Hi Steve,
If I understand this correctly, then I’m a little concerned with this approach as it adds rather than removes something the site has to do. If any VOMS information is updated, we now need to:
1) Yum –y update
2) Locally Run the script to generate a new set of information
It seems an unnecessary second step. We could, of course automate it away by setting up a cron job to do the second repeatedly so we only have to yum update (or make it autoupdate) but it seems more work than just creating the artefacts once and copying them with the RPM.
The benefit of putting only the artefacts in the RPM is that is then static and revisioned, I know that the rpm version X has put the artefacts Y on my filesystem and I can revert/uninstall etc at will. I can validate using rpm –V if things change, revert and reinstall easily. Additionally, if we revoke a VO we just remove the RPM, otherwise I’d need to uninstall the RPM then go clean out the VOMS/VOMSES directories etc (and likely forget).
An additional thought is the Perl XML SAX parser part of the default Perl install; can we expect it to be on a WN/Server or is that an independent module we need to install? Not trying to be negative as I still think this is a really good idea!!
As a side note this was the issue I have with yaim, it conflates too many things so instead of authentication to a VOMS i.e. the LSC and lookup information, it added in pool accounts, environment settings, software locations etc... hiding a lot of the complexity but making it difficult to unpick what was actually happening.
Thanks,
Gareth
On 12/09/2016, 16:03, "Testbed Support for GridPP member institutes on behalf of Stephen Jones" <[log in to unmask] on behalf of [log in to unmask]> wrote:
On 09/12/2016 03:40 PM, Marcus Ebert wrote:
> I was thinking of the way Gareth mentioned, but your way should work
> just fine too. What kind of script is it? Just a shell script?
>
It's a simple Perl XML SAX parser.
Ste
--
Steve Jones [log in to unmask]
Grid System Administrator office: 220
High Energy Physics Division tel (int): 43396
Oliver Lodge Laboratory tel (ext): +44 (0)151 794 3396
University of Liverpool http://www.liv.ac.uk/physics/hep/
|