Focus on:  Hide Contributions
Login

INDIGO IAM Technical Hackathon @ CERN - Feb 2025

Europe/Zurich
4/S-020 (CERN)

4/S-020

CERN

10
Show room on map
Description

Please be aware that EUGridPMA https://indico.cern.ch/event/1461429/ will be held at CERN the previous week. Please plan your travel accordingly! 

Overview

Monday: Workshop
Expected Audience: INDIGO IAM Users

---

Tuesday/Wednesday: Hackathon
Expected Audience: INDIGO IAM Developers

Accommodation

  • An economic option is the CERN Hostel, which can be booked via this form
  • There are many hotels in Geneva and near Geneva Airport, all of which are easily accessible via the Tram 

Directions to CERN

On the CERN website you can find directions to CERN.

Public Transport

Transports Publics Genevois (TPG) provide good coverage of the area. If you are staying in a Hotel (not the CERN Hostel) you will be given a complementary travel card. Tram 18 takes you between CERN and the City Centre with a 'Billet Tout Genève validité 60''. Tickets can be purchased from machines at each stop. 

Live Notes
Registration
Participants
Register
WLCG AuthZ Call
Zoom Meeting ID
61554826915
Description
Zoom room for WLCG AuthZ Call
Host
Tom Dack
Alternative hosts
Hannah Short, Maarten Litmaath
Useful links
Join via phone
Zoom URL
  • Monday 10 February
  • Tuesday 11 February
    • 09:00 09:20
      Agenda setting 20m 4/S-020

      4/S-020

      CERN

      10
      Show room on map

      We will try and come up with something that would help remote participants to also join (i.e. rough start times for discussions)

    • 09:00 12:00
      Morning - Hackathon 3h 4/S-020

      4/S-020

      CERN

      10
      Show room on map

      Draft topics include:

      • Use of Opentelemetry
      • Security Assessment

      Slow DB query



      SELECT
        `t0`.`id` AS `a1`,
        `t0`.`approved` AS `a2`,
        `t0`.`client_id` AS `a3`,
        `t0`.`redirect_uri` AS `a4`,
        `t0`.`user_auth_id` AS `a5`
      FROM
        `authentication_holder` `t0`
      WHERE
        (
          (
            `t0`.`id` NOT IN (
              SELECT
                `t1`.`id`
              FROM
                `access_token` `t2`,
                `authentication_holder` `t1`
              WHERE
                (`t1`.`id` = `t2`.`auth_holder_id`)
            )
            AND `t0`.`id` NOT IN (
              SELECT
                `t3`.`id`
              FROM
                `refresh_token` `t4`,
                `authentication_holder` `t3`
              WHERE
                (`t3`.`id` = `t4`.`auth_holder_id`)
            )
          )
          AND `t0`.`id` NOT IN (
            SELECT
              `t5`.`id`
            FROM
              `authentication_holder` `t5`,
              `authorization_code` `t6`
            WHERE
              (`t5`.`id` = `t6`.`auth_holder_id`)
          )
        )
      LIMIT
        ?, ...

       

      Summary: 

      • This seems to be related to the garbage collection, removing tokens
      • It is worse when there is a multi pod set up as each one is doing the same query
      • Options
        • Redirect read only (or delete) queries to a replica using a proxy
        • Make it possible to configure per pod whether garbage collection is done (not a great model as pods would have different config)
        • Remove the garbage collection completely (optionally) and run in a separate process
        • Stop storing these unnecessary objects anyway

       

      Actions: 

      • Berk to try the performance tests with the garbage collection turned off
    • 13:00 16:00
      Afternoon - Hackathon 3h 4/S-020

      4/S-020

      CERN

      10
      Show room on map
    • 13:30 14:30
      Data Centre visit point 1h 4/S-020

      4/S-020

      CERN

      10
      Show room on map
  • Wednesday 12 February
Powered by Indico v3.3.6-pre