X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=TODO;h=31aaa6a831d1dc92ec05d8bf0024a2b90128fc5b;hb=refs%2Fheads%2Fbranch-0.9-14;hp=99db1ad4cf4393a34a3078a620d9b5ba52768a0d;hpb=f1fe2b9959462b2b8a19dc179e170be03138cd55;p=sfa.git diff --git a/TODO b/TODO index 99db1ad4..31aaa6a8 100644 --- a/TODO +++ b/TODO @@ -1,41 +1,49 @@ -- test rpms: build/install +- Tag +* test rpm build/install + +- Trunk +* test federation +* test sub authority import and federation + +- Client + * update getNodes to use lxml.etree for parsing the rspec - Stop invalid users * a recently disabled/deleted user may still have a valid cred. Keep a list of valid/invalid users on the aggregate and check callers against this list - Component manager - * only call get_gids() if there are slices with no gids installed + * GetGids - make this work for peer slices * GetTicket - must verify_{site,slice,person,keys} on remote aggregate * Redeem ticket - RedeemTicket/AdminTicket not working. Why? * install the slice and node gid when the slice is created (create NM plugin to execute sfa_component_setup.py ?) -- Protogeni -* agree on standard set of functon calls -* agree on standard set of privs -* on permission error, return priv needed to make call -* cache slice resource states (if aggregate goes down, how do we know what - slices were on it and recreate them? do we make some sort of transaction log) - - Registry -* sfa.plc.api.SfaAPI.fill_record_pl_info() should add the sites PIs to a slice records researchers list -* update call should attempt to push updates to federated peers if - the peer has a record for an object that is updated locally -* api.update_membership() shoudl behave more like resolve when looking up records (attempt to resolve records at federated registeries) instead of only looking in the local registry -* support generic registry records (dont depend on postgres!) +* move db tables into db with less overhead (tokyocabinet?) -- Auth Service +- GUI/Auth Service * develop a simple service where users auth using username/passord and receive their cred * service manages users key/cert,creds - -- GUI - * requires user's cred (depends on Auth Service above) + * gui requires user's cred (depends on Auth Service above) - SM call routing * sfi -a option should send request to sm with an extra argument to specify which am to contact instead of connecting directly to the am (am may not trust client directly) +- Protogeni +* agree on standard set of functon calls +* agree on standard set of privs +* on permission error, return priv needed to make call +* cache slice resource states (if aggregate goes down, how do we know what + slices were on it and recreate them? do we make some sort of transaction log) + + +Questions +========= +- SM/Aggregate +* should the rspec contain only the resources a slice is using or all resources availa and mark what the slice is using. + - Initscripts on sfa / geniwrapper * should sfa have native initscript support or should we piggyback off of myplc? * should this be in the rspec