Hi All, Following are the notes of design review done today on the subject. We discussed two designs here. I hope Srinath and Pradeep will add anything missing here.
The dep-sync approach: This was the approach we had in mind prior to the review. When a tenant is created we clone the primary user store manager configuration from the bootstrap realm configuration and do the tenant specific property changes to it and write to a new user-mgt.xml file in the tenant specific deployment folder. So we are going to manage one user-mgt.xml per tenant. Amila's proposal to maintain one user-mgt.xml per userstore was rejected because simply we dont frequently update the user-mgt.xml like synapse.xml for proxy services. In this model nothing will be written to database. Need dep-sync to sync the tenant specific user-mgt.xml. Tenant admins can add any number of user stores to this user-mgt.xml thorugh the UI. The database approach: The above approach has downsides. We have not used dep-sync for config files across the platform. The normal approach is to write the config files to shared database and update the database when a config file is updated in a node. Therefore this approach which we rejected earlier can be suitable after all. Whichever approach we take it is better not to show the primary user store manager configuration in the tenant specific user-mgt.xml file because it gives the impression to the user that it can be deleted. Also when there is a change to the primary user-mgt.xml in the bootstrap realm configuration they should be reflected in the tenant specific user-mgt.xml as well. Regards, Johann. On Thu, May 30, 2013 at 10:56 AM, Nuwan Bandara <[email protected]> wrote: > Hi Guys, > > Is this a UI/UX review or a general architecture review of the component. > if its a UI review we need to focus on the views of the components. > > Regards, > /Nuwan > > > On Thu, May 30, 2013 at 10:41 AM, Hasini Gunasinghe <[email protected]>wrote: > >> >> On Thu, May 30, 2013 at 10:25 AM, Prabath Siriwardena >> <[email protected]>wrote: >> >>> Nice slides.. :-) >>> >>> >> +1. >> >> >>> Please double check the content on slide-6. >>> >>> I guess we do not merge bootstrap realm at the time of tenant admin >>> login.. >>> >>> Tenant specific realm is loaded from the super-tenant's bootstrap realm >>> - replaced with tenant specific properties - and saved in UM_TENANT table - >>> at the time of tenant creation... >>> >> >> At tenant creation, tenant specific user-mgt.xml is persisted with only >> tenant specific properties (i.e: tenant's user base etc) and at the time of >> loading tenant's user realm, persisted user-mgt.xml is populated with super >> tenant's realm configuration for other details: such as user store >> credentials, urls etc. >> >> Thanks, >> Hasini. >> >>> >>> Then at the time of tenant logic - Realm was picked by tenant id - and >>> cached - by the RealmService... >>> >>> Thanks & regards, >>> -Prabath >>> >>> >>> On Thu, May 30, 2013 at 8:22 AM, Pushpalanka Jayawardhana < >>> [email protected]> wrote: >>> >>>> Hi, >>>> >>>> Please find the slides for today's design review here, >>>> https://docs.google.com/a/wso2.com/presentation/d/11lGLIXoeIm8TDV8vKcypLSk8Ksk-p1mrU3sqWHJD-8g/edit?usp=sharing >>>> >>>> >>>> Thanks, >>>> >>>> Pushpalanka Jayawardhana >>>> >>>> Software Engineer >>>> >>>> WSO2 Lanka (pvt) Ltd >>>> [image: >>>> Facebook]<http://s.wisestamp.com/links?url=http%3A%2F%2Fwww.facebook.com%2Fpushpalanka> >>>> [image: >>>> Twitter]<http://s.wisestamp.com/links?url=http%3A%2F%2Ftwitter.com%2FPushpalanka> >>>> [image: >>>> LinkedIn]<http://s.wisestamp.com/links?url=http%3A%2F%2Fwww.linkedin.com%2Fprofile%2Fview%3Fid%3D75175642%26trk%3Dtab_pro> >>>> [image: >>>> Blogger]<http://s.wisestamp.com/links?url=http%3A%2F%2Fpushpalankajaya.blogspot.com%2F> >>>> [image: >>>> SlideShare]<http://s.wisestamp.com/links?url=http%3A%2F%2Fwww.slideshare.net%2FPushpalanka> >>>> Mobile: +94779716248 >>>> <http://s.wisestamp.com/links?url=http%3A%2F%2Fr1.wisestamp.com%2Fr%2Flanding%3Fu%3Dc984892c0c4ca423%26v%3D3.13.2%26t%3D1361257731639%26promo%3D10%26dest%3Dhttp%253A%252F%252Fwww.wisestamp.com%252Femail-install%253Futm_source%253Dextension%2526utm_medium%253Demail%2526utm_campaign%253Dpromo_10> >>>> >>>> >>>> On Wed, May 29, 2013 at 1:57 PM, Dimuthu Leelarathne <[email protected] >>>> > wrote: >>>> >>>>> +1. Please invite me the review as well. >>>>> >>>>> thanks, >>>>> dimuthu >>>>> >>>>> >>>>> On Tue, May 28, 2013 at 7:47 AM, Srinath Perera <[email protected]>wrote: >>>>> >>>>>> Have we reviewed this? shall I schedule? >>>>>> >>>>>> --Srinath >>>>>> >>>>>> >>>>>> On Mon, May 27, 2013 at 5:42 PM, Amila Suriarachchi >>>>>> <[email protected]>wrote: >>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> On Mon, May 27, 2013 at 5:30 PM, Prabath Siriwardena < >>>>>>> [email protected]> wrote: >>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> On Mon, May 27, 2013 at 5:13 PM, Amila Suriarachchi <[email protected] >>>>>>>> > wrote: >>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> On Mon, May 27, 2013 at 5:01 PM, Prabath Siriwardena < >>>>>>>>> [email protected]> wrote: >>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> On Mon, May 27, 2013 at 4:04 PM, Amila Suriarachchi < >>>>>>>>>> [email protected]> wrote: >>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> On Mon, May 27, 2013 at 3:06 PM, Prabath Siriwardena < >>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> On Fri, May 24, 2013 at 9:51 PM, Amila Suriarachchi < >>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> - Saving data inserted via UI, at finish - This has few >>>>>>>>>>>>>> options. Please advice on best to use >>>>>>>>>>>>>> - Update the RealmService with new configuration and then >>>>>>>>>>>>>> write the updated Realmconfiguration into user-mgt.xml >>>>>>>>>>>>>> (This newly created >>>>>>>>>>>>>> file will trigger the Axis2 deployer as a new file >>>>>>>>>>>>>> addition, which is not >>>>>>>>>>>>>> needed ) >>>>>>>>>>>>>> - Write the updated details into user-mgt.xml. Even if >>>>>>>>>>>>>> only one UserStoreManager is edited, whole user-mgt.xml >>>>>>>>>>>>>> has to be read in, >>>>>>>>>>>>>> place new one in relevant order and update other's order >>>>>>>>>>>>>> accordingly. >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>> Idea is to create a separate file per user store. you can save >>>>>>>>>>>>> this file with the userstore name. Then update only that file. >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> I don't think we need to keep files per user store. We can >>>>>>>>>>>> persist the changes to the user-mgt.xml it self and keep different >>>>>>>>>>>> user-mgt.xml files per tenant.. >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> As we discussed last time user-mgt.xml is used to represent >>>>>>>>>>> realm which consists of user store, authorization manager, clam >>>>>>>>>>> manager etc >>>>>>>>>>> ... Since authorization manager, claim manger stuff are already >>>>>>>>>>> multi >>>>>>>>>>> tenanted we don't need to have a user-mgt.xml per tenant. >>>>>>>>>>> >>>>>>>>>>> Here the requirement is to let users to add their user stores to >>>>>>>>>>> the system. So adding stores as separate xml files simplify the >>>>>>>>>>> design. >>>>>>>>>>> These user stored does not need to support MT since it is specific >>>>>>>>>>> to a >>>>>>>>>>> tenant. >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> I think that approach would be more scattered - to have multiple >>>>>>>>>> files by user store.. >>>>>>>>>> >>>>>>>>> >>>>>>>>> This is the approach we follow for proxy services, cep buckets >>>>>>>>> etc... For an example earlier we had only synapse.xml and >>>>>>>>> cep-config.xml to >>>>>>>>> define all. But now have separate