Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Corrected links that should have been relative instead of absolute.

...

[13:47:10 CDT(-0500)] <battags> did you had ideas on alternatives?

[13:47:51 CDT(-0500)] <apetro> https://wiki.jasig.org/display/~awp9/CAS+Services+Registry+Improvements+for+CAS+3.5#CASServicesRegistryImprovementsforCAS35-EliminateOrderfieldonregisteredservicesinfavorofimplicitOrder

[13:48:55 CDT(-0500)] <apetro> https://issues.jasig.org/browse/CAS-1013

[13:49:59 CDT(-0500)] <apetro> Basically, the idea is that, as deployers use the registry, when they mean for patterns to overlap, longer patterns are obviously intended to be more specific than shorter generic patterns

[13:50:08 CDT(-0500)] <apetro> so apply the implied intent

[13:50:55 CDT(-0500)] <apetro> https://www.vt.edu/myservice matches preferentially over https://**

[13:51:01 CDT(-0500)] <wgthom> the more specific/exact always wins

[13:51:09 CDT(-0500)] <apetro> right

[13:51:20 CDT(-0500)] <battags> so to do that you need to compare just patterns

[13:51:35 CDT(-0500)] <battags> like you can't just compare string length

[13:51:59 CDT(-0500)] <apetro> sure. Real work to implement (or, borrow) a sensible matching/ordering algorithm

[13:52:18 CDT(-0500)] <battags> if one exists go for it. But I know Spring Security just tells you to put most specific first

[13:52:21 CDT(-0500)] <battags> (smile)

[13:53:10 CDT(-0500)] <wgthom> gotta go in 8 minutes

[13:53:51 CDT(-0500)] <apetro> Alright. So, code sharing working towards a better Services Registry.

[13:54:09 CDT(-0500)] <apetro> Pop: Roadmap. Go! (smile)

[13:54:26 CDT(-0500)] <battags> I still have to validate that what Marvin agreed to in proxy is okay

[13:54:28 CDT(-0500)] <battags> I am sure it is

[13:54:37 CDT(-0500)] <battags> I have been distracted by either cutting releases or my job (smile)

[13:54:42 CDT(-0500)] <battags> I apologize for that

[13:54:55 CDT(-0500)] <battags> that was all I had to say on it

[13:54:56 CDT(-0500)] <battags> ha

[13:55:08 CDT(-0500)] <apetro> Okay. I still need to there re-articulate the ClearPass vision.

[13:55:23 CDT(-0500)] <apetro> where are things with cleaning up errant non-current roadmappen?

[13:55:32 CDT(-0500)] <wgthom> cool. feedback. making the roadmap real…and on-going alive is super helpful.

[13:56:02 CDT(-0500)] <battags> I still have the email thread starred as a reminder to complete

[13:56:12 CDT(-0500)] <wgthom> still needs to be done. looks like marvin volunteered to do that at last steer metting

[13:56:47 CDT(-0500)] <apetro> ok. fine action items.

[13:56:54 CDT(-0500)] <apetro> Pop: Github migration. Go!

[13:57:06 CDT(-0500)] <wgthom> github rocks!

[13:57:18 CDT(-0500)] <wgthom> nuff said?

[13:57:19 CDT(-0500)] <battags> it does

[13:57:22 CDT(-0500)] <battags> the only issue I am seeing

[13:57:28 CDT(-0500)] <apetro> I expect I will continue to believe github rocks as I figure out how to be productive in it.

[13:57:37 CDT(-0500)] <battags> is that people aren't creating JIRA issues before requesting pulls

[13:57:40 CDT(-0500)] <battags> so some context is lost

[13:57:50 CDT(-0500)] <wgthom> hmm

[13:57:51 CDT(-0500)] <battags> as well as the ability to have discussions

[13:58:01 CDT(-0500)] <battags> like we just get a request for code changes

[13:58:04 CDT(-0500)] <battags> which is fine when its a bug fix

[13:58:17 CDT(-0500)] <battags> I don't mind creating JIRA issues for bug fixes

[13:58:21 CDT(-0500)] <battags> though I'd prefer someone else did it (wink)

[13:58:54 CDT(-0500)] <wgthom> so, I think the folks wanting the pull…would be motivated to file a jira if they knew it would speed up the commit...

[13:59:11 CDT(-0500)] <apetro> like this, e.g. https://github.com/Jasig/cas/pull/6

[13:59:13 CDT(-0500)] <wgthom> maybe just push back a gently.

[13:59:33 CDT(-0500)] <wgthom> exactly! :0

[14:00:12 CDT(-0500)] <battags> so my concern is at the point at which a pull request was generated they already have code

[14:00:16 CDT(-0500)] <wgthom> i suppose committers could agree that there should always be a jira. how it gets there is open

[14:00:31 CDT(-0500)] <battags> i.e. where was the discussion on cas-user/ dev

[14:00:50 CDT(-0500)] <battags> again for bug fixes not a huge deal

[14:00:52 CDT(-0500)] <wgthom> discussion is good. discussion around working code… even better

[14:01:11 CDT(-0500)] <apetro> maybe some of the discussion starts happening on the pull requests?

