Changes between Version 8 and Version 9 of AccountManagement

Timestamp:

Nov 25, 2010, 10:45:22 PM (13 years ago)

Author:

davea

Comment:

--

AccountManagement

@@ -12 +12 @@
     * Go through the Attach to Project wizard. 
 
-If the participant chooses N projects, there are N web sites to visit and N Wizards to complete. This is tedious if there are lots of projects.
+If the participant chooses N projects, there are N web sites to visit and N Wizards to complete.
+This is tedious if there are lots of projects.
 
 This document describes BOINC's support for 'account management systems',
@@ -19 +20 @@
 A typical account management system is implemented as a web site. The participant experience is:
 
-    * Visit the account manager site, set up a 'meta-account' (name, email, password), browse a list of projects, and click checkboxes to select projects.
+    * Visit the account manager site, set up a 'meta-account' (name, email, password),
+          browse a list of projects, and click checkboxes to select projects.
     * Download and install the BOINC client software from the account manager.
     * Enter the meta-account name and password in a BOINC client dialog. 
@@ -33 +35 @@
    1. The participant sets up his meta-account and selects projects.
    2. The account manager issues a create account RPC to each selected project.
-   3. the participant downloads and installs the BOINC client software from the account manager. The install package includes a file (specific to the account manager) containing the URL of the account manager.
+   3. the participant downloads and installs the BOINC client software from the account manager.
+      The install package includes a file (specific to the account manager) containing the URL of the account manager.
    4. The BOINC client runs, and asks the participant to enter the name and password of his meta-account.
-   5. The BOINC client does an RPC to the account manager, obtaining a list of accounts. It then attaches to these accounts and proceeds. 
+   5. The BOINC client does an RPC to the account manager, obtaining a list of accounts.
+      It then attaches to these accounts and proceeds. 
 
 There are [WebRpc web RPCs] to create, look up, and modify accounts.
@@ -41 +45 @@
 == Security ==
 
-If hackers break into an account manager server, they could potentially cause the account manager to instruct all its clients to attach to malicious a BOINC project that runs a malicious application. To prevent this type of attack, the URLs distributed by an account manager are digitally signed. Each AM has its own signing key pair. The public key is distributed with the AM's configuration file and in all RPC replies. The private key should be stored only on a physically secure, non-connected host that is used to sign URLs.
-
-To sign URLs, compile [KeySetup crypt_prog], BOINC's encryption utility program. Generate a key pair and generate signatures for your URLs. At some point you'll need to commit to a permanent key pair, at which point you should move the private key to the signing machine (disconnected). Make a copy or two on CD-ROM also, and/or print it out on paper; keep these in a safe place. Delete all other copies of the private key.
+If hackers break into an account manager server,
+they could potentially cause the account manager to instruct all its clients
+to attach to malicious a BOINC project that runs a malicious application.
+To prevent this type of attack, the URLs distributed by an account manager are digitally signed.
+Each AM has its own signing key pair.
+The public key is distributed with the AM's configuration file and in all RPC replies.
+The private key should be stored only on a physically secure,
+non-connected host that is used to sign URLs.
+
+To sign URLs, compile [KeySetup crypt_prog], BOINC's encryption utility program.
+Generate a key pair and generate signatures for your URLs.
+At some point you'll need to commit to a permanent key pair,
+at which point you should move the private key to the signing machine (disconnected).
+Make a copy or two on CD-ROM also, and/or print it out on paper; keep these in a safe place.
+Delete all other copies of the private key.
 
 == Farm managers ==
 
-The AM mechanism can also be used to implement systems for configuring and controlling BOINC on large clusters. We call such systems 'farm managers'. Farm managers may want to provide fine-grained control over clients, e.g. the ability to suspend/resume results. This can be done using GUI RPCs (assuming that the farm manager able to contact clients via HTTP on the GUI RPC port). However, the farm manager must learn the GUI RPC port and password for each client. To support this, the AM configuration file (see below) can specify that the GUI RPC port and password are to be included in each AM RPC request.
-
-If a farm manager uses GUI RPC to attach/detach projects, it should not use the AM mechanism for this purpose. I.e., its AM RPC replies should not list any projects. The function of the AM mechanism, in this case, is to allow sysadmins to set up new clients by copying files. The AM mechanism takes care of registering new clients centrally.
-
-== Core client functionality ==
-
-The BOINC core client uses the following files to keep track of account manager information.
+The AM mechanism can also be used to implement systems for configuring and controlling BOINC on large clusters.
+We call such systems 'farm managers'.
+Farm managers may want to provide fine-grained control over clients, e.g. the ability to suspend/resume results.
+This can be done using GUI RPCs (assuming that the farm manager able to
+contact clients via HTTP on the GUI RPC port).
+However, the farm manager must learn the GUI RPC port and password for each client.
+To support this, the AM configuration file (see below) can specify that
+the GUI RPC port and password are to be included in each AM RPC request.
+
+If a farm manager uses GUI RPC to attach/detach projects, it should not use the AM mechanism for this purpose.
+I.e., its AM RPC replies should not list any projects.
+The function of the AM mechanism, in this case, is to allow sysadmins to set up new clients by copying files.
+The AM mechanism takes care of registering new clients centrally.
+
+== Client functionality ==
+
+The BOINC client uses the following files to keep track of account manager information.
 