ones. >>>>>>>>> >>>>>>>>> Another advantage is we need to update only one store. For an >>>>>>>>> example if every one edits the same user-mgt.xml then when a user >>>>>>>>> adds one >>>>>>>>> user store, I think all other stores need to update as well. Since for >>>>>>>>> deployment engine it is an update of the file. >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> My argument is - this is different from other service artifacts.. >>>>>>>> These operations do not happen frequently - so - I guess having a >>>>>>>> single >>>>>>>> file would make things simple... >>>>>>>> >>>>>>> >>>>>>> IMHO the main point is, it is not the correct design. Please see >>>>>>> this reply. >>>>>>> >>>>>>> >>>>>>> As we discussed last time user-mgt.xml is used to represent realm >>>>>>> which consists of user store, authorization manager, clam manager etc >>>>>>> ... >>>>>>> Since authorization manager, claim manger stuff are already multi >>>>>>> tenanted >>>>>>> we don't need to have a user-mgt.xml per tenant. >>>>>>> >>>>>>> Anyway lets do a code review after implementing this either way. >>>>>>> >>>>>>> thanks, >>>>>>> Amila. >>>>>>> >>>>>>> >>>>>>> >>>>>>>> >>>>>>>> Thanks & regards, >>>>>>>> -Prabath >>>>>>>> >>>>>>>> >>>>>>>>> >>>>>>>>> thanks, >>>>>>>>> Amila. >>>>>>>>> >>>>>>>>> >>>>>>>>>> >>>>>>>>>> Thanks & regards, >>>>>>>>>> -Prabath >>>>>>>>>> >>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> thanks, >>>>>>>>>>> Amila. >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>>> Thanks & regards, >>>>>>>>>>>> -Prabath >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> thanks, >>>>>>>>>>>>> Amila. >>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> - >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> Thanks, >>>>>>>>>>>>>> >>>>>>>>>>>>>> Pushpalanka Jayawardhana >>>>>>>>>>>>>> >>>>>>>>>>>>>> Software Engineer >>>>>>>>>>>>>> >>>>>>>>>>>>>> WSO2 Lanka (pvt) Ltd >>>>>>>>>>>>>> [image: >>>>>>>>>>>>>> Facebook]<http://s.wisestamp.com/links?url=http%3A%2F%2Fwww.facebook.com%2Fpushpalanka> >>>>>>>>>>>>>> [image: >>>>>>>>>>>>>> Twitter]<http://s.wisestamp.com/links?url=http%3A%2F%2Ftwitter.com%2FPushpalanka> >>>>>>>>>>>>>> [image: >>>>>>>>>>>>>> LinkedIn]<http://s.wisestamp.com/links?url=http%3A%2F%2Fwww.linkedin.com%2Fprofile%2Fview%3Fid%3D75175642%26trk%3Dtab_pro> >>>>>>>>>>>>>> [image: >>>>>>>>>>>>>> Blogger]<http://s.wisestamp.com/links?url=http%3A%2F%2Fpushpalankajaya.blogspot.com%2F> >>>>>>>>>>>>>> [image: >>>>>>>>>>>>>> SlideShare]<http://s.wisestamp.com/links?url=http%3A%2F%2Fwww.slideshare.net%2FPushpalanka> >>>>>>>>>>>>>> Mobile: +94779716248 >>>>>>>>>>>>>> <http://s.wisestamp.com/links?url=http%3A%2F%2Fr1.wisestamp.com%2Fr%2Flanding%3Fu%3Dc984892c0c4ca423%26v%3D3.13.2%26t%3D1361257731639%26promo%3D10%26dest%3Dhttp%253A%252F%252Fwww.wisestamp.com%252Femail-install%253Futm_source%253Dextension%2526utm_medium%253Demail%2526utm_campaign%253Dpromo_10> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> _______________________________________________ >>>>>>>>>>>>>> Architecture mailing list >>>>>>>>>>>>>> [email protected] >>>>>>>>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> -- >>>>>>>>>>>>> *Amila Suriarachchi* >>>>>>>>>>>>> >>>>>>>>>>>>> Software Architect >>>>>>>>>>>>> WSO2 Inc. ; http://wso2.com >>>>>>>>>>>>> lean . enterprise . middleware >>>>>>>>>>>>> >>>>>>>>>>>>> phone : +94 71 3082805 >>>>>>>>>>>>> >>>>>>>>>>>>> _______________________________________________ >>>>>>>>>>>>> Architecture mailing list >>>>>>>>>>>>> [email protected] >>>>>>>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> -- >>>>>>>>>>>> Thanks & Regards, >>>>>>>>>>>> Prabath >>>>>>>>>>>> >>>>>>>>>>>> Mobile : +94 71 809 6732 >>>>>>>>>>>> >>>>>>>>>>>> http://blog.facilelogin.com >>>>>>>>>>>> http://RampartFAQ.com >>>>>>>>>>>> >>>>>>>>>>>> _______________________________________________ >>>>>>>>>>>> Architecture mailing list >>>>>>>>>>>> [email