Lingoport Suite Product Security

From Lingoport Wiki
Revision as of 23:33, 27 November 2017 by Masnes (talk | contribs) (Masnes moved page Security to Lingoport Suite Product Security without leaving a redirect)
Jump to: navigation, search

Here is general information about the security setup for the Lingoport Suite. This covers a description of the different Lingoport Suite components, and the data path between them.

Component

Globalyzer

Scan code and detect internationalization (i18n) issues

  • Globalyzer Server: Store regex pattern based 'rule sets' used to detect i18n issues and filter out false positives.

Server at Globalyzer.com

  • Globalyzer Clients: Connects to server and logs in. Downloads rule set from server. Uses rule set to scan code (no code is sent to the server!). May push rule set changes. Display i18n issues.
    • Run on developer machines
    • Run on Linux system (light-blue box at bottom of graphic) - results displayed on Lingoport Dashboard (see data path)

Resource Manager

Manages translation resource files.

  • Detects issues in resource files (duplicate or missing keys, parameter mismatch in text for different languages, etc.)
  • Detects changes to Chinese resource files. Then sends relevant changes out to the translation vendor for translation into other languages.
  • Automatically retrieves translations from translations vendors and checks those changes into source control
  • Run on Linux system (light-blue box at bottom of graphic)

Lingoport Dashboard

  • Displays overview of Globalyzer and Resource Manager status
  • Users may view Globalyzer/Resource Manager issues in context within source code
  • Run on linux system (light-blue box at bottom of graphic)

Jenkins (not a Lingoport program)

Used to automate running of Globalyzer Client, Resource Manager and updating of the Lingoport Dashboard

  • Run on Linux system (light-blue box at bottom of graphic)

Data Path

Lingoport Access

It's most convenient if Lingoport can have SSH access to the Linux system where Lingoport suite is configured. Otherwise, a Lingoport employee can guide an customer's employee through the setup using a videoconferencing program such as WebEx or GoToMeeting.

Globalyzer

Rule sets (regex data) are transferred between Globalyzer Server and Globalyzer Clients; It requires username/password based login.

Server at Globalyzer.com

  • Generates xml reports that will be read by the Lingoport Dashboard.
  • Clients are run on Lingoport Suite Linux system.
  • Clients are run on developer machines.

Resource Manager

Translation resource file updates sent to translation vendor, typically over SFTP. Resource file updates received from translation vendor, also typically over SFTP. Updates are checked for consistency (various in-depth checks), and then committed to source control if the checks pass.

  • Emails are sent to a list of email contacts defined in a configuration file.
  • Notifications for sent / received resource files
  • Error notifications
  • Translation status weekly email
  • Stores data in MySQL database
  • Run on linux system (light-blue box at bottom of graphic)
  • Generates xml reports that will be read by the Lingoport Dashboard.

Lingoport Dashboard

  • Resource Manager and Globalyzer are run on a server internal to Customer's network. Each generates an XML report.
  • Dashboard Client reads source code, and these XML reports.
  • Dashboard Client processes this data, and sends it to the Dashboard Server
  • Data sent over HTTP/HTTPS.
  • Most often, the Dashboard Client and Dashboard Server are hosted on the same machine (light-blue box at bottom of graphic), so network communication is internal to this machine.
  • Requires a either a username/password or a user token, which will be stored in configuration files.
  • Stores data in MySQL database
  • Dashboard Server is a web application, hosted on port 9000 by default.

Jenkins (not a Lingoport program)

  • Used to automate running of Globalyzer Client, Resource Manager and updating of the Lingoport Dashboard
  • Various security options available, username/password is most common. LDAP is another option.
  • Run on Linux system (light-blue box at bottom of graphic)
  • Web application, hosted on port 8080 by default.

Installation data path requirements

  • Ability to install/update programs via 'yum'.
  • Ability to download installer from lingoport.net via sftp
  • Download does not have to be directly to the target machine. It can be downloaded by another machine and then transferred.
  • Port 8080 accessible within Customer's firewall for Linux system (Jenkins)
  • Port 9000 accessible within Customer's firewall for Linux system (Dashboard)
  • Linux system access to https://globalyzer.com

Recommended, but not required

Linux system access to:

Retrieved from "http://wiki.lingoport.com/index.php?title=Lingoport_Suite_Product_Security&oldid=90870"