X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;ds=inline;f=TODO;h=d009554c37a699930e8dab9786e93a6a61eb1dd3;hb=ed9a188808d5d293ca0b1297fe43a5ffbe3cc4ee;hp=6ee06174615504a615163b55d3e1125f0bf75f47;hpb=25ef72c154f61709d6604921f907b09058b8607f;p=sfa.git diff --git a/TODO b/TODO index 6ee06174..d009554c 100644 --- a/TODO +++ b/TODO @@ -1,42 +1,25 @@ -- CM -* sfa_componet_config needs to define SFA_CM_SLICE_PREFIX +RSpecs +- RSpecConverter should convert sliver tags +- SM should cache result of Aggregte GetVersion call when CreateSliver is executed +- CreateSlivers should update SliverTags/attributes -- URN vs HRN -* methods should support urn or hrn arguments -* create a module that converts urn to hrn so we can continue using - hrn behind the scenes -* add get_urn() method to GID object -* urn is the standard over the wire format +Registry +- Verify that sub authority certificates still work -- Registry -* update call should attempt to push updates to federated peers if - the peer has a record for an object that is updated locally -* api.update_membership() shoudl behave more like resolve when looking up records (attempt to resolve records at federated registeries) instead of only looking in the local registry -* support generic registry records (dont depend on postgres!) -- sfa-clean-peer-records -* instead of resolving each peer record one by one, use one reslove call to resolve a list of hrns (requires updated registry.resolve() method) +Stop invalid users + * a recently disabled/deleted user may still have a valid cred. Keep a list of valid/invalid users on the aggregate and check callers against this list -- Aggregate -* sfa.plc.slices.verify_site() should check if site['max_slices'] needs to be updated -* sfa.plc.slices.verify_slice() should check if slice['expires'] needs to be updated - -- Component manager -* install the slice and node gid when the slice is created (create NM plugin to execute sfa_component_setup.py ?) +Component manager + * install trusted certs when interface starts (component_manager_pl.init_server()) + * Redeem ticket - RedeemTicket/AdminTicket not working. Why? + ** This may be replaced by sfa + credentials - -- SM call routing -* sfi -a option should send request to sm with an extra argument to - specify which am to contact instead of connecting directly to the am - (am may not trust client directly) +GUI/Auth Service + * develop a simple service where users auth using username/passord and + receive their cred + * service manages users key/cert,creds + * gui requires user's cred (depends on Auth Service above) + -- Initscripts on sfa / geniwrapper -* should sfa have native initscript support or should we piggyback off of myplc? - -- Fully integrate SOAP (need to throw either soap or xmlrpc exceptions depending on the client) -* started but not finished - -- error messages -* error messages should be easier to understand -* (failing to connect to plcapi shoudl return a helpful message, not a generic internal server error)