 
 acct_mgr_url.xml
-    This file identifies the account manager. It is typically bundled with the BOINC client in an installer package. Its format is:
+    This file identifies the account manager.
+        It is typically bundled with the BOINC client in an installer package.
+        Its format is:
 {{{
 <acct_mgr>
@@ -79 +107 @@
     The URL is that of the account manager's web site.
 
-    If the <send_gui_rpc_info/> tag is present, account manager RPCs will include the client's GUI RPC port and password hash (see below). 
+    If the <send_gui_rpc_info/> tag is present,
+        account manager RPCs will include the client's GUI RPC port and password hash (see below). 
 acct_mgr_login.xml
     This file contains meta-account information. Its format is:
@@ -90 +119 @@
 The password is stored as MD5(password_lowercase(login)).
 
-If the core client finds acct_mgr_url.xml but not acct_mgr_login.xml, it prompts for a name and password, stores them in acct_mgr_login.xml, and makes an account manager RPC. The core client offers menu items for making an account manager RPC, and for changing the name/password.
+If the client finds acct_mgr_url.xml but not acct_mgr_login.xml,
+it prompts for a name and password, stores them in acct_mgr_login.xml, and makes an account manager RPC.
+The client offers menu items for making an account manager RPC, and for changing the name/password.
 
 == Account manager RPCs ==
 
-An account manager must provide a [WebRpc#get_project_config get_project_config.php] file containing its name and minimum password length, and containing a <account_manager/> tag.
+An account manager must provide a [WebRpc#get_project_config get_project_config.php] file
+containing its name and minimum password length, and containing a <account_manager/> tag.
 
 In addition, an account manager must provide the following RPC, which uses an HTTP POST request.
@@ -110 +142 @@
     <client_version>5.3.2</client_version>
     <run_mode>auto</run_mode>
+        <not_started_dur>X</not_started_dur>
+        <in_progress_dur>X</in_progress_dur>
     <global_preferences>
         <source_project>http://a.b.c</source_project>
@@ -123 +157 @@
        <hostid>NNN</hostid>
        [ <attached_via_acct_mgr/> ]
+           [ <suspended_via_gui/> ]
+           [ <dont_request_more_work/> ]
+           [ <detach_when_done/> ]
+           [ <ended/> ]
     </project>
     [ ... other projects ]
@@ -197 +235 @@
         Returns a list of the accounts associated with this meta-account. The arguments are:
 
- password_hash::
-    the account password, hashed as MD5(password_lowercase(name)). 
- host_cpid::
-    Identifies the host. 
- previous_host_cpid::
-    The host identifier passed in the previous RPC. Host identifiers can change occasionally. This lets the account manager maintain host identity. 
- domain_name::
+ * '''password_hash''': the account password, hashed as MD5(password_lowercase(name)). 
+ * '''host_cpid''': Identifies the host. 
+ * '''previous_host_cpid''':
+ The host identifier passed in the previous RPC.
+ Host identifiers can change occasionally.
+ This lets the account manager maintain host identity. 
+ * '''domain_name''':
     The host's domain name. 
- run mode::
+ * '''run mode''':
     The current mode (always/auto/never). 
- gui_rpc_port, gui_rpc_password::
+ * '''not_started_dur''':
+    Estimated duration (elapsed time) of unstarted jobs
+ * '''in_progress_dur''':
+    Estimated duration (elapsed time) of jobs in progress
+ * '''gui_rpc_port, gui_rpc_password''':
     GUI RPC information. Included only if the <send_gui_rpc_info> element is included in the AM URL file (see above). 
- global_preferences::
+ * '''global_preferences''':
     The current global preferences. 
- venue::
+ * '''venue''':
     The host venue
- opaque::
+ * '''opaque''':
     Opaque data received from the AMS in the previous RPC.
 
