2013-08-09 stepping stone GmbH Development Meeting

From stoney cloud
Revision as of 14:35, 9 August 2013 by Tiziano (Talk | contribs)


Jump to: navigation, search

Transcript of the stepping stone GmbH Development Meeting

Location stepping stone GmbH, Neufeldstrasse 9, CH-3012 Bern
Date Friday, the 9th of August 2013
Time 09:00 until 10:00
Participants
  • Pat Kläy <pat.klaey@stepping-stone.ch>: PKL
  • Tiziano Müller <tiziano.mueller@stepping-stone.ch>: TMU
  • Michael Eichenberger <michael.eichenberger@stepping-stone.ch>: MEI (Transcript)
Non participants
  • Christian Affolter <christian.affolter@stepping-stone.ch>: CAF
  • Christian Wittkowski <christian.wittkowski@devroom.de>: CWI
Agenda
  • State of the firewall for the stoney cloud and next steps.
  • State of the test installation of the stoney cloud and next steps.
  • phpldapadmin: Update config to remove default unique attributes like mail and maybe uid as well (uid is enforced by the directory server).
  • Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates).
  • Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
    • ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
    • ou=notification,uid=4.... (for reseller specific notificatations)
    • The actual selfcare interface rights would be separated from the (online) backup entry.
  • Test users for the (online) backup service are needed.
  • State of the backup server and next steps.

Transcript

No. Text What? Who? When?
1 State of the firewall for the stoney cloud and next steps:
  • Node FW sripts are looking good, please make sure, that these scripts are called during the boot process.
    • Init Script calls /usr/local/scripts/netfilter/local/chains/<NODE-NAME>/all_chains.sh.
    • /etc/init.d/stoney-cloud-firewall
  • Remove iptables from default runlevel iptables | default (update stage4 on build system).
  • Create ebuild for stoney-cloud-firewall and/or libvirt-hooks.
To Do TMU 2013-08-09
2 Create a script, that makes sure, that the local /usr/local/scripts/netfilter/local/chains/* scripts are up to date (svn up). To Do TMU 2013-08-17
3 Update /var/www/localhost/htdocs/phpldapadmin/config/config.php with

$servers->setValue('unique','attrs',array());

To Do TMU 2013-08-09
4 Update /etc/openldap/ldap.conf with

URI ldaps://<VIP-SERVER-NAME>:636

To Do All 2013-08-09
5 Two additional selfcare vhosts need to be configured on the stoney cloud (including official certificates), both showing to the same root directory /var/www/selfcare/htdocs:
  • selfcare.stepping-stone.ch (necessary rewrite in a second stage).
  • selfcare.<RESELLER>
To Do PKL 2013-08-09
6 selfcare:
  • ebuild
To Do TMU 2013-08-09
7 Changes in the (online) backup service (both should work for the uid=4000001,ou=customer, ...):
  • ou=defaults,uid=4000000,ou=reseller, ... (instead of settings)
  • ou=notification,uid=4.... (for reseller specific notificatations)
  • The actual selfcare interface rights would be separated from the (online) backup entry.
To Do MEI 2013-08-09
8 Test Backup Account Entry (especially for the Groups). To Do TMU 2013-08-09
9 Test users for the (online) backup service are needed. To Do MEI 2013-08-09
10 State of the backup server and next steps.
  • TBD
Info All 2013-08-09
11 Install new Infrastructure
  • TBD
Info All 2013-08-09
12 Info All 2013-08-09