Project

General

Profile

Actions
Copy link

Task #6299

closed

Story #6296: authMN SM.accessPolicy out of synch with CN and replicaMN

Incorporate synch script as Metacat utility or upgrade routine

Added by ben leinfelder over 10 years ago. Updated over 10 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Peter Slaughter
Category:
-
Target version:
2.4.0
Start date:
12/12/2013
Due date:
% Done:

0%

Estimated time:

Description

If the synch script (see previous task tracker) is written in Java (instead of bash+curl) then this will be easier to include as an upgrade utility class in Metacat. Or it will be pretty straight forward to refactor from bash to Java (d1_libclient_java).
See API docs here (already included in the Metacat Maven dependencies):
http://releases.dataone.org/online/d1_libclient_java/1.2.5/docs/apidocs/

Alternatively, we could include this admin interface so that it must be explicitly invoked by and admin user. Similar to SystemMetadata and ORE generation. This is probably the easiest and safest since it can be invoked at any point and repeatedly as needed. It also saves us from having to figure out if the MN is completely configured with its client certificate and correctly registered with the D1 CN.

Actions
Copy link
 #1

Updated by Peter Slaughter over 10 years ago

  • Status changed from New to Resolved
  • translation missing: en.field_remaining_hours set to 0.0

All pids for an auth MN can have their access policies checked and sync'd by clicking the 'Sync Access Policies' button on the replication configuration menu, i.e.
https://mn-demo-8.test.dataone.org/knb/admin?configureType=replication. A single pid can be sync'd with a request such as
https://mn-demo-8.test.dataone.org/knb/admin?configureType=replication&action=servercontrol&subaction=syncaccesspolicy&docids=sla.5.3

Actions
Copy link

Also available in: Atom PDF