Skip to content

Commit 60c6308

Browse files
author
Vadym Mudryi
committed
Working configuration
1 parent ad41362 commit 60c6308

17 files changed

+227
-135
lines changed

charts/opencrvs-services/Troubleshooting inside Kubernetes cluste.md

Lines changed: 43 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,43 @@
1+
Troubleshooting inside Kubernetes cluster
2+
3+
1. Issue fresh token:
4+
5+
```bash
6+
USERNAME=o.admin
7+
SUPER_USER_PASSWORD=password
8+
curl -X POST "http://auth.opencrvs-services-dev.svc.cluster.local:4040/authenticate-super-user" \
9+
-H "Content-Type: application/json" \
10+
-d '{
11+
"username": "'"${USERNAME}"'",
12+
"password": "'"$SUPER_USER_PASSWORD"'"
13+
}'
14+
```
15+
16+
2. Check gateway host:
17+
```bash
18+
GATEWAY_HOST=http://gateway.opencrvs-services-dev.svc.cluster.local:7070
19+
curl -X GET \
20+
-H "Content-Type: application/json" \
21+
-H "Authorization: Bearer ${token}" \
22+
${GATEWAY_HOST}/locations?type=ADMIN_STRUCTURE&_count=0
23+
```
24+
3. Check config host:
25+
```bash
26+
curl -X GET \
27+
-H "Content-Type: application/json" \
28+
-H "Authorization: Bearer ${token}" \
29+
http://config.opencrvs-services-dev.svc.cluster.local:2021/locations?type=ADMIN_STRUCTURE&_count=0
30+
```
31+
32+
# Issues
33+
34+
Login page is not loading: Check login logs
35+
```
36+
2025/03/19 07:53:38 [error] 15#15: *1 upstream timed out (110: Connection timed out) while connecting to upstream, client: 10.1.3.102, server: localhost, request: "GET /api/countryconfig/login-config.js HTTP/1.1", upstream: "http://10.100.14.175:3040/login-config.js", host: "login.opencrvs.localhost", referrer: "https://login.opencrvs.localhost/"
37+
```
38+
39+
Solution: restart nginx inside login container or delete login pod
40+
```
41+
nginx -s reload
42+
```
43+

charts/opencrvs-services/templates/auth-deployment.yaml

Lines changed: 16 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -49,6 +49,14 @@ spec:
4949
- image: "ghcr.io/opencrvs/ocrvs-auth:{{ .Values.image.tag }}"
5050
name: auth
5151
env:
52+
- name: REDIS_HOST
53+
value: {{ .Values.redis_host | quote }}
54+
- name: COUNTRY_CONFIG_URL
55+
value: "https://countryconfig.{{ .Values.hostname }}"
56+
- name: CLIENT_APP_URL
57+
value: "https://register.{{ .Values.hostname }}"
58+
- name: LOGIN_URL
59+
value: "https://login.{{ .Values.hostname }}"
5260
- name: CERT_PRIVATE_KEY_PATH
5361
value: /secrets/private-key.pem
5462
- name: CERT_PUBLIC_KEY_PATH
@@ -61,22 +69,22 @@ spec:
6169
value: http://metrics.opencrvs-services-dev.svc.cluster.local:1050 # FIXME: harcoded
6270
- name: NOTIFICATION_SERVICE_URL
6371
value: http://notification.opencrvs-services-dev.svc.cluster.local:2020/
64-
- name: REDIS_HOST
65-
value: redis.opencrvs-deps-dev.svc.cluster.local # FIXME: harcoded
6672
- name: USER_MANAGEMENT_URL
6773
value: http://user-mgnt.opencrvs-services-dev.svc.cluster.local:3030/ # FIXME: hardcoded
6874
- name: AUTH_PORT
6975
value: "4040"
70-
- name: COUNTRY_CONFIG_URL
71-
value: http://countryconfig.opencrvs-services-dev.svc.cluster.local:3040 # FIXME: harcoded
7276
- name: COUNTRY_CONFIG_URL_INTERNAL
7377
value: http://countryconfig.opencrvs-services-dev.svc.cluster.local:3040 # FIXME: harcoded
7478
- name: DOMAIN
7579
value: "opencrvs-services-dev.svc.cluster.local"
76-
- name: CLIENT_APP_URL
77-
value: "http://client.opencrvs-services-dev.svc.cluster.local:3000"
78-
- name: LOGIN_URL
79-
value: "http://login.opencrvs-services-dev.svc.cluster.local:3020"
80+
{{- range $k, $v := .Values.env }}
81+
- name: {{ $k }}
82+
value: {{ $v | quote }}
83+
{{- end }}
84+
{{- range $k, $v := .Values.auth.env }}
85+
- name: {{ $k }}
86+
value: {{ $v | quote }}
87+
{{- end }}
8088
ports:
8189
- containerPort: 4040
8290
protocol: TCP

