Project

General

Profile

Task #6299

Story #6296: authMN SM.accessPolicy out of synch with CN and replicaMN

Incorporate synch script as Metacat utility or upgrade routine

Added by ben leinfelder over 5 years ago. Updated over 5 years ago.

Status:
Resolved
Priority:
Normal
Category:
-
Target version:
Start date:
12/12/2013
Due date:
% Done:

0%

Estimated time:

Description

If the synch script (see previous task tracker) is written in Java (instead of bash+curl) then this will be easier to include as an upgrade utility class in Metacat. Or it will be pretty straight forward to refactor from bash to Java (d1_libclient_java).
See API docs here (already included in the Metacat Maven dependencies):
http://releases.dataone.org/online/d1_libclient_java/1.2.5/docs/apidocs/

Alternatively, we could include this admin interface so that it must be explicitly invoked by and admin user. Similar to SystemMetadata and ORE generation. This is probably the easiest and safest since it can be invoked at any point and repeatedly as needed. It also saves us from having to figure out if the MN is completely configured with its client certificate and correctly registered with the D1 CN.

History

#1 Updated by Peter Slaughter over 5 years ago

  • translation missing: en.field_remaining_hours set to 0.0
  • Status changed from New to Resolved

All pids for an auth MN can have their access policies checked and sync'd by clicking the 'Sync Access Policies' button on the replication configuration menu, i.e.
https://mn-demo-8.test.dataone.org/knb/admin?configureType=replication. A single pid can be sync'd with a request such as
https://mn-demo-8.test.dataone.org/knb/admin?configureType=replication&action=servercontrol&subaction=syncaccesspolicy&docids=sla.5.3

Also available in: Atom PDF