OK, we don't have a token authentication plugin. Do you? I know you have
an authorization plugin for tokens but that is not an identity scheme. You
will need a identity plugin based on a token. You can then run gsi along
side of that but you will have to either order the choice to try token
identity first or set in the proxy what authentication schemes are
acceptable to you (much easier). Afer succesful authentication you can
use the authorization token for, well, actual authorization.
On Mon, 4 May 2020, Derek Weitzel wrote:
> My goal is to make an origin that will accept GSI or tokens for authentication. But a cache should be able to just use tokens and not GSI to retrieve a file.
>
> --
> You are receiving this because you commented.
> Reply to this email directly or view it on GitHub:
> https://github.com/xrootd/xrootd/issues/1188#issuecomment-623741207
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub, or unsubscribe.
[
{
"@context": "http://schema.org",
"@type": "EmailMessage",
"potentialAction": {
"@type": "ViewAction",
"target": "https://github.com/xrootd/xrootd/issues/1188#issuecomment-623743134",
"url": "https://github.com/xrootd/xrootd/issues/1188#issuecomment-623743134",
"name": "View Issue"
},
"description": "View this Issue on GitHub",
"publisher": {
"@type": "Organization",
"name": "GitHub",
"url": "https://github.com"
}
}
]
Use REPLY-ALL to reply to list
To unsubscribe from the XROOTD-DEV list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1
