How to control access rights for LFC/SRM files

From PDP/Grid Wiki
Jump to navigationJump to search

Storing files on the grid is one thing. Controlling access to these files is a different matter. This page is the result of an ongoing investigation on how to control access rights for different storage systems (currently: dCache and DPM), as well as the way a files is stored and accessed on the Local File Catalog (LFC).

Case #1: dCache

Creating your own directory in SRM-space

srmmkdir ....

Copying and registering your file

lcg-cr ....

Looking at the permissions

  • LFC
  • SRM : srm-get-permissions

Modifying the permissions

  • LFC
  • SRM : srm-set-permissions

Verifying access control

  • LFC
  • SRM : srm-get-permissions
  • Try to access the file as another user

Case #2: DPM

Creating your own directory in DPM-space

srmmkdir .... ??
dpns-mkdir

Copying and registering your file

lcg-cr ....

Looking at the permissions

  • LFC
  • SRM : srm-get-permissions is broken
    • dpns-getacl

Modifying the permissions

  • LFC
  • SRM : dpns-setacl

Verifying access control

  • LFC
  • SRM
  • Try to access the file as another user
Retrieved from "https://wiki.nikhef.nl/grid/index.php?title=How_to_control_access_rights_for_LFC/SRM_files&oldid=3076"