Hi all,
"<anonymous>" is not authorized to use operation:
{http://www.globus.org/08/2004/delegationService}requestSecurityToken on
this service
I've been struggling for some time now to overcome the above showstopper
which gets propogated via an AxisFault while trying to run a remote
standalone java client which attempts to use a GT4 DelegationFactorService.
A brief summary of the code I'm using:
globusCredential = factory.createCredential(new X509Certificate[]
{userCert},
userPrivateKey, 1024, 3600,
GSIConstants.DELEGATION_FULL);
userCredential = new GlobusGSSCredentialImpl(globusCredential,
GSSCredential.INITIATE_AND_ACCEPT);
myProxyGSSCredential = myProxy.get(userCredential, getParams);
ClientSecurityDescriptor clientSecDesc = new ClientSecurityDescriptor();
clientSecDesc.setGSITransport(Constants.ENCRYPTION);
clientSecDesc.setAuthz(new IdentityAuthorization(
globusCredential.getIdentity() ));
if (myProxyGSSCredential != null) {
clientSecDesc.setGSSCredential(myProxyGSSCredential);
}
credentialEndpoint = DelegationUtil.delegate(delegationServiceURL,
myProxyGlobusCredential,
// globus credential
delegationServiceX509Certificate, // X509 cert
lifetime,
true,
// full delegation
clientSecDesc);
Any advice would be very much appreciated - presumably as to how I can
assign my DN identity to the client so that the Delegation service can
find it in the server grid-mapfile file!
Thanks
gef
