Forum OpenACS Development: Some 4.X questions, and comments, including adding wizards to the package spec and complaints about subsites

Wizards

Hi all, we've been working on a new 4.2tcl site, and learning some interesting things. One thing we've done is added the concept of a wizard, which a package can run on mount. We've updated a small number of places in the core (is this acs-kernel package?) to do this.

Is there an area to put the patches for those who don't have commit privs?

Subsites and the Request Processor, and Forking

Secondly, we have been puzzling for some time over how best to do subsites. For key modules in the core, there are a number of ugly versioning problems that come up when someone tries to edit them, and replace the existing versions. Here's an example:

You want a module which provides subsite features, like templating, etc. BUT, you also want to create your own hierarchy of custom scripts for the subsite. You might want two different types of these modified subsites on the same system.

You have a problem. If you change the subsite module, and increase the version number, you are breaking the development path for the subsite module, and essentially forking, even though the changes are specific to one site. Also, it won't be clear to people which subsite module does what. And, this method won't support two types of modified subsites on the same system.

On the other hand, if you change the package key, you have a problem, because the Request processor walks up the node tree to determine the nearest package with a "subsite" package key for purposes of figuring out who does the templating. This is a general problem; packages and the request processor do not use the "provided services" information for a package to determine how to interact with a package, they just use the package key. This is short sighted, and non-optimal.

Can we have a discussion about what it would take to change the system to use services information, rather than package keys? A naive method would add at least one select per request, which is a bummer. (But, not the worst thing that's been done in the ACS 4 in terms of performance.)

Relational Segment Woes

Finally, we are killing ourselves on the groups data model, and the concept of relational segments. Can anyone here explain why these are better than member-in-a-role system we had in 3.X, given the extra overhead of using them?

Wizards are a fantastic idea. If you could walk a site admin
through the customization process every time a package in
instantiated (with the option for them to quit out if they'd rather do
it through the regular admin interface), that would be a big win.

On the groups, we've discovered a number of interesting things, which I'll record some of here for posterity --

If you want to create a subsite that will have a group which can be considered admins, and a group that can be considered members, you need to undertake the following steps. (Marc Hildenbrand can follow up here if I get it wrong).

• Create an Application Group associated with the package_id. You can't use the normal group::new interface, you need to use the application_group::new proc.
• Grant admin on the application group to at least one party.
• Create two groups, one called Members, one called Admins.
• Grant admin on members to the Admin group.
• Grant admin on the subsite to the Admin group.
• construct a composition relationship between the application group, and each of the two groups.
• Add the admin party on the application group to the Admins group.

You've now got a subsite with one uber-Admin, who can add people to the Admins group, and a set of Admins who can add members, as well as administer the subsite.

Of course we want this rolled in and released, but we don't have time right now to sort out the versioning issues, so I just released it with a key and version number next in sequence. I'm not convinced this is the best way to release it; hence my plea. As far as availability, this code is released; I just don't want this particular module traded around as subsites-4.2.1 to the general public without a little more work on our side (code review) and a better community strategy for how to release these things. Does that make sense?

Relational Segments

Relational segments are just a way of defining relations to groups, and they consist of unique pairs of group_id's and rel_type's. So a relational segment might be something like the members of group A, or the components of group B.

So far, the only use that I've seen for this in acs 4.x is to define constraints on membership and composition relations. Such as constraining membership relations between users and groups, and constraining composition relations between groups.

Constraints can be specified, so that you can say that I want all members of group B to also be members of group C. Or you can say that you want group X to be a component of group Y. You can also have more than one constraint on each 'side' of a relationship, and you can extend relationship types and add your own attributes to a relation, so relation types and their constraints can be arbitrarily complex.

Not only can you describe something like the member-in-a-role approach used in acs 3.x, but you can describe and constrain other types of relationships used in acs 3.x that were thrown together in an ad-hoc fashion for each new package. The advantage to the acs 4.x approach is that the relationships are described and accessed using a consistant interface.

So the price for this higher level of abstraction, is a longer learning curve and poorer performance due to the complexity of the implementation, balanced against having a consistent interface that supports arbitrarily complex modeling of relationships. It's hard to say now if it is a win, having not tried to apply the new relations concepts to new module development or to a new site development project, but it's likely that for most development projects, a small set of patterns will emerge that are useful when using the relations/constraints/segments code in acs 4.x.

acs 4.x definitely requires more of an up-front investment in learning, before you can become productive when using the toolkit. This will be turn-off for alot of people who were originally drawn to the acs toolkit, because it provided alot of functionality, and yet, it was easy to learn.

Not only will you not see any benefit for small sites, but the complexity might actually get in your way and slow your development progress.  This might be balanced by other areas in openacs 4.x, such as the new db api or the templating system - both which should boost productivity in large or small site development projects.

For small sites, using something like openacs 3.2.5 or acs 3.4.10 (if you need oracle) might be more appropriate.

The question I have is whether or not we can hide the complexity for modeling the old group member/role approach behind an appropriately-designed package with a decent admin UI, one that the site designer could install optionally if it were adequate for their site's needs.

That group member/role seemed adequate for a lot of smaller, simpler sites.

Speaking of wizards, groups, members, and roles, (Hey, are we
playing Dungeons and Dragons here, or what?), would it be
possible to build wizard utilities that help admins set up the
required groups and import members into roles when
intantiating a package? One of the most confusing aspects of
the ACS admin (particularly around modules with complex group
management, such as intranet) is having to go to the separate
groups admin page, figure out which groups to turn on and who
to put into them, and then go back to the admin pages for the
packages you wanted to work on in the first place.

One of the most confusing aspects of the ACS admin (particularly around modules with complex group management, such as intranet) is having to go to the separate groups admin page, figure out which groups to turn on and who to put into them, and then go back to the admin pages for the packages you wanted to work on in the first place.

Hmmm...what I find most confusing about ACS 3.x administration is that after you figure out all the above, you then learn that the use of groups and roles for different packages are all different! Some packages can be administered by the sysadmin, others can't. Some have a special admin group, others use membership in the package's overall group with an admin role. Eck.

I think the above descriptions of relational segments are a little confusing and inaccurate.

Using Michael's example of students in a class modeled as an acs group, you might create a new relationship type 'learning' for students and another type 'teaching' for professors. Both students and professors are now members of the group, and you can treat them as a whole for purposes of permissions, spam etc.

It is also useful to treat the students and professors as seperate groups, for example to assign professors some extra privilege such as bboard admin. You could create a new group and add the professors, making sure to keep membership in both groups in sync, or you can use relational segments.

Relational segemnts define the members of a group based on some existing relationship they have to another group.