Changes between Version 8 and Version 9 of T12_Security/ESG/SecuringOPeNDAP


Ignore:
Timestamp:
12/01/10 09:22:23 (10 years ago)
Author:
pjkersha
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • T12_Security/ESG/SecuringOPeNDAP

    v8 v9  
    1111The Authorisation Handler checks the security policy for the OPeNDAP service to find out which attributes constrain access and which Attribute Service to query to pull user attribute information.  The Attribute Service, in this example is one hosted at PCMDI since the data is secured with an AR5 archive attribute.  The service is queried passing the users OpenID URL.  It returns a response asserting that this user has the AR5 archive attribute.  The Authorisation Handler makes an authorisation decision authorising the user to access the requested OPeNDAP URI.  It allows the user request through to the OPeNDAP application.  This returns a response to the user. 
    1212 
    13 [[Image(source:TI12-security/trunk/documentation/esgInteroperabilityForIPCCar5/OPeNDAPAccessControlWithSSLClientAuthentication.png)]] 
     13[[Image(source:TI12-security/trunk/NDGSecurity/documentation/esgInteroperabilityForIPCCar5/OPeNDAPAccessControlWithSSLClientAuthentication.png)]]