46 | | ABAC references: |
47 | | Deter web site: http://abac.deterlab.net/ |
48 | | Authorization storyboard from Jeff Chase: http://groups.geni.net/geni/wiki/AuthStoryBoard |
49 | | Slides on credential store from Jeff Chase: http://groups.geni.net/geni/attachment/wiki/AuthStoryBoard/certstore.ppt |
50 | | Slides on future of authorization in GENI from Tom Mitchell: http://groups.geni.net/geni/attachment/wiki/GEC13Agenda/Authorization/AuthFuture.pdf [note options without and with credential store] |
51 | | Summary of GENI authorization discussion at GEC13 (and before): http://groups.geni.net/geni/wiki/GeniAuthorization |
| 46 | ABAC references: [[BR]] |
| 47 | Deter web site: http://abac.deterlab.net/ [[BR]] |
| 48 | Authorization storyboard from Jeff Chase: http://groups.geni.net/geni/wiki/AuthStoryBoard [[BR]] |
| 49 | Slides on credential store from Jeff Chase: http://groups.geni.net/geni/attachment/wiki/AuthStoryBoard/certstore.ppt [[BR]] |
| 50 | Slides on future of authorization in GENI from Tom Mitchell: http://groups.geni.net/geni/attachment/wiki/GEC13Agenda/Authorization/AuthFuture.pdf [note options without and with credential store] [[BR]] |
| 51 | Summary of GENI authorization discussion at GEC13 (and before): http://groups.geni.net/geni/wiki/GeniAuthorization [[BR]] |
74 | | |
75 | | g'') New task: ** Review port mapping for http, like ssh, with protoGENI, to see how it might be done (Nasir/Jim) |
76 | | |
77 | | g''') New task: **Review need within GENI/GPO to open ports, and implications for rspec (Harry) |
| 74 | |
| 75 | g!'') New task: ** Review port mapping for http, like ssh, with protoGENI, to see how it might be done (Nasir/Jim) |
| 76 | |
| 77 | g!''') New task: **Review need within GENI/GPO to open ports, and implications for rspec (Harry) |
141 | | d) Task: provide a more complete view of GEMINI portal service (Harry, jim and Charles) |
142 | | |
143 | | Task: Jim and Charles plan to provide in a week or two. |
144 | | |
145 | | Task: Charles needs to find a name for the service |
146 | | |
147 | | After discussion on 3/31/12 with Jim, Harry feels that this is very close to Option 1: "portal to UIs". |
148 | | |
149 | | Jim expects User to have a capable browser, e.g., one that runs HTML-5 |
150 | | |
151 | | Jim expects portal to manage windowing to various GUIs. |
152 | | |
153 | | Jim expect all interactions to be via browser, so there are window(s) to login to shell(s), etc. |
| 141 | d) Task: provide a more complete view of GEMINI portal service (Harry, jim and Charles) [[BR]] |
| 142 | |
| 143 | Task: Jim and Charles plan to provide in a week or two. [[BR]] |
| 144 | |
| 145 | Task: Charles needs to find a name for the service [[BR]] |
| 146 | |
| 147 | After discussion on 3/31/12 with Jim, Harry feels that this is very close to Option 1: "portal to UIs". [[BR]] |
| 148 | |
| 149 | Jim expects User to have a capable browser, e.g., one that runs HTML-5 [[BR]] |
| 150 | |
| 151 | Jim expects portal to manage windowing to various GUIs. [[BR]] |
| 152 | |
| 153 | Jim expect all interactions to be via browser, so there are window(s) to login to shell(s), etc. [[BR]] |
157 | | Harry feels that portal and other tools are in a "user workspace", in a persistent Linux environment, with file system, key/certificate/credential store, dedicated to the user; could also have rspec store, etc. ; then, all tools have ready access to required info, and can readily call one another. |
158 | | |
159 | | Harry thinks of "persistent Linux environment" on infrastructure, e.g., a server under your desk or in the lab; not your laptop; Jim agrees, and has thought portal would be hosted on infrastructure at Kentucky |
160 | | |
161 | | Harry feels that this is just a strucutre, that there is much more work to define tools, interfaces, etc.; Jim agrees, was concerned it was the final configuration. |
