Grouper
Child pages
  • Grouper Call 19 April-2017
Skip to end of metadata
Go to start of metadata

  


Wiki Home

Download Grouper

Grouper Guides

Community Contributions

Developer Resources

Deployment Guide

Grouper Call April 19, 2017

  


Attending
Chris Hyzer - Penn (chair)
Jim Fox - UDub
Bert Bee-Lindgren, GA Tech
Emily Eisbruch, Internet2
Shilen Patel - Duke
 
New Action Items
 
[AI] (Chris) discuss PSP NG UI options at Global Summit
 
[AI] (Bert) will survey Grouper list on ldaptive /VTLDAP config strings issue
 
(AI for Bert) reply to Nubli@IU PSPNG BushyDN OU Deletion (4/11)
 
Action Items
[AI] (Bert) Bert survey list on vt-ldap configuration strings being used for ldap subject sources and loader jobs
 
[AI] (Chris and Bert)  turn action items into JIRAs where appropriate (Chris done)
[AI] (Bert) Encrypted password in ldaptive - Look at vt-ldap, wrap string in a call similar to decryptIfEncrypted( )  [Move to Jira]
[AI] (Shilen) add to instrumentation wiki steps for adding a new count (such as for provisioning data) (DONE)
[AI]  (Bert)  status page for pspng (Gettes email) [Move to Jira, work on at Global Summit]
https://grouperdemo.internet2.edu/grouper_v2_3/status?diagnosticType=all
https://spaces.at.internet2.edu/display/Grouper/Grouper+diagnostics
 

[AI] (Bert) Marwan Shahar and deleting groups in pspng? (2/20?) [In progress, at least groups schema that require a member]
 
[AI] (Bert)  get back to Akki Kumar about when groups that require a member will be implemented, GRP-1376: PSPNG: Support groups that require a member  [Will update jira]
[AI]  (Chris)  Chad Redman 2/22: 2 issues: The source ID drop down list doesn't really show the "IDs" Also order seems random, so it takes a while to find the right source. (moved to jira: GRP-1513: subject api diagnostics should show source id)
[AI] (Bert) 2/23 Paul Engle: pspng authoritative all values of attribute  
[AI] (Bert)  2/23 Julio Macavilca: malformed DN [GRP-1533 & Shilen’s 4/13 email]
[AI] (Bert) 2/27: Paul Engle, I was excited when the grouper_loader_log seemed to indicate that the job finished in an hour or so. Less so once I looked at the log and realized it was actually still running its worker threads... :  [Reply, Same as Michael’s request]
[AI (Bert)  follow up with Martin Krenn on ldap passwords externalized [Reply]
[AI (Bert) document the findings somewhere on wiki on Grouper and openldap for large groups
[AI] (Chris) add TIER API to the Grouper download page and do testing
[AI] (Shilen) follow up with U Colorado on patches for accessibility and cc grouper-core
 
[AI] (Bert)  reply to Chris Sutherin UMBC on pspng examples [Bert to reply]
[AI] (Bert)  reply to Scott Koranda about massaging group names in provisioning
[AI] (Bert)  reply to Shaun K about name null in pspng
[AI] (Bert) to reply to Peter St Onge
 
[AI ] (Chris), making delete group more efficient for large groups, fix issue with not allowed to delete group (won’t fix)
[AI] (Bert) Jeffrey Crawford email 1/12, full sync missing members
[AI] (Bert)  Scott Koranda email 1/12, error on change log consumer psp
[AI] (Bert) email the list about (a small) Office365 versus Dropbox and next PSP project
[AI] (Bert) document how to build PSP NG and patch it  [Bert needs to finish last couple steps] (AI for Chris to try it afterwards)  [Done, Bert’s updated the doc]
 
[AI] (Bert) create PSP-NG Training Video (after necessary patches) using Camtasia
-----
• Note: NYU inquired about their PSP-NG issue, Shilen asked them to re-send issue to him

• Chris and Shilen will pick up some of the PSP-NG emails

 
 
