On Thu, Sep 18, 2008 at 2:59 PM, Benjamin Henne <[EMAIL PROTECTED]>wrote:
> Hi Arpit, > > as it's name says you can use generic attributes to store generic user > information additionally to group memberships and roles in your VOMS. For > example looking at the VO management of the German Grid Initiative (using a > combination of VOMS and VOMRS) a user has to specify user information at > registration which could be (currently is not) stored/issued as generic > attributes, for example his nationality or institution. Naturally those > information need to be validated by someone else. > > You could use such user attributes to also base authorization decision on > them. For example only authorizing VO members being member of a special > institution for using some special resources. > > I guess you currently cannot use those generic attributes with the GT > VOMS-PDP. As I remember this only maps FQAN to users, but the generic > attributes are not part of users' FQAN in contrast to the VO groups and > roles. That is exactly what I want to know whether I can make authorization decision based on these Generic Attributes. Does Globus-plugin for VOMS supports authorization based on these attributes like it supports for ROLES?? Thanks Arpit > > > Regards, > Benjamin > > > arpit jain schrieb: > > Hii >> I have installed VOMS and created a VO successfully. I am also able to >> authorize GT4 services based on Roles assigned by VOMS Server. However I am >> not very sure about how to use "Generic Attributres". Just for example, if I >> create a Generic Attribute say 'ID" then how to use that? >> I want to know what purpose do they solve or what is the usage of >> "Generic Attributes"?? >> Thanks >> Arpit >> >> > > > -- > M.Sc. Benjamin Henne, Research Associate > Regionales Rechenzentrum fuer Niedersachsen (RRZN) > Gottfried Wilhelm Leibniz Universitaet Hannover > Contact: http://www.rrzn.uni-hannover.de/henne.html >
