Context Navigation

Changes between Version 12 and Version 13 of SimpleAttach

Timestamp:: Oct 30, 2017, 9:31:36 PM (7 years ago)
Author:: davea
Comment:: --

Legend:

: Unmodified
: Added
: Removed
: Modified

SimpleAttach

-                      v12
+                      v13
 [[PageOutline]]
 = Simplified registration/download process =
 This document proposes changes to the process by which volunteers
 download BOINC and attach to projects.
+This document describes a new process by which volunteers
+download BOINC and attach to projects or account managers.
+== Current attach process ==
+The current download/attach process has two problems:
+Suppose a first-time volunteer wants to participate in a BOINC project
+that uses the standard PHP code for its front page.
+The steps are:
+ * There are too many clicks.
+ * Much of the GUI is in the Manager.
+. Visit the project web site (say, via a link in a news story).
+. Click on "Download" on the project site, taking you to the BOINC download page.
+. Click on "Download BOINC" or "Download BOINC + VBox".
+. When the download is done, click on the installer.
+. Click on "defaults" in the installer.
+. The Manager runs and brings up the Attach wizard.  Click on Add Project.
+. Find the project in the project list (hopefully you still remember its name).
+   Note: if the project is new and is not in the list,
+   you need to go back to its web site, find the URL,
+   and copy/paste it into the wizard.
+   New volunteers are unlikely to figure this out.
+. Click on New User.
+. Enter email address and password.
+The new process eliminates clicks and shifts most of the GUI to the web,
+which lets us use things like OpenAuth and Recaptcha,
+and which provides a more unified experience.
+For existing volunteers (i.e. already running BOINC on this computer) the steps are:
+Note: this process only works for "vetted" projects and AMs,
+i.e. those that appear on the BOINC web site.
+Making it work for arbitrary projects would decrease security.
+. Visit project web site; figure out what to do next
+   (the standard front page doesn't say).
+. Open the BOINC Manager.
+. Open Attach wizard.
+. Click on Add Project.
+. Find project in list or enter URL.
+. Click on Existing User.
+. Enter password (email should be pre-populated from previous attach).
+Problems with this design:
+ * In each case there are many steps, and we lose a fraction of volunteers at each step.
+ * For non-listed projects, users have to type or copy/paste a URL.  Bad.
+ * If the project requires !VirtualBox, the user should be required to download BOINC+VBox.
+ * The scheme applies to non-Android computers.
+  For Android users the process is similar,
+  except that BOINC must be downloaded from the Google or Amazon app store.
+  The standard project front page says nothing about Android.
+This document describes a new scheme that addresses these problems.
+== Proposed attach process ==
+== New download/attach process ==
 === Front page ===
 The project front page has a "Join" button, linked to a "registration" page.
+The project or AM front page has a Join button, linked to a "registration" page.
 === Registration page ===
+The registration page shows two forms side by side:
+If the user is already logged in on this project,
+the page redirects to the Download page.
+Otherwise, the page has two forms:
  * Create account (for users new to this project)
  * Log in (for existing users)
+Submission of either form goes to the Download page (below).
+If the user is already logged in on this project,
+the page redirects to Download page.
+Submission of either form goes to the Download page.
 === Download page ===
+This page tells the user what software they need to install,
+and lets them either download it or confirm that it's already installed.
+==== Android case ====
+Show:
+ * '''[Download BOINC]''' (link to Google or Amazon app store)
+ * '''Open BOINC, select Add Project, and choose (project name)'''
+Note: we can improve this, but it will take changes to the Android GUI.
+==== Non-Android case ====
+A project's config file can specify whether it needs VBox,
+and whether it has a min client version.
+The Download page says something like:
+This page says something like:
  * To participate in X, your computer must have BOINC (and VBox) installed.
+ * If these are already installed, [click here]
+ * [Download BOINC (and VBox)].
+ * If these are already installed, [click here].
+   This links to a page with instructions for adding project via the Manager.
+ * Buttons to download BOINC and BOINC+VBox.
+   These show the download size, platform name, and version,
+   like the download page on the BOINC web site.
+The "click here" link goes to a page that:
+=== Manager ===
+ * Sends some cookies (see below)
+ * Tells the user to open the Manager and choose Add Project.
+The Download link does to a page that
+ * Sends some cookies (see below)
+ * Initiates a download
+ * Tells the user to double-click on the installer when download is done
+When the manager is first run,
+it is attached to the project or account manager,
+to the user's account.
+No user interaction with the Manager is needed.
 === User experience ===
 …
 In summary, the new-user process is:
 . Visit project web site, click on '''Join".
+. Visit project or account manager web site, click on '''Join".
 . Enter email/passwd, click OK
 . Click Download
 . Click on installer, choose defaults
-. Manager runs, brings up confirmation/welcome dialog
 Note the following improvements:
+Improvements:
 . User doesn't leave the project web site (e.g. doesn't land on BOINC web site)
 . User doesn't see list of all projects
+. User doesn't see the list of all projects.
 === What projects must do ===
+Down the XML version list from
+http://boinc.berkeley.edu/download_all.php?xml=1.
+Save it as html/user/versions.xml.
+Update this as new client versions are released.
+In the home page: put a Join button linking to register.php
