the electronic logbook @ the ttf vuv-fel making the …€¦ · · 2005-05-101 10. may 2005 ......
TRANSCRIPT
1
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
The electronic LogbookThe electronic Logbook@ the TTF VUV@ the TTF VUV--FELFEL
Making the next stepMaking the next step
R. Kammering-MVP-
DESY in Hamburg
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
OverviewOverview
• Introduction
• The TTF e-logbook– The basic technology– How does it look like?– Changes since the first version
• E-logs @ XYZ
• Security: Authentication, authorization, …
• Conclusions / The next step
2
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
IntroductionIntroduction
The days before the electronic …The days before the electronic …
log[Encyclopædia Britannica]
also called maritime log instrument for measuring the speed of a ship through water. The first practical log, developed about 1600, consisted of a pie-shaped log chip with a lead weight on its curved edge that caused it to float upright and resist towing. When the logwas tossed overboard, it remained more or less stationary while an attached line (marked off with equally spaced knots) was let outbehind…
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
?
IntroductionIntroductionThe 20'th century 2002 - The year of the XML hype
2003 - the elog got standard
Year 20XXToday
3
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Classic client – server architecture:
User programclient
Web browserclient
e-logbookWeb server
Text+
images
HTML+
JPEGor
Combinedcontent
Print Upload,typing
Text+
images
The TTF eThe TTF e--logbooklogbook
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
The TTF eThe TTF e--logbooklogbook
UNIX pipe - script
User programclient
Web browserclient
e-logbook folder
XML
e.g.PS
PS JPEG
HTML PDF
XSLT / XSL FO
JAVA servlets
XSLXMLXMLXML
2. Store convert create
2. Read3. Create
4. Combinecontent layout
1. Print 1. Request 5. Response
Web serverservlet engine
e-logbook server
4
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Let’s have a look:
External:https://ttfinfo.desy.de/TTFelog-secure
Internal:http://ttfinfo.desy.de/TTFelog
The TTF eThe TTF e--logbooklogbook
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Navigation
Status info.
Generate PDF
Edit entry
Create new entry
Main window
Automatic hyper linking
Powerfulsearch
The TTF eThe TTF e--logbooklogbook
Integrated shift summary
5
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Set of (configurable) standard information
Mail to an expert
File upload
Spellchecker
Edit windowThe TTF eThe TTF e--logbooklogbook
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Complex tree structures possible
Many supported data formats
Short abstract(gets indexed)
The TTF eThe TTF e--logbooklogbookNatural integration of documentation
6
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
TTF VUV-FEL document tree:• > 600 entries• > 200 Mb (mostly) PDF documents• fully integrated into elog (fast access)• support for MS/Open Office formats
underway
The TTF eThe TTF e--logbooklogbook
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
The TTF eThe TTF e--logbooklogbook
Changes since the first version:
all HTML code ported to JSP (Java Server Pages)to allow:
1. parameterization of e-logbook specific values2. one central (XML) conf. file per e-logbook3. access this values via JSTL (Java Server Pages Standard Tag Library) from within every JSP files
7
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
<!-- define the name of the logbook, displayed on each page --><name>DAQ eLogBook</name>
…<!-- period to create a new shift --><!-- formats are: Y = year, M = month, W = week, D = day, 3 = 3 shifts a day --><new_shift>M</new_shift>
<!-- language code, possible values: en, de --><lang_code>en</lang_code>
<!-- date formatting, posssible formats are: --><!-- date_fmt>MM/dd/yyyy</date_fmt --><!-- date_fmt>yyyy-MM-dd</date_fmt --><date_fmt>dd.MM.yyyy</date_fmt>
<!-- title string for each shift in strftime(3C) format --><title_date>%B %Y</title_date>
<!-- Shall text be 'above' or 'beside' the images --><!-- text_pos>above</text_pos --><text_pos>beside</text_pos>
…<!-- Background color for overall style of the HTML pages (standard rgb notation)--><bgcolor>ffffff</bgcolor>
logbook name
shift period
language setting
date format
date title format
text layout
background color
Central e-logbook configuration file
The TTF eThe TTF e--logbooklogbook
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
per e-logbook conf. file allows modular XSL architecture:
XML XSL
HTML
elog.xsl conf.xml
keywords
spellchecker
ORACLE
work.xmlimports +
get datafrom conf.
