TODO

In reserve request log: put source and dest

Schedule re-check shortly after startup if discovery files are not available

Remove all requester nsa scoping in aggregator - it won't work

Add cli backend (script to invoke setup and teardown)

Adminstrative interface
 - First considered with domainsocket, but tests showed it to be weird
   - And it makes it hard to put things on different boxes
 - Functionality: List ports, list connections, generate tokens (in the future), etc

Have a max size for xml payloads, and check for any expansion in there, and reject if found (security).

Iterative tree aggregator

Add x509host stanza for port authZ
 - Implemented for provider side (upa level, which is fine)
 - Aggregator should perform authorization on its requester API as well.
   - This is slightly tricky as NSA-hostname correlation must be known.

It _might_ be possible to get OpenNSA to try and bring up the same
cross-connect multiple times by issuing provision request concurrently. Look
into this.
 - State machine should not allow this
   - But the error message will probably suck

Make the aggregator use reserveAbort instead of terminate when aborting

Make a simple REST interface for clients
 - Several users have asked for an easier interface (not a cli)
 - Kill as much functionality as possible
   - Have auto commit / provision
   - No timezones
   - Long-pull for state
   - Time log for state transitions (unix time, state)
 - And maybe support interface metrics (check juniper capabilities)

Better debugging on SSH backends

Log rotation

Long term:
  Mailing list
  Improve the web interface (it shows the connections)

Client:
  Should the client should be able to breakout request itself

Backends:
  Force10: Should do shutdown when interfaces are not in use
  Test on Juniper EX switch
  Test on Juniper virtual router
  JunOS:
    Failure handling is terrible for command sending
    Log success/failure instead of commands (only on debug)
  SSH module does not notifiy login timeouts