 |
 |
Hello @bbockelm @olifre Well, this is actually more involved than one might think. Technically, if you have a bearer token you don't need to authenticate. On the other hand, requiring authentication gives you a chance, perhaps small but in our case not very small, to detect stolen bearer tokens (e.g. a CMS user stealing an ATLAS file :-) I suspect many experiments will want authenticated third party transfers. That said, there is technically no reason why http or xrootd can't support unauthenticated transfers as long as the bearer token is valid. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/694#issuecomment-390799712 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1