Jesse M. Pearson Lixivial

## confluence_export.sh
#!/bin/bash
# set -x
# Jesse Pearson
# Shell script to output all Confluence Spaces to PDF and optionally
# push them to a SMB or some other share.
#
# Dependencies:
# wget
#
# Optional dependencies:

## dbdump_to_sqlite.pl
#!/usr/bin/perl

use strict;
use DBI;
use XML::Simple;
use Getopt::Mixed;

# static vars to emulate boolean behaviour.
use constant false => 0;
use constant true  => 1;

## gist:3867838

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                Lixivial
                / gist:3867838
            
            
              Created Oct 10, 2012
            
          
      View gist:3867838
  
    
    Unhandled guidelines:

DG 1-6 (HSTS headers need to be investigated)
DG 2-2
DG 2-3
DG 2-8 (username should be considered sensitive)
DG 3-1 (need to expose this in a general sense)
DG 3-7 (need to review this in code)
DG 3-9 (need to acquire access to their blacklist and then check submitted passwords against it)
DG 3-12 (need to confirm this with Jodi)


## email.txt
Flow of email through Amazon            _________________                 ________________________
                                       /                 \               /                        \
 ___________________________           |  regional relay |               |       postini failover |
/                           \      +--->     primary.mx. <---+--smtp-+---> outbounds6.obsmtp.com. <-----------------+
|                     web-1 |      |   |                 |   |           |                        |                 |
|       primary.apache.web. |      |   \_________________/   |           \________________________/                 |
|   ________       _______  |      |    _________________    |            ____________________________________      |    ___________
|  /        \     /       \ |      |   /                 \   |           /                                    \     |   /           \
|  |  php   |     |       | |      |   |  regional relay |   |           |                Amazon SES fai

## srs-questions.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                Lixivial
                / srs-questions.md
            
            
              Created Jul 3, 2013
            
          
      View srs-questions.md
  
    
    Database schema where applicable.
I'd like to discuss this to get a sense of how you guys interpret relationships between data. I'm particularly curious about the following relationships specifically (please forgive me if I'm misusing terms; I'm trying to keep the terms consistent with what I recall you mentioning), but the more schema the merrier here:

Realms -> Clients
Institutions -> Realms -- particularly in how I seem to recall this being at a yearly level, but I get the sense you have some clients with multiple "cycle runs" a year.
Applicants -> Realms
Applications -> Realms
Applications -> Applicants

Integration needs
This is specifically regarding client's security requirements of data transmission and storage compliance.

  
## code_deployments
Code migration and deployment procedures

Outlined below is how code is migrated from branches to trunk with flagged notes outlining where the target
environments actually are.

It also outlines various scenarios, and base term definitions can be found below the diagram.

Diagram

       +--------------------------------+

## auth_env.txt
SA Auth Environment

The purpose of this environment is to take internal directory services and expose them to constituent
environments in a secure and scalable way.

On the internal side (designated SA LAN), we have our domain controller forest. This is represented by
two domain controllers at the moment whose sync process is not outlined in this diagram.

For the external auth environment, we have n-number of backend authentication storage providers. Backend
providers could include:

## isms_production_diagram.txt
iSMS Production Diagram

This diagram is a fairly straightforward load balanced web tier with a clustered database tier scenario. Since our usage expectations can be modeled and predicted there is little need for a distinct hardware load balancer resident between web and database tiers. I think we can generally trust the SQL Server controller node(s) to sufficiently route db traffic to the correct partitioned cluster. Since elasticity is not a primary concern, session coherence will be managed with sticky sesssions on the load balancers. The prevailing requirement on the web, database (and likely domain controller) servers is that it'll be running Windows. The mail relays may be Linux-based running sendmail or postfix.

All connections to public-facing infrastructure -- whether they be over HTTPS or LDAPS -- are restricted to Scholarship America public IP addresses. This can be achieved either at each constituent endpoint (web and backup domain controller) or directly via the VPN box. Our eapp environment cur

## basic_deployment_
Basic document management deployment.

eapp and isms both use inforouter for document management facilities; the front-ends for these are scaled
independent of the UI front-ends. The only bottleneck and single point of failure is the metadata db,
which by Inforouter's definition must be a single database.

The inforouter fs cluster is still slightly undefined at the moment. I'm hoping we can use any standard filesystem
providers. If we were to use s3, we may need an arbitration subsystem to act as a gatekeeper and translate inforouter calls
into HTTP REST calls.

## map_pack.sh
#!/bin/bash
# map_pack.sh - Jesse M. Pearson (Lixivial)
# contact: jesall@gmail.com
#
# Description:
# A simple script meant to break up Nexuiz maps into individual
# gametypes.
#
# Things to note:
# 1. The files generated/used are mostly self-contained to the script's execution directory.
	#!/bin/bash
	# set -x
	# Jesse Pearson
	# Shell script to output all Confluence Spaces to PDF and optionally
	# push them to a SMB or some other share.
	#
	# Dependencies:
	# wget
	#
	# Optional dependencies:
	#!/usr/bin/perl

	use strict;
	use DBI;
	use XML::Simple;
	use Getopt::Mixed;

	# static vars to emulate boolean behaviour.
	use constant false => 0;
	use constant true => 1;
	Flow of email through Amazon _________________ ________________________
	/ \ / \
	___________________________ \| regional relay \| \| postini failover \|
	/ \ +---> primary.mx. <---+--smtp-+---> outbounds6.obsmtp.com. <-----------------+
	\| web-1 \| \| \| \| \| \| \| \|
	\| primary.apache.web. \| \| \_________________/ \| \________________________/ \|
	\| ________ _______ \| \| _________________ \| ____________________________________ \| ___________
	\| / \ / \ \| \| / \ \| / \ \| / \
	\| \| php \| \| \| \| \| \| regional relay \| \| \| Amazon SES fai
	Code migration and deployment procedures

	Outlined below is how code is migrated from branches to trunk with flagged notes outlining where the target
	environments actually are.

	It also outlines various scenarios, and base term definitions can be found below the diagram.

	Diagram

	+--------------------------------+
	SA Auth Environment

	The purpose of this environment is to take internal directory services and expose them to constituent
	environments in a secure and scalable way.

	On the internal side (designated SA LAN), we have our domain controller forest. This is represented by
	two domain controllers at the moment whose sync process is not outlined in this diagram.

	For the external auth environment, we have n-number of backend authentication storage providers. Backend
	providers could include:
	iSMS Production Diagram

	This diagram is a fairly straightforward load balanced web tier with a clustered database tier scenario. Since our usage expectations can be modeled and predicted there is little need for a distinct hardware load balancer resident between web and database tiers. I think we can generally trust the SQL Server controller node(s) to sufficiently route db traffic to the correct partitioned cluster. Since elasticity is not a primary concern, session coherence will be managed with sticky sesssions on the load balancers. The prevailing requirement on the web, database (and likely domain controller) servers is that it'll be running Windows. The mail relays may be Linux-based running sendmail or postfix.

	All connections to public-facing infrastructure -- whether they be over HTTPS or LDAPS -- are restricted to Scholarship America public IP addresses. This can be achieved either at each constituent endpoint (web and backup domain controller) or directly via the VPN box. Our eapp environment cur
	Basic document management deployment.

	eapp and isms both use inforouter for document management facilities; the front-ends for these are scaled
	independent of the UI front-ends. The only bottleneck and single point of failure is the metadata db,
	which by Inforouter's definition must be a single database.

	The inforouter fs cluster is still slightly undefined at the moment. I'm hoping we can use any standard filesystem
	providers. If we were to use s3, we may need an arbitration subsystem to act as a gatekeeper and translate inforouter calls
	into HTTP REST calls.
	#!/bin/bash
	# map_pack.sh - Jesse M. Pearson (Lixivial)
	# contact: jesall@gmail.com
	#
	# Description:
	# A simple script meant to break up Nexuiz maps into individual
	# gametypes.
	#
	# Things to note:
	# 1. The files generated/used are mostly self-contained to the script's execution directory.