Difference between revisions of "2013-08-09 stepping stone GmbH Development Meeting"

From stoney cloud
Jump to: navigation, search
[unchecked revision][unchecked revision]
(Transcript of the stepping stone GmbH Development Meeting)
 
(11 intermediate revisions by 3 users not shown)
Line 62: Line 62:
 
* Remove iptables from default runlevel <code>iptables |      default</code> (update stage4 on build system).
 
* Remove iptables from default runlevel <code>iptables |      default</code> (update stage4 on build system).
 
* Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.
 
* Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.
 +
Moved to [[2013-08-16_stepping_stone_GmbH_Development_Meeting | 2013-08-16 stepping stone GmbH Development Meeting]].
 
| width="70px"  | To Do
 
| width="70px"  | To Do
 
| width="70px"  | TMU
 
| width="70px"  | TMU
Line 75: Line 76:
  
 
| width="40px"  | 3
 
| width="40px"  | 3
| width="800px"  | Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with<br />
+
| width="800px"  | <s>Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with<br />
<code>$servers->setValue('unique','attrs',array());</code>
+
<code>$servers->setValue('unique','attrs',array());</code></s>
 
| width="70px"  | To Do
 
| width="70px"  | To Do
 
| width="70px"  | TMU
 
| width="70px"  | TMU
Line 85: Line 86:
 
| width="800px"  | Update /etc/openldap/ldap.conf  with<br />
 
| width="800px"  | Update /etc/openldap/ldap.conf  with<br />
 
<code>URI            ldaps://<VIP-SERVER-NAME>:636</code>
 
<code>URI            ldaps://<VIP-SERVER-NAME>:636</code>
 +
 +
Moved to [[2013-08-16_stepping_stone_GmbH_Development_Meeting | 2013-08-16 stepping stone GmbH Development Meeting]].
 
| width="70px"  | To Do
 
| width="70px"  | To Do
 
| width="70px"  | All
 
| width="70px"  | All
Line 91: Line 94:
  
 
| width="40px"  | 5
 
| width="40px"  | 5
| width="800px"  | Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates):
+
| width="800px"  | Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates), both showing to the same root directory /var/www/selfcare/htdocs:
* selfcare.stepping-stone.ch (necessary rewrite in a second stage).
+
* <s>selfcare.stepping-stone.ch</s> (necessary rewrite in a second stage).
 
* selfcare.<RESELLER>
 
* selfcare.<RESELLER>
 
| width="70px"  | To Do
 
| width="70px"  | To Do
Line 100: Line 103:
  
 
| width="40px"  | 6
 
| width="40px"  | 6
| width="800px"  |  
+
| width="800px"  | selfcare:
| width="70px"  | Info
+
* ebuild
| width="70px"  | All
+
Moved to [[2013-08-16_stepping_stone_GmbH_Development_Meeting | 2013-08-16 stepping stone GmbH Development Meeting]].
 +
| width="70px"  | To Do
 +
| width="70px"  | TMU
 
| width="70px"  | 2013-08-09
 
| width="70px"  | 2013-08-09
 
|-
 
|-
  
 
| width="40px"  | 7
 
| width="40px"  | 7
| width="800px"  |  
+
| width="800px"  | <s>Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
 +
* ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
 +
* ou=notification,uid=4.... (for reseller specific notificatations)
 +
* The actual selfcare interface rights would be separated from the (online) backup entry.</s>
 +
| width="70px"  | To Do
 +
| width="70px"  | MEI
 +
| width="70px"  | 2013-08-09
 +
|-
 +
 
 +
| width="40px"  | 8
 +
| width="800px"  | <s>Test Backup Account Entry (especially for the Groups).</s>
 +
| width="70px"  | To Do
 +
| width="70px"  | TMU
 +
| width="70px"  | 2013-08-09
 +
|-
 +
 
 +
| width="40px"  | 9
 +
| width="800px"  | <s>Test users for the (online) backup service are needed.</s>
 +
| width="70px"  | To Do
 +
| width="70px"  | MEI
 +
| width="70px"  | 2013-08-09
 +
|-
 +
 
