Certification report patch 4010

Author: Elisabetta Molinari elisabetta.molinari@mi.infn.it

Outcome: Certified

Automatic tests

  • voms-admin automatic testing
    • here's a result of the command: './myCheck-VOMS -n voms-rd02-21.cnaf.infn.it -l test-sequence.lst.voms-admin'
      Test VOMS-addMember   - OK
      Test VOMS-assignRole   - OK
      Test VOMS-crAttribute   - OK
      Test VOMS-crGroup   - OK
      Test VOMS-crRole   - OK
      Test VOMS-crUser   - OK
      Test VOMS-crUserNocert   - OK
      Test VOMS-delAttribute   - OK
      Test VOMS-delGroup   - OK
      Test VOMS-delGroupAttribute   - OK
      Test VOMS-delRole   - OK
      Test VOMS-delRoleAttribute   - OK
      Test VOMS-delUser   - OK
      Test VOMS-delUserAttribute   - OK
      Test VOMS-dismissRole   - OK
      Test VOMS-listAttributes   - OK
      Test VOMS-listGroupAttributes   - OK
      Test VOMS-listGroups   - OK
      Test VOMS-listMembers   - OK
      Test VOMS-listRoleAttributes   - OK
      Test VOMS-listRoles   - OK
      Test VOMS-listSubGroups   - OK
      Test VOMS-listUserAttributes   - OK
      Test VOMS-listUserGroups   - OK
      Test VOMS-listUserRoles   - OK
      Test VOMS-listUsers   - OK
      Test VOMS-listUsrWithRol   - OK
      Test VOMS-removeMember   - OK
      Test VOMS-setGroupAttribute   - OK
      Test VOMS-setRoleAttribute   - OK
      Test VOMS-setUserAttribute   - OK
      
      here's the full result report
  • voms-core automatic testing
    • here's a result of the command: './myCheck-VOMS -n voms-rd02-21.cnaf.infn.it -l test-sequence.lst.voms-core':
      Test VOMS-pr-attr   - OK
      Test VOMS-pr-bits   - OK
      Test VOMS-pr-cert   - OK
      Test VOMS-pr-conf   - OK
      Test VOMS-pr-dbg   - OK
      Test VOMS-pr-genattr   - OK
      Test VOMS-pr-hlp   - OK
      Test VOMS-pr-hours   - OK
      Test VOMS-pr-ign   - OK
      Test VOMS-pr-key   - OK
      Test VOMS-pr-limit   - OK
      Test VOMS-pr-list   - OK
      Test VOMS-pr-noreg   - OK
      Test VOMS-pr-order   - OK
      Test VOMS-pr-out   - OK
      Test VOMS-pr-pver   - OK
      Test VOMS-pr-pwst   - OK
      Test VOMS-pr-quiet   - OK
      Test VOMS-pr-RoleOrder   - OK
      Test VOMS-pr-usg   - OK
      Test VOMS-pr-valid   - OK
      Test VOMS-pr-verify   - OK
      Test VOMS-pr-vers   - OK
      Test VOMS-pr-vlf   - OK
      Test VOMS-pr-vomses   - OK
      Test VOMS-pr-warn   - OK
      
      here's the full result report

Clean installation

  • installation steps:
    http://etics-repository.cern.ch/repository/pm/volatile/repomd/id/e9c683d9-530b-4196-a5d7-3ddda77ce0ce/sl5_x86_64_gcc412
    yum install glite-VOMS_oracle
    yum install lcg-CA
    here's the yum install log
  • configuration steps:
    copy siteinfo.def and services/glite-voms from '/opt/glite/yaim/examples/siteinfo' into your favourite dir. 
    Set yaim variables as specified here https://twiki.cern.ch/twiki/bin/view/LCG/Site-info_configuration_variables
    Launch  '/opt/glite/yaim/bin/yaim -c -s site-info.def -n VOMS'
  • yaim configuration log
  • yaim configuration files used:
    cat siteinfo/site-info.def
    # Uncomment this variable if you are installing a mysql server
    # It is the MySQL admin password. 
    #MYSQL_PASSWORD="admin"
    
    VOMS_DB_TYPE="oracle"
    
    # Human-readable name of your site
    SITE_NAME=voms-sa3-italia
    
    ORACLE_CLIENT=/usr/lib/oracle/10.2.0.4/client64/
    VOMS_ADMIN_ORACLE_CLIENT=/usr/lib/oracle/10.2.0.4/client64/
    
