On Mon, Feb 9, 2009 at 8:11 AM, Thomas Leitner <[email protected]> wrote: > > 1) If writing a Grid Service, is it possible to determine the user and/or > the virtual organization of the user?
The distinguished name from the presented X.509 certificate is stored in the requester's security context, yes. The term "virtual organization" implies some type of attribute-based authorization (such as VOMS) so no, the requester's VO is not routinely available unless you deploy some type of attribute-based authz. (maybe someone else can provide answers to your other questions :) Tom
