Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WIP] adding https guide to installation guide #458

Closed
wants to merge 1 commit into from
Closed

[WIP] adding https guide to installation guide #458

wants to merge 1 commit into from

Conversation

alex9311
Copy link

will someone please try out the steps in this guide

#452

bsekachev
bsekachev reviewed May 22, 2019
View reviewed changes
cvat/apps/documentation/installation.md
docker-compose -f docker-compose.yml -f docker-compose.override.yml up -d
```

Those changes should get CVAT running over SSH.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

SSH?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would really LOVE to know how to setup SSL. Keys can be getting from Cloudflare for examples ?

Thanks much.
Steve

cvat/apps/documentation/installation.md
First, you'll want to set the `SECURE_SSL_REDIRECT` inside your `cvat/settings/base.py` file.
This tells Django that you want to use SSL.
```python
SECURE_SSL_REDIRECT = True
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems to me, we should do it through environment variables

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Instead of the hardcoded True value

@nmanovic
Copy link
Contributor

@alex9311 , is it possible to provide instructions which don't require modify source code? It is OK to add a couple of more files or redefine some environment variables but I don't think that it is good to ask users to modify original source code to enable a feature.

@nmanovic
Copy link
Contributor

@alex9311 , one more comment. Need to add information about the feature into CHANGELOG.md

@nmanovic
Copy link
Contributor

@alex9311 , will you find time to fix our comments and slightly improve the PR?

@alex9311
Copy link
Author

hi @nmanovic , yeah I should have time this weekend

@alex9311
Copy link
Author

I can easily read from an environment variable to set SECURE_SSL_REDIRECT instead of asking the user to modify cvat/settings/base.py. Are you also unhappy with the use of a docker-compose.override.yml file? Or is that OK?

The generation of SLL certificates in the Dockerfile is just a suggestion, there are a lot of different ways users could get those key and cert files. I could remove the Docker suggestion and just tell the user they will need to put their certs at /etc/ssl/cvat-certs/.

@nmanovic
Copy link
Contributor

@alex9311 ,

I can easily read from an environment variable to set SECURE_SSL_REDIRECT instead of asking the user to modify cvat/settings/base.py.

It will be better because in this case we can use docker-compose.override.yml to provide the value.

Are you also unhappy with the use of a docker-compose.override.yml file? Or is that OK?

It is OK.

The generation of SLL certificates in the Dockerfile is just a suggestion, there are a lot of different ways users could get those key and cert files. I could remove the Docker suggestion and just tell the user they will need to put their certs at /etc/ssl/cvat-certs/.

Probably it is better to ask users to put certificates into a directory on host (e.g. cvat source code/ssl). But if you give an example how to generate a dummy certificate in your README file it will be good.

thusinh1969
thusinh1969 approved these changes Jun 3, 2019
View reviewed changes
cvat/apps/documentation/installation.md
docker-compose -f docker-compose.yml -f docker-compose.override.yml up -d
```

Those changes should get CVAT running over SSH.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would really LOVE to know how to setup SSL. Keys can be getting from Cloudflare for examples ?

Thanks much.
Steve

@nmanovic nmanovic changed the title adding https guide to installation guide [WIP] adding https guide to installation guide Jun 12, 2019
@nmanovic
Copy link
Contributor

@alex9311 , please let me know if you are going to fix comments.

@nmanovic
Copy link
Contributor

@alex9311 , it seems you don't have time to finish the PR. I will close it right now.

@nmanovic nmanovic closed this Jun 24, 2019
@azhavoro azhavoro mentioned this pull request Oct 18, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bsekachev bsekachev bsekachev left review comments

@thusinh1969 thusinh1969 thusinh1969 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@alex9311 @nmanovic @thusinh1969 @bsekachev