TWiki>
EMI Web>EmiProjectStructure>EmiProductTeams>GLiteSecurity>EMISTSDocumentation (2013-02-26, HenriMikkonen)
EditAttachPDF
EMI Web>EmiProjectStructure>EmiProductTeams>GLiteSecurity>EMISTSDocumentation (2013-02-26, HenriMikkonen) EditAttachPDFEMI STS Documentation
Functional Description
The Security Token Service (STS) is a partial implementation of the OASIS WS-Trust specification.It is a service that can be used for transforming an existing security token into another security token format. Security token, on the other hand, is defined in the WS-Security specifications as a collection of claims that can be attached into a Web Service message. The incoming token formats that are supported by EMI STS implementation include username and password that is validated against an LDAP directory, and SAML assertion. From these types of tokens, STS can issue an X.509 certificate or a proxy certificate containing the users' VO attributes. The picture below describes the interaction between the components of the service. The big yellow box describes the STS: it is accessed with a SOAP client, and it aggregates the required information for the tokens from external parties (online CA and VOMS services):
System Administrator Documentation
- System Administrator Guide:
- Twiki: STS Configuration
- Twiki: STS Operation
- PDF: sts-sys_admin_guide-1.0.pdf
- Service Reference Card:
Other Documentation
- Software Design Document:
- Service Interface Description:
- Nagios Probes Documentation:
- Twiki: Nagios Probes for STS
Test and Certification Reports
- STS v1.0.0 (EMI-3):
| I | Attachment | History | Action | Size | Date | Who | Comment |
|---|---|---|---|---|---|---|---|
 png |
STS-Architecture-ValeryTschopp.png | r1 | manage | 70.3 K | 2013-02-07 - 11:52 | HenriMikkonen | STS architectural overview (c) Valery Tschopp / SWITCH |
 pdf |
sts-design_document-1.0.pdf | r1 | manage | 517.2 K | 2013-02-08 - 14:14 | HenriMikkonen | STS Software Design Document v1.0.0 |
| pdf |
sts-service_interface_description-1.0.pdf | r1 | manage | 275.0 K | 2013-02-11 - 10:35 | HenriMikkonen | Current documentation in PDF |
| pdf |
sts-service_reference_card-1.0.pdf | r1 | manage | 343.2 K | 2013-02-11 - 10:35 | HenriMikkonen | Current documentation in PDF |
| pdf |
sts-sys_admin_guide-1.0.pdf | r1 | manage | 564.6 K | 2013-02-11 - 10:35 | HenriMikkonen | Current documentation in PDF |
Topic revision: r8 - 2013-02-26 - HenriMikkonen
EMI Web
News
Events
Procedures and Tools
Mailing Lists
Documents
Project Structure
Create New Topic
Index
Search
Changes
Statistics
- ABATBEA
- ACPP
- ADCgroup
- AEGIS
- AfricaMap
- AgileInfrastructure
- ALICE
- AliceEbyE
- AliceSPD
- AliceSSD
- AliceTOF
- AliFemto
- ALPHA
- Altair
- ArdaGrid
- ASACUSA
- AthenaFCalTBAna
- Atlas
- AtlasLBNL
- AXIALPET
- CAE
- CALICE
- CDS
- CENF
- CERNSearch
- CLIC
- Cloud
- CloudServices
- CMS
- Controls
- CTA
- CvmFS
- DB
- DefaultWeb
- DESgroup
- DPHEP
- DM-LHC
- DSSGroup
- EGEE
- EgeePtf
- ELFms
- EMI
- ETICS
- FIOgroup
- FlukaTeam
- Frontier
- Gaudi
- GeneratorServices
- GuidesInfo
- HardwareLabs
- HCC
- HEPIX
- ILCBDSColl
- ILCTPC
- IMWG
- Inspire
- IPv6
- IT
- ItCommTeam
- ITCoord
- ITdeptTechForum
- ITDRP
- ITGT
- ITSDC
- LAr
- LCG
- LCGAAWorkbook
- Leade
- LHCAccess
- LHCAtHome
- LHCb
- LHCgas
- LHCONE
- LHCOPN
- LinuxSupport
- Main
- Medipix
- Messaging
- MPGD
- NA49
- NA61
- NA62
- NTOF
- Openlab
- PDBService
- Persistency
- PESgroup
- Plugins
- PSAccess
- PSBUpgrade
- R2Eproject
- RCTF
- RD42
- RFCond12
- RFLowLevel
- ROXIE
- Sandbox
- SocialActivities
- SPI
- SRMDev
- SSM
- Student
- SuperComputing
- Support
- SwfCatalogue
- TMVA
- TOTEM
- TWiki
- UNOSAT
- Virtualization
- VOBox
- WITCH
- XTCA
 |
|
Copyright &© 2008-2024 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. or Ideas, requests, problems regarding TWiki? use Discourse or Send feedback