Changes between Version 5 and Version 6 of container-infrastructure
- Timestamp:
- Jul 5, 2018, 7:59:18 PM (6 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
container-infrastructure
v5 v6 49 49 Our current authentication system is a mish-mash of MySQL provided by our control panel (the final authoriy), a [wiki:login-service login service api] that is backed by the database, an open ID system (also backed by the database) that is due to be retired, and a process of keeping traditional /etc/shadow files in sync with the control panel MySQL database. 50 50 51 These will need to be replaced by a single, distributed system - most likely LDAP .51 These will need to be replaced by a single, distributed system - most likely LDAP, [https://www.freeipa.org/page/Main_Page FreeIPA], or an improved SQL based solution. 52 52 53 53 With a single system, we can manage user authentication as well as common user and group ids to help ensure file system permissions are preserved. … … 59 59 Currently, all hard disks in our network are provided by the physical servers hosting the services which means moving data is a slow and resource-intensive process. 60 60 61 We will need to invest in a dedicated server to provide file systems to our network and begin experimenting with moving our data to this new server, probably running NFS .61 We will need to invest in a dedicated server to provide file systems to our network and begin experimenting with moving our data to this new server, probably running NFS plus [https://docs.linbit.com/ DRBD] or [https://ceph.com/ ceph].