|
Bugzilla – Full Text Bug Listing |
| Summary: | globus-gridmap-and-execute problem with additional PDPs | ||
|---|---|---|---|
| Product: | GRAM | Reporter: | Peter Lane <lane@mcs.anl.gov> |
| Component: | wsrf managed execution job service | Assignee: | Martin Feller <feller@mcs.anl.gov> |
| Status: | CLOSED FIXED | ||
| Severity: | normal | CC: | lane@mcs.anl.gov, madduri@mcs.anl.gov, mumtaz@dps.uibk.ac.at, ranantha@mcs.anl.gov, smartin@mcs.anl.gov |
| Priority: | P3 | ||
| Version: | unspecified | ||
| Target Milestone: | 4.0.5 | ||
| Hardware: | All | ||
| OS: | All | ||
| Attachments: | Updated GRAM service jar. | ||
Hi, What about this bug? target milestone was 4.0.3 but seems like still not fixed!
Actually, I'm not sure this makes sense for the 4.0.x series. I don't think the 4.0.x code allows more than one PDP. Rachana, can you confirm that for me? The 4.0.3 code definitely disables globus-gridmap-and-execute if the service's security descriptor's authz attribute is not "gridmap". I'm going to set the target milestone to 4.2 instead. If Rachana tells me I can specify more than one PDP for the 4.0.x series, then I'll set it to 4.0.4. 4.0.3 came out sooner than expected because of some security patches that needed to be distributed ASAP.
Ok, it is possible to the specify more than one. The value I'm checking is a space-separated string of PDP names, so I need to simply parse that and check for "gridmap" as one of the tokens. I'll doe this right now so it for sure makes it into the next point release.
Would be great if a is provided as soon as possible. Thanks
(In reply to comment #4) > Would be great if a is provided as soon as possible. Thanks > I mean a patch
Created an attachment (id=1074) [details]
Updated GRAM service jar.
Here's an updated jar file that contains the fix. Copy it over the
gram-service.jar file already in $GLOBUS_LOCATION/lib.
Here's the actual source patch:
---
service/java/source/src/org/globus/exec/service/utils/AuthorizationHelper.java
2006-01-27 14:32:33.000000000 -0700
+++
/home/lane/Development/Globus/globus_4_0_branch/packaging/source-trees/wsrf-cvs/ws-gram/service/java/source/src/org/globus/exec/service/utils/AuthorizationHelper.java
2006-10-06 10:46:05.000000000 -0600
@@ -46,14 +46,24 @@
= ServiceSecurityConfig.getSecurityDescriptor(
factoryServiceName);
logger.debug("getting authz PDP name");
- String authzPDPName = securityDescriptor.getAuthz();
+ String authz = securityDescriptor.getAuthz();
+ String[] authzPDPNames = null;
+ if (authz != null)
+ {
+ authzPDPNames = authz.split(" ");
- logger.debug("Detected authorization PDP plugin"
- +" \"" + authzPDPName + "\"");
+ for (int index=0; index<authzPDPNames.length; index++)
+ {
+ logger.debug("Detected authorization PDP plugin"
+ +" \"" + authzPDPNames[index] + "\".");
- if (authzPDPName.equals(GRIDMAP_AUTHZ_PDP_NAME))
- {
- AuthorizationHelper.authorizationGridmap = true;
+ if (authzPDPNames[index].equals(GRIDMAP_AUTHZ_PDP_NAME))
+ {
+ logger.debug("Using gridmap authorization PDP
plugin.");
+ AuthorizationHelper.authorizationGridmap = true;
+
+ }
+ }
}
}
catch (Exception e)
Martin, Can you check if this patch was committed? If not, then should we commit it as is in time for 4.0.4? Or do you recommend we wait until 4.0.5? Thanks, Stu
This patch has been committed to the 4.0 branch while ago.