Changes between Version 5 and Version 6 of container-infrastructure


Ignore:
Timestamp:
Jul 5, 2018, 3:59:18 PM (5 months ago)
Author:
https://id.mayfirst.org/jamie
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • container-infrastructure

    v5 v6  
    4949Our current authentication system is a mish-mash of MySQL provided by our control panel (the final authoriy), a [wiki:login-service login service api] that is backed by the database, an open ID system (also backed by the database) that is due to be retired, and a process of keeping traditional /etc/shadow files in sync with the control panel MySQL database.
    5050
    51 These will need to be replaced by a single, distributed system - most likely LDAP.
     51These will need to be replaced by a single, distributed system - most likely LDAP, [https://www.freeipa.org/page/Main_Page FreeIPA], or an improved SQL based solution.
    5252
    5353With a single system, we can manage user authentication as well as common user and group ids to help ensure file system permissions are preserved.
     
    5959Currently, all hard disks in our network are provided by the physical servers hosting the services which means moving data is a slow and resource-intensive process.
    6060
    61 We will need to invest in a dedicated server to provide file systems to our network and begin experimenting with moving our data to this new server, probably running NFS.
     61We will need to invest in a dedicated server to provide file systems to our network and begin experimenting with moving our data to this new server, probably running NFS plus [https://docs.linbit.com/ DRBD] or [https://ceph.com/ ceph].