== Verification of cloud-info-provider.centos7.x86_64-0.8.1 ==

=== Ticket assigned ===

  * [https://rt.egi.eu/rt/Ticket/Display.html?id=13021]

=== Install UMD4 repos ===

NOTE: EPEL already installed

{{{
[root@fedcloud-services yum.repos.d]# pwd
/etc/yum.repos.d

[root@fedcloud-services yum.repos.d]# wget http://repository.egi.eu/sw/production/umd/4/repofiles/sl6/UMD-4-base.repo

[root@fedcloud-services yum.repos.d]# wget http://repository.egi.eu/sw/production/umd/4/repofiles/sl6/UMD-4-updates.repo

[root@fedcloud-services yum.repos.d]# wget http://repository.egi.eu/sw/production/cas/1/current/repo-files/EGI-trustanchors.repo

[root@fedcloud-services ~]# rpm --import http://download.nordugrid.org/RPM-GPG-KEY-nordugrid

[root@fedcloud-services ~]# rpm --import http://repository.egi.eu/sw/production/umd/UMD-RPM-PGP-KEY
}}}

=== Cloud-info-provider repo and installation ===
{{{
[root@fedcloud-services yum.repos.d]# pwd
/etc/yum.repos.d

[root@fedcloud-services yum.repos.d]# wget http://admin-repo.egi.eu/sw/unverified/cmd-one-1.infoprovider.cloud-info-provider.centos7.x86_64/0/8/1/repofiles/INFOPROVIDER.cloud-info-provider.centos7.x86_64.repo

[root@fedcloud-services yum.repos.d]# cat INFOPROVIDER.cloud-info-provider.centos7.x86_64.repo
# EGI Software Repository - REPO META (releaseId,repositoryId,repofileId) - (13021,-,2363)


[INFOPROVIDER.cloud-info-provider.centos7.x86_64]
name=INFOPROVIDER.cloud-info-provider.centos7.x86_64
baseurl=http://admin-repo.egi.eu/sw/unverified/cmd-one-1.infoprovider.cloud-info-provider.centos7.x86_64/0/8/1/
enabled=1
protect=1
priority=1
gpgcheck=1
gpgkey=http://repository.egi.eu/sw/production/umd/UMD-RPM-PGP-KEY

}}}

{{{
[root@fedcloud-services ~]# yum clean all; yum install cloud-info-provider bdii
[.....]
Complete!
}}}

=== Cloud-info-provider configuration ===

{{{
[root@fedcloud-services ~]# cat /var/lib/bdii/gip/provider/cloud-info-provider
#!/bin/bash

cloud-info-provider-service  --yaml-file /etc/cloud-info-provider/bdii.yaml --on-auth oneadmin:xxxxxx --on-rpcxml-endpoint http://fedcloud-one.egi.cesga.es:2633/RPC2 --rocci-template-dir  /opt/rOCCI-server/etc/backends/opennebula/fixtures/resource_tpl/ --middleware opennebularocci
}}}

{{{
[root@fedcloud-services provider]# pwd
/var/lib/bdii/gip/provider

[root@fedcloud-services provider]# chown ldap. cloud-info-provider 

[root@fedcloud-services provider]# chmod +x cloud-info-provider 
}}}

{{{
[root@fedcloud-services cloud-info-provider]# pwd
/etc/cloud-info-provider

[root@fedcloud-services cloud-info-provider]# cp sample.opennebularocci.yaml bdii.yaml
}}}

{{{
[root@fedcloud-services ~]# cat /etc/cloud-info-provider/bdii.yaml
site:
    # Your site name, as in GODCB (if omitted or set to None, this value is
    # retreived from /etc/glite-info-static/site/site.cfg )
    name: CESGA

    # Site url
    url: http://www.cesga.es
    # Production level
    #production_level: production
    # Two digit country code
    country: ES
    # Site Longitude
    longitude: -8.553147
    # Site Latitude
    latitude: 42.875558
    # Your affiliated NGI
    ngi: NGI_IBERGRID
    # Contact email
    general_contact: grid-admin@cesga.es
    # User support email
    user_support_contact: grid-admin@cesga.es
    # Sysadmin contact email
    sysadmin_contact: grid-admin@cesga.es
    # Security contacts email email
    security_contact: grid-admin@cesga.es
    # User support email
    bdii_host: fedcloud-services.egi.cesga.es
    # User support email
    bdii_port: 2170

