doc/app_my_webapp.md

# My_webapp documentation
In addition to the Readme.md of the app, here are some useful tips.
## non-interactive login
This app creates a new user with very limited rights : use of sftp, and access to a `/var/www/my_webapp(__#)` directory (where # is a number in case of multiple installations of the app). Password login is enabled, with a Chroot to the directory. This forces you to update the contents of the website by hand, with a login and a password input.
To allow non-interactive login, you must follow those steps :
- Enable public-key login in `/etc/ssh/sshd_config`, on the server
- Create a public/private key pair for your script, on your "redacting" computer
- Copy the public key in `/var/www/my_webapp(__#)/.ssh/authorized_keys`
- Adjust the owner of the file and directory to the `webapp#` user
- you may now login without a password input, using  `sftp -b`, `lftp` or other sftp clients.

NB : The port number to use for SFTP connexions is the one used for SSH, specified in `/etc/ssh/sshd_config`.

This tip then allows for auto-update scripts of the site contents. (For example with the Pelican makefile : `make ftp_upload`)
Create app_my_webapp Explain config for non-interactive STFP login 2018-10-26 14:52:41 +02:00			`# My_webapp documentation`
			`In addition to the Readme.md of the app, here are some useful tips.`
			`## non-interactive login`
Update app_my_webapp.md add # explanation 2018-10-26 15:05:45 +02:00			This app creates a new user with very limited rights : use of sftp, and access to a `/var/www/my_webapp(__#)` directory (where # is a number in case of multiple installations of the app). Password login is enabled, with a Chroot to the directory. This forces you to update the contents of the website by hand, with a login and a password input.
Create app_my_webapp Explain config for non-interactive STFP login 2018-10-26 14:52:41 +02:00			`To allow non-interactive login, you must follow those steps :`
			- Enable public-key login in `/etc/ssh/sshd_config`, on the server
			`- Create a public/private key pair for your script, on your "redacting" computer`
			- Copy the public key in `/var/www/my_webapp(__#)/.ssh/authorized_keys`
			- Adjust the owner of the file and directory to the `webapp#` user
Update app_my_webapp.md 2018-10-26 15:06:29 +02:00			- you may now login without a password input, using `sftp -b`, `lftp` or other sftp clients.
Create app_my_webapp Explain config for non-interactive STFP login 2018-10-26 14:52:41 +02:00
Update app_my_webapp.md add # explanation 2018-10-26 15:05:45 +02:00			NB : The port number to use for SFTP connexions is the one used for SSH, specified in `/etc/ssh/sshd_config`.
Create app_my_webapp Explain config for non-interactive STFP login 2018-10-26 14:52:41 +02:00
Update app_my_webapp.md add # explanation 2018-10-26 15:05:45 +02:00			This tip then allows for auto-update scripts of the site contents. (For example with the Pelican makefile : `make ftp_upload`)