Speaker
Ted Hesselroth
(Fermi National Accelerator Laboratory)
Description
gPlazma is the authorization mechanism for the distributed storage system dCache.
Clients are authorized based on a grid proxy and may be allowed various privileges
based on a role contained in the proxy. Multiple authorization mechanisms may be
deployed through gPlazma, such as legacy dcache-kpwd, grid-mapfile, grid-vorolemap,
or GUMS. Site-authorization through SAZ is also supported. Services within dCache
requesting authorization contact gPlazma through the dCache cell mechanism and
recieve a mapping of user credentials and a set of obligations which define the
user's privilege.
| Submitted on behalf of Collaboration (ex, BaBar, ATLAS) | dCache Collaboration |
|---|
Author
Ted Hesselroth
(Fermi National Accelerator Laboratory)
