Fermilab Computing Division

CS Document 2616-v1

AuthZInterop Feedback to Globus - Feb 28-2008 - Minutes

Document #:
CS-doc-2616-v1
Document type:
Documentation
Submitted by:
Gabriele Garzoglio
Updated by:
Gabriele Garzoglio
Document Created:
29 Feb 2008, 09:45
Contents Revised:
29 Feb 2008, 09:45
Metadata Revised:
29 Feb 2008, 09:45
Viewable by:
  • Public document
Modifiable by:

Quick Links:
Latest Version

Abstract:
- subject-id attribute of the request subject is NOT mandatory in the XACML or SAML specs. We will use different attribute names for x509 and condor canonical name, to distinguish between them.

- writing policies on pilot job use cases: we envision new policy use cases in the future. For now, we will write policies for 3 use cases: authorize pilot job user, authz user job user, authorize only if pilot job VO is the same as the user job VO.

Files in Document:
Associated with Events:
Authorization Interoperability held on 28 Feb 2008
DocDB Home ]  [ Search ] [ Authors ] [ Events ] [ Topics ]

DocDB Version 8.8.9, contact Document Database Administrators