UVOS WEB REGISTRATION EXTENSION MANUAL

Similar documents
UNICORE GATEWAY. UNICORE Team. Document Version: Component Version: Date: 19 Apr 2011

UNICORE REGISTRY MANUAL

The Compatible One Application and Platform Service 1 (COAPS) API User Guide

ULTEO OPEN VIRTUAL DESKTOP UBUNTU (PRECISE PANGOLIN) SUPPORT

UNICORE GATEWAY. UNICORE Team. Document Version: Component Version: Date:

Solr Bridge Search Installation Guide

Secure Messaging Server Console... 2

ULTEO OPEN VIRTUAL DESKTOP OVD WEB APPLICATION GATEWAY

INUVIKA OVD INSTALLING INUVIKA OVD ON RHEL 6

Written by Wirabumi Software Sunday, 30 December :27 - Last Updated Thursday, 03 January :52

INUVIKA OVD INSTALLING INUVIKA OVD ON UBUNTU (TRUSTY TAHR)

Using Internet or Windows Explorer to Upload Your Site

Administrator s Guide: perfsonar MDM 3.0

Integration and Configuration of SofwareAG s webmethods Broker with JBOSS EAP 6.1

How To Run A Password Manager On A 32 Bit Computer (For 64 Bit) On A 64 Bit Computer With A Password Logger (For 32 Bit) (For Linux) ( For 64 Bit (Foramd64) (Amd64 (For Pc

How To Install Storegrid Server On Linux On A Microsoft Ubuntu 7.5 (Amd64) Or Ubuntu (Amd86) (Amd77) (Orchestra) (For Ubuntu) (Permanent) (Powerpoint

OTP Server. Integration module. Nordic Edge AD Membership Provider for Microsoft ASP.NET. Version 1.0, rev. 6. Nordic Edge

Configuring Secure Socket Layer (SSL) for use with BPM 7.5.x

Deploying Intellicus Portal on IBM WebSphere

Ulteo Open Virtual Desktop Installation

What s New in Propalms VPN 3.5?

dotdefender v5.12 for Apache Installation Guide Applicure Web Application Firewall Applicure Technologies Ltd. 1 of 11 support@applicure.

WEB2CS INSTALLATION GUIDE

Expresso Quick Install

Eucalyptus User Console Guide

UNI. UNIfied identity management. Krzysztof Benedyczak ICM, Warsaw University

UFTP AUTHENTICATION SERVICE

Magento Search Extension TECHNICAL DOCUMENTATION

LDaemon. This document is provided as a step by step procedure for setting up LDaemon and common LDaemon clients.

OpenGeo Suite for Linux Release 3.0

Using CertAgent to Obtain Domain Controller and Smart Card Logon Certificates for Active Directory Authentication

Hitachi PaybyFinance Magento Plugin

KonyOne Server Installer - Linux Release Notes

prefer to maintain their own Certification Authority (CA) system simply because they don t trust an external organization to

Version USER GUIDE

Deploying IronCAD Concurrent Licenses

Net/FSE Installation Guide v1.0.1, 1/21/2008

vtiger CRM 4.2 Installation Guide for Linux OS

KonaKart Portlet Installation for Liferay. 6 th February DS Data Systems (UK) Ltd., 9 Little Meadow Loughton, Milton Keynes Bucks MK5 8EH UK

The Rockefeller University I NFORMATION T ECHNOLOGY E DUCATION & T RAINING. VPN Configuration Guide for PC/Mac/Linux

User Guide - escan for Linux File Server

CipherMail Gateway Upgrade Guide

Setting Up SSL on IIS6 for MEGA Advisor

SSO Plugin. Integration for BMC MyIT and SmartIT. J System Solutions. Version 4.0

Weather Web Part. Enterprise Version with Active Directory Support. AMREIN ENGINEERING AG Version 2.4. June 2015

CREATE A CUSTOM THEME WEBSPHERE PORTAL

Contents. TSM Remote Server Installation guide

Installation and Configuration Guide

WebApp S/MIME Manual. Release Zarafa BV

ULTEO OPEN VIRTUAL DESKTOP V4.0

Ciphermail Gateway EJBCA integration guide

To install Multifront you need to have familiarity with Internet Information Services (IIS), Microsoft.NET Framework and SQL Server 2008.

Installation Guide for contineo

LDAP and Active Directory Guide

Acronis Backup & Recovery 10 Server for Linux. Update 5. Installation Guide

escan SBS 2008 Installation Guide

ARIS Server Installation and Administration Guide ARIS. Version Service Release 1

Intelligent Video Analytics. Server Installation Guide. - Windows - Linux

Windows 7 Hula POS Server Installation Guide

Brocade Engineering. PKI Tutorial. Jim Kleinsteiber. February 6, Page 1

Cloudfinder for Office 365 User Guide. November 2013

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: October 08, 2014

JobScheduler Installation by Copying

Adeptia Suite 6.2. Application Services Guide. Release Date October 16, 2014

DB Administration COMOS. Platform DB Administration. Trademarks 1. Prerequisites. MS SQL Server 2005/ Oracle. Operating Manual 09/2011

ElephantDrive Cloud Backup Module Contents

BusinessObjects Enterprise XI Release 2

The Subversion move/migrate from one server to another, shall be divided into 3 steps: Backup Create Import

EMC AVAMAR 6.0 GUIDE FOR IBM DB2 P/N REV A01 EMC CORPORATION CORPORATE HEADQUARTERS: HOPKINTON, MA

Server Installation/Upgrade Guide

Partek Flow Installation Guide

Bubble Code Review for Magento

Panorama Necto. Load Balancing Installation Guide. (12.5 and above)

If you examine a typical data exchange on the command connection between an FTP client and server, it would probably look something like this:

User and Reference Manual

Configuring Microsoft IIS 5.0 With Pramati Server

1 How to install CQ5 with an Application Server

Using LDAP for User Authentication

Jabra Suite for Mac - Mass Deployment guide Revision 5/

Nagios. Contents. From SME Server. Maintainer

Bull Service & Solutions

(june > this is version 3.025a)

insync Installation Guide

Grandstream XML Application Guide Three XML Applications

Continuous Integration (CI) and Testing - Configuring Bamboo, Hudson, and TestMaker

Installation documentation for Ulteo Open Virtual Desktop

Command-Line Tool for View Manager View Manager 4.0

How To Use The Rss Feeder On Firstclass (First Class) And First Class (Firstclass) For Free

Click Studios. Passwordstate. Upgrade Instructions to V7 from V5.xx

SecureAware on IIS8 on Windows Server 2008/- 12 R2-64bit

Magento Extension Point of Sales User Manual Version 1.0

HELPDESK SYSTEM (HDS) USER MANUAL

Ansible. Configuration management tool and ad hoc solution. Marcel Nijenhof

Symantec Enterprise Vault Technical Note. Troubleshooting the Monitoring database and agents. Windows

Horizons Manufacturing Suite for Select/ Professional 7.0. Database Migration Instructions

Working With Virtual Hosts on Pramati Server

Copyright 2014, SafeNet, Inc. All rights reserved.

Transcription:

UVOS Web Registration Extension Manual UVOS WEB REGISTRATION EXTENSION MANUAL UNICORE Team Document Version: 1.5.1 Component Version: 1.5.0-p6 Date: 13 04 2012 This work is co-funded by the EC EMI project under the FP7 Collaborative Projects Grant Agreement Nr. INFSO-RI-261611. This work was co-funded by the EC Chemomentum project under the FP6 Grant Agreement Nr. IST-033437.

UVOS Web Registration Extension Manual Contents 1 Introduction 1 2 Compatibility 1 3 Installation 1 3.1 Installation from RPM package (RedHat distributions)............. 2 3.2 Installation from the DEB package (Debian distributions)............ 2 3.3 Installation from the archive........................... 2 4 Web browser path 3 5 Reference application form 3

UVOS Web Registration Extension Manual 1 UNICORE VO Service (UVOS) is a client-server system, developed to be used as an additional tool for large distributed systems, providing a solution for grid users management. Grid systems, especially UNICORE grid middleware, are the mainspring of the UVOS system. UVOS can be used with different systems, however is designed primarily to support UNICORE grid middleware. For more information about UVOS visit http://uvos.chemomentum.org. 1 Introduction VO application forms web UI for the UVOS system provides an on-line registration form for users applying for VO membership. For a general overview of the UVOS system please review UVOS server documentation. The main features of this module are: a customizable interface for submitting VO registration requests, customization allows for choosing agreement form, requested attributes, base VO, request additional groups, provide contact details and provide identity in a supported format, multiple application forms might be used, updates of forms do not require server s restart. it is possible to connect this module with PnP CA, so user can automatically request a VO membership and a certificate. 2 Compatibility This release is compatible with UVOS 1.4.0 and 1.4.1 (future versions might be supported too). 3 Installation UVOS web application extension is distributed either as a platform independent archive or as an installable, platform dependent package such as RPM. Depending on the installation source used, installation method and paths after installation are different.

