Project

General

Profile

Story #1987

NodeList needs to track administrative list

Added by Robert Waltz about 13 years ago. Updated over 8 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
Robert Waltz
Category:
d1_cn_node_registry
Target version:
-
Start date:
2014-12-01
Due date:
2014-12-01
% Done:

0%

Story Points:
Sprint:

Description

Nodelist will need to be maintained by subjects in the system. We do not have a mechanism to restrict who is able to modify a node list once it has been created.


Related issues

Related to Infrastructure - Task #1757: Implement CNRegister.updateNodeCapabilities Closed 2011-08-31

History

#1 Updated by Robert Waltz about 13 years ago

  • Target version set to Sprint-2011.45-Block.6

#2 Updated by Robert Waltz about 13 years ago

  • Target version changed from Sprint-2011.45-Block.6 to Sprint-2011.46-Block.6
  • Position set to 2

#3 Updated by Ben Leinfelder almost 13 years ago

Initially only subjects in the Node's Subject list should be able to update the node. This essentially means the update call should come directly from the MN.

#4 Updated by Dave Vieglais almost 13 years ago

  • Position set to 2
  • Target version deleted (Sprint-2011.46-Block.6)
  • Position deleted (18)

#5 Updated by Robert Waltz almost 13 years ago

May want this to be separate from node list. Anyone can add their own subject to the node list, call updateNodeCapabilities, and since their subject will equal the subject in the updated node list, then they will have control over the node.

Administrators of nodes should go through an approval process, similarly to the way Nodes will be approved.

Should the SubjectList on the Node be updated determined by the subjects present on the node? Seems like an easy way to lose control over the node for a while. So, if a subject needs to change because the former subject has been disabled/changed, our current functionality relies on the new subject equaling the subject in the cert. So, literally anyone who is a valid user can make themselves a subject of a nodelist and control of that node.

#6 Updated by Dave Vieglais almost 13 years ago

  • Position set to 3
  • Position deleted (32)

#7 Updated by Robert Waltz almost 13 years ago

Decided this would not be a part of nodeList. rather it will be a property of the LDAP D1Node structure not revealed through the nodelist but managed via the elusive cn administration webpage.

#8 Updated by Robert Waltz over 12 years ago

  • Milestone changed from CCI-1.0.0 to CCI-1.2

#9 Updated by Robert Waltz over 10 years ago

  • translation missing: en.field_remaining_hours set to 0.0
  • Milestone changed from CCI-1.2 to CCI-2.0
  • Start date deleted (2011-11-02)

#10 Updated by Robert Waltz over 10 years ago

  • Milestone changed from CCI-2.0 to None

#11 Updated by Robert Waltz about 10 years ago

  • Due date set to 2014-12-01
  • Target version set to CCI-2.0.0
  • Start date set to 2014-12-01

#12 Updated by Dave Vieglais over 9 years ago

  • Target version changed from CCI-2.0.0 to CCI-2.0-TRUNK

#13 Updated by Dave Vieglais over 9 years ago

  • Target version changed from CCI-2.0-TRUNK to CCI-2.0.0

#14 Updated by Dave Vieglais over 9 years ago

Is this an issue for MN authorization or related to CN adminsitration?

#15 Updated by Dave Vieglais over 9 years ago

  • Target version changed from CCI-2.0.0 to Release Backlog

#16 Updated by Robert Waltz about 9 years ago

  • Status changed from New to Rejected

appears this idea was rejected for v2.

#17 Updated by Robert Waltz over 8 years ago

  • Target version deleted (Release Backlog)

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)