Hi Suresh, I need to think about this in detail. I will send you a detail reply later. It seems this is going to be an interesting idea.
Thanks Amila On Mon, Mar 17, 2014 at 3:51 PM, Suresh Marru <[email protected]> wrote: > Hi All, > > I would like to brainstorm on this project idea. I know it may be too late > for GSoC, but still if we conclude enough, we can probably motivate a > student to pick on it. > > For Airavata thrift API, we have been relying on a assertion of mutual > authentication with client gateways. This still seems reasonable, but I > worry about deployment headaches of issuing and managing these PKI's. More > over, when Sachith had a brief interaction on this topic on thrift dev list > [1], it seems like mutual authentication is not current available. The > service authentication seems to be well supported though. > > Since Airavata based gateways at some point will need to work on Identity > Management, I wonder if prototyping a OAuth2 identify server integration > with Airavata might help? If this is worth exploring, making this a GSoC > idea might not be a bad choice. > > Amila and others, any thoughts? > > Suresh > [1] - http://markmail.org/thread/3ukgiznbmvi6g5vd
