REVIEW-33: SDIACT-203 Update oa4mp.xsede.org to support OAuth 2.0 - Test Readiness Review

XSEDE users have the ability to delegate a short­-lived certificate issued by the XSEDE MyProxy service to a Science Gateway using the XSEDE OA4MP (OAuth for MyProxy) service. The OA4MP service currently supports OAuth 1.0. SDIACT-203 involves updating the OAuth 1.0 service with the latest enhancements/fixes as well as adding support for OAuth 2.0 and OpenID Connect, as required for compatibility with Globus Auth.

• (Shava) Inca section in deployment plan is incorrect
  • Developer removed Inca section once realized just Nagios tests needed changing; since OA4MP can only be used interactively via a web browser, Inca tests are not possible
• (Choonhan) Clarify roles of administrator and developer parts in test plan
  • Developer updated new version of the test plan
• (Peter) Clarify instructions for how to activate an XSEDE GridFTP end-point with oa4mp.xsede.org
  • Developer updated deployment plan
• (Shava) Combine two developer documents for OAuth 1 and OAuth 2
  • Developer clarified that the OAuth 2 developer document should replace the older OAuth 1 developer document.
• (Choonhan) Oauth1 admin doc has same title as Oauth 2 admin doc
  • Developer fixed titles
• (Choonhan) URL to Tomcat 8 is incorrect
  • Developer checked in Tomcat 8 to SVN and corrected URL
• (Choonhan) Hard coded path to key tool in test-clients-install.sh
  • Developer corrected path to default on Linux systems

Software (use the latest revision below)

• https://software.xsede.org/svn/sdi/activities/sdiact-203/trunk/Packages

Documentation

• Introduction
  • XSEDE OAuth page
• Design/Security overview
  • Design doc (docx, pdf)
• Installation guide
  • OA4MP-OAuth1-ClientApproval-Process.txt
  • OA4MP-OAuth2-OIDC-ClientApproval-Process.txt
  • SSLCERT-Maintenance.txt
• Deployment Plan
  • SDIACT-203 Deployment Plan
• User guide
  • OA4MP-OAuth2-OIDC-Gateway-Developers.txt
• Defect, issue, and risk reporting
  • See SDIACT-203 test plan below
• Acceptance test plan
  • Test Plan (docx, pdf)
• Testing resources
  • test-oa4mp.iu.xsede.org (Peter)
  • hpcdev-pub04.sdsc.edu (Choonhan)

Package information: All software packages (e.g., server and client packages) for this CI are listed.

Documentation and Installation instructions: The deployment plan for this CI on XSEDE is clearly described as well as the installation instructions and any XSEDE specific configuration instructions.

Test environment and facilities: The test environment needed to adequately to validate this component is described. Should indicate also whether testing can be performed within a VM and if not, the reasons for it.

Assumptions: Lists any assumptions needed before testing can begin (e.g., accounts needed).

Test procedures, cases, and scenarios: Lists the tests that should be run or an associated test suite and expected performance metrics if applicable.

Defect, issue, and risk reporting: Deployment plans should include defect and issue reporting information. The testing plan could reference that same information from the deployment plan, or provide alternate information if defects and issues need to be reported differently during testing. Risks, as well as defects and issues, should be part of the testing report.