David, Tom referred to the message by Rachana in which is "XACML Authorization service interface contribution from James Moore ISI/IBM" mentioned. Can somebody clarify relations between all these implementation? Yuri David Chadwick wrote:
Hi Tom
we have already implemented this in GT4, including the use of obligations in responses. It is part of our coordination service that we discussed with Rachana in January and are contributing to Globus.
We have two implementations.
i) Java interface that uses the GT4 java authz callout for a local PDP
ii) Web services interface for a remote PDP, that uses the SAML 2.0 profile of XACMLv2.0 as specified in the OGSA-Authz profile "Use of XACML Request Context to access a PDP".
Linying can provide further details of the specifics.
regards
David
Tom Scavo wrote:
FYI, work has begun to incorporate an implementation of the SAML 2.0 Profile of XACML into Globus Toolkit:
http://www.globus.org/mail_archive/jwscore-dev/2007/03/msg00019.html
Tom Scavo NCSA -- ogsa-authz-wg mailing list ogsa-authz-wg@ogf.org http://www.ogf.org/mailman/listinfo/ogsa-authz-wg