> [this thread probably belongs in gt-dev but I'll let it hang > here for awhile :] > > On 6/21/07, Andreas V. Meier <[EMAIL PROTECTED]> wrote: > > > > <securityConfig xmlns="http://www.globus.org";> > > <authz value="voi:my.package.name.authz.MyCustomPDP"/> > > </securityConfig> > > Is <auth-method> required? (Evidently not.)
Authorization is done only if it is a secure call and the service security requires that the invocation be secure. So please add <auth-method> to your security descriptor, requiring that access to some or all operation be secure. Also, the isPermitted() is invoked only when the operation that is being secured is invoked. The initialize() will happen on first service access. Rachana > > > I have some loggin in the MyCustomPDP, so I can see > initialize() being > > called at container startup. But isPermitted() is never called. > > Maybe it would help if you posted some (or all, if it's not > too large) of your log output to the list. > > > Have I missed adding it somewhere else? > > It's hard to tell given what you've said so far. What > happens when you try to request the service configured with > the above security descriptor? > > Tom > > PS. This article has a wealth of information: > > Authorization processing for Globus Toolkit Java Web services > http://www-128.ibm.com/developerworks/grid/library/gr-gt4auth/ > >
