[gin-auth] The VO Groups and Roles for GIN-GGF-ORG
Jensen, J (Jens)
J.Jensen at rl.ac.uk
Thu Mar 9 08:32:40 CST 2006
[Oops, thought I'd sent this earlier. Off it goes.]
I'd have thunk it's useful to create random roles and
groups for interop-now-testing. Just assign them
randomly and don't use them for access control to
I for one would like to have some funny stuff in my proxies
so I can see what happens. And perhaps some relatively
lightweight way of sticking new stuff in there.
They should be able to coexist with the "serious" groups
that Dane mentioned.
From: owner-gin-auth at ggf.org [mailto:owner-gin-auth at ggf.org]On Behalf Of
Sent: 08 March 2006 03:33
To: Erwin Laure
Cc: Oscar Koeroo; gin-auth at ggf.org
Subject: Re: [gin-auth] The VO Groups and Roles for GIN-GGF-ORG
I would agree that we should not push on roles for this first wave.
It would be a good discussion to carry forward after the first push
to see if we can agree on a few basic roles before the SC06 timeframe
(but after GGF17 timeframe).
I don't know that we should be particularly reluctant to create
I think it might be a good idea to create groups for the different
focus groups (info,data,auth,jobs) to provide that option of
discrimination as well as some basic "practice", but that might
complicate the administration (estimates on what the overhead would
be ?) I can't think of an immediate need off-hand (but then I didn't
immediately grok the need for a VOMS like others did ;-)
On Mar 7, 2006, at 8:26 AM, Erwin Laure wrote:
> Hi Oscar,
> Do we really need them now? This is likely to open a can of worms and
> for our first goals up to SC06 I don't think we really need them.
> -- Erwin
>> -----Original Message-----
>> From: owner-gin-auth at ggf.org [mailto:owner-gin-auth at ggf.org]
>> On Behalf Of Oscar Koeroo
>> Sent: Tuesday, March 07, 2006 3:12 PM
>> To: gin-auth at ggf.org
>> Subject: [gin-auth] The VO Groups and Roles for GIN-GGF-ORG
>> Hi all,
>> I'll probably need to create groups and roles in the VO for
>> various reasons.
>> This will probably be yet another discussion topic, but which
>> (sub)groups and roles must be created (besides the defacto
>> standard 'VO-Admin' role)?
More information about the gin-auth