Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DDM: protocol handlers for tokens and declaration-items #17406

Closed
3 tasks
roperzh opened this issue Mar 6, 2024 · 2 comments
Closed
3 tasks

DDM: protocol handlers for tokens and declaration-items #17406

roperzh opened this issue Mar 6, 2024 · 2 comments
Assignees
@gillespi314
Labels
~backend Backend-related issue. #g-mdm MDM product group P2 Prioritize as urgent :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. ~sub-task A technical sub-task that is part of a story. (Not QA'd. Not estimated.)
Milestone
4.48.0

Comments

@roperzh
Copy link
Member

roperzh commented Mar 6, 2024
edited

  • Add logic to our nano callback functions to switch based on the mdm.DeclarativeManagement.Endpoint attribute you get here:

fleet/server/service/apple_mdm.go

Lines 2357 to 2359 in 03d1493

func (svc *MDMAppleCheckinAndCommandService) DeclarativeManagement(*mdm.Request, *mdm.DeclarativeManagement) ([]byte, error) {
return nil, nil
}

  • For the tokens endpoint, grab the ID of the host's team, and retrieve the the hash of the declarations for that team from team_declaration_checksum_view. Respond with a TokensResponse
{
    "DeclarationsToken": "team-hash-here",
    "Timestamp": "team-hash-timestamp-here"
}
  • For the declaration-items, grab the host's team, and build a DeclarationItemsResponse based on the entries in mdm_apple_declarations, include both configurations and activations
@roperzh roperzh added #g-mdm MDM product group :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. :product Product Design department (shows up on 🦢 Drafting board) and removed :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. labels Mar 6, 2024
@georgekarrv
Copy link
Member

Hey team! Please add your planning poker estimate with Zenhub @dantecatalfamo @ghernandez345 @gillespi314 @jahzielv @mna @roperzh

@georgekarrv georgekarrv added :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. ~sub-task A technical sub-task that is part of a story. (Not QA'd. Not estimated.) ~backend Backend-related issue. and removed :product Product Design department (shows up on 🦢 Drafting board) labels Mar 11, 2024
@lukeheath lukeheath added this to the 4.48.0-tentative milestone Mar 11, 2024
@georgekarrv georgekarrv added the P2 Prioritize as urgent label Mar 14, 2024
@fleet-release
Copy link
Contributor

Tokens and declarations,
Secure teams with affirmations,
Fleet's device relations.

In the glass city's glow,
Data flows in streams below,
Fleet's logic makes it so.

Device paths, now clear,
Through cloud's security sphere,
Fleet's promise is near.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gillespi314 gillespi314

Labels
~backend Backend-related issue. #g-mdm MDM product group P2 Prioritize as urgent :release Ready to write code. Scheduled in a release. See "Making changes" in handbook. ~sub-task A technical sub-task that is part of a story. (Not QA'd. Not estimated.)
Milestone
4.48.0
Development

No branches or pull requests
5 participants
@georgekarrv @lukeheath @roperzh @gillespi314 @fleet-release