zydronium/internetee-registry
1
0
Fork 0
mirror of https://github.com/internetee/registry.git synced 2025-05-17 09:57:23 +02:00
Code Issues Projects Releases Packages Wiki Activity
TLD Management Software
55 commits 274 branches 267 tags 136 MiB
Find a file
Priit Tamboom 0cd62eb73e Updated readme
2014-06-30 15:06:48 +03:00
app Add comment 2014-06-30 14:46:45 +03:00
bin Add initial models and corresponding test files 2014-06-16 17:21:01 +03:00
config Refactor 2014-06-30 13:50:32 +03:00
db Add EppSession for custom session management 2014-06-27 13:39:16 +03:00
doc/patches extracted mod_epp patch into dedicated file 2014-06-30 14:53:37 +03:00
lib Refactor 2014-06-27 16:51:26 +03:00
public rails new 2014-06-10 11:43:04 +03:00
spec Add comment 2014-06-30 14:46:45 +03:00
vendor/assets rails new 2014-06-10 11:43:04 +03:00
.gitignore rails new 2014-06-10 11:43:04 +03:00
.ruby-gemset Ruby version and gemset 2014-06-10 11:32:00 +03:00
.ruby-version Ruby version and gemset 2014-06-10 11:32:00 +03:00
config.ru rails new 2014-06-10 11:43:04 +03:00
Gemfile Epp User login 2014-06-20 17:12:46 +03:00
Gemfile.lock Set db cleaning strategy to truncation when running epp tests 2014-06-20 15:00:50 +03:00
LICENSE Initial commit 2014-05-29 15:13:02 +03:00
Rakefile rails new 2014-06-10 11:43:04 +03:00
README.md Updated readme 2014-06-30 15:06:48 +03:00

README.md

Domain Registry

Installation

Registry

Usual Rails 4 app installation, rvm and bundler are your friends.

  • git clone git@github.com:internetee/registry.git
  • cd registry
  • rvm install ruby-2.1.2
  • bundle

Apache installation with mod_epp (Debian 7 Wheezy or Ubuntu 14.04 LTS)

Apache

  • sudo apt-get install apache2

Apache mod_epp with rack friendly patch

  • sudo apt-get install apache2-threaded-dev # needed to compile mod_epp
  • wget sourceforge.net/projects/aepps/files/mod_epp/1.10/mod_epp-1.10.tar.gz
  • tar -xzvf mod_epp-1.10.tar.gz
  • cd mod_epp-1.10

*NB! Patch mod_epp for Rack. Beacause Rack multipart parser expects specifically formatted content boundaries, the mod_epp needs to be modified before building:

  • wget https://github.com/internetee/registry/raw/master/doc/patches/mod_epp_1.10-rack-friendly.patch

  • patch < mod_epp_1.10-rack-friendly.patch

  • apxs2 -a -c -i mod_epp.c

  • sudo a2enmod cgi

  • sudo a2enmod proxy_http

  • sudo mkdir /etc/apache2/ssl

  • sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/apache2/ssl/apache.key -out /etc/apache2/ssl/apache.crt

  • sudo nano /etc/apache2/sites-available/epp_ssl.conf

For development configuration, add:

<IfModule mod_epp.c>
  Listen 701
  <VirtualHost *:701>
    SSLEngine on
    SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
    SSLCertificateFile /etc/apache2/ssl/apache.crt
    SSLCertificateKeyFile /etc/apache2/ssl/apache.key

    SSLVerifyClient optional_no_ca

    EPPEngine On
    EPPCommandRoot          /proxy/command
    EPPSessionRoot          /proxy/session
    EPPErrorRoot            /proxy/error
    
    ProxyPass /proxy/ http://localhost:8989/epp/

    EPPAuthURI              implicit
    EPPReturncodeHeader     X-EPP-Returncode
  </VirtualHost>
</IfModule>

Note: Its best to go with two virtual hosts, one for test and one for dev, then you don't have to worry about quitting the dev appserver for running tests (because of colliding ports).

For plain TCP EPP configuration, see below (may be useful for debugging purposes).

  • sudo a2ensite epp_ssl
  • sudo service apache2 restart

Try it out:

  • Fire up your appserver on port 8989 (This setup is tested with Unicorn)
  • cd $mod_epp
  • ./epptelnet.pl localhost 701 -s

You should receive the greeting from the registry server.
Wait for the greeting message on the STD, then send EPP/TCP frame:

<epp><command>
  <login>
    <clID>test</clID>
    <pw>test</pw>
  </login>
  <clTRID>sample1trid</clTRID>
</command></epp>
  • Run tests: rake
  • Run all but EPP tests: rake test:other

To see internal errors while testing EPP

  • unicorn -E test -p 8989
  • rake spec:epp

Configuration on plain TCP EPP is as follows:

Add:

<IfModule mod_epp.c>
  <Directory "/usr/lib/cgi-bin/epp">
    Options ExecCGI
    SetHandler cgi-script
  </Directory>

  Listen  1701
  <VirtualHost *:1701>
    EPPEngine On
    EPPCommandRoot          /proxy/command
    EPPSessionRoot          /proxy/session
    ProxyPass /proxy/ http://localhost:8080/epp/

    EPPErrorRoot         /cgi-bin/epp/error

    EPPAuthURI implicit
    EPPReturncodeHeader     X-EPP-Returncode
  </VirtualHost>
</IfModule>

Manual mod_epp testing/debugging without Rails app

Actually I don't think this is needed, but while debugging I installed this too

  • sudo apt-get install apache2-dbg

For htpasswd for manipulate basic authentication files

  • sudo apt-get install apache2-utils

For manual debugging purposes, standalone CGI scripts can be used:
This needs a static greeting file, so you will have to make /var/www writable.

<IfModule mod_epp.c>
    <Directory "/usr/lib/cgi-bin/epp">
        Options ExecCGI
        SetHandler cgi-script
    </Directory>

    Listen 1700

    <VirtualHost *:1700>
        EPPEngine On
        EPPCommandRoot          /cgi-bin/epp/command
        EPPSessionRoot          /cgi-bin/epp/session
        EPPErrorRoot            /cgi-bin/epp/error

        Alias /cgi-bin/epp/session/hello /var/www/html/epp/session-hello

        Alias /cgi-bin/epp/session/login /usr/lib/cgi-bin/epp/session-login
        Alias /cgi-bin/epp/session/logout /usr/lib/cgi-bin/epp/session-logout
        Alias /cgi-bin/epp/error/schema /usr/lib/cgi-bin/epp/error-schema
        Alias /cgi-bin/epp/command/create /usr/lib/cgi-bin/epp/create
        Alias /cgi-bin/epp/command/info /usr/lib/cgi-bin/epp/info

        EPPAuthURI              /epp/auth/login
        <Location /epp/auth>
                AuthType Basic
                AuthName "EPP"
                AuthUserFile /etc/apache2/htpasswd
                require valid-user
        </Location>
    </VirtualHost>
</IfModule>

  • sudo a2enmod authn_file (Will be used for non implicit authentication URIs, can be removed in the future)

  • sudo htpasswd -c /etc/apache2/htpasswd test (can be removed in the future)

  • Type "test" when prompted

  • cd /usr/lib/cgi-bin

  • mkdir epp

  • Copy the files from $mod_epp/examples/cgis to /usr/lib/cgi-bin/epp (once in production, majority of these scripts will not be needed (maybe only double the error script for failover))