include rules
includeoracle.xsl
oracle.xslinclude
parse
finalXSL
…
The TTF eThe TTF e--logbooklogbook
8
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
• Storing of shift data to ORACLE DB (JDBC Java Database Connectivity)
• Acquisition of machine statistics (ORACLE)
The TTF eThe TTF e--logbooklogbook
Further changes: Interoperability
Beam statistics
Down times
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Bold to emphasize
Lists to order things
Tables are more readable
Lines to comment
The TTF eThe TTF e--logbooklogbook
Links
Further changes: Markup functionality (Wiki style)
9
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
EE--log @ XYZlog @ XYZ
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
the motherof all these elogs
Thanks: S. Karstensen, D. Sertore,P. Krejcik and J. Tsai for the snapshots
The TTF elog The TTF elog got popular …got popular …
EE--log @ XYZ log @ XYZ
10
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Some statistics:TTF elog is in operation since: Oct. 2001
> 41000 entries have been made
~ 18Gb graphical data / ~25Mb ASCII text
Today >30 TTF like e-logbooksare running on ~12 servers
…
EE--log @ XYZ log @ XYZ
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
0
200
400
600
800
1000
1200
Nov-02
Dec-02
Jan-03
Feb-03
Mar-03
Apr-03
May-03
Jun-03
Jul-03
Aug-03
Sep-03
Oct-03
Nov-03
Dec-03
Jan-04
Feb-04
Mar-04
Apr-04
May-04
Jun-04
Jul-04
Aug-04
Sep-04
Oct-04
Nov-04
Dec-04
Jan-05
Feb-05
Date
# of
vis
itors
shut
dow
n
shut
dow
n
rebu
ildin
g of
TTF
to V
UV-
FEL
First SASE
Trend?
SecureaccessAll users
EE--log @ XYZ log @ XYZ
ttfinfo.desy.de - Number of unique visitors
11
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Security: Authenti., authori.Security: Authenti., authori.
Stepwise integration of security:
0. No authentication (2002 version)
1. (multiple-) sign on (since 2005)
2. Single sign on (SSO)
3. Cross domain SSO (CDSSO)
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Security: Authenti., authori.Security: Authenti., authori.
Today's security architecture
DESY Intranet
Internet
Elogbookserver
LDAPserver
NISserver
WorkstationWorkstationWorkstation
WorkstationWorkstation
ext. elog user
SynchronizationNIS-LDAP
Authenticationon LDAP server
Firewall
User requestspage (https)
12
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Security: Authenti., authori.Security: Authenti., authori.
Login procedure
The DIT
(directory information tree)
Authentication
User
Login.jsp
LDA
P
e-logbook
Protectedapplication
1. https request
2. authenticate(via JNDI)
3. set session
4. redirect
c=de
o=desy
ou=ttf
ou=people
uid=rehlich uid=kammer uid=xyz
ou=group
ou=TomcatRole
cn=TTFbudget cn=TTFelog cn=XYZRole
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Security: Authenti., authori.Security: Authenti., authori.
SSO - possible architecture
DESY Intranet
Internet
Elogbookserver X
Identityserver
ext. elog user
Identity serverauthenticates on
LDAP server
User requeststwo secured pages
LDAPserver
PolicyAgent
Firewall
Policy agent redirectsto identity server
Elogbookserver Y
PolicyAgent
13
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Conclusions• Acceptance of e-logbook is overwhelming
• Ease for cloning was/is high priority
• World wide accessibility is very important
• e-logbook is a must for any kind of remote operation
• Still much could be done (collaborations?)
ConclusionsConclusions
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Security• Implement SSO authorization schema• Extend authorization to DOOCS …
The next step …The next step …
Elog-core• Extend configurable parameters• Harden automated elog installation• …
14
10. May 2005 Technisches Seminar DESY in Zeuthen, R. Kammering
Online resources:The TTF e-logbook technology:
http://tesla.desy.de/doocs/elogbooke-logbook for testing:
http://gan.desy.de/guestelogthe central TTF e-logbook server:
https://ttfinfo.desy.de
Thanks for your attention!Thanks for your attention!