New Customer Checklist: Difference between revisions

From Bitnami MediaWiki
Jump to navigation Jump to search
No edit summary
No edit summary
 
(40 intermediate revisions by 2 users not shown)
Line 1: Line 1:
Checklist for Logging into New Customer Novus/Shell Databases
Checklist for Logging into New Customer Novus/Shell Databases


:1. Check [Identity].dbo.domain has a domain record. Run the following query:
:<strong>1.</strong> Check [Identity].dbo.domain has a domain record. Run the following query:
  <nowiki>   SELECT   *
  <nowiki> SELECT *
    FROM     [Identity].dbo.domain d
FROM [Identity].dbo.domain d
    WHERE     d.name = 'foobar.com';</nowiki>
WHERE d.name = 'foobar.com';</nowiki>
::If it doesn’t exist, run the following INSERT:
::If it doesn’t exist, run the following INSERT:
  <nowiki>   INSERT   INTO [Identity].dbo.domain
  <nowiki> INSERT [Identity].dbo.domain
              (name
(name
              ,release_number)
,release_number)
    VALUES   ('foobar.com', -- name
VALUES ('foobar.com' -- name
              ,'2022.5.2.0'); -- release_number</nowiki>
,'2022.5.2.0'); -- release_number</nowiki>
:2. Check [Identity].dbo.domain_database has two records with IDs: SHELL and NOVUS:
  <nowiki>   SELECT   db.*
:<strong>2.</strong> Check [Identity].dbo.domain_database has two records with IDs: SHELL and NOVUS:
    FROM     [Identity].dbo.domain d
  <nowiki> SELECT db.*
    INNER JOIN [Identity].dbo.domain_database db ON d.domain_key = db.domain_key
FROM [Identity].dbo.domain d
    WHERE   d.name = 'foobar.com';</nowiki>
INNER JOIN [Identity].dbo.domain_database db ON d.domain_key = db.domain_key
WHERE d.name = 'foobar.com';</nowiki>


::If they do not exist, then they have to be inserted. We need to generate the encrypted user ID and password for the SQL login for the customer’s SHELL and NOVUS databases. Open the Visual Studio project, in the Novus.IdentityServer project, in the Startup class, temporarily modify the Configure() method to the below, and set the SQL login user ID or password at textToEncrypt to get the encrypted string of the user ID or password:
::If they do not exist, then they have to be inserted. We need to generate the encrypted user ID and password for the SQL login for the customer’s SHELL and NOVUS databases. Open the Visual Studio project, in the Novus.IdentityServer project, in the Startup class, temporarily modify the Configure() method to the below, and set the SQL login user ID or password at textToEncrypt to get the encrypted string of the user ID or password:
  <nowiki>   public void Configure(IApplicationBuilder app)
  <nowiki> public void Configure(IApplicationBuilder app)
    {
{
    // ...
// ...


    /* run any StartupOneOffMethods temporarily */
/* run any StartupOneOffMethods temporarily */


    var oneOffMethods = new StartupOneOffMethods(app);
var oneOffMethods = new StartupOneOffMethods(app);
    Debug.WriteLine(oneOffMethods.AesEncrypt("textToEncrypt").encryptedString);
Debug.WriteLine(oneOffMethods.AesEncrypt("textToEncrypt").encryptedString);
    }</nowiki>
}</nowiki>


::For example, if the text is “Password1”, then the output will be “VxXhYh/bH2IHo/ZGZEHl5w==”.
::For example, if the text is “Password1”, then the output will be “VxXhYh/bH2IHo/ZGZEHl5w==”.
Execute the below UPDATE two times: (1) for the Shell database by setting @id = 'SHELL' and @database to the Shell database e.g. 'FoobarShellQA'; and (2) for the Novus database by setting @id = 'NOVUS' and @database to the Novus database e.g. 'FoobarNovusQA'. Leave the @environment as NULL for production or set it to a specific environment to connect to a different database e.g. 'QA'. Set @server to the hostname or IP address of SQL Server Set @userId and @password to the encrypted SQL login user credentials generated previously.
DECLARE @domain varchar(253) = 'foobar.com';
DECLARE @id varchar(20) = '';
DECLARE @environment varchar(20) = NULL;
DECLARE @server varchar(200) = 'localhost';
DECLARE @database varchar(200) = '';
DECLARE @userId varchar(200) = 'zpfimVI/pFs10wUYAqU3ig==';
DECLARE @password varchar(200) = 'eWRsvEZpFxJt6KmvMk0f/A==';
DECLARE @cssFiles varchar(50) = NULL; -- values: NULL, 'qa', 'uat'


