1. 03 Dec, 2014 3 commits
  2. 12 Nov, 2014 1 commit
  3. 29 Oct, 2014 1 commit
  4. 28 Oct, 2014 1 commit
  5. 27 Oct, 2014 1 commit
  6. 25 Oct, 2014 1 commit
  7. 08 Oct, 2014 1 commit
  8. 24 Sep, 2014 2 commits
  9. 18 Sep, 2014 1 commit
  10. 15 Sep, 2014 1 commit
    • Leigh B Stoller's avatar
      Change to ssh key handling for registered APT/Cloud users; show the ssh key · 1822694e
      Leigh B Stoller authored
      box, but as a collapsible. Warn user if they do not have a key (provided on
      signup page) that they are restricted to browser shell. Whenever user
      provides a key, replace in the database (if its changed). This keeps the
      user out of the Emulab interface to edit their ssh keys. Might have to
      revisit this if APT/Cloud users need/want more then the one key.
  11. 09 Sep, 2014 1 commit
  12. 08 Sep, 2014 1 commit
  13. 03 Sep, 2014 1 commit
  14. 02 Sep, 2014 1 commit
  15. 27 Aug, 2014 1 commit
    • Leigh B Stoller's avatar
      Large set of changes for using the Geni trusted signer tool, to · 980f6cbd
      Leigh B Stoller authored
      authenticate Geni users to CloudLab (who do not have Emulab accounts).
      CloudLab users must have an account to do anything (unlike APT which allows
      guest users). But instead of requiring them to go through the Emulab
      account creation (high bar), let then use their Geni credentials to prove
      who they are. We then build a local account for that new user, and save off
      the speaksfor credential so that we can act on their behalf when talking to
      the backend clusters (and their MA to get their ssh keys).
      These users do not have a local account password, so they cannot log into
      the web interface using the Emulab login page, nor do they have a shell on
      Once authenticated, we put the appropriate cookies into the browser via
      javascript, so they can use the Cloud (okay, APT) web interface (they
      appear logged in).
      I make use of the nonlocal_id field of the users table, which was not being
      used for anything else. Officially, these are "nonlocal" users in the code
      When a nonlocal user instantiates a profile, we use their speaksfor
      credential to ask their home MA for their ssh keys, which we then store in
      the DB, and then provide to the aggregate via the CreateSliver call.
      Note that no provision has been made for users who edit their profile and
      add keys; I am not currently expecting these users to stumble into the web
      interface (yet).
  16. 31 Jul, 2014 1 commit
  17. 28 Jul, 2014 2 commits
  18. 08 Jul, 2014 1 commit
  19. 17 Jun, 2014 1 commit
  20. 12 Jun, 2014 1 commit
    • Kirk Webb's avatar
      Update the use of realpath across all perl scripts · 3f167217
      Kirk Webb authored
      Change to use the realpath function in the 'Cwd' module instead of
      calling realpath via the shell.  The shell command varies in its
      reaction to a missing final path component.  On some platforms (Linux,
      FBSD10+) realpath reports an error if the final component doesn't exist
      on the filesystem.  On others (FBSD < 10), it does not report an error.
      The perl function from 'Cwd' emulates the same behavior as FBSD prior to
      version 10, which is the behavior the scripts expect.
      From here on out, instead of using `realpath`, do the following:
      use Cwd qw(realpath);
      my $realpath = realpath($somepath);
  21. 26 May, 2014 1 commit
  22. 19 May, 2014 1 commit
  23. 16 May, 2014 1 commit
  24. 15 May, 2014 1 commit
  25. 22 Apr, 2014 1 commit
  26. 09 Apr, 2014 1 commit
  27. 31 Mar, 2014 1 commit
  28. 26 Mar, 2014 1 commit
  29. 22 Mar, 2014 1 commit
  30. 14 Mar, 2014 1 commit
  31. 12 Mar, 2014 1 commit
  32. 28 Feb, 2014 2 commits
  33. 27 Feb, 2014 1 commit
  34. 26 Feb, 2014 1 commit
  35. 19 Feb, 2014 1 commit
    • Leigh B Stoller's avatar
      Checkpoint. · 9e9ac6ee
      Leigh B Stoller authored
      * Add a .htaccess file that does the rewrites, instead of in the httpd
        confile file. Added Rob's stuff for rewriting urls to hide the .php
        although not sure this is working correctly yet.
      * Add simple MyExperiments page so that logged in users can find their
        way back to running profiles.
      * Move the DB table holding the running experiment records from the
        geni-sa DB into the main Emulab DB. Lots of little changes for that.
      * Change logout to plain link instead of ajax call. That was a silly
        thing to do.
      * Bug fixes to ssh keys and shell login from the status page.