UVOS Web Registration Extension Manual 2 3.1 Installation from RPM package (RedHat distributions) The preferred way is to use Yum to install (and subsequently update) UVOS webapp. To perform the Yum installation, EMI Yum repository must be installed first. Refer to the EMI release documentation (available at the EMI website http://www.eu-emi.eu/releases ) for detailed instructions. Typically installation of the EMI repository requires to download a single RPM file and install it. After the EMI repository is configured, the following command installs UVOS webapp: $> yum install unicore-uvos-webapp The installed extension will be placed in the directory /var/lib/unicore/uvos-server/- webapps/ You have to restart UVOS server to complete the installation. 3.2 Installation from the DEB package (Debian distributions) The preferred installation way is to use apt to install and subsequently update UVOS webapp. To perform the apt installation, EMI apt repository must be installed first. Refer to the EMI release documentation (available at the EMI website http://www.eu-emi.eu/releases ) for detailed instructions. Typically installation of the EMI repository requires to download a single DEB file and install it. After the EMI repository is configured, the following command installs UVOS webapp: $> apt-get install unicore-uvos-webapp The installed extension will be placed in the directory /var/lib/unicore/uvos-server/- webapps/ You have to restart UVOS server to complete the installation. 3.3 Installation from the archive If installing using a portable archive you have: 1. Download the archive from the UNICORE download site and unpack it. 2. In the unpacked archive you can find a file with a.war extension. Copy it to the webapps/ directory of UVOS server. This directory is placed directly under installation root folder which was used when installing UVOS server from portable archive. You have to restart UVOS server to complete the installation.

UVOS Web Registration Extension Manual 3 4 Web browser path The name of the war file is important as it is reflected in the URL by which web application is available. By default it is uvos-webapp-version.war, where VERSION is e.g. "1.2". You can freely change the name of the war file. From now we will use label WAR_FILE_NAME to refer to actual base name of your war file. You should be able to reach the web UI indirectly (via redirect) at the address: <UVOS server base address>/war_file_name or directly at: <UVOS server base address>/war_file_name/voapplications.do?_flowid= application-flow Example for the default server configuration and release 1.0: https://localhost:2443/uvos-webapp-1.0 Example application form is present in this package. See its comments for the information how to set it up. Use the UVOS command line client (UVOS CLC) to add/update/delete forms. You can use both UVOS CLC ant VOManager to manage applications (accept/reject/delete/update). VO application form changes are detected automatically by this component so you don t need to restart the UVOS server. Since the version 1.3.1 this module can automatically send user s CSR to the new PnP CA (see http://pnp-ca.sourceforge.net). 5 Reference application form The referenceapplicationform.xml file which can be found in this extension distribution provides a complete and up to date example of what can be configured in the application form. Its contents is also presented below. <?xml version="1.0" encoding="utf-8"?> <tns:voapplicationform xmlns:tns="urn:icm:chemomentum:uvos:internalwsapi: application" xmlns:uvos="urn:icm:chemomentum:uvos:internalwsapi"> <!-- --> This is a full example of an application form definition. Use it for reference, when creating your own form.

UVOS Web Registration Extension Manual 4 <!-- Mandatory: Form name, will be displayed at the WWW interface --> <tns:friendlyname>example Form</tns:friendlyName> <!-- Mandatory: Form description, will be displayed together with the name --> <tns:description> Example form description</tns:description> <!-- Mandatory: Form id. It is used to match original form when updating an existing form. Otherwise (when creating a new form) it is ignored and so can be negative number --> <tns:id>-1</tns:id> <!-- Mandatory: Agreement. User will have to accept this. This element is mandatory, however you can leave the contents empty; then agreement won t be shown.--> <tns:agreement>do you agree to make Bars and are you a real Foo? <br> VO service will store your personal identity data and will expose it to other parties what will be subject to VO policy. </tns:agreement> <!-- Mandatory: Base group. User will apply for membership in this group, and if the form is approved by an admin, the user will be added to this group. --> <tns:basegroup> <uvos:path>vo</uvos:path> <uvos:path>subgroup</uvos:path> </tns:basegroup> <!-- Mandatory: Additional constraints --> <tns:constraints> <!-- Allowed format of user identity. User will have to choose one among them (if more then one is allowed) and then provide data in suitable format. Valid formats are: urn:oasis:names:tc:saml:1.1:nameid-format:x509subjectname urn:oasis:names:tc:saml:1.1:nameid-format:emailaddress urn:unicore:idtype:x509certificate If this constraint is absent then all formats are allowed. --> <tns:allowedidformats>urn:oasis:names:tc:saml:1.1:nameid- format:x509subjectname</tns:allowedidformats>

