From 42f5b0ed89d04ee4a0ccf9384a238bc8451cadeb Mon Sep 17 00:00:00 2001 From: Pavol Mederly Date: Tue, 28 Aug 2018 19:22:18 +0200 Subject: [PATCH 1/2] Update README.md file --- README.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/README.md b/README.md index 434b0f9..60c9042 100644 --- a/README.md +++ b/README.md @@ -3,5 +3,3 @@ Eventually here will be a dockerized version of midPoint suitable for the use within TIER environment. Currently there is [midPoint <-> Grouper integration demo](grouper-midpoint), a work still in progress. - -The documentation will be eventually [here](https://spaces.at.internet2.edu/display/TIERENTREG/midPoint+-+Grouper+integration+demo). From 90a855463c54f7a824ff0d07e7db36bac25fa4ae Mon Sep 17 00:00:00 2001 From: Pavol Mederly Date: Tue, 28 Aug 2018 19:24:13 +0200 Subject: [PATCH 2/2] Update forgotten README.md file --- grouper-midpoint/README.md | 68 ++++++++++++++++++++++++++------------ 1 file changed, 47 insertions(+), 21 deletions(-) diff --git a/grouper-midpoint/README.md b/grouper-midpoint/README.md index 3dc739e..cf7753e 100644 --- a/grouper-midpoint/README.md +++ b/grouper-midpoint/README.md @@ -20,10 +20,25 @@ All files needed to build and compose these containers are in `mp-gr` directory. # Building and starting ## Downloading midPoint -Before building, please build or download current midpoint-3.9-SNAPSHOT-dist.tar.gz file and put it into `mp-gr/midpoint-server` directory. There are the following options: -1. Build midPoint from sources as described [here](https://wiki.evolveum.com/display/midPoint/Building+MidPoint+From+Source+Code) -2. Use `mp-gr/download-midpoint` script -3. Download midPoint manually from [Evolveum Nexus](https://nexus.evolveum.com/nexus/content/repositories/snapshots/com/evolveum/midpoint/dist/3.9-SNAPSHOT/) - note you have to choose the correct version +Before building, please build or download current `midpoint-3.9-SNAPSHOT-dist.tar.gz` file and put it into `mp-gr/midpoint-server` directory. There are the following options: +1. Build midPoint from sources as described [here](https://wiki.evolveum.com/display/midPoint/Building+MidPoint+From+Source+Code). +2. Use `download-midpoint` script. +3. Download midPoint manually from [Evolveum Nexus](https://nexus.evolveum.com/nexus/content/repositories/snapshots/com/evolveum/midpoint/dist/3.9-SNAPSHOT/) (you have to choose the correct version). + +Showing e.g. the second option: + +``` +$ cd grouper-midpoint +$ ./download-midpoint +Downloading midPoint 3.9-SNAPSHOT +----------------------------------------- + % Total % Received % Xferd Average Speed Time Time Time Current + Dload Upload Total Spent Left Speed +100 157M 100 157M 0 0 867k 0 0:03:05 0:03:05 --:--:-- 954k +----------------------------------------- +Checking the download... +OK +``` ## Creating Docker composition @@ -34,10 +49,36 @@ $ cd mp-gr $ docker-compose up --build ``` +This will take a while. You can ignore the following errors: + +``` +Subject API error: error with subject source id: ldap, name: EDU Ldap, problem with getSubject by id, in sources.xml: search searchSubject: , edu.internet2.middleware.subject.SourceUnavailableException: Ldap Exception: Pool is empty and object creation failed +``` + +They occur because the `ldap` subject source is not yet available. + +Finally, you will see notices like these: + +``` +Creating mp-gr_directory_1 ... done +Creating mp-gr_midpoint-data_1 ... done +Creating mp-gr_mq_1 ... done +Creating mp-gr_targets_1 ... done +Creating mp-gr_sources_1 ... done +Creating mp-gr_grouper-data_1 ... done +Creating mp-gr_idp_1 ... done +Creating mp-gr_grouper-daemon_1 ... done +Creating mp-gr_grouper-ui_1 ... done +Creating mp-gr_midpoint-server_1 ... done +Attaching to mp-gr_directory_1, mp-gr_sources_1, mp-gr_targets_1, mp-gr_idp_1, mp-gr_grouper-data_1, mp-gr_mq_1, mp-gr_grouper-daemon_1, mp-gr_midpoint-data_1, mp-gr_grouper-ui_1, mp-gr_midpoint-server_1 +``` + +followed by startup messages from individual Docker containers. + ## Uploading initial objects After Docker containers are up, check that you can log into midPoint at `http://localhost:8080/midpoint` using `administrator/5ecr3t`. -Then execute the following: +Then execute the following (in `grouper-midpoint` directory): ``` $ ./upload-objects @@ -60,19 +101,4 @@ Uploading midpoint-objects/roles/role-grouper-basic.xml (roles, c89f31dd-8d4f-4e Uploading midpoint-objects/roles/metarole-generic-group.xml (roles, c691e15a-f30b-4e15-8445-532db07ceeeb) ``` -## First steps after installation (importing persons, and so on) - -Now log into midPoint as `administrator`, and - -1. Go through all 4 resources, and execute `Test resource` on each of them. Verify that everything is OK (green). -2. Open role `role-grouper-sysadmin` and reconcile it. Verify that LDAP group of `cn=sysadmingroup,ou=Groups,dc=internet2,dc=edu` was created. -3. Manually import `midpoint-objects-manual/tasks/task-import-sis-persons.xml` and wait for its successful completion. It should import 1000 users from SIS Persons and create appropriate midPoint users and LDAP accounts. -4. After the previous task is done, manually import `midpoint-objects-manual/tasks/task-import-sis-courses.xml` and wait for its successful completion. It should import courses for the users from SIS Courses and create appropriate groups and group membership in LDAP. -5. Select Grouper administrator: in midPoint open e.g. user `banderson` and assign him a role `role-grouper-sysadmin`. Also, set up his password to some value, e.g. `password`. Check that he is now member of LDAP group `cn=sysadmingroup,ou=Groups,dc=internet2,dc=edu`. -6. Wait for a minute so that Grouper gets synchronized. Then try to log in as `banderson` using `https://localhost/grouper`. - -# TODO - - - see the TODO items in [wiki page](https://spaces.at.internet2.edu/pages/viewpage.action?spaceKey=TIERENTREG&title=midPoint+-+Grouper+integration+demo) - - performance of initial import from courses (500ms per user) - - fix hardcoded password for grouper loader LDAP +After that you can log into midPoint and continue with steps described [in the After installation section](https://spaces.at.internet2.edu/display/TIERENTREG/midPoint+-+Grouper+integration+demo#midPoint-Grouperintegrationdemo-Afterinstallation) of the integration demo description.