UC-VO-ILDG-access

From EGI Knowledge Base

Jump to: navigation, search

Use Case title: Registering to use ILDG.

Short description: The agreed process by which a LQCD researcher may register to access datasets held on ILDG.

Actors involved:

  • LQCD ‘researcher’ (from a participating regional grid) that wishes to join ILDG.
  • An appointed ‘representative’ for particular regional grid to which researcher belongs.

Pre-conditions: Researcher has a valid X.509 certificate, issued by any of the Certificate Authorities of the International Grid Trust Federation (IGTF). This must be installed in the researcher’s web browser client.

Steps:

  1. Researcher establishes authenticated connection to VOMS-RS and completes the registration form. The researcher is required to identify their home regional grid and nominate a representative to approve their application, from a list of predefined representatives for the regional grid.
  2. Researcher completes an e-mail verification process, at which point they become a candidate for membership of ILDG.
  3. Researcher requests to join a regional grid group, again through the VOMS-RS interface. Researcher needs to accept the terms of the VO Usage Rules at this step.
  4. The nominated representative is notified of the application, and either accepts/rejects the application, having confirmed that the researcher is: (i) a genuine LQCD scientist, (ii) affiliated to their particular regional grid.
  5. A description of the decision (in Step 4) is circulated to all representatives (from every regional grid). We assume application is accepted as if rejected the process stops at this step.
  6. The researcher’s information is automatically pushed to all VOMS systems that host ILDG VO information, by VOMS-RS.
  7. During the next scheduled synchronisation operation (usually within 24 hours) regional grid authentication and authorisation services retrieve the new user information and update their local user information accordingly.
  8. After no more than 24 hours, the researcher is able to access the resources of ILDG with privileges that correspond to their role in the community.

Middleware involved:

  • VOMS-RS, administrative interface for the application.
  • VOMS, service (possibly more than one instance) which hosts current ILDG membership

information.

  • Regional grid authentication and authorisation services, such as GSI.

Applications involved: No non-standard applications are involved.

Retrieved from "http://knowledge.eu-egi.eu/knowledge/index.php/UC-VO-ILDG-access"
Personal tools
hidden pages