While the credential will be set to be the caller, it remains that the
local account on the machine under which the process is running has
not changed.
We use GridMap files to map the credential of a user (DN from X509
Certificate) to a local account. And some services, like WS GRAM, use
sudo scripts to change the local account to the one mapped, so as to
work under the user's account. You can look at WS GRAM as an example,
but you can set up authorization for your service to be GridMap file
and then use scripts.
Rachana
On Oct 13, 2009, at 4:08 PM, [email protected] wrote:
Hello
I have implemented a webservice that uses delegation and therefore I
also had to set the Run as Mode to Caller-Identiy.
This works all fine and I was of the opinion that e.g when I create
in a service method a file e.g. /tmp/myfile.txt that the owner would
be the caller and not globus (-rw-r--r-- 1 globus users 0 13.
Okt 22:29 myfile.txt)?
So how is it possible to create files so that the caller is also the
file owner?
thx
--
Jetzt kostenlos herunterladen: Internet Explorer 8 und Mozilla
Firefox 3.5 -
sicherer, schneller und einfacher! http://portal.gmx.net/de/go/chbrowser