compute:
    # Total number of cores available
    total_cores: 16
    # Total RAM available (GB)
    total_ram: 32
    # Hypervisor name (e.g. KVM, Xen, etc.)
    hypervisor: KVM
    # Hypervisor version
    hypervisor_version: 1.5.3
    # Middleware used (e.g. OpenNebula, CloudStack, OpenStack, etc)
    middleware: OpenNebula
    # Middleware version
    middleware_version: 5.2.1
    # Middleware developer
    middleware_developer: OpenNebula Team
    # Service Production level (testing, candidate, production...)
    service_production_level: candidate
    # Service capabilities
    capabilities:
        - cloud.managementSystem

    endpoints:
        defaults:
            api_authn_method: X509-VOMS
            production_level: production

        https://fedcloud-services.egi.cesga.es:11443:
            endpoint_url: https://fedcloud-services.egi.cesga.es:11443
            api_type: OCCI
            api_version: 1.1


#        https://cloud-service01.example.org:2633/RPC2:
#            endpoint_url: https://cloud-service01.example.org:2633/RPC2
#            api_type: ON-XML-RPC
#            api_version: 2
#            api_endpoint_technology: REST

#        https://cloud-service02.example.org:9869:
#            endpoint_url: https://cloud-service02.example.org:9869
#            api_type: Sunstone GUI
#            api_version: 4.6

    # Templates are retreived automatically from rOCCI-server
    templates:
        defaults:
            platform: amd64
            network: public

    # Images are retreived automatically by the endpoint
    images:
        defaults:
            platform: amd64
            schema: http://occi.fedcloud-services.egi.cesga.es/occi/infrastructure/os_tpl
}}}

(!) Some firewall tuning
{{{
[root@fedcloud-services ~]# firewall-cmd --permanent --add-port=2170/tcp
success

[root@fedcloud-services ~]# firewall-cmd --reload
success
}}}

Finally, enable bdii service:
{{{
[root@fedcloud-services ~]# chkconfig  bdii on

[root@fedcloud-services ~]# service bdii start
}}}

=== Testing ===
{{{
[rdiez@ui ~]$ ldapsearch -x -H ldap://lcg-bdii.cern.ch:2170 -b GLUE2DomainID=CESGA,GLUE2GroupID=grid,o=glue GLUE2EndpointInterfaceName=OCCI 
# extended LDIF
#
# LDAPv3
# base <GLUE2DomainID=CESGA,GLUE2GroupID=grid,o=glue> with scope subtree
# filter: GLUE2EndpointInterfaceName=OCCI
# requesting: ALL
#

# https://fedcloud-services.egi.cesga.es:11443_OCCI_1.1_X509-VOMS, fedcloud-ser
 vices.egi.cesga.es_cloud.compute, cloud, CESGA, grid, glue
dn: GLUE2EndpointID=https://fedcloud-services.egi.cesga.es:11443_OCCI_1.1_X509
 -VOMS,GLUE2ServiceID=fedcloud-services.egi.cesga.es_cloud.compute,GLUE2GroupI
 D=cloud,GLUE2DomainID=CESGA,GLUE2GroupID=grid,o=glue
GLUE2EndpointInterfaceName: OCCI
GLUE2EndpointQualityLevel: production
objectClass: GLUE2Entity
objectClass: GLUE2Endpoint
objectClass: GLUE2ComputingEndpoint
GLUE2EndpointImplementationName: OpenNebula
GLUE2EndpointImplementor: OpenNebula Team
GLUE2EndpointInterfaceVersion: 1.1
GLUE2EndpointURL: https://fedcloud-services.egi.cesga.es:11443
GLUE2EntityOtherInfo: Authn=X509-VOMS
GLUE2EndpointCapability: ['cloud.managementSystem']
GLUE2ComputingEndpointComputingServiceForeignKey: fedcloud-services.egi.cesga.
 es_cloud.compute
GLUE2EndpointServiceForeignKey: fedcloud-services.egi.cesga.es_cloud.compute
GLUE2EndpointImplementationVersion: 5.2.1
GLUE2EndpointID: https://fedcloud-services.egi.cesga.es:11443_OCCI_1.1_X509-VO
 MS
GLUE2EndpointTechnology: None
GLUE2EndpointHealthState: ok
GLUE2EndpointServingState: production

# search result
search: 2
result: 0 Success

# numResponses: 2
# numEntries: 1
}}}

=== Finding world-writable files in the packages contents ===
{{{
[root@fedcloud-services ~]# rpm -qalv | egrep "^[-d]([-r][-w][-xs]){2}[-r]w"
drwxrwxrwt    2 root    root                        0 nov  5  2016 /tmp
drwxrwxrwt    2 root    root                        0 nov  5  2016 /var/tmp
}}}