[OpenAFS] AFS design question: implementing AFS over a highly-distributed, low-bandwidth network

Derrick Brashear shadow@gmail.com
Mon, 19 Jan 2009 14:30:44 -0500

On Mon, Jan 19, 2009 at 2:18 PM, Chaz Chandler <clc31@inbox.com> wrote:
>>> 2) There is no good AFS-based solution for group shares in this
>>> scenario.
>> i don't agree with that, but it depends on your interpretation.
> Ah, good.  What would you recommend?

once you've opened the door for scripts on top of afs, you can use the
same pts database in all cells, by propagating from a master cell.

users aklog to all cells at login, and then group shares "just work"
in whatever cell the share is in. you obviously have to read and write
from the cell the content's in, but it's not really sharing if the
connectivity isn't there?

> True, but is it as simple as adding an afs/newcell@REALM principle and making sure the users get tokens for all cells?

yup (well, and making the keyfile for the cell in question use that key)