charts/opencrvs-services/templates/client-deployment.yaml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -49,10 +49,16 @@ spec:
4949
containers:
5050
- image: "ghcr.io/opencrvs/ocrvs-client:{{ .Values.image.tag }}"
5151
env:
52+
- name: CONTENT_SECURITY_POLICY_WILDCARD
53+
value: "*.{{ .Values.hostname }}"
5254
- name: COUNTRY_CONFIG_URL_INTERNAL
5355
value: http://countryconfig.opencrvs-services-dev.svc.cluster.local:3040 # FIXME: harcoded
5456
- name: GATEWAY_URL_INTERNAL
5557
value: http://gateway.opencrvs-services-dev.svc.cluster.local:7070 # FIXME: harcoded
58+
# CHECK: Following variables are present on Dev environment
59+
# "COUNTRY_CONFIG_URL
60+
# "DECLARED_DECLARATION_SEARCH_QUERY_COUNT
61+
# "MINIO_URL
5662
name: client
5763
ports:
5864
- containerPort: 80

charts/opencrvs-services/templates/config-deployment.yaml

Lines changed: 16 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -6,8 +6,8 @@ metadata:
66
name: config
77
spec:
88
ports:
9-
- port: {{ .Values.config.container_port }}
10-
targetPort: {{ .Values.config.container_port }}
9+
- port: 2021
10+
targetPort: 2021
1111
selector:
1212
app: config
1313
type: LoadBalancer
@@ -25,7 +25,7 @@ spec:
2525
services:
2626
- name: config
2727
namespace: opencrvs-services-dev
28-
port: {{ .Values.config.container_port }}
28+
port: 2021
2929
middlewares:
3030
- name: sts-and-basic-response-headers
3131
---
@@ -49,20 +49,26 @@ spec:
4949
- name: config
5050
image: "ghcr.io/opencrvs/ocrvs-config:{{ .Values.image.tag }}"
5151
env:
52-
{{- range $k, $v := .Values.env }}
52+
- name: FHIR_URL
53+
value: {{ .Values.fhir_url | quote }}
54+
- name: CLIENT_APP_URL
55+
value: "https://register.{{ .Values.hostname }}"
56+
- name: HOST
57+
value: 0.0.0.0
58+
- name: PORT
59+
value: "2021"
60+
{{- range $k, $v := .Values.env }}
5361
- name: {{ $k }}
5462
value: {{ $v | quote }}
55-
{{- end }}
56-
{{- range $k, $v := .Values.config.env }}
63+
{{- end }}
64+
{{- range $k, $v := .Values.config.env }}
5765
- name: {{ $k }}
5866
value: {{ $v | quote }}
59-
{{- end }}
60-
- name: PORT
61-
value: "{{ .Values.config.container_port }}"
67+
{{- end }}
6268
- name: CERT_PUBLIC_KEY_PATH
6369
value: /secrets/public-key.pem
6470
ports:
65-
- containerPort: {{ .Values.config.container_port }}
71+
- containerPort: 2021
6672
protocol: TCP
6773
volumeMounts:
6874
- mountPath: /secrets/public-key.pem

charts/opencrvs-services/templates/countryconfig-deployment.yaml

Lines changed: 15 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -76,28 +76,25 @@ spec:
7676
- name: countryconfig
7777
image: "{{ .Values.countryconfig.image.name }}:{{ .Values.countryconfig.image.tag }}"
7878
env:
79-
{{- range $k, $v := .Values.env }}
79+
- name: FHIR_URL
80+
value: {{ .Values.fhir_url | quote }}
81+
- name: CLIENT_APP_URL
82+
value: "https://register.{{ .Values.hostname }}"
83+
- name: LOGIN_URL
84+
value: "https://login.{{ .Values.hostname }}"
85+
# TODO: Check if this value is needed here?
86+
- name: COUNTRY_CONFIG_URL
87+
value: "https://countryconfig.{{ .Values.hostname }}"
88+
- name: DOMAIN
89+
value: {{ .Values.hostname | quote }}
90+
{{- range $k, $v := .Values.env }}
8091
- name: {{ $k }}
8192
value: {{ $v | quote }}
82-
{{- end }}
83-
{{- range $k, $v := .Values.gateway.env }}
93+
{{- end }}
94+
{{- range $k, $v := .Values.countryconfig.env }}
8495
- name: {{ $k }}
8596
value: {{ $v | quote }}
86-
{{- end }}
87-
- name: CERT_PUBLIC_KEY_PATH
88-
value: /secrets/public-key.pem
89-
- name: CHECK_INVALID_TOKEN
90-
value: "true"
91-
- name: CONFIRM_REGISTRATION_URL
92-
value: http://workflow.opencrvs-services-dev.svc.cluster.local:5050/confirm/registration
93-
- name: MONGO_URL
94-
value: mongodb://mongodb-0.mongodb.opencrvs-deps-dev.svc.cluster.local/user-mgnt
95-
- name: NODE_ENV
96-
value: production
97-
- name: DOMAIN
98-
value: "{{ .Values.hostname }}"
99-
- name: CLIENT_APP_URL
100-
value: https://register.{{ .Values.hostname }}
97+
{{- end }}
10198
ports:
10299
- containerPort: 3040
103100
protocol: TCP

