Gender Recognition Certificate service > Developer documentation > Hosting and live databases
Our code is hosted on Gov.UK Platform as a Service (Gov.UK PaaS).
See this link for the GRC organisation on Gov.Uk PaaS.
You will need to connect to the hosting environments to do things like:
- make changes to the environments (e.g. change the scaling of the servers)
- to access databases
For regular deployments, you won't need to connect to Gov.UK PaaS directly.
Instead, you should use our CI/CD server, GitHub Actions.
See the Deployments page for details.
Follow these instructions to connect to Gov.UK PaaS:
-
First, ask a team member for access to the GRC organisation on Gov.Uk PaaS.
-
Run
./LoginToGovPaas.sh
This should log you in to Gov.UK PaaS. You will be targeting the GRC organisation and the sandbox space:$ ./LoginToGovPaas.sh API endpoint: api.london.cloud.service.gov.uk Authenticating... OK Targeted org geo-gender-recognition-certificate. Targeted space sandbox. API endpoint: https://api.london.cloud.service.gov.uk API version: 3.115.0 user: [your email address] org: geo-gender-recognition-certificate space: sandbox
Each environment has its own space in CloudFoundry.
We use cf target to change space
e.g.:
cf target -s "sandbox"
cf target -s "staging"
cf target -s "production"
-
Install the
conduitCloudFoundry plugin
cf install-plugin conduit -
Run the relevant
./ConnectToPaas_DB_*.shscript (e.g../ConnectToPaas_DB_Sandbox.sh)
This will:- Log you in to Gov.UK PaaS (using the
LoginToGovPaaS.shscript mentioned above) - Fetch the database details (username and password)
- Make a VPN-like connection to the relevant PaaS database
The output looks like this (I've replaced irrelevant bits with
...for simplicity):$ ./ConnectToPaas_DB_Sandbox.sh API endpoint: api.london.cloud.service.gov.uk Authenticating... ... ... ... ======================================= HERE ARE THE KEYS YOU MIGHT WANT TO USE ======================================= Host: 127.0.0.1 Port: 7100 Username & Password: see below Getting key postgres-13-dev-developerkey for service instance postgres-13-dev as [email protected]... { "host": "...", "jdbcuri": "...", "name": "...", "password": "PASSWORD_THAT_YOU_SHOULD_USE", "port": ..., "uri": "...", "username": "USERNAME_THAT_YOU_SHOULD_USE" } =========================== IGNORE KEYS PAST THIS POINT =========================== ... ... ... ... ... Press Ctrl+C to shutdown. - Log you in to Gov.UK PaaS (using the
-
Use your database UI (e.g. pgAdmin, DataGrip, etc.) to connect to the database using the details above)
For ease, here they are for each environment:- Sandbox:
Host:localhostor127.0.0.1
Port:7100
Username and password: see the output from the command you ran as above - Staging:
Host:localhostor127.0.0.1
Port:7200
Username and password: see the output from the command you ran as above - Production:
Host:localhostor127.0.0.1
Port:7300
Username and password: see the output from the command you ran as above
Note: it's very rare we'd want to connect to production, given the sensitivity of the information.
This will mainly be used when setting up the production database, before the service goes live.
- Sandbox:
Conduit can also be used to run commands directly on the database. To run commands, connect to the PaaS database service using cloud foundry/conduit/postgresql cli:
cf conduit SERVICE_NAME -- psql
To find the name of the datadase service name, you can run:
cf services
Once logged in, you will have a command line where SQL commands can be run, for example:
SELECT * FROM application;
Ensure that all SQL commands are terminated with a semi-colon.