162 | | |
163 | | Task: Harry will modify drawing to reflect discussion with Jim, and then two perspectives can be compared. |
164 | | Done on 4/4; agree thatprotal can be in user workspace, or somewhere else. |
| 157 | Harry feels that portal and other tools are in a "user workspace", in a persistent Linux environment, with file system, key/certificate/credential store, dedicated to the user; could also have rspec store, etc. ; then, all tools have ready access to required info, and can readily call one another. [[BR]] |
| 158 | |
| 159 | Harry thinks of "persistent Linux environment" on infrastructure, e.g., a server under your desk or in the lab; not your laptop; Jim agrees, and has thought portal would be hosted on infrastructure at Kentucky [[BR]] |
| 160 | |
| 161 | Harry feels that this is just a strucutre, that there is much more work to define tools, interfaces, etc.; Jim agrees, was concerned it was the final configuration. [[BR]] |
| 162 | |
| 163 | Task: Harry will modify drawing to reflect discussion with Jim, and then two perspectives can be compared. [[BR]] |
| 164 | Done on 4/4; agree that portal can be in user workspace, or somewhere else. [[BR]] |
180 | | via libvirt? |
181 | | |
182 | | via Shinken? |
183 | | |
184 | | Talking to Dan about use cases for gathering host metrics. |
185 | | |
186 | | Could still use SNMP daemon from INSTOOLS (Jim) |
187 | | |
188 | | b) BLiPP pushes to Measurement Store (MS) |
189 | | |
190 | | Use http? POST to port? what about authentication and authorization? |
191 | | |
192 | | Use XSP, for streaming? |
| 179 | - via libvirt? |
| 180 | |
| 181 | - via Shinken? |
| 182 | |
| 183 | - Talking to Dan about use cases for gathering host metrics. |
| 184 | |
| 185 | - Could still use SNMP daemon from INSTOOLS (Jim) |
| 186 | |
| 187 | b) BLiPP pushes to Measurement Store (MS) |
| 188 | |
| 189 | - Use http? POST to port? what about authentication and authorization? |
| 190 | |
| 191 | - Use XSP, for streaming? |
196 | | How many options? |
197 | | |
198 | | One per Aggregate? |
199 | | |
200 | | d) Need to realize MAP service |
201 | | |
202 | | Based on Periscope? |
203 | | |
204 | | Include druple form INSTOOLS> |
205 | | |
206 | | How is this integrated with MS? |
207 | | |
208 | | e) Uses UNIS (new version) |
209 | | |
210 | | Uses RESTful interface, replaces older UNIS with SOAP interface |
211 | | |
212 | | Allows drawing topology |
213 | | |
214 | | Used to configure services? |
215 | | |
216 | | Prototype underway (Ahmed) |
| 195 | - How many options? |
| 196 | |
| 197 | - One per Aggregate? |
| 198 | |
| 199 | d) Need to realize MAP service |
| 200 | |
| 201 | - Based on Periscope? |
| 202 | |
| 203 | - Include druple from INSTOOLS? |
| 204 | |
| 205 | - How is this integrated with MS? |
| 206 | |
| 207 | e) Uses UNIS (new version) |
| 208 | |
| 209 | - Uses RESTful interface, replaces older UNIS with SOAP interface |
| 210 | |
| 211 | - Allows drawing topology |
| 212 | |
| 213 | - Used to configure services? |
| 214 | |
| 215 | - Prototype underway (Ahmed) |
235 | | c) Arrange user workspace (GPO, Jeannie) |
236 | | |
237 | | d) What is first configuration of tools (see below) ? LAMP on VMs? (who provides?) test scripts? (Jeannie) |
238 | | |
239 | | e) What is second configuration of tools (see below)? BLiPP to measurement store, with presentation? (Guilherme?) when? test scripts? (Jeannie) |
| 234 | c) Arrange user workspace (GPO, Jeanne) |
| 235 | |
| 236 | d) What is first configuration of tools (see below) ? LAMP on VMs? (who provides?) test scripts? (Jeanne) |
| 237 | |
| 238 | e) What is second configuration of tools (see below)? BLiPP to measurement store, with presentation? (Guilherme?) when? test scripts? (Jeanne) |