DILIGENT Gridsphere and Portal Security patch

From Gcube Wiki
Revision as of 08:52, 20 June 2007 by Andreaturli (Talk | contribs) (Download VOMS servlet)

Jump to: navigation, search

This page contains a description of some needed steps in order to perform a new installation of DILIGENT Gridsphere Portal.


Configure properly your host

If you want to deploy the DILIGENT gridsphere portal you need to properly configure security for DILIGENT services please follows the How To Enable Security page.

Install Apache-tomcat 5.5.20

You can download from ETICS web client the required version of that web application container. Remember to correctly configure the container as Gridsphere user's guide suggests in Gridsphere user's guide

Download Diligent-Gridpsphere

It is a gridsphere-2.2.7 portal patched with org.diligentproject.portal.security-patch, that introduce the diligent security mechanisms in the gridsphere portal. You can download it from ETICS web client

Download VOMS servlet

The .war of the VOMSServlet is available at ENGrepository at

Edit PortalSecurity.properties

In the tgz of diligent-gridpshere you can find a new file called PortalSecurity.properties. You have to edit it before to install the portal in your machine. This operation is really important in order to have a correct installation.

In particular you have to specify a number of parameters belonging to MyProxy host you want to use:

  • E.g.:MYPROXY_HOST=grids04.eng.it
  • E.g.:MYPROXY_PORT=7512

and a dir in your filesystem suitable to store temporary generated proxy certificate

  • E.g.:PROXIES_DIR=/home/user/certs/

Then you have to specify a number of information needed to communicate with the VOMSServlet. This servlet represents a workaround due to communication problem within portal, VOMS host and the all DILIGENT infrastructure. At ENG we develop that servlet that you must deploy in the same Apache tomcat container where you deploy diligent-gridsphere. The following parameters are required:

  • SERVLET_HOST=host
  • SERVLET_PORT=port
  • SERVLET_PATH=the_servlet_path
  • SERVLET_PROTOCOL=http

Install

to be completed