JLite and MyProxy adaptation

1 view

Skip to first unread message

Alexandre

unread,

Dec 19, 2009, 7:34:52 PM12/19/09

to jlite, oleg.suk...@gmail.com

Hi everyone!

Hi Oleg!

I am needing build a portlet to manage credentials for access to grid
environment. For store public and private keys, i used MyProxy server.
For execute jobs on the grid environment by Java, I am using JLite,
for catch credentials to my specific VO. So Oleg, as you said to Luiz
Henrique in other post [http://groups.google.com/group/jlite/t/
181543d8a07080b8], if I understand, I need retrieve a GSSCredential of
MyProxy server through MyProxy-Java API and, after that, I should to
separate user certificate and the private key, and set they on the
source code that I am using JLite API. Is it right?

Thanks advance.

Alexandre

Oleg Sukhoroslov

unread,

Dec 21, 2009, 4:18:39 AM12/21/09

to jlite

Hi Alexandre!

Since I haven't had any hands-on experience with MyProxy I can only
refer to MyProxy documentation and my (hopefully correct) understanding
of the proxy machinery. Check out this page from MyProxy docs:
http://grid.ncsa.illinois.edu/myproxy/voms/

Of particular interest is this part

To retrieve a proxy then add VOMS attributes:

$ myproxy-logon
Enter MyProxy pass phrase:
A credential has been received for user jbasney in /tmp/x509up_u502.
$ voms-proxy-init -cert `grid-proxy-info -path` -key `grid-proxy-info
-path` -voms NCSA
Your identity: /C=US/O=National Center for Supercomputing
Applications/CN=Jim Basney
Creating temporary proxy ............................... Done
Contacting voms.ncsa.uiuc.edu:15000 [/C=US/O=National Center for
Supercomputing Applications/CN=voms.ncsa.uiuc.edu] "NCSA" Done
Creating proxy ...................................................... Done

So you can see that you can specify proxy retrieved from MyProxy as a
user cert and key for the voms-proxy-init command. The proxy has no
passphrase, so it is not asked during VOMS proxy creation. To preform
this step via jLite API you should configure it like this:

GridSessionConfig config = new GridSessionConfig();
// set Globus proxy retrieved from MyProxy as user
credentials
config.setUserCertPath("... PATH TO PROXY YOU GET FROM
MYPROXY ...");
config.setUserKeyPath("... PATH TO PROXY YOU GET FROM MYPROXY
...");

// all other config options as usual...

GridSession session = GridSessionFactory.create(config);
GlobusCredential proxy = session.createProxy("YOUR_VO", 12*3600);

Hope that helps,

-- Oleg

Reply all

Reply to author

Forward

0 new messages