Skip to content

flowcate/deephub-advanced-setup

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

83 Commits
apache
apache
 
 
hub-data
hub-data
 
 
hub-web
hub-web
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
omlox-realm.json
omlox-realm.json
 
 

Repository files navigation

Introduction

The DeepHub® is a lightweight, high-performance locating-middleware, that enables seamless indoor and outdoor tracking of objects by integrating any locating technology (UWB, BLE, RFID, 5G, etc.) of any vendor through one single modern API.

The DeepHub is the premier implementation of an omlox hub, specified in omlox - the open locating standard.

DeepHub® Advanced Setup

This project provides a completely configured “system” consisting of a Keycloak OpenID server, a corresponding PostgreSQL DB, the DeepHub®, the DeepHub® UI, and a containerized web server that acts as a reverse proxy to simplify the overall usage and interaction of these components. For the orchestration between these five containers, Docker Compose is used.

Prerequisites

☝️ We only support the operation of a DeepHub docker image in the native version for a CPU. On Windows and Linux this is typically the Intel x86_64 version, same for Intel-based macOS devices. In case you have a new ARM-based macOS device, the native ARM docker image should be pulled automatically.
☝️ Please request a trial license key for testing at partners@flowcate.com or via our contact form on our homepage.

Running the application for the first time

When first starting up the system of five containers, the Keycloak instance will create DB tables and this may take a while. After that table creation step, Keycloak is still in a virgin state and needs to have the correct clients, client scopes, roles and users set. You can do this by referencing our documentation, or by importing the "omlox-realm.json" file that is part of this repository (it includes almost all of the required settings).

Furthermore, keycloak usually requires SSL to be enabled (which is the default) but what hinders this overall setup to work because the Apache Proxy server acquires the traditional SSL/https port of 443 and therefore the port can't be used by keycloak. In this example, for simplification reasons, the keycloak needs to run on http only and the enforced SSL connection needs to be reconfigured. Let's start by doing this first:

Log into the Keycloak container and use the keycloak admin cli tool to change the ssl property:

  • docker exec -it deephub-advanced-setup-keycloak-1 /bin/bash
  • cd /opt/bitnami/keycloak/bin
  • kcadm.sh update realms/master -s sslRequired=NONE --server http://localhost:8080/ --realm master --user user --password bitnami

Now let's go on configuring the overall system::

  • Start the system with docker compose up
  • In a browser, open http://localhost to access your new local Keycloak instance (if this does not work, wait for a minute - Keycloak is likely still in the process of creating the necessary DB tables)
  • Choose "Administration Console"
  • Log into the Keycloak instance with user "user" and the password "bitnami"
  • Create a new realm called "omlox":
    • On the top left, open the drop down menu where the current realm "master" is visible.
    • Click on "Create Realm".
    • Click the browse button to import the omlox-realm.json file from this repo.
    • Change the ssl property for the newly created realm:
      • docker exec -it deephub-advanced-setup-keycloak-1 /bin/bash
      • cd /opt/bitnami/keycloak/bin
      • kcadm.sh update realms/omlox -s sslRequired=NONE --server http://localhost:8080/ --realm master --user user --password bitnami
  • Click "Users" in the vertical left main menu to add a new user.
  • Choose "Add User" and create a new user named "deephub-tester" (the rest of this example relies on it)
  • Set a password you want to use for this user in the "Credentials" tab of the newly created user. Disable the "Temporary" option to just keep the new password at the next login.
  • Go to the "Role mapping" tab and click "Assign role".
  • Mark the checkbox in front of "deephub-test-role" and click the "Assign" button below all assignable roles.

That's it! You should now be able to start the setup (more details below) and connect to the DeepHub UI via a web browser at https://localhost/deephub-ui/admin/ or https://localhost/deephub-ui/.

While you did all this, you may have looked at the console where you started all the containers and noticed the following error message from within the DeepHub container:

Failed to request OpenID configuration from URL http://host.docker.internal/realms/omlox/.well-known/openid-configuration.

This happened because keycloak was not configured properly yet. After all the steps above, your local keycloak instance is now setup correctly and the error message should not have persisted. Instead, the following message may have caught your attention:

Done fetching OpenID configuration

If you see this, this is a clear sign that everything is configured correctly.

Note: You may have to stop the system and restart it again because the DeepHub may not have gotten all the latest roles and scopes because the keycloak configuration was ongoing.

☝️ If you used the provided omlox-realm.json, everything should be set-up correctly. In case you set-up the keycloak manually, please note, that the compatibility flag "Exclude Issuer From Authentication Response" has to be switched on. This flag can be found in the "Advanced" section of a "Client". In our example, the "deephub-ui-test-client" is the one that has to be configured like this. Read the keycloak upgrade guide for details.

In your browser, you may now head over to https://localhost/deephub-ui/admin/ or https://localhost/deephub-ui/ to access the DeepHub UI. This will cause a warning from your internet browser because this repo only contains a self-signed certificate for the https connection. Accept it within the browser's warning dialog and you should be redirected to the UI and from there immediately to the keycloak authentication request. Enter "deephub-tester" as the username and the password you've chosen and login. You will now be redirected to the DeepHub UI.

Have fun with the DeepHub!

Running the application

  • Open a shell.
  • Invoke Docker Compose in the directory where your docker-compose.yml file resides.
docker compose up

This command will automatically pull the necessary docker images from hub.docker.com, create docker containers, and start the containers. In case you want to see all log output immediately, invoke the former command omitting the "-d" parameter (deamon mode).

☝️ It may become necessary to manually call docker compose pull first. This is the case if a newer docker image with the same name was published and therefore needs to get "re-pulled". This should not happen in general as we release updates as docker images with a different/newer tag.

Now you have your own running DeepHub® instance that can be accessed with any modern web browser at the address: https://localhost

To complement the DeepHub UI shown above, you may also make API calls to the DeepHub REST API while running the DeepHub locally. This can be done with a tool such as Postman or cURL BUT you need to add an access token to each request due to the enabled authorization mechanism.

For more information, visit docs.deephub.io.

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

2 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages