From email conversation:
Hi Jan, Pavel, Lukas CESNET WAYF-based eduTEAMS disco has been in operational for some time and I enjoy it very much! Yet, in terms of GÉANT Product Lifecycle Management (PLM) it is still in "Pilot". We still need to do some bureaucracy to get it into "Production", meaning some paperwork and formal decision based on that. Fortunately I have two sources: * a document calledService-offer-wayf-eduteam-final.pdf or "Service offer - WAYF/DS for eduTEAMS" from April 2017 But please confirm that this was indeed the latest, agreed-on version > Lukas: This version is the latest version that I'm aware of. It is also the > version that was used when Ann submitted the change request regarding > the CESNET manpower increase. * the very good documentation on the eduTEAMS Discovery Wiki. From these I was able to cross out the following items: -Service Specification -User Docs -Operation Level Agreement So we don't need to worry about those now. What I still need is: -Some info on the agreement between CESNET-GEANT? Which month was it signed? Was it a separate contract or a GEANT project thing or whatever? I just need some reference/metadata on this agreement that I can provide in the documentation, not the contract itself. I was looking into Lukas' RASP VC notes for this info but there are too many. >Lukas: To my knowledge, this was not signed (and may not need signature). In > March 2017 Ann wrote: > "For the rest of it [600EUR/month], the simplest way to fund would be > for CESNET to quote an amount of manpower or 'other costs' (have to > check with tryfon which applies) which we would then pay on to them as a > partner T2." > AFAIK this approach is also used for other NREN's (PSNC) to compensate > them for some of the VM infrastructure that they provide to the project. -GDPR stuff: Data inventory, Privacy Note, Data Processing Addendum. What I have established so far by looking at the discovery itself -- discovery.eduteams.org does not store a cookie for the client which is nice from data protection perspective -- it does not store the IdP filters either So the data inventory looks helpfully simple. Yet I will need info on the logs and data retention. Also, if it so happens that you have any privacy policy that applies, let me know. I'm still figuring this out but I think a complex policy stuff will need to be written, that will explain the how this service is offered by GEANT, but via CESNET. > On the eduTEAMS Privacy Policies page > (https://wiki.geant.org/display/ED/Privacy+Policies) you will find the > link to the DS privacy policy: > https://wiki.geant.org/display/ED/eduTEAMS+Discovery+Service+Privacy+Policy - monitoring You already monitor and operate the service within CESNET. Yet, as GEANT operations will want to have it's own monitoring, too. If you have some tools that you can share, especially if zabbix-compatible in this area, that is helpful. I intend to have the Budapest guys to implement some tests with the tool behat, that will involve a complete SP-DISCO-IDP-SP round trip - but only if you haven't done something already that you are willing to share. -reports. The offer document mentions reporting, which is great because it is necessary for the PLM also. I need some info on those reports, maybe actual examples. Eventually there will be a service manager on GEANT side that will be the recipient of those. > Lukas: There are no regular reports in form of a document but there are some > statistics that could easily be used for reports: > https://ds-stats.eduid.cz/eduteams/