protected] >>>>>>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> -- >>>>>>>>>>> *Amila Suriarachchi* >>>>>>>>>>> >>>>>>>>>>> Software Architect >>>>>>>>>>> WSO2 Inc. ; http://wso2.com >>>>>>>>>>> lean . enterprise . middleware >>>>>>>>>>> >>>>>>>>>>> phone : +94 71 3082805 >>>>>>>>>>> >>>>>>>>>>> _______________________________________________ >>>>>>>>>>> Architecture mailing list >>>>>>>>>>> [email protected] >>>>>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> -- >>>>>>>>>> Thanks & Regards, >>>>>>>>>> Prabath >>>>>>>>>> >>>>>>>>>> Mobile : +94 71 809 6732 >>>>>>>>>> >>>>>>>>>> http://blog.facilelogin.com >>>>>>>>>> http://RampartFAQ.com >>>>>>>>>> >>>>>>>>>> _______________________________________________ >>>>>>>>>> Architecture mailing list >>>>>>>>>> [email protected] >>>>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>>>> >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> -- >>>>>>>>> *Amila Suriarachchi* >>>>>>>>> >>>>>>>>> Software Architect >>>>>>>>> WSO2 Inc. ; http://wso2.com >>>>>>>>> lean . enterprise . middleware >>>>>>>>> >>>>>>>>> phone : +94 71 3082805 >>>>>>>>> >>>>>>>>> _______________________________________________ >>>>>>>>> Architecture mailing list >>>>>>>>> [email protected] >>>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>>> >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> -- >>>>>>>> Thanks & Regards, >>>>>>>> Prabath >>>>>>>> >>>>>>>> Mobile : +94 71 809 6732 >>>>>>>> >>>>>>>> http://blog.facilelogin.com >>>>>>>> http://RampartFAQ.com >>>>>>>> >>>>>>>> _______________________________________________ >>>>>>>> Architecture mailing list >>>>>>>> [email protected] >>>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>>> >>>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> *Amila Suriarachchi* >>>>>>> >>>>>>> Software Architect >>>>>>> WSO2 Inc. ; http://wso2.com >>>>>>> lean . enterprise . middleware >>>>>>> >>>>>>> phone : +94 71 3082805 >>>>>>> >>>>>>> _______________________________________________ >>>>>>> Architecture mailing list >>>>>>> [email protected] >>>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> ============================ >>>>>> Srinath Perera, Ph.D. >>>>>> http://www.cs.indiana.edu/~hperera/ >>>>>> http://srinathsview.blogspot.com/ >>>>>> >>>>>> _______________________________________________ >>>>>> Architecture mailing list >>>>>> [email protected] >>>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>>> >>>>>> >>>>> >>>>> >>>>> -- >>>>> Dimuthu Leelarathne >>>>> Architect & Chair of Solution Management Committee >>>>> >>>>> WSO2, Inc. (http://wso2.com) >>>>> email: [email protected] >>>>> Mobile : 0773661935 >>>>> >>>>> Lean . Enterprise . Middleware >>>>> >>>>> _______________________________________________ >>>>> Architecture mailing list >>>>> [email protected] >>>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>>> >>>>> >>>> >>>> _______________________________________________ >>>> Architecture mailing list >>>> [email protected] >>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>>> >>>> >>> >>> >>> -- >>> Thanks & Regards, >>> Prabath >>> >>> Mobile : +94 71 809 6732 >>> >>> http://blog.facilelogin.com >>> http://RampartFAQ.com >>> >>> _______________________________________________ >>> Architecture mailing list >>> [email protected] >>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >>> >>> >> >> _______________________________________________ >> Architecture mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >> >> > > > -- > *Thanks & Regards, > > Nuwan Bandara > Technical Lead & Member, MC, Development Technologies > WSO2 Inc. - lean . enterprise . middleware | http://wso2.com > blog : http://nuwanbando.com; email: [email protected]; phone: +94 11 763 > 9629 > * > <http://www.nuwanbando.com/> > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > >
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
