Try   HackMD

Teleport Server Access

Member form

First, confirm that you have filled out the Member Form with your Github information.

  • You have accepted the WATonomous Github Org invite that gets sent to you. You can confirm if you have completed this step by finding yourself in the member list. If you don't see yourself in the member list, visit here to accept your invitation.
  • (WATonomous team members only) You have merged the merged request that gets created for you
  • (WATonomous team members only) The CI provision_teleport job that gets spawned by the merge action succeeded. You have gone into the job (example) and confirmed that your user-<username> role has been created.

Setup tsh

  • Follow the guide for installing and using tsh, Teleport's CLI.
  • The tsh login command you need to use is tsh login --proxy watonomous.teleport.sh --auth watonomous_github_connector. This will open up a webpage that will attempt to authenticate for server cluster access using Github. Make sure that you are authenticating with the same github account you provided in the membership form. If your browser has cached a different github login, this will not work.

Setup vscode

  • There is an existing Teleport + VSCode guide. Make sure to read the entire guide word for word. Specifically, you will have to manually add a line like
Host delta-ubuntu1.watonomous.teleport.sh thor-ubuntu1.watonomous.teleport.sh tr-ubuntu1.watonomous.teleport.sh wato3-ubuntu1.watonomous.teleport.sh
    User rowan
    ForwardAgent yes

to your ~/.ssh/config file.

  • macOS USERS: So far there is one issue we have run into with macOS (if you see Failed to parse remote port from server output in the log when the vscode connection fails look at this issue)

Installing Teleport for Window Users

  1. Follow the guide for installing teleport. You will need to search for the Windows section. The commands shown there should be run in powershell. The commands from the Windows section were copied here below as well.
curl https://get.gravitational.com/teleport-v8.0.7-windows-amd64-bin.zip.sha256
curl -O teleport-v8.0.7-windows-amd64-bin.zip https://get.gravitational.com/teleport-v8.0.7-windows-amd64-bin.zip
echo $Env:Path # Edit PATH if necessary
certUtil -hashfile teleport-v8.0.7-windows-amd64-bin.zip SHA256
  1. Extract the teleport-v8.0.7-windows-amd64-bin.zip file.
  2. Once extraction is complete, move the teleport folder inside of the teleport-v8.0.7-windows-amd64-bin into C:\Program Files
  3. Go to the settings and search for Edit the system environment variables
  4. Go to Environment Variables then under System Variables, look for the Path Variable
  5. Edit the Path variable by adding a new line with C:\Program Files\teleport so that teleport can be added to your path

FAQ

  • As detailed in the tsh guide, tsh login has a TTL (time to live) on the certificates you obtain. The TTL is fully configurable. Use tsh status to view the TTL status as well as other things.

Debugging

Getting Permission Denied (publickey)

SSH Agent Not Started

Usually this means that your SSH agent hasn't been started, or that the Teleport SSH key hasn't been loaded into it.

Start your agent with eval "$(ssh-agent)" (Linux) or Start-Service ssh-agent (Windows PowerShell).

Once started, run tsh login <...> again to load your key, and verify that you see a Teleport key in the output of ssh-add -l.

RSA Disabled with OpenSSH

We have also seen this issue when the OpenSSH client that you have doesn't accept RSA keys (such as with OpenSSH 8.8).

If that is the case, follow the steps in the above link, or in this issue.

In short, add these additional lines into your ~/.ssh/config.

Host *.watonomous.teleport.sh watonomous.teleport.sh
    HostkeyAlgorithms +ssh-rsa-cert-v01@openssh.com
    PubkeyAcceptedAlgorithms +ssh-rsa-cert-v01@openssh.com
Last changed by 
WATonomous
0
1561

Read more

Creating Purchase Requests

To create purchase requests, we use this link: https://jira.watonomous.ca/secure/CreateIssue.jspaNote that you MUST use this link because clicking the &quot;Create&quot; button on the top navbar will not redirect you to the correct create issue page.

Jul 21, 2024
CAN Launch Procedure

Updated on 2022-02-03 by Stephen and Kushant This procedure is confirmed to work for the Kvaser USB-CAN interface. Make sure the connections on CAN controller interface look like this Vehicle-to-Computer connections by the driver seat Backside of the PCB

Feb 17, 2022
WATcloud Incident Log

HOWTO As soon as an issue arises, create a page from the on-call incident template Don&apos;t be afraid to post scrap notes. Prefer to overpost rather than underpost. Record: What service was down? What was the problem? Why was the service down? How was this problem discovered? How was it solved?

Feb 17, 2022
Action Classification

Action Classification This book contains resources related to action classification Learning W22 Action Classification Resources Getting started with the code The training code lives at https://git.uwaterloo.ca/WATonomous/road-dataset, well actually the real training code lives in subrepos of that repo.

Feb 16, 2022
Read more from WATonomous
Published on HackMD