Overview
Federation Manager v4.0.0 - Entity Attribute Handling Overhaul (SA self-service, RA assert any RA-controlled value without asking SA to resubmit metadata)
Technical Debt Targeted
- Update Rails to v5.x and resolve any resulting dependency issues.
Notes
Note: THIS FEATURE REQUIRES that we have automated metadata approval and hard edits for baseline expectations in place.
Note: JG / Would like more information / Refactoring the state-machine needed for some of these requirements
Notes on current state:
Have done quite a bit of work across these sets of deliverables
Have CI, but not CD. Reason: Issues with Shibboleth SP in containers. Most expedient thing would be to go with a vanilla approach - vanilla Ruby on Rails app. There were enough integration issues with the app that focusing on that helped us do CI. Now we need to integrate Shibboleth or something - some kind of SP. Nothing really right fit out there. So Shibboleth is as good a foundation as anything else. MDQ makes this a lot easier - then we don't have to worry about the memory footprint and startup time for the SP. Need prod MDQ. Enhancements in SP 3 also gives us more options that will likely help.
Guesstimate: 2 solid weeks of uninterrupted time for test. Production move would be less. Two weeks for prod. One complication with production is moving the signing process along with the prod FM, or decoupling those things and transporting metadata back to on-prem to sign, as well as all the subsidiary process such as production of the JSON feed that feeds the all-entities / all-orgs beta pages, and the eduGAIN export.
Next step: We will want to change the hostname for the Federation Manager as part of the production move: fm.incommon.org, no /siteadmin. Could make that change any time and point it at the current on-premises service. Can ask TSG to put a long-lived redirect on service1.internet2.edu as well.
Implementation Requirements
Release Notes
Bug
- [IFMC-1233] - NoMethodError: undefined method `organization' for nil:NilClass
- [IFMC-1250] - ActionController::ParameterMissing: param is missing or the value is empty: sp_sso
- [IFMC-1276] - Entity transfers show "Published" in Data Review, but then show up as "Pending" in approval queue
- [IFMC-1280] - wrong bread crumbs on new edit entity attributes page on SP
- [IFMC-1288] - Baseline checks indicate a '302' but a '200' status code is returned
- [IFMC-1289] - URL validation does not check for triple slash
Self-Asserted Entity Attribute Work
- [IFMC-718] - Remove Entity Attribute Section from Organization Display in RA Admin
- [IFMC-719] - Remove Entity Attribute Section from Sub-Org Page in RA Admin
- [IFMC-720] - Implement Entity Attribute Modifications in Published Metadata List in Organization
- [IFMC-724] - Implement RA Assert for IdP Entity Attributes
- [IFMC-725] - Implement RA Assert for SP Entity Attributes
- [IFMC-727] - Implement SA Display for IdP Entity Attributes
- [IFMC-728] - Implement SA Display for SP Entity Attributes
- [IFMC-737] - Implement SA Update for Entity Attributes for an IdP
- [IFMC-738] - Implement SA Update for Entity Attributes for an SP
- [IFMC-1156] - Implement SA Add for IdP Entity Attributes
- [IFMC-1157] - Implement SA Add for SP Entity Attributes
- [IFMC-1169] - Implement Entity Attribute Modifications in Published Metadata List in Sub-Organization
- [IFMC-1272] - remove sirtfi and hide-from-discovery sections
- [IFMC-1278] - add info button to all entity attribute tables
- [IFMC-1290] - see requirements for an Entity Attribute Type
Improvements and Tasks
- [IFMC-1134] - Remove Legacy Payment model
- [IFMC-1274] - DA entity attributes on an SP
- [IFMC-1281] - Remove legacy cucumber and feature files
- [IFMC-1226] - Remove Person Deactivate Link from Person View
- [IFMC-1275] - Enforce Baseline requirements on metadata submission
- [IFMC-1256] - Change recipient address for registration receipt emails