INSERT INTO [Identity].dbo.domain_database (domain_key,id,environment,server,[database],trusted_connection,user_id,password,css_files) VALUES (
::Execute the below UPDATE two times: (1) for the Shell database by setting @id = 'SHELL' and @database to the Shell database e.g. 'FoobarShellQA'; and (2) for the Novus database by setting @id = 'NOVUS' and @database to the Novus database e.g. 'FoobarNovusQA'. Leave the @environment as NULL for production or set it to a specific environment to connect to a different database e.g. 'QA'. Set @server to the hostname or IP address of SQL Server Set @userId and @password to the encrypted SQL login user credentials generated previously.
  (SELECT domain_key FROM [Identity].dbo.domain WHERE name = @domain), -- domain_key,
  @id, -- id,
  @environment, -- environment,
  @server, -- server,
  @database, -- [database],
  (CASE WHEN @userId IS NOT NULL AND @userId <> '' THEN 0 ELSE 1 END), -- trusted_connection,
  @userId, -- user_id,
  @password, -- password,
  @cssFiles -- css_files
);
2a) Check if [Identity].dbo.domain_ssrs record exists by running the following query:
SELECT ssrs.*
FROM [Identity].dbo.domain_ssrs ssrs
  INNER JOIN [Identity].dbo.domain d ON ssrs.domain_key = d.domain_key
WHERE d.name = 'foobar.com';
If it doesn’t exist, run the following INSERT:
DECLARE @domain varchar(253) = 'foobar.com';
DECLARE @environment varchar(20) = NULL;
DECLARE @server varchar(200) = 'localhost';
DECLARE @database varchar(200) = 'FoobarNovusQA';


INSERT INTO [Identity].dbo.domain_ssrs (domain_key,id,environment,server,[database]) VALUES (
<nowiki> DECLARE @domain varchar(253) = 'kiwana.com'
  (SELECT domain_key FROM [Identity].dbo.domain WHERE name = @domain), -- domain_key,
,@id varchar(20) = 'NOVUS'
  'NOVUS', -- id,
,@environment varchar(20) = 'KiwanaNovus'
  @environment, -- environment,
,@environmentLabel varchar(20) = 'Production'
  @server, -- server,
,@server varchar(200) = '10.50.3.5'
  @database -- [database]
,@database varchar(200) = 'KiwanaNovus'
);
,@userId varchar(200) = 'zpfimVI/pFs10wUYAqU3ig=='
3) Check if Identity user record exists by running the following query:
,@password varchar(200) = 'cuNyOp/oTgKSC5A9IA2bXMi7LP1X2kShRYtQUTFz2To='
SELECT *
,@cssFiles varchar(50) = NULL; -- values: NULL, 'qa', 'uat'
FROM [Identity].dbo.[user] u
 
