Details
-
Enabler
-
Should have
-
None
-
None
-
Data Processing
-
-
- Upgraded Rucio dev server with OpenID Connect (OIDC) token fixes.
- Documented implications, work required and timeline for new OIDC functionality.
-
1.5
-
1.5
-
5
-
3.333
-
Team_ESCAPEES
-
Sprint 5
-
-
-
-
14.6
-
Outcomes Reviewed, Accepted by FO
Description
Who?
SRC developers and architects
What?
- Enabled improved behaviour for token-based authentication for data managed with Rucio
- Needs to consider
- Some dev work required to push through some outstanding issues/PRs that have arisen + documentation
- Test updated Rucio version on ESCAPE deployment, and then (assuming it all works) update SKAO Rucio server version
- Keep an eye on steps that would be needed to make use of planned SKA authentication and authorization infrastructure (AAI): e.g. https://jira.skatelescope.org/browse/SP-1776
- Possibly includes a spike to test Ceph-S3 storage endpoint integration (https://docs.google.com/document/d/1ofV5iIgpCKCnANNuqIavN_6FvvMTE6QPtQKK_n1P3SE/edit)
Why?
Maintain momentum on this within wider Rucio development and user communities to ensure that this becomes a widely accepted means of providing AAI with Rucio. Ensure that offering token based auth is an accessible goal for new storage sites that may be onboarded into the Data Lake.
Attachments
Issue Links
- mentioned in
-
Page Loading...