Anyway, if I see the postgres PR, I think I'll have more context. I hope. 😄6:27 PM

hmmm. log in and get the associated session cookie from the browser6:30 PM

off by default, please 😄6:33 PM

so, for Docker development one would set DATAVERSE_FEATURE_API_SESSION_AUTH=1 as an env var.
looks like domain.xml ranks third in order of preference? https://docs.payara.fish/community/docs/Technical%20Documentation/MicroProfile/Config/Overview.html6:38 PM

sure, an env var should work6:39 PM

so, Ansible would need to set that for the service account user, in some dot file read by multiple shells6:40 PM

you could also use a JVM option6:40 PM

a config file would be preferable, if there's a preferred place to stash those. would the jvm-option be simply api.session.auth?6:40 PM

I'm pretty sure it's dataverse.api-session-auth but the docs aren't super clear6:46 PM

will test ^^. thanks6:46 PM

yep:

        <jvm-options>-Ddataverse.feature.api-session-auth=true</jvm-options>

from my dev1 server

6:47 PM

excellent. syntax is crucial6:47 PM

need better docs6:47 PM

I may enable it in the Jenkins YML and disabled it elsewhere6:50 PM

sure, sounds fine6:51 PM

oh, BTW: I booked the Ibis north today, you saw. I also booked a hotel Thursday night within walking distance of the Porto airport. I am so relieved to have this stuff squared away.6:52 PM

Hmm, that's smart, to spend the last night in Porto.6:53 PM

As long as my luggage makes it there, and I make it back, I'm good.6:53 PM

I just found out that three more people from IQSS are going, in addition to the original four.6:54 PM

excellent! y'all are going to need a Vrbo6:54 PM

ha, Sonia suggested that actually6:54 PM

get one with a pool, I'll come visit6:54 PM

absolutely6:55 PM

This reply could not be found.

Got a container now 😜7:11 PM

I was also told to stop spinning up so many EC2 instances. Too expensive. 💰️7:12 PM

No. Second. These are system properties, which are defined with ordinal 300 IIRC in the MPCOnFIg spec7:12 PM

because it's been years?7:24 PM

Woo-hoo! Can't do much on my mobile I'm afraid7:37 PM

it was a confusing UI thing7:37 PM

Oh?7:37 PM

I'm like, how do I list my realms?7:37 PM

D'Oh!7:38 PM

which I now (NOW I say) know how to do7:38 PM

I have no idea how I'd do that7:38 PM

well now there's a handy screenshot: https://github.com/IQSS/dataverse/pull/9532#issuecomment-15445734027:39 PM

Up till now I found the Keycloak docs not holding up to our Dataverse standards. So I'd even have no clue where to look in thos7:39 PM

I added more screenshots and errors. Anything I'm doing obviously wrong? https://github.com/IQSS/dataverse/pull/9532#issuecomment-15445734028:14 PM

@poikilotherm is "now" funny because I've sat on that issue for 3 years, or is there a double entendre?8:14 PM

must be a German thing8:18 PM

🍻9:20 PM

O

poikilotherm (CEST,UTC+2): on directory config source. is the default domain1/secrets/ sufficient? I ask because docker-compose-dev.yml uses docker-dev-volumes/app/secrets/5:40 PM

D

Don Sizemore: it may be sufficient if you like it 😅6:55 PM

Our annual IT summit is back for the first time since the pandemic but it conflicts with #dataverse2023. Bummer. 😢 https://itsummit.harvard.edu7:06 PM

We still can. I'll be there on Saturday already. All Sunday for happy hacking!7:13 PM

And Thursday! Who's with me?!7:13 PM

I have a suspicion that

J

Johannes Darms might be there on the same days. He might be flying in from DUS just as me 😜7:14 PM

O

poikilotherm (CEST,UTC+2): I'm wrestling with using secrets/ to include non-sensitive configuration bits, but happy to do so to keep it all in one directory.7:25 PM

I'm not sure what your problem may be... 🤔 7:50 PM

"Hi Philip- I’ll make a note to connect for next year’s planning, maybe we could even look into a challenge sponsored by Dataverse! -Amy"8:05 PM

Have a good weekend and Happy Mother's Day!9:06 PM