[14:01:42 CDT(-0500)] <battags> I don't want people to waste their time writing code that might not be the right direction

[14:01:47 CDT(-0500)] <battags> i.e. if their idea/concern is great

[14:01:54 CDT(-0500)] <wgthom> hmm….are they easily tracked.

[14:01:58 CDT(-0500)] <battags> but the code they spent hours on isn't the direction we would have taken the feature

[14:02:00 CDT(-0500)] <wgthom> i get your point.

[14:02:11 CDT(-0500)] <battags> I'm all for other people writing code

[14:02:16 CDT(-0500)] <battags> just with input from the dev team (wink)

[14:02:19 CDT(-0500)] <wgthom> early discussion, intent is always a good thing

[14:02:54 CDT(-0500)] <wgthom> but as you said.. small bug fix…not a bit deal.

[14:03:08 CDT(-0500)] <battags> right

[14:03:10 CDT(-0500)] <wgthom> yikes. gotta go.

[14:03:11 CDT(-0500)] <wgthom> later.

[14:03:17 CDT(-0500)] <battags> later. have a good weekend

[14:03:21 CDT(-0500)] <wgthom> u2

[14:03:57 CDT(-0500)] <apetro> My time is up. I thank you for yours.

[14:19:31 CDT(-0500)] <foxnesn> do you guys recommend any specific load balancing mechanism for HA ?

[14:27:07 CDT(-0500)] <kickehy> foxnesn: for moodle, after the user first logs in, do you know if it's possible to automatically create the user based on their AD attributes?

[14:30:08 CDT(-0500)] <foxnesn> ooo

[14:30:42 CDT(-0500)] <foxnesn> i dont know. we run a script in oracle during registration that populates the ldap

[14:30:59 CDT(-0500)] <foxnesn> and since moodle is setup for ldap the students could just log in

[14:32:01 CDT(-0500)] <foxnesn> moodle stores users in the user table so im not sure how that would work

[14:41:48 CDT(-0500)] <kickehy> i just don't want new users having to create their account

[14:41:53 CDT(-0500)] <kickehy> it would be nice to automate it

[14:45:25 CDT(-0500)] <kickehy> where's atilling when you need him (big grin)

[14:47:45 CDT(-0500)] <foxnesn> haha

[14:48:08 CDT(-0500)] <foxnesn> when students register dont you have some script that puts them into your AD?

[14:49:31 CDT(-0500)] <kickehy> yes, but it wouldn't add them to moodle

[14:54:29 CDT(-0500)] <foxnesn> hrm, id have to ask our portal admin about that

[14:54:41 CDT(-0500)] <kickehy> heh

[14:54:58 CDT(-0500)] <foxnesn> maybe you dont have to add them to moddle

[14:55:00 CDT(-0500)] <foxnesn> moodle

[14:55:02 CDT(-0500)] <kickehy> though....

[14:55:26 CDT(-0500)] <foxnesn> if the user is in the AD and you set moodle to auth against the AD maybe it retrieves that data from there

[14:55:39 CDT(-0500)] <kickehy> good thought

[14:55:42 CDT(-0500)] <kickehy> i'll try it

[14:55:47 CDT(-0500)] <foxnesn> let me know!

[14:55:52 CDT(-0500)] <kickehy> for sure (big grin)

[15:09:20 CDT(-0500)] <kickehy> hmmmm....after enabling cas, i can't login as the local moodle admin

[15:09:31 CDT(-0500)] <kickehy> therefore, i have no admin access at the moment

[15:20:47 CDT(-0500)] <foxnesn> you should have an admin account that manually auths

[15:23:27 CDT(-0500)] <kickehy> i do, but how do you login as the moodle admin account if everything goes through cas?

[15:26:20 CDT(-0500)] <foxnesn> add your moodle admin to the AD

[15:26:45 CDT(-0500)] <kickehy> heh good idea

[15:27:05 CDT(-0500)] <foxnesn> so long as the password is good with AD specs

[15:28:45 CDT(-0500)] <kickehy> w00t

[15:28:48 CDT(-0500)] <kickehy> foxnesn: thanks

[15:29:05 CDT(-0500)] <kickehy> i was looking for the admin group in the moodle database....i was desperate

[15:35:31 CDT(-0500)] <kickehy> atilling mentioned 'login throttleing'

[15:35:39 CDT(-0500)] <kickehy> any idea what he means?

[15:37:04 CDT(-0500)] <wgthom> dos countermeasure

[15:37:32 CDT(-0500)] <wgthom> mostly for misconfigured clients