From e11e68f6629c5b113820f1efe58a8569b067568b Mon Sep 17 00:00:00 2001 From: Daniel Adam Date: Mon, 22 Apr 2024 16:45:00 +0200 Subject: [PATCH] fixup! dps: upgrade retry documentation --- .../services/device-provisioning-service/features.md | 3 +-- .../device-provisioning-service/retry-mechanism.md | 9 +++++++-- 2 files changed, 8 insertions(+), 4 deletions(-) diff --git a/content/en/docs/services/device-provisioning-service/features.md b/content/en/docs/services/device-provisioning-service/features.md index 71f7254a..4fafb1b4 100644 --- a/content/en/docs/services/device-provisioning-service/features.md +++ b/content/en/docs/services/device-provisioning-service/features.md @@ -20,7 +20,6 @@ weight: 2 ### Planned features - **☐ Device attestation via TPM:** This upcoming feature will enable devices to attest their identity using Trusted Platform Modules (TPM). -- **☐ Initial device configuration:** This planned feature aims to provide users with a mechanism to perform the initial configuration of devices during the provisioning process. - **☐ Blacklisting and whitelisting devices:** With this feature, users will have the ability to blacklist or whitelist specific devices for enhanced access control. - **☐ Manual approval for device configuration:** This planned feature enables a mechanism where devices require manual approval from the user in order to receive configuration settings. Instead of automatic configuration, users will have control over granting permission for device configuration. -- **☐ Verify Common Name:** Verify that the Common Name of DPS endpoint certificate matches the name of the selected endpoint. +- **☐ Verify Common Name:** Verify that the Common Name of DPS endpoint certificate matches the name of the selected endpoint by dps client. diff --git a/content/en/docs/services/device-provisioning-service/retry-mechanism.md b/content/en/docs/services/device-provisioning-service/retry-mechanism.md index 338c6132..36045e34 100644 --- a/content/en/docs/services/device-provisioning-service/retry-mechanism.md +++ b/content/en/docs/services/device-provisioning-service/retry-mechanism.md @@ -2,6 +2,7 @@ title: 'Retry mechanism' description: 'How is recoverable failure handled?' date: '2022-06-28' +lastmod: '2024-04-22' categories: [zero-touch, provisioning] keywords: [retry, recovery, failure] weight: 5 @@ -27,13 +28,13 @@ The configuration can be changed by the `plgd_dps_set_retry_configuration` funct ## Failures during provisioning -Provisioning consists of 3 main steps: +Provisioning consists of 5 main steps: * synchronization of time * requesting and set of device owner +* requesting and applying of plgd hub connection configuration * sending of signing certificate request * requesting and applying of ACLs -* requesting and applying of plgd hub connection configuration Each step sends a request to the DPS service and waits for response. After a request is sent, then the retry interval is used as a deadline. If the response is not received before this deadline, the operation timeouts and the request is resend. If the response is received in time, then its status code is checked. We distinguish between transient and non-transient errors. @@ -79,3 +80,7 @@ If the limit of polling checks is reached and the required flags are still not s If the IDs of the cloud servers in the configuration differ, it implies that certificates and ACLs might also be different. Therefore, reprovisioning of credentials and ACLs is triggered. If the IDs are the same, DPS provisioning is not triggered, and the cloud manager is simply restarted with the new address. If the observer goes through all the addresses without establishing a successful connection, the cloud manager is stopped, and a full DPS reprovisioning is forced. + +{{< note >}} +To lean how to set up multiple cloud server addresses in an `IoTivity-lite` device [see Cloud: support for multiple servers](https://github.com/iotivity/iotivity-lite/wiki/Cloud:-support-for-multiple-servers) +{{< /note >}}