Since 2017, the Worldwide LHC Computing Grid (WLCG) has been working towards enabling token based authentication and authorisation throughout its entire middleware stack. Following the publication of the WLCG Common JSON Web Token (JWT) Schema v1.0 [1] in 2019, middleware developers have been able to enhance their services to consume and validate the JWT-based [2] OAuth2.0 [3] tokens and process the authorization information they convey. Complex scenarios, involving multiple delegation steps and command line flows, are a key challenge to be addressed in order for the system to be fully operational. This paper expands on the anticipated token based workflows, with a particular focus on local storage of tokens and their discovery by services....
The WLCG is modernizing its security infrastructure, replacing X.509 client authentication with the ...
This document defines a specification for the discovery of WLCG bearer tokens by client tools. Clien...
Outside the HEP computing ecosystem, it is vanishingly rare to encounter user X509 certificate authe...
Since 2017, the Worldwide LHC Computing Grid (WLCG) has been working towards enabling token based au...
The WLCG Authorisation Working Group formed in July 2017 with the objective to understand and meet t...
The WLCG Authorisation Working Group was formed in July 2017 with the objective to understand and me...
One of the key challenges identified by the HEP R&D roadmap for software and computing is the abilit...
Since July 2017, the WLCG Authorization WG has been looking into how authentication and authorizatio...
One of the key challenges identified by the HEP R&D roadmap for software and computing is the abilit...
GridFTP transfers and the corresponding Grid Security Infrastructure (GSI)-based authentication and ...
GridFTP transfers and the corresponding Grid Security Infrastructure (GSI)-based authentication and ...
Support for token-based authentication and authorization has emerged in recent years as a key requir...
This document describes how WLCG users may use the available geographically distributed resources wi...
At the end of May 2017 the Globus Alliance announced that the open-source Globus Toolkit (GT) would ...
Access to WLCG resources is authenticated using an x509 and PKI infrastructure. Even though HEP user...
The WLCG is modernizing its security infrastructure, replacing X.509 client authentication with the ...
This document defines a specification for the discovery of WLCG bearer tokens by client tools. Clien...
Outside the HEP computing ecosystem, it is vanishingly rare to encounter user X509 certificate authe...
Since 2017, the Worldwide LHC Computing Grid (WLCG) has been working towards enabling token based au...
The WLCG Authorisation Working Group formed in July 2017 with the objective to understand and meet t...
The WLCG Authorisation Working Group was formed in July 2017 with the objective to understand and me...
One of the key challenges identified by the HEP R&D roadmap for software and computing is the abilit...
Since July 2017, the WLCG Authorization WG has been looking into how authentication and authorizatio...
One of the key challenges identified by the HEP R&D roadmap for software and computing is the abilit...
GridFTP transfers and the corresponding Grid Security Infrastructure (GSI)-based authentication and ...
GridFTP transfers and the corresponding Grid Security Infrastructure (GSI)-based authentication and ...
Support for token-based authentication and authorization has emerged in recent years as a key requir...
This document describes how WLCG users may use the available geographically distributed resources wi...
At the end of May 2017 the Globus Alliance announced that the open-source Globus Toolkit (GT) would ...
Access to WLCG resources is authenticated using an x509 and PKI infrastructure. Even though HEP user...
The WLCG is modernizing its security infrastructure, replacing X.509 client authentication with the ...
This document defines a specification for the discovery of WLCG bearer tokens by client tools. Clien...
Outside the HEP computing ecosystem, it is vanishingly rare to encounter user X509 certificate authe...