Overview
This set of docker images supports a demonstration of the TIER architecture, and how it can be used for role-based access control (RBAC) in a complex setting. For more information about this demo, see https://docs.google.com/presentation/d/1n34dLtyjMJReQ-OTDTWOJ4bFzTIJwwIRB7PPwPUCgik/edit#slide=id.g1f209ebfc7_0_0 ` The Group Docker image is based on Unicon's work, and contains a fully built Ldap, MySql, and Grouper environment. The Grouper component has the Grouper UI, Grouper Web Services, and an active Grouper Daemon which runs the Grouper Loader and PSP modules.
This image does not follow best Docker practices. It is intended from demo/class usage. It can also be useful for use as a base image for Grouper development.
Running
To run the demo:
$ [TODO: INSERT DOCKER COMPOSE COMMAND HERE]
You can log into the Grouper UI with "banderson/password". The account is a sysadmin. Also available is "jsmith/password", which has no explicit privs. There are lots of "user" accounts that have dumby course memberships.
TODO: change admin account to "tieradmin"?
The LDAP admin bind account is "cn=admin,dc=example,dc=edu/password". The MySql admin account is "root/".
Building
From source:
$ ./build.sh
This will build each container needed.
Authors
-
James Babb (james.babb@wisc.edu)
-
Tom Jordan (tom.jordan@wisc.edu)
-
TIER API & Entity Registry Working Group (tier-api@internet2.edu)
-
Based on Unicon Grouper Demo Container by:
- John Gasper (jgasper@unicon.net)
- David Langenberg (dlangenberg@unicon.net)