Task #6299
closedStory #6296: authMN SM.accessPolicy out of synch with CN and replicaMN
Incorporate synch script as Metacat utility or upgrade routine
0%
Description
If the synch script (see previous task tracker) is written in Java (instead of bash+curl) then this will be easier to include as an upgrade utility class in Metacat. Or it will be pretty straight forward to refactor from bash to Java (d1_libclient_java).
See API docs here (already included in the Metacat Maven dependencies):
http://releases.dataone.org/online/d1_libclient_java/1.2.5/docs/apidocs/
Alternatively, we could include this admin interface so that it must be explicitly invoked by and admin user. Similar to SystemMetadata and ORE generation. This is probably the easiest and safest since it can be invoked at any point and repeatedly as needed. It also saves us from having to figure out if the MN is completely configured with its client certificate and correctly registered with the D1 CN.
Updated by Peter Slaughter almost 11 years ago
- Status changed from New to Resolved
- translation missing: en.field_remaining_hours set to 0.0
All pids for an auth MN can have their access policies checked and sync'd by clicking the 'Sync Access Policies' button on the replication configuration menu, i.e.
https://mn-demo-8.test.dataone.org/knb/admin?configureType=replication. A single pid can be sync'd with a request such as
https://mn-demo-8.test.dataone.org/knb/admin?configureType=replication&action=servercontrol&subaction=syncaccesspolicy&docids=sla.5.3