-- Registry
-* update call shuold attempt to push updates to federated peers if
-* the peer has a record for an object that is updated locally
+- Tag
+* test rpm build/install
-- Component manager
-* install the slice and node gid when the slice is created (create NM plugin to execute sfa_component_setup.py ?)
+- Trunk
+* test federation
+* test sub authority import and federation
-- GetTicket
-* sm, am only
-* sm calls getticket on am and merges resulting tickets into 1 ticket
+- Client
+ * update getNodes to use lxml.etree for parsing the rspec
-- sfa-clean-peer-records
-* modify resolve to support a list of hrns
-* resolve a list of peer hrns instead of each hrn individally
+- Stop invalid users
+* a recently disabled/deleted user may still have a valid cred. Keep a list of valid/invalid users on the aggregate and check callers against this list
-- sfi remove, if removing a site, remove any record that site is an an authority for
+- Component manager
+ * GetGids - make this work for peer slices
+ * GetTicket - must verify_{site,slice,person,keys} on remote aggregate
+ * Redeem ticket - RedeemTicket/AdminTicket not working. Why?
+ * install the slice and node gid when the slice is created (create NM plugin to execute sfa_component_setup.py ?)
-- routing sm calls
+- Registry
+* move db tables into db with less overhead (tokyocabinet?)
+
+- GUI/Auth Service
+ * develop a simple service where users auth using username/passord and
+ receive their cred
+ * service manages users key/cert,creds
+ * gui requires user's cred (depends on Auth Service above)
+
+- SM call routing
* sfi -a option should send request to sm with an extra argument to
specify which am to contact instead of connecting directly to the am
(am may not trust client directly)
-- make registry more generic
-* support interface managers
-* support generic registry records (dont depend on postgres! object db?)
+- Protogeni
+* agree on standard set of functon calls
+* agree on standard set of privs
+* on permission error, return priv needed to make call
+* cache slice resource states (if aggregate goes down, how do we know what
+ slices were on it and recreate them? do we make some sort of transaction log)
-- checking support for conventional ssl (creating a shared keypair for the request)
-- Initscripts on sfa / geniwrapper
+Questions
+=========
+- SM/Aggregate
+* should the rspec contain only the resources a slice is using or all resources availa and mark what the slice is using.
-- Fully integrate SOAP (need to throw either soap or xmlrpc exceptions depending on the client)
+- Initscripts on sfa / geniwrapper
+* should sfa have native initscript support or should we piggyback off of myplc?
+* should this be in the rspec
-- error messages
-* error messages should be easier to understand
-* (failing to connect to plcapi shoudl return a helpful message, not a generic internal server error)
-- unit tests
git://git.onelab.eu / sfa.git / blobdiff