShift application psql shell
Performing scheduled PostgreSQL database backups
Using EnterpriseDB PostgreSQL Cloud Database with OpenShift
Installing PostgreSQL extensions
6
Using MongoDB and Third-party Database Cartridges with OpenShift Applications
Using MongoDB and Third-party Database Cartridges with OpenShift Applications
Introduction
Adding a MongoDB cartridge to your application
Adding a RockMongo cartridge to your application
Accessing a MongoDB cartridge from your local machine
Connecting to a MongoDB cartridge using Robomongo from your local machine
Enabling the MongoDB cartridge REST interface
Performing scheduled MongoDB database backups
Using MongoLab MongoDB-as-a-Service with OpenShift
Adding a MariaDB cartridge to your application
Adding a Redis cartridge to your application
7
OpenShift for Java Developers
OpenShift for Java Developers
Introduction
Creating and deploying Java EE 6 applications using the JBoss EAP and PostgreSQL 9.2 cartridges
Configuring application security by defining the database login module in standalone.xml
Installing modules with JBoss cartridges
Managing JBoss cartridges using the management web interface and CLI
Creating and deploying Spring applications using the Tomcat 7 cartridge
Taking thread dumps of Java cartridges
Choosing between Java 6 and Java 7
Enabling hot deployment for Java applications
Skipping the Maven build
Forcing a clean Maven build
Overriding the default Maven build command
Installing the JAR file not present in the Maven central repository
Developing OpenShift Java applications using Eclipse
Using Eclipse System Explorer to SSH into the application gear
Debugging Java applications in the Cloud
8
OpenShift for Python Developers
OpenShift for Python Developers
Introduction
Creating your first Python application
Managing Python application dependencies
Creating and deploying Flask web applications using Python and PostgreSQL cartridges
Enabling hot deployment for Python applications
Forcing a clean Python virtual environment
Accessing an application's Python virtual environment
Using Gevent with Python applications
Installing a custom Python package
Using the .htaccess file to configure Apache
9
OpenShift for Node.js Developers
OpenShift for Node.js Developers
Introduction
Creating your first Node.js application
Configuring Node supervisor options
Managing Node.js application dependencies
Using the use_npm marker
Enabling hot deployment for Node.js applications
Creating and deploying Express web applications using Node.js and MongoDB cartridges
Working with Web Sockets
Using CoffeeScript with OpenShift Node.js applications
10
Continuous Integration for OpenShift Applications
Continuous Integration for OpenShift Applications
Introduction
Adding Jenkins CI to your application
Increasing the slave idle timeout
Installing Jenkins plugins
Using Jenkins to build projects hosted on GitHub
Creating a Jenkins workflow for your OpenShift applications
Upgrading Jenkins to the latest version
11
Logging and Scaling Your OpenShift Applications
Logging and Scaling Your OpenShift Applications
Introduction
Viewing application logs
Working with JBoss application logs
Enabling JBoss access logs
Working with Tomcat application logs
Working with Python application logs
Creating scalable applications
Configuring a different health check URL for HAProxy
Configuring HAProxy to use a different balance algorithm
Creating scalable apps from nonscalable apps
Enabling manual scaling with marker files
Running OpenShift on a Virtual Machine
Running OpenShift on a Virtual Machine
Index
Index

Working with the SSH key passphrases

In the Uploading SSH keys using the web console recipe, you learned how to create a new SSH key pair and upload it to an OpenShift account. The SSH key pair was created with an empty passphrase. The passphrase is a password to protect the private key. The empty passphrase avoids reentering a passphrase every time you use the key, but it might cause some security concerns. This recipe will walk you through the process of securing your SSH keys while avoiding having to re-enter the passphrase every time you use the key.

Getting ready

To step through this recipe, you will need the OpenSSH SSH connectivity tools installed on your machine.

To make sure that the OpenSSH client tool is installed, run the following command:

$ ssh -V
OpenSSH_6.2p2, OpenSSL 1.0.1e-fips 11 Feb 2013

The output of the preceding command will depend on the operating system and OpenSSH version installed on your machine. If you get ssh: command not found, then the OpenSSH tools are not installed on your machine.

This recipe will use the WordPress application created in the Uploading SSH keys using the web console recipe.

How to do it…

Perform the following steps to use SSH key passphrases:

  1. Passphrases can be added during key creation time or to an existing key without regenerating a new key pair. As you have already created the key pair in the Uploading SSH keys using the web console recipe, we will reuse this key pair. You will use ssh-keygen to add a key pair to the existing key:

    $ ssh-keygen -p
Enter file in which the key is (/home/vagrant/.ssh/id_rsa):
Key has comment '/home/vagrant/.ssh/id_rsa'
Enter new passphrase (empty for no passphrase): <Enter passphrase>
Enter same passphrase again: <Enter passphrase again>
Your identification has been saved with the new passphrase.

  2. Now, if you try to SSH into the application gear, you will be asked to enter the passphrase.

  3. Next, run the ssh-agent command. The ssh-agent command, which is a part of the OpenSSH toolbelt, is another tool that stores your passphrase securely so that you do not have to re-enter the passphrase. You can run the ssh-agent command by typing the following:

    $ ssh-agent $SHELL

  4. To add the passphrase, run the ssh-add utility:

    $ ssh-add
Enter passphrase for /home/vagrant/.ssh/id_rsa: <Enter passphrase>
Identity added: /home/vagrant/.ssh/id_rsa (/home/vagrant/.ssh/id_rsa)

  5. Connect to the application gear to see the SSH agent in action. You will notice that you are not asked to enter the passphrase:

    $ ssh [email protected] ls
app-deployments
app-root
git
mysql
php
phpmyadmin

  6. Exit the shell to end the ssh-agent session. If you try to connect with the application gear now, you will be asked to enter the passphrase:

    $ ssh [email protected] ls
Enter passphrase for key '/home/vagrant/.ssh/id_rsa':

How it works…

The ssh-agent utility stores the SSH keys in memory. It caches the private keys and responds to the authentication queries from SSH clients. The ssh-add utility is used to add and remove keys from ssh-agent. In step 1, you added the passphrase to your existing key. By default, it will use the default key, id_rsa, in the .ssh folder, but you can provide another SSH key file using the -i option. Now, SSH into the application gear and you will be asked to enter the passphrase:

$ ssh [email protected] ls
Enter passphrase for key '/home/vagrant/.ssh/id_rsa':

Step 2 starts the agent by forking the existing shell. It sets some environment variables required by the SSH agent. Next, in step 3, you add the SSH key into the agent. It asks for the passphrase to decrypt the private key. After decryption, it adds the private key to the agent's cache.

Finally, in step 4, you connect to the application gear using the ssh client. This time you will not be asked to enter the passphrase as the agent already cached the private key.

You can terminate the agent or log out from the shell to end the session.

See also

  • The Uploading SSH keys using the web console recipe

Previous Section
End of Section 7
Next Section