 Add to config.xml:
- * <project_desc>: a few-sentence description of the project.
- * <project_inst>: the host institution (optional).
+Add to config.xml if needed:
+ * <min_core_client_version>
+ * <need_vbox>
+{{{
+<project_id>N</project_id>
+}}}
+The project's ID, as shown in
+In the home page:
+https://boinc.berkeley.edu/project_list.php
+ * put a button linking to register.php
+and optionally:
+{{{
+ <min_core_client_version>70803</min_core_client_version>
+ <need_vbox/>
+}}}
 == Implementation ==
+Register page: use existing code for forms
+When a user is shown the Download page,
+the server code creates a "login token" - a string of 8 random hex chars.
+It creates a record in the login_token table,
+containing the token, the user ID, and the create time.
+Download page: extract from config.xml:
+ * the master URL
+ * the project name
+ * the project description
+ * the project institution
+ * software requirements
+The client installer is downloaded indirectly via
+a script on the BOINC web server (concierge.php).
+This is passed the project ID, the login token, and the installer filename.
+It downloads the file, appending to the filename the project ID and login token.
+These first 4 items are passed as URL args to a script on the BOINC web server (concierge.php).
+Also passed:
+ * the user name
+ * the user authenticator
+ * whether a download is required
+ * whether VBox is needed
+When the BOINC installer is launched, it writes the installer filename to
+a file "installer_filename.txt" in the BOINC data directory.
+=== The concierge.php script ===
+The concierge.php script looks at the master URL to see if the project is in BOINC's list.
+It sends the following cookies (from the boinc.berkeley.edu domain):
+ '''attach_known''':: 1 if the project is known to BOINC
+ '''attach_master_url''':: the master URL
+ '''attach_project_name''':: the project name
+ '''attach_project_desc''':: the project description
+ '''attach_project_inst''':: the project institution
+ '''attach_user_name''':: the user name
+ '''attach_auth''':: the user authenticator
+These cookies are sent with a 24-hour expiration time.
+If the "download" arg is set,
+the script looks at the user agent string to find the computer's platform,
+and gets the URL of the current BOINC installer for that platform.
+(If VBox is needed, it uses the BOINC+Vbox installer).
+It then redirects to the URL of the installer file.
+On current browsers this doesn't change the web page
+(which is still the project's main page);
+it starts a download of the BOINC installer,
+which is displayed in the status bar or elsewhere.
+If there is no installer for the computer's platform,
+it goes to the BOINC "Download all" page.
+=== Cookieless Installs ===
+For unsupported browsers or projects with custom installers, the required information will be passed as
+part of the filename of the package downloaded from the server.
+When the BOINC installer is launched, it'll detect the required information and add/update project_init.xml which
+in turn will be consumed via the client software on startup.
+Package name parameters are as follows:
+ '''amu''':: the master URL
+ '''an''':: the project name
+ '''aa''':: the user authenticator
+ '''asc''':: the setup cookie
+Usage Rules:
+ * Each parameter is broken up into name/value pairs
+ * Each name/value pair is separated by an underscore
+ * Each value is base64 encoded
+Example package name (Windows):
+{{{
+boinc_setup_amu_aHR0cDovL3NldGlhdGhvbWUuYmVya2VsZXkuZWR1Lw==_aa_ODU0NjVfZWEwYWJkNjc4NDc2MjllMWFlOWVkM2I4YWRmZmZmZmY=.exe
+}}}
+Example package name (Mac):
+{{{
+boinc_setup_amu_aHR0cDovL3NldGlhdGhvbWUuYmVya2VsZXkuZWR1Lw==_aa_ODU0NjVfZWEwYWJkNjc4NDc2MjllMWFlOWVkM2I4YWRmZmZmZmY=.zip
+}}}
+Note: Using the setup cookie is more desirable than storing the authenticator as part of the
+executable name.  Setup cookies are created by the project server and expire after a given
+period of time.  During the manager's attach process, it'll use the lookup account RPC to
+convert the setup cookie into the user's weak authenticator.
+=== Manager ===
+When the manager starts up, or the Add Project command is given,
+it looks for the '''attach_master_url''' cookie from
+the boinc.berkeley.edu domain.
+If this is present, it puts up the Attach Wizard,
+at a confirmation page that shows
+ * the project name, description, and institution
+ * the user name
+ * whether the project is known to BOINC
+== Anonymous registration ==
+The join process can be further simplified if we eliminate the
+email address and password associated with accounts.
+This might be selected by the project (using a config flag)
+or by the volunteer (by an "anonymous" checkbox in the Register page).
+In each case, the Register page would create an account
+with random strings for email address and password.
+We may want to add the following features:
+ * Let volunteers with anonymous accounts log in to the project web site
+   via links in the Manager.
+ * Let anonymous accounts be made non-anonymous (i.e. given an
+   email address, name, and password).
+When the client startup it, it looks for this file.
+If found, does a "lookup account token" RPC to the project,
+obtaining the user name and a weak authenticator.
+It attaches to the project using this authenticator.
 == Unsupported platforms ==
+One issue not addressed by this proposal:
+what if the computer is of a type for which the project has no apps?
+What if the computer is of a type for which the project has no apps?
 The user should learn this immediately.
 E.g. viewed from an Android device,
 …
 '''This project is not able to use Android devices.
 Please visit this site from a Windows, Mac, or Linux computer.'''
+==== Android case ====
+This doesn't work for Android.
+Instead, show:
+ * '''[Download BOINC]''' (link to Google or Amazon app store)
+ * '''Open BOINC, select Add Project, and choose (project name)'''