WHERE u.user_id = 'admin@foobar.com';
INSERT [Identity].dbo.domain_database
If it doesn’t exist, run the following INSERT:
(domain_key
INSERT INTO [Identity].dbo.[user] (user_id,email,is_active,normalized_username,normalized_email) VALUES (
,id
  'admin@foobar.com', -- user_id,
,environment
  'visfuture@foobar.com', -- email,
,environment_label
  1, -- is_active,
,server
  UPPER('admin@foobar.com'), -- normalized_username,
,[database]
  UPPER('visfuture@foobar.com') -- normalized_email
,trusted_connection
);
,user_id
4) If you cannot log in, nullify the password by running the following UPDATE:
,password
UPDATE [Identity].dbo.[user]
,css_files)
SET password_hash = NULL
VALUES ((SELECT domain_key
WHERE user_id = 'admin@foobar.com';
FROM [Identity].dbo.domain
Then log in with password admin.
WHERE name = @domain) -- domain_key
5) Check if SHELL user record exists by running the following query:
,@id -- id
SELECT u.*
,@environment -- environment
FROM Shell.dbo.sec_user u
,@environmentLabel --environment label
WHERE u.user_id = 'admin';
,@server -- server
If it doesn’t exist, run the following INSERT:
,@database -- [database]
INSERT INTO Shell.dbo.sec_user (user_id,first_name,last_name,email,default_company,default_branch,default_warehouse,is_active,is_administrator,created_on,created_by,version) VALUES (
,(CASE
    'admin', -- user_id,
WHEN @userId IS NOT NULL AND @userId <> '' THEN 0
    'Admin', -- first_name,
ELSE 1
    '', -- last_name,
END) -- trusted_connection
    'visfuture@foobar.com', -- email,
,@userId -- user_id
    '1', -- default_company,
,@password -- password
    '1', -- default_branch,
,@cssFiles) -- css_files  </nowiki>
    '1', -- default_warehouse,
 
    1, -- is_active,
:<strong>2a.</strong> Check if [Identity].dbo.domain_ssrs record exists by running the following query:
    1, -- is_administrator,
 
    GETUTCDATE(), -- created_on,
<nowiki> SELECT ssrs.*
    SYSTEM_USER, -- created_by,
FROM [Identity].dbo.domain_ssrs ssrs
    0 -- version
INNER JOIN [Identity].dbo.domain d ON ssrs.domain_key = d.domain_key
);
WHERE d.name = 'foobar.com'; </nowiki>
6) Should be good now. If you can log in but the list of applications is not showing up, if could due to the following:
If a database in domain_database was misspelled and then corrected, run the following cURL (for UAT) command to reset the tenant cache (see section for more details): curl -v -X POST -H 'Content-Length:0' -H 'IdentityServerApiSecret:<cF9[3kYxXSGwr2&' https://novusuatapi.kiwanatechnologies.com/api/tenant/clear
::If it doesn’t exist, run the following INSERT:
The novususer SQL login doesn’t have access permission to the “Shell” or “Novus” database. You can quickly check if this is the case by opening SSMS, expand the database, and see if you can query a database table inside.
 
<nowiki> DECLARE @domain varchar(253) = 'Kiwana.com'
,@environment varchar(20) = 'KiwanaNovus'
,@server varchar(200) = '10.50.3.5'
,@database varchar(200) = 'KiwanaNovus'
 
INSERT [Identity].dbo.domain_ssrs
(domain_key
,id
,environment
,server
,[database])
VALUES ((SELECT domain_key
FROM [Identity].dbo.domain
WHERE name = @domain) -- domain_key
,'NOVUS' -- id
,@environment -- environment
,@server -- server
,@database) -- database </nowiki>
 
:<strong>3.</strong> Check if Identity user record exists by running the following query:
 
<nowiki> SELECT *
FROM [Identity].dbo.[user] u
WHERE u.user_id = 'admin@foobar.com'; </nowiki>
 
::If it doesn’t exist, run the following INSERT:
 
<nowiki> INSERT [Identity].dbo.[user]
(user_id
,email
,is_active
,normalized_username
,normalized_email)
VALUES ('admin@kiwana.com' -- user_id
,'support@kiwanatechnologies.com' -- email
,1 -- is_active
,UPPER ('admin@kiwana.com') -- normalized_username
,UPPER ('support@kiwanatechnologies.com')) -- normalized_email) </nowiki>
:<strong>4.</strong> If you cannot log in, nullify the password by running the following UPDATE:
 
<nowiki> UPDATE [Identity].dbo.[user]
SET password_hash = NULL
WHERE user_id = 'admin@foobar.com'; </nowiki>
 
::Then log in with password admin.
 
