deposit: Configure deposit to use keycloak in production
Related to T3184
Test Plan
octocatalog: deposit staging unchanged, production deposit migrated
$ bin/octocatalog-diff --octocatalog-diff-args --no-truncate-details --to staging deposit.internal.staging.swh.network
Found host deposit.internal.staging.swh.network
...
*** Running octocatalog-diff on host deposit.internal.staging.swh.network
I, [2021-03-29T15:24:06.732751 #11479] INFO -- : Catalogs compiled for deposit.internal.staging.swh.network
I, [2021-03-29T15:24:08.483502 #11479] INFO -- : Diffs computed for deposit.internal.staging.swh.network
I, [2021-03-29T15:24:08.483543 #11479] INFO -- : No differences
*** End octocatalog-diff on deposit.internal.staging.swh.network
$ bin/octocatalog-diff --octocatalog-diff-args --no-truncate-details --to staging moma
...
*** Running octocatalog-diff on host moma.softwareheritage.org
I, [2021-03-29T15:30:29.356296 #17416] INFO -- : Catalogs compiled for moma.softwareheritage.org
I, [2021-03-29T15:30:31.878794 #17416] INFO -- : Diffs computed for moma.softwareheritage.org
diff origin/production/moma.softwareheritage.org current/moma.softwareheritage.org
*******************************************
File[/etc/softwareheritage/deposit/server.yml] =>
parameters =>
content =>
@@ -23,5 +23,9 @@
extraction_dir: "/tmp/swh-deposit/archive/"
swh_authority_url: https://deposit.softwareheritage.org/
-authentication_provider: basic
+authentication_provider: keycloak
+keycloak:
+ server_url: https://auth.softwareheritage.org/auth/
+ realm_name: SoftwareHeritage
+cache_uri: 127.0.0.1:11211
allowed_hosts:
- deposit.softwareheritage.org
*******************************************
*** End octocatalog-diff on moma.softwareheritage.orgMigrated from D5374 (view on Phabricator)