This page contains information for those who are in charge of the "GakuNin" and off-campus networks at institutions (universities, etc.) that use our online analysis system.
National Institute of Informatics (NII) is developing an "Online Analysis System" as part of Japan Society for the Promotion of Science (JSPS) project to promote the construction of a data infrastructure for the humanities and social sciences. Prior to the full-scale launch of the service, we will conduct a demonstration experiment targeting a small number of institutions (universities, etc.) in order to evaluate the practicality of the system and identify missing functions.
Users from your institution will need to change the Shibboleth IdP settings in order to participate in the demonstration experiment. We would like to ask the department in charge to please read this guide and take the necessary actions.
Provider | Research Center for Open Science and Data Platform, National Institute of Informatics |
Persons this system applies to | Holders of GakuNin compatible accounts at your institution (Researchers, faculty, students, etc.) |
Service provided | |
Location | NII-owned computers in Japan |
Experiment period | October 2020 - March 2021 (The experiment is scheduled to start in April 2021. |
Fee | Free of charge(There are no plans to charge a fee after the experiment is over.) |
The terms of service for this service will be established by the end of the demonstration experiment. During the period of the demonstration experiment, the service will be used in a way that trusts the good intentions of the users, but the following response policy is provided in case problems occur due to the intentional or negligent actions of the users.
NII will record the user's behavior on the Service. Specifically, the following information will be logged.
User information obtained from IdP (eduPersonPrincipalName, mail).
Login time, logout time.
Unique ID, IP address, and port number of the container.
Other information necessary for follow-up investigation.
When NII detects that a user is using the service illegally, NII will take the following actions.
Temporarily prohibit the user from using the System.
Maintain a log of the user's activities.
Notify the department in charge of GakuNin at the institution to which the user belongs, and provide them with the log.
If you receive a notification that a user at your institution is using the service illegally, please cooperate with the following measures.
Take the same action against the user as you would have taken if the user had committed the same act on your system.
Report the status of the action to NII.
NII will decide whether or not to allow the user to resume using the system based on the status of the reported action.
実証実験の期間中は、ユーザーの行動を見ながら不正利用の線引きを検討していきます。現在のところ、以下の行為を不正利用と見なすこととしています。
本サービスの機能を用いてウェブサーバーを構成し、不特定の第三者に対してデータを送信可能化する行為
本サービスの機能を用いてメールサーバーを構成し、不特定の第三者に対して電子メールを送信する行為
この定義は状況に応じて追加・修正いたします。改善案がありましたらぜひお聞かせください。
ユーザーが本システムを利用するには、貴機関が運用する Shibboleth IdP において、ユーザーの属性値を本サービスの SP へ送出するための設定が必要となります。
entityID | https://jupyter.cs.rcos.nii.ac.jp/shibboleth-sp |
送出する属性 |
|
メタデータの自動更新が有効になっていない場合、以下の手順でメタデータのキャッシュファイルを更新します。
以下の手順で Shibboleth IdP の設定ファイルを編集します。詳細は学認技術ガイドを参照してください。
次の XML 要素が有効である(コメントアウトされていない)ならばOKです。 → 参考
<resolver:AttributeDefinition xsi:type="ad:Scoped" id="eduPersonPrincipalName" scope="%{idp.scope}" sourceAttributeID="uid"> |
同様に、「id="mail"」も有効であることを確認します。 → 参考
<resolver:AttributeDefinition xsi:type="ad:Simple" id="mail" sourceAttributeID="mail"> |
/opt/shibboleth-idp/conf/attribute-filter.xml を開き、「</AttributeFilterPolicyGroup>」という文字列を検索します。
見つかったタグの直前に次の XML 要素を追加します。 → 参考
<AttributeFilterPolicy id="PolicyforNiiRdcDataAnalysisPlatform"> <PolicyRequirementRule xsi:type="Requester" value="https://jupyter.cs.rcos.nii.ac.jp/shibboleth-sp" /> <AttributeRule attributeID="eduPersonPrincipalName"> <PermitValueRule xsi:type="ANY" /> </AttributeRule> <AttributeRule attributeID="mail"> <PermitValueRule xsi:type="ANY" /> </AttributeRule> </AttributeFilterPolicy> |
国立情報学研究所 オープンサイエンス基盤研究センター
オンライン分析システム担当 藤原一毅 <cs-support@nii.ac.jp>