Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Yoda/Metalnx co-existing with differing security models #244

Open
michael-conway opened this issue Jun 9, 2021 · 0 comments
Open

Yoda/Metalnx co-existing with differing security models #244

michael-conway opened this issue Jun 9, 2021 · 0 comments
Milestone
Backlog

Comments

@michael-conway
Copy link
Contributor

This captures some issues that were discussed at the 2021 UGM when running Metalnx and Yoda together, and potential conflicts with how security and groups are managed. This captures some of this discussion for further thought.

Yoda-security explained.pdf

  • Yoda sets and uses metadata on the iRODS groups that it manages

  • groups can be manipulated on iRODS level but care should be taken not to impact the metadata on the groups

  • It also supposes that collections are under full control of the Yoda rulesets. To make it work we had to alter the code a bit to not consider collections that were created with the regular irods tools & Metalnx

  • intention was to manage only groups named research- grp- vault- hence some prefixed namespace. broader impact might be a bug

  • So it is best to use Yoda fully in its own zone. That is the way we may use it in the future should the use case for some match what Yoda offers
@trel trel added this to the Backlog milestone Dec 5, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
Backlog
Development

No branches or pull requests
2 participants
@trel @michael-conway