CILogon Pre-Pilot Work

From PDP/Grid Wiki
Revision as of 14:58, 10 July 2015 by (talk | contribs) (intro)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search


CILogon is an open source project used to provide secure access to different services from the grid infrastructure. It uses the Myproxy OAuth2 flow in order to retrieve client certificates/proxies from a Myproxy Certificate Authority. These retrieved credentials are then meant to be used in the authentication procedure for further interaction with grid services.

AARC is a European research and collaboration project which explores the possible future generation of authentication and authorization methods used in the grid world. CILogon is a candidate AAI component within this project. This document is the starting point of a piloting work on CILogon which will eventually evolve into a larger scale demonstration of the capabilities of this software product.

We used Jenkins together with OpenStack to build an automatically deploying CILogon instance. Jenkins VM Image templates are used to boot VMs with relevant software installed on it, while separate Jenkins jobs are used to carry out different stages of the service deployment. The following sections contain a brief overview of the structure of these Jenkins jobs together with a short description of their function. For more information consult the local jenkins instance.

Myproxy-OAuth2 server

The Myproxy-OAuth2 server, together with the myproxy-server set up as a Certificate Authority is used to provide user certificates for different OAuth2 clients (portals).