2004-12-02 22:56:49 +00:00
|
|
|
<?php
|
|
|
|
require_once("docutil.php");
|
|
|
|
|
2005-01-16 21:38:16 +00:00
|
|
|
page_head("Account management systems");
|
2004-12-02 22:56:49 +00:00
|
|
|
|
|
|
|
echo "
|
|
|
|
<p>
|
2005-06-01 19:05:36 +00:00
|
|
|
To create an account with BOINC projects, a participant must:
|
2004-12-26 02:59:13 +00:00
|
|
|
<ul>
|
2005-08-29 23:06:57 +00:00
|
|
|
<li> Locate BOINC project web sites, e.g. using Google.
|
|
|
|
<li> Read the web sites, and decide which to join;
|
2005-01-16 21:38:16 +00:00
|
|
|
<li> Download and install the BOINC client software.
|
|
|
|
</ul>
|
2004-12-26 02:59:13 +00:00
|
|
|
and then for each selected project:
|
2005-01-16 21:38:16 +00:00
|
|
|
<ul>
|
2005-08-29 23:06:57 +00:00
|
|
|
<li> Go through the Attach to Project wizard.
|
2004-12-02 22:56:49 +00:00
|
|
|
</ul>
|
|
|
|
|
|
|
|
<p>
|
2005-01-19 21:53:46 +00:00
|
|
|
If the participant chooses N projects,
|
2005-08-29 23:06:57 +00:00
|
|
|
there are N web sites to visit and N Wizards to complete.
|
2005-01-16 21:38:16 +00:00
|
|
|
This is tedious if there are lots of projects.
|
2004-12-26 02:59:13 +00:00
|
|
|
|
|
|
|
<p>
|
2005-01-16 21:38:16 +00:00
|
|
|
This document describes BOINC's support for <b>account management systems</b>,
|
|
|
|
which streamline the process of finding and joining BOINC projects.
|
|
|
|
A typical account management system is implemented as a web site.
|
2005-01-19 21:53:46 +00:00
|
|
|
The participant experience is:
|
2005-01-16 21:38:16 +00:00
|
|
|
<ul>
|
|
|
|
<li> Visit the account manager site,
|
|
|
|
set up a 'meta-account' (name, email, password),
|
|
|
|
browse a list of projects, and click checkboxes to select projects.
|
|
|
|
<li> Download and install the BOINC client software from the account manager.
|
|
|
|
<li> Enter the meta-account name and password in a BOINC client dialog.
|
|
|
|
</ul>
|
2005-08-29 23:06:57 +00:00
|
|
|
This requires many fewer interactions than the manual approach.
|
2004-12-02 22:56:49 +00:00
|
|
|
|
2005-01-16 21:38:16 +00:00
|
|
|
<h2>Implementation</h2>
|
2004-12-02 22:56:49 +00:00
|
|
|
<p>
|
2005-01-16 21:38:16 +00:00
|
|
|
An account management system works as follows:
|
|
|
|
<br>
|
2005-08-29 23:06:57 +00:00
|
|
|
<img src=acct_mgt2.png>
|
2005-01-16 21:38:16 +00:00
|
|
|
<br>
|
2004-12-02 22:56:49 +00:00
|
|
|
|
2005-01-16 21:38:16 +00:00
|
|
|
<ol>
|
|
|
|
<li> The participant sets up his meta-account and selects projects.
|
|
|
|
<li> The account manager issues a <b>create account</b> RPC
|
|
|
|
to each selected project.
|
2005-08-29 23:06:57 +00:00
|
|
|
<li>
|
2005-01-19 21:53:46 +00:00
|
|
|
the participant downloads and installs the BOINC client software
|
2005-01-16 21:38:16 +00:00
|
|
|
from the account manager.
|
|
|
|
The install package includes a file
|
2005-06-01 19:05:36 +00:00
|
|
|
(specific to the account manager)
|
2005-01-16 21:38:16 +00:00
|
|
|
containing the URL of the account manager.
|
|
|
|
<li> The BOINC client runs, and asks the participant to enter
|
|
|
|
the name and password of his meta-account.
|
2006-01-06 23:13:21 +00:00
|
|
|
<li> The BOINC client does an RPC
|
2005-01-16 21:38:16 +00:00
|
|
|
to the account manager, obtaining a list of accounts.
|
|
|
|
It then attaches to these accounts and proceeds.
|
|
|
|
</ol>
|
2005-04-19 19:50:58 +00:00
|
|
|
|
2005-12-19 07:42:40 +00:00
|
|
|
RPCs to create, look up, and modify accounts
|
2005-06-15 04:53:08 +00:00
|
|
|
are described <a href=web_rpc.php>here</a>.
|
|
|
|
|
2006-01-06 23:13:21 +00:00
|
|
|
<h2>Security</h2>
|
|
|
|
<p>
|
|
|
|
If hackers break into an account manager server,
|
|
|
|
they could potentially cause the account manager
|
|
|
|
to instruct all its clients to attach to malicious a BOINC project
|
|
|
|
that runs a malicious application.
|
|
|
|
|
|
|
|
<p>
|
|
|
|
To prevent this type of attack, the URLs distributed by
|
|
|
|
an account manager are digitally signed.
|
|
|
|
Each AM has its own <b>signing key</b> pair.
|
|
|
|
The public key is distributed with the AM's configuration file
|
|
|
|
and in all RPC replies.
|
|
|
|
The private key should be stored only on a physically secure,
|
|
|
|
non-connected host that is used to sign URLs.
|
|
|
|
|
|
|
|
<p>
|
|
|
|
To sign URLs, download the BOINC software on a Linux machine,
|
|
|
|
and compile the program that generates keys and signs things (lib/crypt_prog).
|
|
|
|
Then generate a key pair and generate signatures for your URLs.
|
|
|
|
At some point you'll need to commit to a permanent key pair,
|
|
|
|
at which point you should move the private key to
|
|
|
|
the signing machine (disconnected) and make sure there are
|
|
|
|
no copies of it elsewhere.
|
|
|
|
Make a copy or two on CD-ROM also, or just print it out on paper.
|
|
|
|
|
|
|
|
<p>
|
|
|
|
Instructions for downloading/compiling code are <a href=compile.php>here</a>.
|
|
|
|
<p>
|
|
|
|
Instructions for using the crypto program are <a href=key_setup.php>here</a>
|
|
|
|
|
|
|
|
<h2>Farm managers</h2>
|
|
|
|
<p>
|
|
|
|
The AM mechanism can also be used to implement systems for
|
|
|
|
configuring and controlling BOINC on large clusters.
|
|
|
|
We call such systems <b>farm managers</b>.
|
|
|
|
Farm managers may want to provide fine-grained control over clients,
|
|
|
|
e.g. the ability to suspend/resume results.
|
|
|
|
This can be done using GUI RPCs (assuming that the farm manager able
|
|
|
|
to contact clients via HTTP on the GUI RPC port).
|
|
|
|
However, the farm manager must learn the GUI RPC port and password
|
|
|
|
for each client.
|
|
|
|
To support this, the AM configuration file (see below) can specify
|
|
|
|
that the GUI RPC port and password are to be included in each AM RPC request.
|
|
|
|
<p>
|
|
|
|
If a farm manager uses GUI RPC to attach/detach projects,
|
|
|
|
it should not use the AM mechanism for this purpose.
|
|
|
|
I.e., its AM RPC replies should not list any projects.
|
|
|
|
The function of the AM mechanism, in this case,
|
|
|
|
is to allow sysadmins to set up new clients by copying files.
|
|
|
|
The AM mechanism takes care of registering new clients centrally.
|
|
|
|
|
2005-04-19 19:50:58 +00:00
|
|
|
<h2>Core client functionality</h2>
|
|
|
|
<p>
|
|
|
|
The BOINC core client uses the following files to
|
|
|
|
keep track of account manager information.
|
|
|
|
<dl>
|
|
|
|
<dt>
|
|
|
|
<b>acct_mgr_url.xml</b>
|
|
|
|
<dd>
|
|
|
|
This file identifies the account manager.
|
|
|
|
It is typically bundled with the BOINC client in
|
|
|
|
an installer package.
|
|
|
|
Its format is:
|
|
|
|
".html_text("
|
|
|
|
<acct_mgr>
|
|
|
|
<name>Name of BOINC account management system</name>
|
|
|
|
<url>http://acctmgr.com/</url>
|
2006-01-06 23:13:21 +00:00
|
|
|
[ <send_gui_rpc_info/> ]
|
|
|
|
<signing_key>
|
|
|
|
1024
|
|
|
|
ae843acebd4c7250b0fa575d14971b17a56a386a6bb1733d98f4b00460c26159
|
|
|
|
c8b3217e6cdff938ec0454330c70553fbe3d1f0d0184d8c628db2e093121ee98
|
|
|
|
8ddbda6e8991879317afccab41f84e9de4903a656f4d3f3e4e7dbc0af9362a05
|
|
|
|
6ece5ff401a380f3a1d1254d477f7bc84fdcebcca6cb035e776452d3d6d21471
|
|
|
|
0000000000000000000000000000000000000000000000000000000000000000
|
|
|
|
0000000000000000000000000000000000000000000000000000000000000000
|
|
|
|
0000000000000000000000000000000000000000000000000000000000000000
|
|
|
|
0000000000000000000000000000000000000000000000000000000000010001
|
|
|
|
.
|
|
|
|
</signing_key>
|
2005-04-19 19:50:58 +00:00
|
|
|
</acct_mgr>
|
|
|
|
")."
|
|
|
|
|
2005-09-29 23:18:33 +00:00
|
|
|
<p>
|
2006-01-06 23:13:21 +00:00
|
|
|
The URL is that of the account manager's web site.
|
|
|
|
<p>
|
|
|
|
If the <send_gui_rpc_info/> tag is present,
|
|
|
|
account manager RPCs will include
|
|
|
|
the client's GUI RPC port and password hash (see below).
|
|
|
|
|
2005-09-29 23:18:33 +00:00
|
|
|
|
2005-04-19 19:50:58 +00:00
|
|
|
<dt>
|
|
|
|
<b>acct_mgr_login.xml</b>
|
|
|
|
<dd>
|
|
|
|
This file contains meta-account information.
|
|
|
|
Its format is:
|
|
|
|
".html_text("
|
|
|
|
<acct_mgr_login>
|
|
|
|
<login>name</login>
|
2005-12-14 01:44:11 +00:00
|
|
|
<password_hash>xxx</password_hash>
|
2005-04-19 19:50:58 +00:00
|
|
|
</acct_mgr_login>
|
|
|
|
")."
|
|
|
|
</dl>
|
2005-12-14 01:44:11 +00:00
|
|
|
<p>
|
|
|
|
The password is stored as MD5(password_lowercase(login)).
|
|
|
|
<p>
|
2005-04-19 19:50:58 +00:00
|
|
|
If the core client finds acct_mgr_url.xml but not acct_mgr_login.xml,
|
|
|
|
it prompts for a name and password,
|
|
|
|
stores them in acct_mgr_login.xml,
|
|
|
|
and makes an account manager RPC.
|
|
|
|
The core client offers menu items for making an account manager RPC,
|
|
|
|
and for changing the name/password.
|
|
|
|
|
2006-01-06 23:13:21 +00:00
|
|
|
<h2>Account manager RPCs</h2>
|
|
|
|
<p>
|
|
|
|
An account manager must provide a
|
|
|
|
<a href=project_config.php>get_project_config.php</a> file
|
|
|
|
containing its name and minimum password length,
|
|
|
|
and containing a <code> <account_manager/></code> tag.
|
|
|
|
<p>
|
|
|
|
In addition, an account manager must provide the following RPC,
|
|
|
|
which uses an HTTP POST request.
|
2005-01-16 21:38:16 +00:00
|
|
|
";
|
|
|
|
|
|
|
|
list_start();
|
2005-09-29 23:18:33 +00:00
|
|
|
list_item("URL", "<b>BASE_URL/rpc.php</b>, where BASE_URL is the URL
|
|
|
|
of the account manager web site.");
|
2005-12-10 02:21:06 +00:00
|
|
|
list_item("input", html_text("
|
|
|
|
<acct_mgr_request>
|
|
|
|
<name>John</name>
|
2005-12-14 01:44:11 +00:00
|
|
|
<password_hash>xxx</password_hash>
|
2005-12-10 02:21:06 +00:00
|
|
|
<host_cpid>b11ddc5f36c9a86ff093c96e6930646a</host_cpid>
|
|
|
|
<client_version>5.3.2</client_version>
|
|
|
|
<run_mode>auto</run_mode>
|
|
|
|
<project>
|
|
|
|
<url>http://setiathome.berkeley.edu/</url>
|
|
|
|
<project_name>SETI@home</project_name>
|
|
|
|
<suspended_via_gui>0</suspended_via_gui>
|
|
|
|
</project>
|
2006-01-06 23:13:21 +00:00
|
|
|
[ <gui_rpc_port>N</gui_rpc_port> ]
|
|
|
|
[ <gui_rpc_password>xxxx</gui_rpc_password> ]
|
2005-12-10 02:21:06 +00:00
|
|
|
...
|
|
|
|
</acct_mgr_request>
|
|
|
|
")
|
2005-01-16 21:38:16 +00:00
|
|
|
);
|
|
|
|
list_item("output",
|
2005-06-21 17:54:10 +00:00
|
|
|
html_text("<acct_mgr_reply>
|
|
|
|
<name>Account Manager Name</name>
|
2005-12-14 23:43:50 +00:00
|
|
|
<signing_key>
|
|
|
|
1024
|
|
|
|
ae843acebd4c7250b0fa575d14971b17a56a386a6bb1733d98f4b00460c26159
|
|
|
|
c8b3217e6cdff938ec0454330c70553fbe3d1f0d0184d8c628db2e093121ee98
|
|
|
|
8ddbda6e8991879317afccab41f84e9de4903a656f4d3f3e4e7dbc0af9362a05
|
|
|
|
6ece5ff401a380f3a1d1254d477f7bc84fdcebcca6cb035e776452d3d6d21471
|
|
|
|
0000000000000000000000000000000000000000000000000000000000000000
|
|
|
|
0000000000000000000000000000000000000000000000000000000000000000
|
|
|
|
0000000000000000000000000000000000000000000000000000000000000000
|
|
|
|
0000000000000000000000000000000000000000000000000000000000010001
|
|
|
|
.
|
|
|
|
</signing_key>
|
2005-02-25 21:31:46 +00:00
|
|
|
[ <error>MSG</error> ]
|
2005-11-26 00:12:44 +00:00
|
|
|
[ <repeat_sec>xxx</repeat_sec> ]
|
2005-06-21 17:54:10 +00:00
|
|
|
[
|
|
|
|
<account>
|
|
|
|
<url>URL</url>
|
2005-12-14 23:43:50 +00:00
|
|
|
<url_signature>
|
|
|
|
397d250e02ec02be8141b8d196a118d909d5ec73e592ed50f9d0ad1ce5bf87de
|
|
|
|
e37f48079db76128b20f913a04e911489330a7cab8c346177f1682d236bc7201
|
|
|
|
42b32665d0d83474bf12aebd97b2bb9a4c4461fa3f0b49bbd40ecfa16715ced7
|
|
|
|
f72103eb0995be77cac54f253c0ba639a814d3293646ae11894e9d1367a98790
|
|
|
|
.
|
|
|
|
</url_signature>
|
2005-06-21 17:54:10 +00:00
|
|
|
<authenticator>KEY</authenticator>
|
2005-12-09 07:12:56 +00:00
|
|
|
[ <detach/> ]
|
2005-02-25 21:31:46 +00:00
|
|
|
</account>
|
2005-06-21 17:54:10 +00:00
|
|
|
...
|
2005-02-25 21:31:46 +00:00
|
|
|
]
|
2005-06-21 17:54:10 +00:00
|
|
|
</acct_mgr_reply>")
|
2005-02-25 21:31:46 +00:00
|
|
|
);
|
|
|
|
list_item("action",
|
2005-11-26 00:12:44 +00:00
|
|
|
"Returns a list of the accounts associated with this meta-account.
|
2005-12-14 23:43:50 +00:00
|
|
|
The arguments are:
|
|
|
|
<dl>
|
|
|
|
<dt>password_hash
|
|
|
|
<dd>
|
|
|
|
the account password, hashed as MD5(password_lowercase(name)).
|
|
|
|
<dt>host_cpid
|
|
|
|
<dd>
|
|
|
|
Identifies the host.
|
2005-11-26 00:12:44 +00:00
|
|
|
To make it comparable with the host CPID in stats files,
|
2005-12-09 07:12:56 +00:00
|
|
|
the value MD5(host_cpid+email_addr) is passed.
|
2006-01-06 23:13:21 +00:00
|
|
|
<dt> run mode
|
|
|
|
<dd> The current mode (always/auto/never).
|
|
|
|
<dt> gui_rpc_port, gui_rpc_password
|
|
|
|
<dd> GUI RPC information.
|
|
|
|
Included only if the <send_gui_rpc_info> element
|
|
|
|
is included in the AM URL file (see above).
|
2005-12-14 23:43:50 +00:00
|
|
|
</dl>
|
2006-01-06 23:13:21 +00:00
|
|
|
In addition, a list of projects and their suspended flags is included.
|
|
|
|
<p>
|
2005-12-14 23:43:50 +00:00
|
|
|
The return values are:
|
|
|
|
<dl>
|
|
|
|
<dt>repeat_sec
|
|
|
|
<dd>
|
|
|
|
A time interval after which another RPC should be done.
|
|
|
|
<dt> signing_key
|
2005-12-18 02:00:15 +00:00
|
|
|
<dd>
|
2005-12-14 23:43:50 +00:00
|
|
|
The public key used to sign URLs, in an encoded notation.
|
|
|
|
Use the BOINC <a href=key_setup.php>crypt_prog</a> program to generate this.
|
|
|
|
</dl>
|
|
|
|
For each account, the following items are returned:
|
|
|
|
<dl>
|
|
|
|
<dt>url
|
|
|
|
<dd>The project URL
|
|
|
|
<dt>url_signature
|
|
|
|
<dd>A signature for the URL.
|
|
|
|
Use the BOINC <a href=key_setup.php>crypt_prog</a> program to generate this.
|
|
|
|
<dt>authenticator
|
|
|
|
<dd>The account's authenticator.
|
|
|
|
<dt>detach
|
|
|
|
<dd>If present, the client should detach this project.
|
|
|
|
</dl>
|
2005-06-28 19:25:52 +00:00
|
|
|
NOTE: the XML must be as above, with the <url>
|
|
|
|
and <authenticator> elements on a single line,
|
|
|
|
and the <account> and </account> tags
|
|
|
|
on separate lines."
|
2005-01-16 21:38:16 +00:00
|
|
|
);
|
|
|
|
list_end();
|
2004-12-02 22:56:49 +00:00
|
|
|
|
|
|
|
page_tail();
|
|
|
|
?>
|