:<strong>5.</strong> Check if SHELL user record exists by running the following query:
 
<nowiki> SELECT u.*
FROM Shell.dbo.sec_user u
WHERE u.user_id = 'admin'; </nowiki>
::If it doesn’t exist, run the following INSERT:
 
<nowiki> INSERT Shell.dbo.sec_user
(user_id
,first_name
,last_name
,email
,default_company
,default_branch
,default_warehouse
,is_active
,is_administrator
,created_on
,created_by
,version)
VALUES ('admin' -- user_id
,'Admin' -- first_name
,'' -- last_name
,'visfuture@foobar.com' -- email
,'1' -- default_company
,'1' -- default_branch
,'1' -- default_warehouse
,1 -- is_active
,1 -- is_administrator
,GETUTCDATE() -- created_on
,SYSTEM_USER -- created_by
,0 -- version); </nowiki>
:<strong>6.</strong> Should be good now. If you can log in but the list of applications is not showing up, if could due to the following:
 
:*If a database in domain_database was misspelled and then corrected, run the following cURL (for UAT) command to reset the tenant cache (see section for more details): curl -v -X POST -H 'Content-Length:0' -H 'IdentityServerApiSecret:<cF9[3kYxXSGwr2&' https://novusuatapi.kiwanatechnologies.com/api/tenant/clear
:*The novususer SQL login doesn’t have access permission to the “Shell” or “Novus” database. You can quickly check if this is the case by opening SSMS, expand the database, and see if you can query a database table inside.
 
 
<strong>Return to [[Novus]]</strong>

Latest revision as of 18:35, 10 March 2025

Checklist for Logging into New Customer Novus/Shell Databases

1. Check [Identity].dbo.domain has a domain record. Run the following query:
	SELECT	*
	FROM	[Identity].dbo.domain d
	WHERE	d.name = 'foobar.com';
If it doesn’t exist, run the following INSERT:
	INSERT	[Identity].dbo.domain
		(name
		,release_number)
	VALUES	('foobar.com'	-- name
		,'2022.5.2.0');	-- release_number
2. Check [Identity].dbo.domain_database has two records with IDs: SHELL and NOVUS:
	SELECT	db.*
	FROM	[Identity].dbo.domain d
	INNER	JOIN [Identity].dbo.domain_database db ON d.domain_key = db.domain_key
	WHERE	d.name = 'foobar.com';
If they do not exist, then they have to be inserted. We need to generate the encrypted user ID and password for the SQL login for the customer’s SHELL and NOVUS databases. Open the Visual Studio project, in the Novus.IdentityServer project, in the Startup class, temporarily modify the Configure() method to the below, and set the SQL login user ID or password at textToEncrypt to get the encrypted string of the user ID or password:
	public void Configure(IApplicationBuilder app)
	{
	// ...

	/* run any StartupOneOffMethods temporarily */

	var oneOffMethods = new StartupOneOffMethods(app);
	Debug.WriteLine(oneOffMethods.AesEncrypt("textToEncrypt").encryptedString);
	}
For example, if the text is “Password1”, then the output will be “VxXhYh/bH2IHo/ZGZEHl5w==”.
Execute the below UPDATE two times: (1) for the Shell database by setting @id = 'SHELL' and @database to the Shell database e.g. 'FoobarShellQA'; and (2) for the Novus database by setting @id = 'NOVUS' and @database to the Novus database e.g. 'FoobarNovusQA'. Leave the @environment as NULL for production or set it to a specific environment to connect to a different database e.g. 'QA'. Set @server to the hostname or IP address of SQL Server Set @userId and @password to the encrypted SQL login user credentials generated previously.
	DECLARE	@domain				varchar(253)	= 'kiwana.com'
		,@id				varchar(20)		= 'NOVUS'
		,@environment		varchar(20)		= 'KiwanaNovus'
		,@environmentLabel	varchar(20)		= 'Production'
		,@server			varchar(200)	= '10.50.3.5'
		,@database			varchar(200)	= 'KiwanaNovus'
		,@userId			varchar(200)	= 'zpfimVI/pFs10wUYAqU3ig=='
		,@password			varchar(200)	= 'cuNyOp/oTgKSC5A9IA2bXMi7LP1X2kShRYtQUTFz2To='
		,@cssFiles			varchar(50)		= NULL; -- values: NULL, 'qa', 'uat'

