Dashboard Installation Shell Script

Installation Script

The Dashboard installation script can be found at

https://cdn.blockpass.org/kyc-connect/install.sh

See the installation overview to download and execute this script on your dashboard server.

Input Prompts

Do you want to use HTTPS ?

If you already have your own https proxy enter No. If you answer Yes, the installed Dashboard(s) will support HTTPS/SSL/TLS

  • an Nginx proxy server will also be installed to handle SSL/TLS.

  • the default port will be 443 rather than 3000

  • after all the other prompts listed below, there will be two additonal input prompts at the end, described here:

Additional prompts for SSL

These two input prompts will be shown after all others listed below.

  • Paste your SSL Certificate ?

    Before pasting, Remove all line-breaks and other whitespace around or within the BASE64 string. Strip the PEM header and footer, keeping just the BASE64 inner content.

    Paste the content of the certificate file. It usually starts with "‑‑‑‑‑BEGIN CERTIFICATE‑‑‑‑‑" and ends with "‑‑‑‑‑END CERTIFICATE‑‑‑‑‑"

    It will probably contain multiple certificates (Primary, Cert Authority, Root)

  • Paste your SSL Certificate's Private Key ?

    Before pasting, Remove all line-breaks and other whitespace around or within the BASE64 string. Strip the PEM header and footer, keeping just the BASE64 inner content.

    The password for the SSL certificate of your domain certificate, also sometimes called the server key.

    Paste the content of the key. It usually starts with "‑‑‑‑‑BEGIN RSA PRIVATE KEY‑‑‑‑‑" and ends with "‑‑‑‑‑END RSA PRIVATE KEY‑‑‑‑‑"

Hostname ?

Enter the full DNS Hostname. e.g. blockpass-kyc.my.domain.com

Which Port do you want to use ?

Defaults to 443 if SSL selected, 3000 otherwise. You may prefer to use port 80 or 8080 or similar, depending on your technical and usage requirements.

staging or prod environment ?

staging will connect to the Blockpass staging/sandpit back-end, and will operate with the staging version of the Blockpass Mobile App.

Conversely, prod will connect to the 'real' Blockpass back-end and Mobile Application.

deployment key ?

This is a secret password that you will use when first logging on to the new Dashboard installation.

It is also required when performing some destructive bulk actions, such as deleting all personal information from uploaded Identities, and for recovery.

standalone configuration ?

Paste in the BASE64 Service Config Export obtained from the Admin Console.

This autoconfigures the Dashboard(s) running on your server by linking them to the definition of your services previously specified in the Admin Console.

The Service Config Export includes your service name, your clientId, your clientSecret, the status of the service (always active) and the images paths your have configured.

Does your service issue certificates ?

Blockpass must set up any certificate to be issued by your service before it can be issued to Approved candidates. Answering Yes here will prompt for the public/private key-pair used to sign and authenticate your issued certificates.

You should say Yes if you have definite plans to be issuing certificates to individual Mobile App users which they will add to thier Identities.

Answer No if you do not have definite plans to issue certificates. have been defined on the Admin Console.

Additional prompts if Issuing Certificates

  • Public WIF Key ?

    Provide a Base58 Public Key in Bitcoin Address Format.

    e.g. 1Kv3UcypxxxxxxxxxxF7FWFDYu81mXEGp5

  • Private WIF Key ?

    Provide a Base58 Private Key in WIF Compressed format.

    e.g. Kzv7Yu5TKaixxxxxxxxxxR9oRYgVnDeUJMCvKW8pzLRS9CsMnMnB

Enable AES encryption ?

This is used only for local APIs, archiving, and export of data to your own systems.

If you answer Yes three additional prompts will be given

Additional prompts if AES encryption enabled

  • RSA Public Key ?

    Before pasting, Remove all line-breaks and other whitespace around or within the BASE64 string. Strip the PEM header and footer, keeping just the BASE64 inner content.

  • RSA Private Key ?

    Before pasting, Remove all line-breaks and other whitespace around or within the BASE64 string. Strip the PEM header and footer, keeping just the BASE64 inner content.

  • HMAC 'Checksum Passphrase' Shared Secret Key ?

    Provide a passphrase that will be used on your back-end to verify the origin of exported data and API calls was your KYC Connect Dashboard server.

Script input prompts are now complete, continue with installation after the script is finished installing your Dashboard.

Last updated on 4/17/2020
OverviewIntegration Tab