From 71e1721a2cccb57341ee3cbc7ff24ae79a934d9b Mon Sep 17 00:00:00 2001 From: Amit Sagtani Date: Fri, 16 Aug 2024 12:44:58 +0200 Subject: [PATCH 1/2] add sftTokenSecret reference --- bin/offline-secrets.sh | 2 ++ values/wire-server/prod-secrets.example.yaml | 4 +++- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/bin/offline-secrets.sh b/bin/offline-secrets.sh index 48df9d35c..b3c2241d6 100755 --- a/bin/offline-secrets.sh +++ b/bin/offline-secrets.sh @@ -39,6 +39,8 @@ brig: setNexmo: |- key: "dummy" secret: "dummy" + # Uncomment and update value to enable sft credentials provisioning + # sftTokenSecret: dummysecret cargohold: secrets: awsKeyId: "$minio_access_key" diff --git a/values/wire-server/prod-secrets.example.yaml b/values/wire-server/prod-secrets.example.yaml index 311e4809d..c282c6116 100644 --- a/values/wire-server/prod-secrets.example.yaml +++ b/values/wire-server/prod-secrets.example.yaml @@ -22,8 +22,10 @@ brig: setNexmo: |- key: "dummy" secret: "dummy" - # Uncomment for federation. Set values accordingly + # Uncomment and update value to enable sft credentials provisioning + # sftTokenSecret: dummysecret + # Uncomment for federation. Set values accordingly # rabbitmq: # username: wire-server # password: verysecurepassword From 74ae4e8165c58430f69a7d6d1d5bb53696ee496f Mon Sep 17 00:00:00 2001 From: Amit Sagtani Date: Mon, 19 Aug 2024 11:44:03 +0200 Subject: [PATCH 2/2] update comment and add more details --- bin/offline-secrets.sh | 2 +- values/wire-server/prod-secrets.example.yaml | 4 ++-- values/wire-server/prod-values.example.yaml | 7 +++++++ 3 files changed, 10 insertions(+), 3 deletions(-) diff --git a/bin/offline-secrets.sh b/bin/offline-secrets.sh index b3c2241d6..7336b3ef8 100755 --- a/bin/offline-secrets.sh +++ b/bin/offline-secrets.sh @@ -39,7 +39,7 @@ brig: setNexmo: |- key: "dummy" secret: "dummy" - # Uncomment and update value to enable sft credentials provisioning + # Uncomment and update value to connect to the SFT servers that require it # sftTokenSecret: dummysecret cargohold: secrets: diff --git a/values/wire-server/prod-secrets.example.yaml b/values/wire-server/prod-secrets.example.yaml index c282c6116..765aa8891 100644 --- a/values/wire-server/prod-secrets.example.yaml +++ b/values/wire-server/prod-secrets.example.yaml @@ -22,10 +22,10 @@ brig: setNexmo: |- key: "dummy" secret: "dummy" - # Uncomment and update value to enable sft credentials provisioning + # Uncomment and update value to connect to the SFT servers that require it # sftTokenSecret: dummysecret - # Uncomment for federation. Set values accordingly + # RabbitMQ is needed for federation, uncomment and set values accordingly # rabbitmq: # username: wire-server # password: verysecurepassword diff --git a/values/wire-server/prod-values.example.yaml b/values/wire-server/prod-values.example.yaml index d620566f0..4b6e02131 100644 --- a/values/wire-server/prod-values.example.yaml +++ b/values/wire-server/prod-values.example.yaml @@ -30,6 +30,13 @@ brig: useSES: false # Set to false if you want to hand out DynamoDB to store prekeys randomPrekeys: true + # Uncomment and update values for sft server below, the secret token for the same can be + # configured at sftTokenSecret variable in the secrets.yaml file + # sft: + # sftBaseDomain: sftd.example.com + # sftSRVServiceName: sftd + # sftDiscoveryIntervalSeconds: 10 + # sftListLength: 20 aws: # change if using real AWS region: "eu-west-1"