Difference between revisions of "2013-08-09 stepping stone GmbH Development Meeting"

From stoney cloud
Jump to: navigation, search
(Transcript of the stepping stone GmbH Development Meeting)
Line 56: Line 56:
  
 
| width="40px"  | 1
 
| width="40px"  | 1
| width="800px"  |  
+
| width="800px"  | State of the firewall for the stoney cloud and next steps:
| width="70px"  | Info
+
* Node FW sripts are looking good, please make sure, that these scripts are called during the boot process.
| width="70px"  | All
+
** Init Script calls /usr/local/scripts/netfilter/local/chains/<NODE-NAME>/all_chains.sh.
 +
** /etc/init.d/stoney-cloud-firewall
 +
* Remove iptables from default runlevel <code>iptables |      default</code> (update stage4 on build system).
 +
* Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.
 +
| width="70px"  | To Do
 +
| width="70px"  | TMU
 
| width="70px"  | 2013-08-09
 
| width="70px"  | 2013-08-09
 
|-
 
|-
  
 
| width="40px"  | 2
 
| width="40px"  | 2
| width="800px"  |  
+
| width="800px"  | Create a script, that makes sure, that the local /usr/local/scripts/netfilter/local/chains/* scripts are up to date (svn up).
| width="70px"  | Info
+
| width="70px"  | To Do
| width="70px"  | All
+
| width="70px"  | TMU
| width="70px"  | 2013-08-09
+
| width="70px"  | 2013-08-17
 
|-
 
|-
  
 
| width="40px"  | 3
 
| width="40px"  | 3
| width="800px"  |  
+
| width="800px"  | Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with<br />
| width="70px"  | Info
+
<code>$servers->setValue('unique','attrs',array());</code>
| width="70px"  | All
+
| width="70px"  | To Do
 +
| width="70px"  | TMU
 
| width="70px"  | 2013-08-09
 
| width="70px"  | 2013-08-09
 
|-
 
|-
  
 
| width="40px"  | 4
 
| width="40px"  | 4
| width="800px"  |  
+
| width="800px"  | Update /etc/openldap/ldap.conf  with<br />
| width="70px"  | Info
+
<code>URI            ldaps://<VIP-SERVER-NAME>:636</code>
 +
| width="70px"  | To Do
 
| width="70px"  | All
 
| width="70px"  | All
 
| width="70px"  | 2013-08-09
 
| width="70px"  | 2013-08-09
Line 84: Line 91:
  
 
| width="40px"  | 5
 
| width="40px"  | 5
| width="800px"  |  
+
| width="800px"  | Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates):
| width="70px"  | Info
+
* selfcare.stepping-stone.ch (necessary rewrite in a second stage).
| width="70px"  | All
+
* selfcare.<RESELLER>
 +
| width="70px"  | To Do
 +
| width="70px"  | PKL
 
| width="70px"  | 2013-08-09
 
| width="70px"  | 2013-08-09
 
|-
 
|-

Revision as of 09:15, 9 August 2013

Transcript of the stepping stone GmbH Development Meeting

Location stepping stone GmbH, Neufeldstrasse 9, CH-3012 Bern
Date Friday, the 9th of August 2013
Time 09:00 until 10:00
Participants
  • Pat Kläy <pat.klaey@stepping-stone.ch>: PKL
  • Tiziano Müller <tiziano.mueller@stepping-stone.ch>: TMU
  • Michael Eichenberger <michael.eichenberger@stepping-stone.ch>: MEI (Transcript)
Non participants
  • Christian Affolter <christian.affolter@stepping-stone.ch>: CAF
  • Christian Wittkowski <christian.wittkowski@devroom.de>: CWI
Agenda
  • State of the firewall for the stoney cloud and next steps.
  • State of the test installation of the stoney cloud and next steps.
  • phpldapadmin: Update config to remove default unique attributes like mail and maybe uid as well (uid is enforced by the directory server).
  • Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates).
  • Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
    • ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
    • ou=notification,uid=4.... (for reseller specific notificatations)
    • The actual selfcare interface rights would be separated from the (online) backup entry.
  • Test users for the (online) backup service are needed.
  • State of the backup server and next steps.

Transcript

No. Text What? Who? When?
1 State of the firewall for the stoney cloud and next steps:
  • Node FW sripts are looking good, please make sure, that these scripts are called during the boot process.
    • Init Script calls /usr/local/scripts/netfilter/local/chains/<NODE-NAME>/all_chains.sh.
    • /etc/init.d/stoney-cloud-firewall
  • Remove iptables from default runlevel iptables | default (update stage4 on build system).
  • Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.
To Do TMU 2013-08-09
2 Create a script, that makes sure, that the local /usr/local/scripts/netfilter/local/chains/* scripts are up to date (svn up). To Do TMU 2013-08-17
3 Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with

$servers->setValue('unique','attrs',array());

To Do TMU 2013-08-09
4 Update /etc/openldap/ldap.conf with

URI ldaps://<VIP-SERVER-NAME>:636

To Do All 2013-08-09
5 Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates):
  • selfcare.stepping-stone.ch (necessary rewrite in a second stage).
  • selfcare.<RESELLER>
To Do PKL 2013-08-09
6 Info All 2013-08-09
7 Info All 2013-08-09
8 Info All 2013-08-09
9 Info All 2013-08-09