Hi Alan, Thanks indeed for sharing this info. But I'm still in confusion due to the fact that these documents either consider 'gLite' or some partial GT4 or Advanced like Shibboleth (GridShib) stuff. For a novice user, what would be the Initial and Basic Document/Link to start (As these docs/links) are either Very Advanced or not pointing to a particular Globus Service; or may be my understanding is not up to the required mark. As I still have following questions: What are the Pre-requisite for VOMS setup? VOMS components to Install (PIP/PDP)---- This is almost there in documents sent on gt-user list. Where to store VOMS Server generated attributes (MySQL or local File System)? For example I need VOMS protection for Globus 4.0.4 services(e.g MathService) running in the globus conatiner; I can protect these services with GSI (Message and Transport Level security). Now I want to implement/extend the GSI to VOMS (specifically GT4.0.4 Service). As a matter of fact I'm struggling to protect the same (MathService) with PERMIS; but there are Documentation/Code issues. Regards ________________________ Jan Muhammad
________________________________ From: Alan Sill [mailto:[email protected]] Sent: Tue 27/01/2009 16:18 To: Jan Muhammad Cc: Globus Users List Subject: Re: [gt-user] VOMS Cookbook for Protecting GT4 Services![MESSAGE NOT SCANNED] Try the following: User's Guide for the VOMS Core Services https://edms.cern.ch/cedar/plsql/doc.info?document_id=571991 Shibboleth Interoperability with Attribute Retrieval through VOMS https://edms.cern.ch/cedar/plsql/doc.info?document_id=807849 gLite 3.1 VOMS Installation and Configuration guide https://edms.cern.ch/cedar/plsql/doc.info?document_id=818502 VOMS Admin user guide https://edms.cern.ch/cedar/plsql/doc.info?document_id=974094 VOMS Installation and Configuration Guide https://edms.cern.ch/cedar/plsql/doc.info?&document_id=974982 Virtual Organization Management Service documents by topic: http://osg-docdb.opensciencegrid.org/cgi-bin/ListBy?topicid=59 Hope this helps. Post again if not. Alan Sill On Jan 27, 2009, at 7:28 AM, Jan Muhammad wrote: > Hi, > > I am looking for any sort of Cookbook for VOMS protecting GT4 > services like the one by "Borja Sotomayor & Lisa Childers. GlobusĀ® > Toolkit 4: Programming Java Services." > > Although the earlier links sent by Tom were relevant, but I am > interested following VOMS on the pattern of the above Cookbook > written by Borja. > > Thanks in advance for help. > > Regards > > -Jan Muhammad > > From: Tom Scavo [mailto:[email protected]] > Sent: Mon 19/01/2009 19:16 > To: Jan Muhammad > Cc: [email protected] > Subject: Re: [gt-user] Protecting GT4 Services with VOMS![MESSAGE > NOT SCANNED] > > Hi Jan, > > On Mon, Jan 19, 2009 at 10:31 AM, Jan Muhammad <[email protected]> > wrote: > > > > Can someone send me any use case document showing how to protect > Globus > > Toolkit 4.0.x services using VOMS. I came through some papers > regarding > > GridShib project, but wonder if I can get some use case scenarios > (including > > any example code and/or architecture). > > The primary VOMS use case is depicted here: > > http://www.globus.org/grid_software/security/voms.php > > In the figure, the blue cloud represents a Globus service protected > with the VOMS interceptors for GT4: > > http://dev.globus.org/wiki/Incubator/VOMS > > Recently, VOMS has implemented a SAML interface: > > http://repository.omii-europe.org/downloads/project.jsp?projectid=7 > > So there is interest in a generic attribute-based security context > in GT4: > > http://dev.globus.org/wiki/GridShib_Security_Table > > At that point, the source of attributes (VOMS, Shibboleth, GridShib, > etc.) wouldn't matter. > > Hope this helps, > Tom > Alan Sill, Ph.D Senior Scientist, High Performance Computing Center Adjunct Professor of Physics TTU ==================================================================== : Alan Sill, Texas Tech University Office: Admin 233, MS 4-1167 : : e-mail: [email protected] ph. 806-742-4350 fax 806-742-4358 : ====================================================================
