Difference between revisions of "OAuth for MyProxy GetProxy Endpoint"

From PDP/Grid Wiki
Jump to navigationJump to search
Line 120: Line 120:
 
== Implementation Details ==
 
== Implementation Details ==
  
The implementation of the GetProxy Endpoint has been separated from the Master Portal OA4MP extension because it was found to be much easier to modify existing OA4MP code than to extend it. This basically means that for the purpose of implementing this endpoint we forked OA4MP. This custom OA4MP having the GetProxy Endpoint implemented can be found under the [https://github.com/rcauth-eu/myproxy-fork myproxy-fork] and [https://github.com/rcauth-eu/ncsa-security-all-fork ncsas-security-all-fork] projects. The separation of the two codebases is inherited from the original OA4MP implementation.
+
The implementation of the GetProxy Endpoint has been separated from the Master Portal OA4MP extension because it was found to be much easier to modify existing OA4MP code than to extend it. This basically means that for the purpose of implementing this endpoint we forked OA4MP. This custom OA4MP having the GetProxy Endpoint implemented can be found under the RCauth forks of the [https://github.com/rcauth-eu/OA4MP OA4MP] and [https://github.com/rcauth-eu/security-lib security-lib] projects. The separation of the two codebases is inherited from the original OA4MP implementation.
  
=== myproxy ===
+
=== OA4MP ===
  
 
==== Client ====
 
==== Client ====
Line 171: Line 171:
 
* Step 4 : The ''preprocess'' method is called before the resulting certificate chain is written out into the response buffer. Here, the ''MyX509Certificates'' holding only the certificate chain is swapped out to a ''MyX509Proxy'' object containing the same certificate chain, together with the private key from the transaction (saved in Step 1).
 
* Step 4 : The ''preprocess'' method is called before the resulting certificate chain is written out into the response buffer. Here, the ''MyX509Certificates'' holding only the certificate chain is swapped out to a ''MyX509Proxy'' object containing the same certificate chain, together with the private key from the transaction (saved in Step 1).
  
=== ncsa.security.all ===
+
=== security-lib ===
  
The '''myproxy''' project builds on top of the '''ncsa.security.all''' project, and therefore some of the modified code logically belongs into this project.
+
The '''OA4MP''' project builds on top of the '''security-lib''' project, and therefore some of the modified code logically belongs into this project.
  
 
[[File:Ncsa-uml.svg | 1000px]]
 
[[File:Ncsa-uml.svg | 1000px]]

Revision as of 11:12, 7 June 2019