X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=TODO;h=5aa5541fecf963a838f26eea8f54667640b3bfc0;hb=6fbe4585edcfae82f08c138311a1dad1d288c797;hp=9584bce8a925fb2a8fb2ca744ab07094f88f27b1;hpb=3a930cc6b02d7b5c5d3a2b9e73dd46e52cf50345;p=sfa.git diff --git a/TODO b/TODO index 9584bce8..5aa5541f 100644 --- a/TODO +++ b/TODO @@ -1,48 +1,25 @@ -- Build/Tags -* test rpm build/install +Registry +- Verify that sub authority certificates still work -- Geni Aggregate - * test +SM +- Slice Manager methods should return real result instead of just 1 (Renew + Sliver, etc) -- Stop invalid users -* a recently disabled/deleted user may still have a valid cred. Keep a list of valid/invalid users on the aggregate and check callers against this list +- connect SM to ProtoGeni Aggregates -- Component manager - * GetGids - make this work for peer slices - * GetTicket - must verify_{site,slice,person,keys} on remote aggregate - * Redeem ticket - RedeemTicket/AdminTicket not working. Why? - * install the slice and node gid when the slice is created (create NM plugin to execute sfa_component_setup.py ?) +Stop invalid users + * a recently disabled/deleted user may still have a valid cred. Keep a list of valid/invalid users on the aggregate and check callers against this list -- Registry -* fix legacy credential support -* move db tables into db with less overhead (tokyocabinet?) +Component manager + * install trusted certs when interface starts (component_manager_pl.init_server()) + * Redeem ticket - RedeemTicket/AdminTicket not working. Why? + ** This may be replaced by sfa + credentials -- GUI/Auth Service +GUI/Auth Service * develop a simple service where users auth using username/passord and receive their cred * service manages users key/cert,creds * gui requires user's cred (depends on Auth Service above) -- SM -* sfi -a option should send request to sm with an extra argument to - specify which am to contact instead of connecting directly to the am - (am may not trust client directly) - -- Protogeni -* agree on standard set of functon calls -* agree on standard set of privs -* on permission error, return priv needed to make call -* cache slice resource states (if aggregate goes down, how do we know what - slices were on it and recreate them? do we make some sort of transaction log) - - -Questions -========= -- SM/Aggregate -* should the rspec contain only the resources a slice is using or all resources availa and mark what the slice is using. - -- Initscripts on sfa / geniwrapper -* should sfa have native initscript support or should we piggyback off of myplc? -* should this be in the rspec