User Story #941 (closed)
Opened 16 years ago
Closed 14 years ago
Add "trusted" capability to OMERO.fs
Reported by: | jamoore | Owned by: | jamoore |
---|---|---|---|
Priority: | critical | Milestone: | OMERO-Beta4.2 |
Component: | Scripting | Keywords: | security, scripting |
Cc: | cxallan, dzmacdonald | Story Points: | n.a. |
Sprint: | 2010-04-16 (7) | Importance: | n.a. |
Total Remaining Time: | n.a. | Estimated Remaining Time: | n.a. |
Description (last modified by jmoore)
Currently to permit scripting it is necessary for an admin to upload a script as an OriginalFile. Trusted files need to be marked so that they are executable. For example,
./omero.fs --add /usr/local/path/matlab --trusted
Change History (7)
comment:1 Changed 16 years ago by jmoore
- Cc donald added
- Component changed from Scripting to OmeroFs
- Description modified (diff)
- Keywords scripting added; omerofs removed
comment:2 Changed 15 years ago by cblackburn
- Milestone changed from OMERO-Beta4 to Future
- Status changed from new to assigned
Moved to Future to clear from 4.0. Needs to be rescheduled.
comment:3 Changed 15 years ago by cxallan
- Milestone changed from Unscheduled to OMERO-Beta4.1
- Version 3.0-M1 deleted
comment:4 Changed 15 years ago by cblackburn
- Milestone changed from OMERO-Beta4.1 to OMERO-Beta4.2
Moving to 4.2. However, r5254 allowing single users to be mapped to directories addresses some of this ticket.
comment:5 Changed 14 years ago by cblackburn
- Component changed from OmeroFs to Scripting
- Owner changed from cblackburn to jmoore
- Status changed from assigned to new
Josh via email: "Whenever a repository is used for scripting, we
will need this. And in fact, it may be the simplest way of letting
users just drop in a script and have it work."
comment:6 Changed 14 years ago by jmoore
- Sprint set to 2010-04-16 (7)
comment:7 Changed 14 years ago by jmoore
- Resolution set to fixed
- Status changed from new to closed
As mentioned under #912,...
As a part of #2073 and #2018 (and tangentially #1740) all official scripts are being placed under lib/scripts and accessed via a ScriptRepositoryI instance. This is a clearer and simpler marker of trust, and allows easier adding of scripts by admins.
This functionality may eventually be useful, but more likely it will be necessary to have a ScriptTemplate in OmeroGrid descriptor. Feel free to open if a use case arises.
As discussed during a May 22 call, the most effective solution to this is to use user-mapping so that OS user X's maps to OMERO user X, and unknown OS user unknown to OMERO will not have their files made visible. The OmeroFs process would have to run as root.
For systems where such a mapping doesn't exist, would it make sense to enable "user" directories:
and any file that gets copied there belongs to user X. The permissions on the directory are then completely up to the sysadmin. OmeroFs will in most cases still need to be run as root.