mrvanes
commented
5 months ago Open baszoetekouw opened 5 months ago
mrvanes
commented
5 months ago 
baszoetekouw
commented
5 months ago This needs to be deployed for test2.
baszoetekouw
commented
2 months ago We have an updated metadata tools machine for SC, lets put in on there. For the old TAP, we keep the current metadata servicer.
Pyff's memory requirements are ridiculous, and not suitable for the SC docker environment. Therefore, let's just replace Pyff by a simple bash script that selects the correct entities and resigns the XML.
We could then move the scripts from a docker how to a regular SURFconext management host. As a bonus, this would make metadata signing using HSMs possible.
See https://gitlab.surf.nl/surfconext/surfconext-metadata-publish for inspiration on how SURFconext handles this (specifically the
sign_metadata.shscrip)t.