UVOS Web Registration Extension Manual 5 <tns:allowedidformats>urn:oasis:names:tc:saml:1.1:nameid- format:emailaddress</tns:allowedidformats> <!-- [Currently not implemented!] Mandatory: Whether the user is allowed to provide additional custom attributes (or more precisely propose some attributes) --> <tns:customattributes>true</tns:customattributes> <!-- List of additional attributes (possibly scoped) with ( optional) values. Name is required, scope and value(s) not. Value must be base64 encoded.--> <tns:attributesselection> <uvos:name>urn:authz:intervo:vo</uvos:name> <uvos:scope>/math-vo/scientists</uvos:scope> <uvos:value>awrlbnrpdhlddgw=</uvos:value> </tns:attributesselection> <tns:attributesselection> <uvos:name>favouritenumbers</uvos:name> </tns:attributesselection> <!-- [Currently not implemented!] Mandatory: Whether the user is allowed to provide additional custom groups (or more precisely propose them) --> <tns:customsubgroups>true</tns:customsubgroups> <!-- List of additional groups. User will be allowed to apply for membership in those groups (additionally to the membership in the base group).--> <tns:subgroupsselection> <uvos:path>math-vo</uvos:path> <uvos:path>staff</uvos:path> </tns:subgroupsselection> <tns:subgroupsselection> <uvos:path>math-vo</uvos:path> <uvos:path>scientists</uvos:path> </tns:subgroupsselection> <!-- By including this optional section user will be allowed to submit CSR. The CSR will be send to the PnP CA defined inside. Also application request will be stored in UVOS db however to accept it, administrator will need to update it with an issued certificate first. To make it working user will need a possibility to choose X509Certificate or a DN identity type (so make it available above). --> <tns:allowcsr> <!-- Not really used right now -->

UVOS Web Registration Extension Manual 6 <tns:friendlyname>example PnP CA</tns:friendlyName> <!-- Address of the CA. In case of using a old PnP CA installation (as can be downloaded from the UNICORE SF project) provide a raw host:port address only (and nothing more). If using a newr PnP CA (from the http://sourceforge.net/ projects/pnp-ca) provide a full URL. It looks like this: https://pnpca.example.com:8443/services/ CertificationAuthorityFacade Also don t forget to provide newpnpca marker below. --> <tns:address>pnpca.example.com:8443</tns:address> <!-- Optional: used to mark that new PnP CA (with web service interface) is being used. Defaults to false. --> <tns:newpnpca>true</tns:newpnpca> </tns:allowcsr> <!-- Optional email address of the vo form administrator. It will receive an email when the form was filled. --> <tns:notifyaddress>root@localhost</tns:notifyaddress> <!-- Optional (default is false): if set to true and there are defined any additional subgroups via subgroupsselection element then those groups are always applied and are not presented in the application form. --> <tns:forcegroupselection>false</tns:forcegroupselection> <!-- Optional (default is false): if set to true and there are defined any additional attributes via attributesselection element then those attributes are always applied and are not presented in the application form. --> <tns:forceattributeselection>false</tns:forceattributeselection > <!-- Optional (default is true): when set to true then possibility to submit additional CA certificate is disabled. --> <tns:disableusercasubmission>true</tns:disableusercasubmission> <!-- Optional (default is false): if set to false then certificate submitted as identity not checked. Otherwise (what is the default behavior) the certificate is checked against

UVOS Web Registration Extension Manual 7 the server s truststore, CRLs and for overall validity. --> <tns:disablecertificatevalidation>false</tns: disablecertificatevalidation> </tns:constraints> </tns:voapplicationform>

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information