charts/opencrvs-services/templates/events-deployment.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -59,7 +59,7 @@ spec:
5959
value: "http://documents.opencrvs-services-dev.svc.cluster.local:9050"
6060
# TODO: Add password
6161
- name: ES_URL
62-
value: "http://elasticsearch.opencrvs-deps-dev.svc.cluster.local:9200"
62+
value: "http://{{ .Values.elasticsearch_host }}"
6363
- name: ES_INDEX_PREFIX
6464
value: "foo"
6565
# TODO: Add URL

charts/opencrvs-services/templates/gateway-deployment.yaml

Lines changed: 16 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -50,14 +50,26 @@ spec:
5050
- name: gateway
5151
image: "ghcr.io/opencrvs/ocrvs-gateway:{{ .Values.image.tag }}"
5252
env:
53-
{{- range $k, $v := .Values.env }}
53+
- name: FHIR_URL
54+
value: {{ .Values.fhir_url | quote }}
55+
- name: REDIS_HOST
56+
value: {{ .Values.redis_host | quote }}
57+
- name: CLIENT_APP_URL
58+
value: "https://register.{{ .Values.hostname }}"
59+
- name: LOGIN_URL
60+
value: "https://login.{{ .Values.hostname }}"
61+
- name: APPLICATION_CONFIG_URL
62+
value: "http://config.opencrvs-services-dev.svc.cluster.local:2021" # FIXME: harcoded
63+
- name: CERT_PUBLIC_KEY_PATH
64+
value: /secrets/public-key.pem
65+
{{- range $k, $v := .Values.env }}
5466
- name: {{ $k }}
5567
value: {{ $v | quote }}
56-
{{- end }}
57-
{{- range $k, $v := .Values.gateway.env }}
68+
{{- end }}
69+
{{- range $k, $v := .Values.gateway.env }}
5870
- name: {{ $k }}
5971
value: {{ $v | quote }}
60-
{{- end }}
72+
{{- end }}
6173
ports:
6274
- containerPort: 7070
6375
protocol: TCP

charts/opencrvs-services/templates/login-deployment.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -53,6 +53,8 @@ spec:
5353
- containerPort: 80 #FIXME: non-low end port
5454
protocol: TCP
5555
env:
56+
- name: CONTENT_SECURITY_POLICY_WILDCARD
57+
value: "*.{{ .Values.hostname }}"
5658
{{- range $k, $v := .Values.env }}
5759
- name: {{ $k }}
5860
value: {{ $v | quote }}
@@ -61,6 +63,4 @@ spec:
6163
- name: {{ $k }}
6264
value: {{ $v | quote }}
6365
{{- end }}
64-
- name: COUNTRY_CONFIG_URL_INTERNAL
65-
value: http://countryconfig.opencrvs-services-dev.svc.cluster.local:3040
6666
restartPolicy: Always

charts/opencrvs-services/templates/metrics-deployment.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -32,6 +32,8 @@ spec:
3232
- image: "ghcr.io/opencrvs/ocrvs-metrics:{{ .Values.image.tag }}"
3333
name: metrics
3434
env:
35+
- name: FHIR_URL
36+
value: {{ .Values.fhir_url | quote }}
3537
- name: NODE_ENV
3638
value: development
3739
- name: CERT_PUBLIC_KEY_PATH
@@ -42,8 +44,6 @@ spec:
4244
value: http://countryconfig.opencrvs-services-dev.svc.cluster.local:3040 # FIXME: harcoded/
4345
- name: DOCUMENTS_URL
4446
value: http://documents.opencrvs-services-dev.svc.cluster.local:9050 # FIXME: harcoded
45-
- name: FHIR_URL
46-
value: http://hearth.opencrvs-deps-dev.svc.cluster.local:3447/fhir # FIXME: harcoded
4747
- name: SEARCH_URL
4848
value: http://search.opencrvs-deps-dev.svc.cluster.local:9090/ # FIXME: harcoded
4949
- name: USER_MANAGEMENT_URL

charts/opencrvs-services/templates/migration-job.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,7 +21,7 @@ spec:
2121
- name: PERFORMANCE_MONGO_URL
2222
value: mongodb://mongodb-0.mongodb.opencrvs-deps-dev.svc.cluster.local/performance
2323
- name: ES_HOST
24-
value: elasticsearch.opencrvs-deps-dev.svc.cluster.local:9200
24+
value: {{ .Values.elasticsearch_host | quote }}
2525
- name: SEARCH_URL
2626
value: http://search.opencrvs-services-dev.svc.cluster.local:9090/ # FIXME: harcoded
2727
- name: HEARTH_MONGO_URL

0 commit comments

Comments
 (0)