From email conversation:

Hi Jan, Pavel, Lukas
CESNET WAYF-based eduTEAMS disco has been in operational for some time and I enjoy it very much!


Yet, in terms of GÉANT Product Lifecycle Management (PLM)
 it is still in "Pilot". We still need to do some bureaucracy to get it 
into "Production", meaning some paperwork and formal decision based on 
that. 


Fortunately I have two sources:

* a document calledService-offer-wayf-eduteam-final.pdf or "Service offer - WAYF/DS for eduTEAMS" from April 2017

But please confirm that this was indeed the latest, agreed-on version
> Lukas: This version is the latest version that I'm aware of. It is also the

> version that was used when Ann submitted the change request regarding

> the CESNET manpower increase.


* the very good documentation on the eduTEAMS Discovery Wiki. 


From these I was able to cross out the following items:

-Service Specification

-User Docs

-Operation Level Agreement


So we don't need to worry about those now. 


What I still need is:

-Some
 info on the agreement between CESNET-GEANT? Which month was it signed? 
Was it a separate contract or a GEANT project thing or whatever? I just 
need some reference/metadata on this agreement that I can provide in the
 documentation, not the contract itself. I was looking into Lukas' RASP VC notes for this info but there are too many.
>Lukas: To my knowledge, this was not signed (and may not need signature). In

> March 2017 Ann wrote:

> "For the rest of it [600EUR/month], the simplest way to fund would be

> for CESNET to quote an amount of manpower or 'other costs' (have to

> check with tryfon which applies) which we would then pay on to them as a
> partner T2."

> AFAIK this approach is also used for other NREN's (PSNC) to compensate

> them for some of the VM infrastructure that they provide to the project.


-GDPR
 stuff: Data inventory, Privacy Note, Data Processing Addendum. What I 
have established so far by looking at the discovery itself

-- discovery.eduteams.org does not store a cookie for the client which is nice from data protection perspective

-- it does not store the IdP filters either


So
 the data inventory looks helpfully simple. Yet I will need info on the 
logs and data retention. Also, if it so happens that you have any 
privacy policy that applies, let me know. I'm still figuring this out 
but I think a complex policy stuff will need to be written, that will 
explain the how this service is offered by GEANT, but via CESNET. 

> On the eduTEAMS Privacy Policies page

> (https://wiki.geant.org/display/ED/Privacy+Policies) you will find the

> link to the DS privacy policy:

> https://wiki.geant.org/display/ED/eduTEAMS+Discovery+Service+Privacy+Policy


- monitoring

You
 already monitor and operate the service within CESNET. Yet, as GEANT 
operations will want to have it's own monitoring, too. If you have some 
tools that you can share, especially if zabbix-compatible in this area, 
that is helpful. I intend to have the Budapest guys to implement some 
tests with the tool behat, that will involve a complete SP-DISCO-IDP-SP 
round trip - but only if you haven't done something already that you are
 willing to share. 


-reports. The offer document mentions reporting, which is great because it is necessary for the PLM
 also. I need some info on those reports, maybe actual examples. 
Eventually there will be a service manager on GEANT side that will be 
the recipient of those.
> Lukas: There are no regular reports in form of a document but there are some
> statistics that could easily be used for reports:

> https://ds-stats.eduid.cz/eduteams/



  • No labels