Page tree
Skip to end of metadata
Go to start of metadata

On this page:

Target audience:

CAST AI Administrators

Delivery Managers and the Delivery Manager role

The single most important participant in the Delivery process is the Delivery Manager. This person or persons, will be responsible for delivering the source code of the Applications and participating databases for analysis. As the CAST Admin, you need to identify who your Delivery Managers are.

Before your designated Delivery Managers can actually deliver the source code for Application(s), you need to grant them the Delivery Manager role. This is achieved by:

  • assigning a group or groups to a specific domain or domains - all users that are members of the group will then be automatically given the Delivery Manager role for ALL the Applications assigned to the domain(s) in question.
  • or by assigning an individual user to a specific domain or domains - the user will then be automatically given the Delivery Manager role for ALL the Applications assigned to the domain(s) in question.

When a user logs into the CAST AIC Portal, he/she will ONLY be able to see the Domains/Applications for which he/she has been granted the Delivery Manager role.

Note that CAST highly recommends that you read 1.1. Registering new domains and applications in the CAST AIC Portal which explains in more details about Domains and Applications and how to create them.

Assigning groups to domains

The notion of groups functions slightly differently according to the authentication method you are using for the CAST AIC Portal (see CAST AIC Portal - Configuring user authentication):

Authentication ModeBehaviour
Default Authentication

In order to gain the Delivery Manager role for a given Application, the user must be a member of a group that has been assigned to the Domain containing the Application in question. Users are assigned to groups using the application-security-default.xml configuration file (as explained in CAST AIC Portal - Configuring user authentication) - in the example below showing the addition of a user called "jhu", the user is assigned to a group named "DELIVERY_GROUP1":

<prop key="jhu">mypassword,enabled,DELIVERY_GROUP1</prop>
Active Directory with LDAP and Standard LDAP

In order to gain the Delivery Manager role for a given Application, the user must be a member of an Active Directory or LDAP group whose CN (Common Name) matches the name of the group that has been assigned to the domain containing the Application in question.

So, for example, you may wish to create a new Active Directory / LDAP group called "corp.company.delivery" and assign your internal user to that group on your Active Directory / LDAP server. In the CAST AIC Portal GUI, you then need to assign a group called "corp.company.delivery" to the to the domain containing the Application that the user needs to deliver.

Note that only a user with the Platform Administrator role can assign groups to domains.
  • Connect to the CAST AIC Portal using the defined URL, for example: http://server:8080/CAST-AICP
  • Login with a user that is a member of a group that has been assigned the Platform Administrator role, for example the "cast" user if you are using "Default Authentication", or another user that is a member of an LDAP group that has been configured with the Platform Administrator role
  • When successfully connected, a list of Domains will be displayed containing the Applications that need to be delivered.
  • Click the "..." button next to the Domain you want to grant the Delivery Manager role to:

  • Now click the Edit button:

  • In the Domain edit screen, click the Add button to add a group to the current domain and to all Applications assigned to the domain:

  • Now select the Group option in the drop down list box:

  • Enter the group name in the field as shown below and click the tick icon to save the entry - enter either the name of the group as specified in the application-security-default.xml file when working in Default Authentication, or enter the name of the Active Directory / LDAP group that your user(s) belong to:

  • The group will then be active for the current domain and all associated Applications. A user that belongs to the specified group will now automatically have the Delivery Manager role on all Applications in the selected domain - i.e. he/she can deliver Versions and Packages for these Applications.

  • Ensure you click the Update button to save the changes. 
Note that you can add multiple groups to one single domain (click the Add button again and enter a new group name) and you can add the same group to multiple domains.

Assigning an individual user to a domain

  • Connect to the CAST AIC Portal using the defined URL, for example: http://server:8080/CAST-AICP
  • Login with a user that is a member of a group that has been assigned the Platform Administrator role, for example the "cast" user if you are using "Default Authentication", or another user that is a member of an LDAP group that has been configured with the Platform Administrator role
  • When successfully connected, a list of Domains will be displayed containing the Applications that need to be delivered.
  • Click the "..." button next to the Domain you want to grant the Delivery Manager role to:

  • Now click the Edit button:

  • In the Domain edit screen, click the Add button to add a user to the current domain and to all Applications assigned to the domain:

  • Now select the User option in the drop down list box:

  • Enter the name of the user in the field as shown below and click the tick icon to save the entry - enter either the name of the user as specified in the application-security-default.xml file when working in Default Authentication, or enter the name of the Active Directory / LDAP user:

  • The user will then be active for the current domain and all associated Applications. The user will now automatically have the Delivery Manager role on all Applications in the selected domain - i.e. he/she can deliver Versions and Packages for these Applications:

Rename or delete an existing Group/User that has been assigned to a domain

  • To rename or delete an existing Group/User that has been assigned to a domain, move to the Global Rights screen for the domain in question.
  • To delete the Group/User from the domain, click the trash icon next to the domain name - the Group/User will be removed from the domain and the users/groups in question will no longer have the Delivery Manager role:

  • To edit an existing Group/User name, click the Group/User name field and enter the new or modified name. Click the tick icon next to the Group/User name to save the change:

 

When a group/user is deleted from the domain, any users assigned to the group or individual users you have removed will no longer have the Delivery Manager role for the domain's Applications. If they have already used the CAST Delivery Manager Tool to deliver source code for the Application(s) in question prior to the group/user being deleted from the domain, when the users attempt to use the Deliver or Refresh actions in the CAST Delivery Manager Tool they will be prevented from doing so and the following message will be displayed:

Other key participants

Besides the Delivery Manager and Application Owner it is important for the CAST Admin to identify other key analysis participants and stakeholders and gather some initial details about the application target for analysis. This is a recommended best practice during the application on-boarding that will streamline the gathering of qualification information and the quicker resolution of any issue that may arise during the configuration of the analysis and the delivery of the results. This has not been automated with the CAST AIC Portal and may be implemented in different ways. Often this consists of a quick meeting/call between the CAST Admin and the Application Owners. 

Preconditions and assumptions

The application owner has already been briefed about the purpose and objectives of the analysis with CAST AIP during the application wave kick-off meeting*. S/He has an understanding of the overall process and expected outcome. 

*The application wave kick-off meeting and any briefing and communication about the organization of the analysis program and CAST AIP are responsibility of the organization's SQI officer.

Resources

Use this table to gather some basic information about the application that will be analyzed:

IdentificationInput
Application Name 
Application Owner & Contact information 
Typical Release Frequency 
Other Info - Application specific area of interest/ focus 

Consumer and Stakeholder

Name and contact info

Source Code Delivery Manager(s) 

Database Delivery Manager(s)

 

Application Architect

 
Application SME(s)   

Other stakeholders (project manager etc.)

 

Previous: 1.1. Registering new domains and applications in the CAST AIC Portal 
Next: 1.3. Application Qualification

  • No labels