Bugzilla – Bug 6526
Develop callouts for GridFTP to use GUMS for authorization
Last modified: 2010-01-12 14:36:42
You need to
before you can comment on or make changes to this bug.
Definition: OSG is moving towards compliance with OSG/EGEE Authorization
Interoperability Profile. GridFTP provides an authorization callout interface
to allow pluggable authorization. A callout needs to be designed and developed
to allow GridFTP to use GUMS as the authorization service.
o Determine the OSG/EGEE Authorization Interoperability Profile attributes
required for GUMS to authorize GridFTP requests.
o Design and develop callout that constructs an XACML Authorization Request
to query GUMS with relevant attributes. This should leverage the Globus XACML
Authorization C library and potentially leverage PRIMA code base.
o Test against OSG GUMS server with XACML interface
o Merge code to trunk and GT 4.2 branch
o Update documentation
- OSG/EGEE Authz Interoperability Profile:
- C XACML Library: http://www.mcs.anl.gov/~bester/xacml/
cvs -d :pserver:firstname.lastname@example.org:/cvs/cd_read_only co
or via web
The new globus plugin is in
Apparently the direction being taken is to use the LCAS/LCMAPS code rather than
the PRIMA library, for GUMS client.