    ##############################
    # VO configuration variables #
    ##############################
    # If you are configuring a DNS-like VO, please check
    # the following URL: https://twiki.cern.ch/twiki/bin/view/LCG/YaimGuide400#vo_d_directory
    
    # Space separated list of VOs supported by your site
    VOS="sa3test"
    cat siteinfo/services/glite-voms
    # VOMS server hostname
    VOMS_HOST=localhost
    
    # Hostname of the database server. Put 'localhost'
    # if you run the database on the same machine.
    # This parameter can be specified per VO in the following way:
    # VO_<vo_name>_VOMS_ADMIN_DB_HOST
    VOMS_ADMIN_DB_HOST='localhost'
    
    VO_SA3TEST_VOMS_DB_HOST="voms-db-02.cr.cnaf.infn.it"
    VO_SA3TEST_VOMS_DB_TYPE="oracle"
    VO_SA3TEST_VOMS_DB_USER="admin_25"
    VO_SA3TEST_VOMS_DB_PASS="pwd"
    VO_SA3TEST_VOMS_DB_NAME="vomsdb2"
    VO_SA3TEST_VOMS_PORT="15001"
    
    VO_SA3TEST_ORACLE_CONNECTION_STRING="(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST = voms-db-02.cr.cnaf.infn.it)(PORT = 1521)))(CONNECT_DATA=(SERVICE_NAME = vomsdb2.cr.cnaf.infn.it)))" 
    
    VOMS_ADMIN_SMTP_HOST="localhost"
    VOMS_ADMIN_MAIL="elisabetta.molinari@mi.infn.it"
    VOMS_DB_DEPLOY="true"

Upgrade from production

  • Since this is the first release of VOMS for SL5, only the upgrade of the oracle backend has been tested. Following the basic steps of a sample upgrade:
    - synchronize yaim conf files from the old machine with the new one, i.e. make sure username and password for the VO databases are the same 
    - launch yaim configuration after setting yaim variable  VOMS_DB_DEPLOY to 'false' in the siteinfo.def or the services/glite-voms file
    - re-start tomcat]
    - launch upgrade VO, for each VO as in the following: /opt/glite/sbin/voms-admin-configure upgrade --vo=sa3test
    - re-start voms server and voms-admin
    - register the VOMS host identity as a default admin  -->/opt/glite/sbin/voms-db-deploy.py add-admin --vo sa3test --cert /etc/grid-security/hostcert.pem
here's an upgrade log

Check Bugs:

  • BUG 66734: VOMS Admin attribute search broken FIXED
  • BUG 66727: VOMS Admin attribute search pagination broken FIXED
  • BUG 63373: voms-admin info provider is called multiple times FIXED
    • ldapsearch results here

-- ElisabettaMolinari - 2010-04-21

  • voms_admin_test2.JPG:
    voms_admin_test2.JPG

Topic attachments
I Attachment Action Size Date Who Comment
Unknown file formatgz full_result.gz manage 4.0 K 2010-04-30 - 12:55 UnknownUser  
Unknown file formatEXT ldapsearch_results manage 10.8 K 2010-07-29 - 07:17 UnknownUser  
Compressed Zip archivetar voms_admin_test.tar manage 80.0 K 2010-07-27 - 08:47 UnknownUser  
Unknown file formatdocx voms_admin_test1.docx manage 133.0 K 2010-07-27 - 08:31 UnknownUser  
Compressed Zip archivetar voms_admin_test66727.tar manage 130.0 K 2010-07-27 - 09:34 UnknownUser  
Unknown file formatgz voms_upgradeOracle_log.gz manage 1.8 K 2010-04-30 - 10:00 UnknownUser  
Unknown file formatEXT yaim_conf_voms_oracle manage 14.8 K 2010-07-26 - 11:41 UnknownUser  
Unknown file formatEXT yum_install_glite_VOMS manage 17.0 K 2010-07-28 - 13:16 UnknownUser  
Unknown file formatEXT yum_install_voms_oracle_log manage 11.0 K 2010-07-23 - 10:36 UnknownUser  
Edit | Attach | PDF | History: r9 < r8 < r7 < r6 < r5 | Backlinks | Raw View | More topic actions
Topic revision: r9 - 2010-07-29 - ElisabettaMolinari
 
This site is powered by the TWiki collaboration platformCopyright © 2008-2019 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback