From 336b0b4def873989bd96ec198a98c96c426df2e7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andreas=20=C3=85kre=20Solberg?= <andreas.solberg@uninett.no>
Date: Fri, 13 Mar 2009 17:14:12 +0000
Subject: [PATCH] Adding text about automated metadata management from Nuno G

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@1410 44740490-163a-0410-bde0-09ae8108e29a
---
 docs/simplesamlphp-automated_metadata.txt | 154 ++++++++++++++++++++++
 docs/simplesamlphp-changelog.txt          |   4 +-
 2 files changed, 155 insertions(+), 3 deletions(-)

diff --git a/docs/simplesamlphp-automated_metadata.txt b/docs/simplesamlphp-automated_metadata.txt
index 946c5b95d..a3e68f73e 100644
--- a/docs/simplesamlphp-automated_metadata.txt
+++ b/docs/simplesamlphp-automated_metadata.txt
@@ -52,7 +52,161 @@ I reccomend to first test on the command line to parse the metadata URL.
 We use the `-s` option to send output to console (for testing purposes). If the output makes sense, continue. If you get a lot of error messages, send an e-mail to the simpleSAMLphp list and ask for advice.
 
 
+Below is the documentation provided by Nuno GonĂ§alves <nuno@fccn.pt>
 
 
 
 
+# ENABLING MODULE CRON 
+
+
+
+	[root@simplesamlphp] cd /var/simplesamlphp/modules/cron 
+	[root@simplesamlphp cron] touch enable
+	[root@simplesamlphp cron] cp config-templates/*.php Â ../../config/
+
+
+At `/var/simplesamlphp/config`
+
+	[root@simplesamlphp-teste config]# vi module_cron.php
+
+edit:
+
+	$config = array (
+	Â Â Â Â Â Â Â 'key' => 'kb10fu2sao',
+	Â Â Â Â Â Â Â 'allowed_tags' => array('daily', 'hourly', 'frequent'),
+	Â Â Â Â Â Â Â 'debug_message' => TRUE,
+	Â Â Â Â Â Â Â 'sendemail' => TRUE,
+	
+	);
+
+Then: With your browser go to => https://simplesamlphp_machine/simplesaml/module.php/cron/croninfo.php
+
+And copy the cron's sugestion: 
+
+	-------------------------------------------------------------------------------------------------------------------
+	Cron is a way to run things regularly on unix systems.
+	
+	Here is a suggestion for a crontab file:
+	
+	# Run cron [daily]
+	02 0 * * * curl --silent "https://simplesamlphp-teste.fccn.pt/simplesaml/module.php/cron/cron.php?key=kb10fu2sao&tag=daily" > /dev/null 2>&1
+	# Run cron [hourly]
+	01 * * * * curl --silent "https://simplesamlphp-teste.fccn.pt/simplesaml/module.php/cron/cron.php?key=kb10fu2sao&tag=hourly" > /dev/null 2>&1
+	# Run cron [frequent]
+	XXXXXXXXXX curl --silent "https://simplesamlphp-teste.fccn.pt/simplesaml/module.php/cron/cron.php?key=kb10fu2sao&tag=frequent" > /dev/null 2>&1
+		Click here to run the cron jobs: 
+	
+	Run cron [daily]
+	Run cron [hourly]
+	Run cron [frequent] 
+	-------------------------------------------------------------------------------------------------------------------
+
+Add to CRON with
+
+	[root@simplesamlphp config]# crontab -e
+
+
+
+Errors
+------
+
+Problem with sanitycheck module
+
+When executing [Run cron [daily]] ==> an error shows up 
+
+Cause : module sanitycheck Â ==> It is active by default (`/var/simplesamlphp/modules/sanitycheck/default-enable`) 
+
+  * When executing Cron daily It will search all active modules and it executes the hook_cron.php for each one of them in :
+		`/var/simplesamlphp/modules/<nome_modulo>/hooks/hooks_cron.php`
+
+Meanwhile it is waiting that each module conf file exists in the folder: `/var/simplesamlphp/config/config-<nome_modulo>.php`
+
+It should exist one for the sanitycheck module => `config-sanitycheck.php` but it wasn't there and therefore the error showed up.
+
+Giving an error at this modules it aborted execution for the next active modules.
+
+
+
+ENABLE MODULE METAREFRESH 
+-------------------------
+
+  * Enable cron module
+
+
+At `/var/simplesamlphp/modules/metarefresh`
+
+
+	[root@simplesamlphp metarefresh] touch enable
+	[root@simplesamlphp metarefresh] cp config-templates/*.php Â ../../config/
+
+
+
+At `/var/simplesamlphp/config/`
+
+
+	[root@simplesamlphp config]# vi config-metarefresh.php
+
+edit:
+
+	$config = array( 'sets' => array(
+	
+	Â Â Â Â Â Â Â 				'federation_name' => array(
+							Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'cron' Â Â Â Â Â Â Â Â Â => array('hourly'),
+							Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'sources' Â Â Â Â Â Â => array(
+											Â Â Â Â Â Â Â Â Â Â array(
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 								'src' => 'http://metadata_server/Federation_metadata_file.xml'
+										Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â ),
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 									),
+							Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'maxCache' Â Â Â Â Â Â Â Â Â Â Â Â Â => 60*60*24*4, // Maximum 4 days cache time.
+							Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'maxDuration' Â Â => 60*60*24*10, // Maximum 10 days duration on ValidUntil.
+							Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'outputDir' Â Â Â Â => 'metadata/federation_name/',
+							Â Â Â Â Â Â Â ),
+	
+			));
+
+
+
+	TEMPLATE FILE : /var/simplesamlphp/modules/metarefresh/config-templates/config-metarefresh.php
+
+
+	$config = array(
+	
+	Â Â Â Â Â Â Â 'kalmar' => array(
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'cron' Â Â Â Â Â Â Â Â Â => array('hourly'),
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'sources' Â Â Â Â Â Â => array(
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â array(
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'src' => 'https://aitta.funet.fi/haka/haka_test_metadata_signed.xml',
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'certFingerprint' => '22:1D:EA:E3:2C:EB:A3:2D:78:72:B6:F4:E9:52:F6:23:31:5A:A5:3D',
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'template' => array(
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'tags' Â => array('kalmar'),
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â ),
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â ),
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â ),
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'maxCache' Â Â Â Â Â Â Â Â Â Â Â Â Â => 60*60*24*4, // Maximum 4 days cache time.
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'maxDuration' Â Â => 60*60*24*10, // Maximum 10 days duration on ValidUntil.
+	Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 'outputDir' Â Â Â Â => 'metadata/metadata-kalmar-consuming/',
+	Â Â Â Â Â Â Â ),
+	
+	);
+
+
+At the Element sources the CERTFINGERPRINT => is for signed metadata ?
+What is this variable for ? Â TEMPLATE TAGS
+
+
+  * Add write permissions to apache in 'outputDir'
+
+
+
+Then configure your simpleSAMLphp installation to use the generated metadata: 
+
+In config.php: 
+
+	'metadata.sources' => array(
+		array('type' => 'flatfile'),
+		array('type' => 'flatfile', 'directory' => 'metadata/federation'),
+	),
+
+
+
diff --git a/docs/simplesamlphp-changelog.txt b/docs/simplesamlphp-changelog.txt
index e70ff1a8a..ae51b4721 100644
--- a/docs/simplesamlphp-changelog.txt
+++ b/docs/simplesamlphp-changelog.txt
@@ -2,9 +2,7 @@ simpleSAMLphp changelog
 =======================
 
 
-Here is changes between simpleSAMLphp versions. Look here if you
-are upgrading, to see if there are any changes to the config
-format.
+Here is changes between simpleSAMLphp versions. Look here if you are upgrading, to see if there are any changes to the config format.
 
 ## Version 1.4
 
-- 
GitLab