Completed Action Items (or moved to JIRA)
[AI] (Shilen) add to instrumentation wiki steps for adding a new count (such as for provisioning data) (DONE)
[AI] (Bert) Bert will update the doc about “make_patch” command [Done]
[AI] (Bert) Put these in jira: Grace Periods, Membership Rules, People/Account subjects  [Done]
[AI] (Bert)  document the solution to “turn off old psp issue” that was raised on the list [Done]
[AI ] (Chris) get Grouper installer working for mysql and postgres (moved to jira: GRP-1518: grouper installer should work with mysql and postgres) (DONE)
 
[AI]  (Chris)  2/20 : Liam Hoekenga, inherited privileges.  Do they work for existing objects? (NO, they don’t, I need to fix this) (moved to jira: https://bugs.internet2.edu/jira/browse/GRP-1512 )
[AI] (Chris) translate links on wiki from svn to github per email (DONE)
 
[AI] (Bert) look at subject ID and subject Identifier terms and text on source diagnostics screen (NOT NEEDED)
-- https://spaces.at.internet2.edu/display/Grouper/Grouper+subject+API+diagnostics+in+UI
 
Agenda
 
 
•  

 
 
2. Current work tasks
·         Vivek – Attestation - progress being made
 
 
·         Misagh – on hold -
·         
Chris –
• grouper loader on UI  - wrapping this up by Global Summit

• patches

 
 
·         
Bert – PSPNG
• Groups that require members

◦ Deletion of last member resulting in delete group

◦ Patch done by Global Summit

• Seek quick wins next

 
·         
 
Shilen – instrumentation
• Wrapping up

• Patch is out

• Work on wiki

• Penn to put in prod

 
Bill – TIER Grouper deployment guide
 
3. Global summit
·         Roadmap review
 
Office 365 or dropbox endpoint to pspng -  For Release 2.5
• Can leverage Unicon work

• Bert will implement AMQP for Rabbit MQ (JIRA)

 
[AI] (Chris) discuss PSP NG UI options at Global Summit
 
[AI] (Bert) will survey Grouper list on ldaptive /VTLDAP config strings issue
 
Agenda for Grouper  BoF , Tues April 25, 2017 at noon ET
https://docs.google.com/presentation/d/1dvD_JflInnnbZ6kt4Hlwz5sfNNTPqVeun5gF13C2dQQ/edit#slide=id.g2051e74d63_0_26
• For reference, here is the deck used at 2016 TechEx

·         Dinner April 25th

 
 
4. Issue roundup
·         Subject diagnostics suggestions about free form search
o  https://bugs.internet2.edu/jira/browse/GRP-1510
·         LDAP binary encoded subjectID (should that be a source API recommendation, use a clear text attribute?)
·         Import/export problems (some jiras)
·         Accessibility review from Colorado
·         Java6 conformant code
·         Github issue committed a million changes
·         Authn and authz to grouperWs
·         Bert at global summit? 90%
·         WS API links and github
·         Admins and groups access to loader in UI (and instrumentation and other things)
o   GRP-1520: grouper loader security for group and admins (fixed in patch)
·         Error and jar mismatch in groovysh
·         LDAP loader error
·         I2midev6 (memory, scripts, ssh keys, etc)
o   (AI for Chris) put sudo rules in there so services can start as appadmin
·         Escape things for ldap filters in pspng (progress on this?)
·         GRP-1514: null pointer in inherited privileges and rules (fixed in patch)
·         GRP-1521: Instrumentation counts (patch)
·         GRP-1506: New feature - Configurable subject icons (ready for pull) (fixed in patch)
·         GRP-1531: Make the MANAGER assignment more smart (pull requests merged)
·         GRP-1532: upgrade vt-ldap due to security issue (patch)
·         (AI for Bert) reply to Nubli@IU PSPNG BushyDN OU Deletion (4/11)
·         Subject API remove Subject source (Null source adapter? J )
·         WS LDAP authn
·         Various attestation question
o   otherJob configuration
o   batch emails to users (100 line items in email?)
o   need a user focused ui screen (in future)?
o   Dates of last attestation, starts when identified?
·         GRP-1523: installer with mysql does not work(fixed)
·         Changelog null context id (Gasper)
·         GDeployment Guide release 1 (AI for all) review the links in yesterday’s BT email)
·         (AI for Bert) reply to Pregash PSPNG do not provision include/exclude
·         Creating composite groups with grouper WS
·         How to patch demo server

 

 

 

 

 

  • No labels