Hi globus users,in conjunction with attribute-based authorization we think about an 1:n mapping of attributes (primary VOMS attributes, maybe SAML in future) to local user accounts. The current VOMS and GridShib authz can only do a 1:1 mapping of an attribute to a local account. We want to have the possibility to map a group of users with the same attributes to different local (pool) accounts instead of sharing one account with multiple users.
I know about the Dynamic Accounts incubator project which currently would be the only way to realize what we want to do. Some days ago I asked about the current state of the DA Service on the da-user list. Dynamic Accounts currently is Hibernated, the current technical preview 6 is considered as being stable and there is no active development on its codebase. Additionally there is no plan to port Dynamic Accounts to GT4.2.
Mike D'Arcy wrote at da-user that a portal project of TeraGrid uses Dynamic Accounts. Are there any other projects using it? Are there any other projects that would be interested in "waking" this Hibernated incubator project (and porting it to GT4.2)?
Regards, Benjamin -- M.Sc. Benjamin Henne, Research Associate Regionales Rechenzentrum fuer Niedersachsen (RRZN) Gottfried Wilhelm Leibniz Universitaet Hannover Contact: http://www.rrzn.uni-hannover.de/henne.html
smime.p7s
Description: S/MIME Cryptographic Signature