@@ -223 +265 @@
     A time interval after which another RPC should be done. 
  signing_key::
-    The public key used to sign URLs, in an encoded notation. Use the BOINC crypt_prog program to generate this. 
+    The public key used to sign URLs, in an encoded notation.
+        Use the BOINC crypt_prog program to generate this. 
  message::
     A message to be displayed to the user. 
@@ -229 +272 @@
     New global preferences. Included only if these are newer than those in the request message. 
  opaque::
-    Arbitrary XML.  Will be included in the next request message from the client.  Use this e.g. to store a host ID.
+    Arbitrary XML.  Will be included in the next request message from the client.
+         Use this e.g. to store a host ID.
  rss_feeds::
-    A list of RSS feeds to be displayed as Notices by the BOINC Manager.  Typically this is a feed of news items from the account manager.
+    A list of RSS feeds to be displayed as Notices by the BOINC Manager.
+         Typically this is a feed of news items from the account manager.
 
 For each account, the following items are returned:
@@ -250 +295 @@
     If nonzero, detach from this project when all work is completed 
  resource_share::
-    Specifies a resource share for this project. If present, this overrides the resource share reported by the project. Thus, account managers can provide per-host control of resource share. 
-
-NOTE: the XML must be as above, with the <url> and <authenticator> elements on a single line, and the <account> and </account> tags on separate lines.
+    Specifies a resource share for this project.
+        If present, this overrides the resource share reported by the project.
+        Thus, account managers can provide per-host control of resource share. 
+
+NOTE: the XML must be as above, with the <url> and <authenticator> elements on a single line,
+and the <account> and </account> tags on separate lines.
 
 == Host identification ==
@@ -258 +306 @@
 BOINC uses two ID spaces for hosts:
 
-    * Cross-project ID (CPID). This is used in the statistics data exported by projects. The 'authoritative' CPID is stored on the host itself. A host's CPID changes whenever it attaches to a new project. CPID is propagated to projects in scheduler RPCs. If a host is attached to several projects, its CPID (as reported by those projects) may be inconsistent for several days. Because of these properties, CPID is not useful as a primary host identifier.
-    * Project database ID (DBID). This is a project-specific integer identifier. On a given host, it changes only in the rare case where a user copies state files from one computer to another; in that case, one of the two computers is assigned a new ID after its next scheduler RPC. 
+    * Cross-project ID (CPID).
+      This is used in the statistics data exported by projects.
+          The 'authoritative' CPID is stored on the host itself.
+          A host's CPID changes whenever it attaches to a new project.
+          CPID is propagated to projects in scheduler RPCs.
+          If a host is attached to several projects, its CPID (as reported by those projects)
+          may be inconsistent for several days.
+          Because of these properties, CPID is not useful as a primary host identifier.
+    * Project database ID (DBID).
+          This is a project-specific integer identifier.
+          On a given host, it changes only in the rare case
+          where a user copies state files from one computer to another;
+          in that case, one of the two computers is assigned a new ID after its next scheduler RPC. 
 
 An account manager RPC request includes the host's CPID, and its DBID on all projects to which it's attached (see above).
@@ -270 +329 @@
           * DBID
           * CPID 
-    * On each account manager RPC, for each reported project, look up (user ID, project ID, DBID) in the host table (where 'DBID' is the one passed in the RPC request). If no record is found, create one. In any case, update the record with the CPID from the RPC request.
-    * To show the user a list of their hosts, with current per-project credit: do a show_user.php RPC to each project to get a list of hosts. Update the corresponding records in the host table, based on the DBIDs returned by show_user.php. Delete any host table entries for this user/project that don't appear in the RPC reply. Ignore the CPIDs returned by the show_user RPC (they may not be consistent). Then do a query on the host table, grouping by CPID. 
+    * On each account manager RPC, for each reported project,
+          look up (user ID, project ID, DBID) in the host table (where 'DBID' is the one passed in the RPC request).
+          If no record is found, create one. In any case, update the record with the CPID from the RPC request.
+    * To show the user a list of their hosts, with current per-project credit:
+          do a show_user.php RPC to each project to get a list of hosts.
+          Update the corresponding records in the host table, based on the DBIDs returned by show_user.php.
+          Delete any host table entries for this user/project that don't appear in the RPC reply.
+          Ignore the CPIDs returned by the show_user RPC (they may not be consistent).
+          Then do a query on the host table, grouping by CPID. 
+