Presentation is loading. Please wait.

Presentation is loading. Please wait.

VirgoStaging Status F.Carbognani, S. Cortese, E. Pacaud.

Published byClémence Chénier Modified over 5 years ago

Similar presentations

Presentation on theme: "VirgoStaging Status F.Carbognani, S. Cortese, E. Pacaud."— Presentation transcript:

1 virgoStaging Status F.Carbognani, S. Cortese, E. Pacaud

2 virgoStaging Status Summary of what we want:
New development workflow: developers work on their home directory, update CVS and then install in /virgoStaging for integration testing Any Virgo user (possibly restricted into a group) should be able to install a version of a “Cmtized” package from CVS in /virgoStaging the Virgo user is not able to modify anything in the /virgoStaging area except than via a set of dedicated scripts

3 virgoStaging Status Dedicated scripts first developed based on ssh and the authorized keys certificate mechanism. This solution poses security issues and a problem of key management, for example the need to distribute the private key itself to all the users ( and redistribute it when changing the password or when adding new users) Explored then the use of sudo which seems satisfactory. In particular sudo configuration allows the use of centralized groups, therefore changing the roles would be simply matter of moving users through a NIS (or future IDM system) group

4 virgoStaging Status All embedded into the PackageManagement package providing 2 scripts: PmInstall and PmShow. PmInstall is for the installation of a set of packages in /virgoStaging PmShow shows the status of a package. A new dedicated user (pm_user) has been created, with: the appropriate file access permission (it should be read only for all other users, PROBABLY NOT YET TRUE) access to the CVS repository (for source checkout) The CMTPATH of this user is set to /virgoApp:/virgoStaging.

5 virgoStaging Status Sudo implementation specificities:
sudo allow only the execution of absolute path executables so we set symbolic links in /virgoDev/PackageManagement (to become /virgoApp/PackageManagement). Those symbolic links will points to the latest production versions of those executables installed in the same directory, ex: /virgoDev/PackageManagement/PmInstall -> /virgoDev/PackageManagement/v1r0/scripts/PmInstall Those links will need to be updated at every PackageManagement upgrade In order to get the right environment variables setup (the Virgo environment + pm_user setting) there is the need to use the sudo -i option which imply that the called script must be a csh one (this because the full Virgo Environment is not yet available on bash, it will be, one day...). Porting of PackageManagement scripts from sh to csh is ongoing

6 virgoStaging Status Sudo implementation specificities:
sudo must be used at the top level calling the shell wrapper scripts. Two alias have been introduced into the Virgo Environment: PmInstall (sudo -i -u pm_user /virgoDev/PackageManagement/PmInstall) PmShow (sudo -i -u pm_user /virgoDev/PackageManagement/PmShow) With this setup things seems working nicely and a standard user can login into farmn1 and issue directly commands like: PmInstall GWOLLUM v0r2p0 Emmanuel currently working and doing tests on its side. As soon as ready, a beta-testing phase can start with other users

7 virgoStaging further developments
For the moment compilation on different platforms must be done by the user. It should be possible to improve the PmInstall script in order to take a list of hosts, allowing to automatically compile on a set of machines with one command.

Download ppt "VirgoStaging Status F.Carbognani, S. Cortese, E. Pacaud."

Similar presentations

Implementing Tableau Server in an Enterprise Environment

Implementing Tableau Server in an Enterprise Environment
05/11/2001 CPT week Natalia Ratnikova, FNAL 1 Software Distribution in CMS Distribution unitFormContent Version of SCRAM managed project.

05/11/2001 CPT week Natalia Ratnikova, FNAL 1 Software Distribution in CMS Distribution unitFormContent Version of SCRAM managed project.
CSS Central: Central Management Utility Screen View Samples Next.

CSS Central: Central Management Utility Screen View Samples Next.
Setting up of condor scheduler on computing cluster Raman Sehgal NPD-BARC.

Setting up of condor scheduler on computing cluster Raman Sehgal NPD-BARC.
SELinux (Security Enhanced Linux) By: Corey McClurg.

SELinux (Security Enhanced Linux) By: Corey McClurg.
Guide To UNIX Using Linux Third Edition

Guide To UNIX Using Linux Third Edition
Introduction to Unix (CA263) Introduction to Shell Script Programming By Tariq Ibn Aziz.

Introduction to Unix (CA263) Introduction to Shell Script Programming By Tariq Ibn Aziz.
SubVersioN – the new Central Service at DESY by Marian Gawron.

SubVersioN – the new Central Service at DESY by Marian Gawron.
Chapter 11: Creating and Managing Shared Folders BAI617.

Chapter 11: Creating and Managing Shared Folders BAI617.
Version Control with Subversion. What is Version Control Good For? Maintaining project/file history - so you don’t have to worry about it Managing collaboration.

Version Control with Subversion. What is Version Control Good For? Maintaining project/file history - so you don’t have to worry about it Managing collaboration.
Internet of Things with Intel Edison Compiling and running Pierre Collet Intel Software.

Internet of Things with Intel Edison Compiling and running Pierre Collet Intel Software.
Section 1: Introducing Group Policy What Is Group Policy? Group Policy Scenarios New Group Policy Features Introduced with Windows Server 2008 and Windows.

Section 1: Introducing Group Policy What Is Group Policy? Group Policy Scenarios New Group Policy Features Introduced with Windows Server 2008 and Windows.
Working with Ubuntu Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.

Working with Ubuntu Linux Track 2 Workshop June 2010 Pago Pago, American Samoa.
CMSBrownBag,05/29/2007 B.Mangano How to “use” CMSSW on own Linux Box and be happy In this context “use” means: - check-out pre-compiled CMSSW code - run.

CMSBrownBag,05/29/2007 B.Mangano How to “use” CMSSW on own Linux Box and be happy In this context “use” means: - check-out pre-compiled CMSSW code - run.
…using Git/Tortoise Git

…using Git/Tortoise Git
UNIX/LINUX SHELLS.  “A Unix shell is a command-line interpreter or shell that provides a traditional user interface for the Unix operating system and.

UNIX/LINUX SHELLS.  “A Unix shell is a command-line interpreter or shell that provides a traditional user interface for the Unix operating system and.
Install Appaserver ©Tim Riley. Apache Group ©Tim Riley Add yourself to the apache group. Both the apache user and group are called “www-data”. This step.

Install Appaserver ©Tim Riley. Apache Group ©Tim Riley Add yourself to the apache group. Both the apache user and group are called “www-data”. This step.
Fall 2011 Nassau Community College ITE153 – Operating Systems Session 21 Administering User Accounts and Groups 1.

Fall 2011 Nassau Community College ITE153 – Operating Systems Session 21 Administering User Accounts and Groups 1.
Marco Cattaneo - DTF - 28th February 2001 File sharing requirements of the physics community  Background  General requirements  Visitors  Laptops 

Marco Cattaneo - DTF - 28th February 2001 File sharing requirements of the physics community  Background  General requirements  Visitors  Laptops 
Accessing the Lab. Putty Available via links on course page Creates secure (SSH) command line session between your machine and SCS network Uses tunnelling.

Accessing the Lab. Putty Available via links on course page Creates secure (SSH) command line session between your machine and SCS network Uses tunnelling.

Similar presentations

Ads by Google