Hi Morris and PGI team, Thank you for our efforts regarding to this draft. I will comment on it in NAREGI perspective. 1)Authentication As jobs are submitted by Super Scheduler (SS) with delegated proxy certificates on behalf of end users, TLS with EEC is not possible in our system. We need TLS with RFC proxies for mutual authentication. 2)Authorization The present implementation is based on (VOMS) AC Certificates in Extensions, and SAML Assertions in SOAP Header is a future issue for NAREGI. I think this is a policy matter of resources, and if we take an ownership approach, each resource should have a right to decide which or both authorization policies to take. Best regards, Mineo
Hi PGI team,
I received some contributions already and setup a first draft for the slides I will present tomorrow!
They are in GridForge - so please comment the whole day today:
http://forge.gridforum.org/sf/docman/do/downloadDocument/projects.pgi-wg/doc...
The discussions about attributes and constraints I will start just after the coffee break here. ;-)
Best regards from Zuerich, Morris
------------------------------------------------------------------- ------------------------------------------------------------------- Forschungszentrum Juelich GmbH 52425 Juelich
Sitz der Gesellschaft: Juelich Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498 Vorsitzende des Aufsichtsrats: MinDir'in Baerbel Brumme-Bothe Geschaeftsfuehrung: Prof. Dr. Achim Bachem (Vorsitzender), Dr. Ulrich Krafft (stellv. Vorsitzender), Prof. Dr. Harald Bolt, Dr. Sebastian M. Schmidt ------------------------------------------------------------------- ------------------------------------------------------------------- _______________________________________________ Pgi-wg mailing list Pgi-wg@ogf.org http://www.ogf.org/mailman/listinfo/pgi-wg