INSERT	[Identity].dbo.domain_database
		(domain_key
		,id
		,environment
		,environment_label
		,server
		,[database]
		,trusted_connection
		,user_id
		,password
		,css_files)
VALUES	((SELECT	domain_key
		FROM		[Identity].dbo.domain
		WHERE		name = @domain)	-- domain_key
		,@id				-- id
		,@environment		-- environment
		,@environmentLabel	--environment label
		,@server			-- server
		,@database			-- [database]
		,(CASE
			WHEN @userId IS NOT NULL AND @userId <> '' THEN 0 
			ELSE 1
		END)				-- trusted_connection
		,@userId			-- user_id
		,@password			-- password
		,@cssFiles)			-- css_files
2a. Check if [Identity].dbo.domain_ssrs record exists by running the following query:
	SELECT	ssrs.*
	FROM	[Identity].dbo.domain_ssrs ssrs
	INNER JOIN [Identity].dbo.domain d ON ssrs.domain_key = d.domain_key
	WHERE	d.name = 'foobar.com';
If it doesn’t exist, run the following INSERT:
	DECLARE	@domain			varchar(253)	= 'Kiwana.com'
		,@environment	varchar(20)		= 'KiwanaNovus'
		,@server		varchar(200)	= '10.50.3.5'
		,@database		varchar(200)	= 'KiwanaNovus'

INSERT	[Identity].dbo.domain_ssrs
		(domain_key
		,id
		,environment
		,server
		,[database])
VALUES	((SELECT	domain_key
		FROM	[Identity].dbo.domain
		WHERE	name = @domain)	-- domain_key
		,'NOVUS'				-- id
		,@environment			-- environment
		,@server				-- server
		,@database)				-- database
3. Check if Identity user record exists by running the following query:
	SELECT	*
	FROM	[Identity].dbo.[user] u
	WHERE	u.user_id	= 'admin@foobar.com';
If it doesn’t exist, run the following INSERT:
	INSERT	[Identity].dbo.[user]
		(user_id
		,email
		,is_active
		,normalized_username
		,normalized_email)
VALUES	('admin@kiwana.com'							-- user_id
		,'support@kiwanatechnologies.com'			-- email
		,1											-- is_active
		,UPPER ('admin@kiwana.com')					-- normalized_username
		,UPPER ('support@kiwanatechnologies.com'))	-- normalized_email)
4. If you cannot log in, nullify the password by running the following UPDATE:
	UPDATE	[Identity].dbo.[user]
	SET	password_hash = NULL
	WHERE	user_id = 'admin@foobar.com';
Then log in with password admin.
5. Check if SHELL user record exists by running the following query:
	SELECT	u.*
	FROM	Shell.dbo.sec_user u
	WHERE	u.user_id = 'admin';
If it doesn’t exist, run the following INSERT:
	INSERT	Shell.dbo.sec_user
		(user_id
		,first_name
		,last_name
		,email
		,default_company
		,default_branch
		,default_warehouse
		,is_active
		,is_administrator
		,created_on
		,created_by
		,version)
	VALUES	('admin'		-- user_id
		,'Admin'		-- first_name
		,''			-- last_name
		,'visfuture@foobar.com'	-- email
		,'1'			-- default_company
		,'1'			-- default_branch
		,'1'			-- default_warehouse
		,1			-- is_active
		,1			-- is_administrator
		,GETUTCDATE()		-- created_on
		,SYSTEM_USER		-- created_by
		,0			-- version);
6. Should be good now. If you can log in but the list of applications is not showing up, if could due to the following:
  • If a database in domain_database was misspelled and then corrected, run the following cURL (for UAT) command to reset the tenant cache (see section for more details): curl -v -X POST -H 'Content-Length:0' -H 'IdentityServerApiSecret:<cF9[3kYxXSGwr2&' https://novusuatapi.kiwanatechnologies.com/api/tenant/clear
  • The novususer SQL login doesn’t have access permission to the “Shell” or “Novus” database. You can quickly check if this is the case by opening SSMS, expand the database, and see if you can query a database table inside.


Return to Novus

Retrieved from "http://novus-wiki.kiwanatechnologies.com/index.php?title=New_Customer_Checklist&oldid=570"