 +
| width="40px"  | 10
 +
| width="800px"  | State of the backup server and next steps.
 +
* [[2013-08-14_stepping_stone_GmbH_Development_Meeting | 2013-08-14 stepping stone GmbH Development Meeting]].
 
| width="70px"  | Info
 
| width="70px"  | Info
 
| width="70px"  | All
 
| width="70px"  | All
Line 113: Line 143:
 
|-
 
|-
  
| width="40px"  | 8
+
| width="40px"  | 11
| width="800px"  |  
+
| width="800px"  | Install new Infrastructure
 +
* [[2013-08-14_stepping_stone_GmbH_Development_Meeting | 2013-08-14 stepping stone GmbH Development Meeting]].
 
| width="70px"  | Info
 
| width="70px"  | Info
 
| width="70px"  | All
 
| width="70px"  | All
Line 120: Line 151:
 
|-
 
|-
  
| width="40px"  | 9
+
| width="40px"  | 12
 
| width="800px"  |  
 
| width="800px"  |  
 
| width="70px"  | Info
 
| width="70px"  | Info
Line 130: Line 161:
  
  
[[Category:2013]][[Category:Development]]
+
[[Category:2013]]

Latest revision as of 10:06, 6 September 2013

Transcript of the stepping stone GmbH Development Meeting

Location stepping stone GmbH, Neufeldstrasse 9, CH-3012 Bern
Date Friday, the 9th of August 2013
Time 09:00 until 10:00
Participants
  • Pat Kläy <pat.klaey@stepping-stone.ch>: PKL
  • Tiziano Müller <tiziano.mueller@stepping-stone.ch>: TMU
  • Michael Eichenberger <michael.eichenberger@stepping-stone.ch>: MEI (Transcript)
Non participants
  • Christian Affolter <christian.affolter@stepping-stone.ch>: CAF
  • Christian Wittkowski <christian.wittkowski@devroom.de>: CWI
Agenda
  • State of the firewall for the stoney cloud and next steps.
  • State of the test installation of the stoney cloud and next steps.
  • phpldapadmin: Update config to remove default unique attributes like mail and maybe uid as well (uid is enforced by the directory server).
  • Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates).
  • Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
    • ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
    • ou=notification,uid=4.... (for reseller specific notificatations)
    • The actual selfcare interface rights would be separated from the (online) backup entry.
  • Test users for the (online) backup service are needed.
  • State of the backup server and next steps.

Transcript

No. Text What? Who? When?
1 State of the firewall for the stoney cloud and next steps:
  • Node FW sripts are looking good, please make sure, that these scripts are called during the boot process.
    • Init Script calls /usr/local/scripts/netfilter/local/chains/<NODE-NAME>/all_chains.sh.
    • /etc/init.d/stoney-cloud-firewall
  • Remove iptables from default runlevel iptables | default (update stage4 on build system).
  • Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.

Moved to 2013-08-16 stepping stone GmbH Development Meeting.

To Do TMU 2013-08-09
2 Create a script, that makes sure, that the local /usr/local/scripts/netfilter/local/chains/* scripts are up to date (svn up). To Do TMU 2013-08-17
3 Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with

$servers->setValue('unique','attrs',array());

To Do TMU 2013-08-09
4 Update /etc/openldap/ldap.conf with

URI ldaps://<VIP-SERVER-NAME>:636

Moved to 2013-08-16 stepping stone GmbH Development Meeting.

To Do All 2013-08-09
5 Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates), both showing to the same root directory /var/www/selfcare/htdocs:
  • selfcare.stepping-stone.ch (necessary rewrite in a second stage).
  • selfcare.<RESELLER>
To Do PKL 2013-08-09
6 selfcare:
  • ebuild

Moved to 2013-08-16 stepping stone GmbH Development Meeting.

To Do TMU 2013-08-09
7 Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
  • ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
  • ou=notification,uid=4.... (for reseller specific notificatations)
  • The actual selfcare interface rights would be separated from the (online) backup entry.
To Do MEI 2013-08-09
8 Test Backup Account Entry (especially for the Groups). To Do TMU 2013-08-09
9 Test users for the (online) backup service are needed. To Do MEI 2013-08-09
10 State of the backup server and next steps. Info All 2013-08-09
11 Install new Infrastructure Info All 2013-08-09
12 Info All 2013-08-09