Return-Path: X-Original-To: apmail-airavata-dev-archive@www.apache.org Delivered-To: apmail-airavata-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id DB5BD10969 for ; Sat, 12 Dec 2015 19:57:10 +0000 (UTC) Received: (qmail 64871 invoked by uid 500); 12 Dec 2015 19:57:10 -0000 Delivered-To: apmail-airavata-dev-archive@airavata.apache.org Received: (qmail 64822 invoked by uid 500); 12 Dec 2015 19:57:10 -0000 Mailing-List: contact dev-help@airavata.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@airavata.apache.org Delivered-To: mailing list dev@airavata.apache.org Received: (qmail 64803 invoked by uid 99); 12 Dec 2015 19:57:10 -0000 Received: from Unknown (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 12 Dec 2015 19:57:10 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id 1936BC003C for ; Sat, 12 Dec 2015 19:57:10 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 2.998 X-Spam-Level: ** X-Spam-Status: No, score=2.998 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=3, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd1-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=binghamton-edu.20150623.gappssmtp.com Received: from mx1-us-east.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id Ic95ZBvOE3vp for ; Sat, 12 Dec 2015 19:57:08 +0000 (UTC) Received: from mail-ob0-f172.google.com (mail-ob0-f172.google.com [209.85.214.172]) by mx1-us-east.apache.org (ASF Mail Server at mx1-us-east.apache.org) with ESMTPS id A344442A73 for ; Sat, 12 Dec 2015 19:57:08 +0000 (UTC) Received: by obbsd4 with SMTP id sd4so56764348obb.0 for ; Sat, 12 Dec 2015 11:57:08 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=binghamton-edu.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=/2n2HlK73PRyH7rRfmA5b00Z1X41k20jAFp3SnKH93o=; b=X6T4k4dso0S4CYxgukhf0TCL6CeVHaz1VTmBDT+gJnJzLYFFWtVsCWE1d8zRBVCog5 OUYpeWBum/WAdg/+HQA5J7u+h15Z/W4BUvGZfPvtgFbJj4R83FqHiwpMsnzAPt80DrRb dVGk2/DjrUD/iUtaJ9dXTChi4O/m+APsBljT/3UiXjEhNUZn27IdhSokXveUioUzPr/0 YrzDIg8p079/9VNClvEcAidS9VsZI+cDQK0wdDIZhpRndIywBPQDE0zXj5y8cumtz0u7 XSY+CZAW2KSPO0rvaMnSLbO6eSYatrzkHzW116zkZ6NkdFCAksEslKNP5/m8/mbNoYIz dpkw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=/2n2HlK73PRyH7rRfmA5b00Z1X41k20jAFp3SnKH93o=; b=aqR7kHXxo9ZXnI31nAvNy8CjDtNz2xjbyzdGH7HkrOE2VzknyuxtKRrz/mx8UQXzNv jniBDW9dRM8MOgOiqurb8yDnaoIxqDNDQy2clZDO2oGsuB8Edn3QlFiCX5VHVfWiHObT YZLdD8nRoLKke/hCSTpmSSOXRubzABTzbmKg8f9oNoNF4zKnvMhQ667GVH/yn5WR/Get DFFlonAm0Myds7/JroMyYi/+eKWmx19r4jVi6vudwTGJNZupzoNAOZtjhcuu1WNl84OR bpY+7pkJkG0KfprBczDhX/Hw1woQyuwkvt8X48uLt4vqoxhZhvbdVjinwCVko125v7wD K9qw== X-Gm-Message-State: ALoCoQnvoJG+KH/rCyovNVR4krqJtSPkMopntki3XQQJmmQ+URcO32QZI9kFkeiQTORrcQcVJCTRyE00gxjC64OJsmrd9JihR4yUZD1mLqNwQ2JrDtxGy7Q= MIME-Version: 1.0 X-Received: by 10.60.63.233 with SMTP id j9mr19739824oes.46.1449950228008; Sat, 12 Dec 2015 11:57:08 -0800 (PST) Received: by 10.202.106.20 with HTTP; Sat, 12 Dec 2015 11:57:07 -0800 (PST) In-Reply-To: References: Date: Sat, 12 Dec 2015 14:57:07 -0500 Message-ID: Subject: Re: Introducing gatewayId to SecurityToken in Airavata API From: Pankaj Saha To: dev Content-Type: multipart/alternative; boundary=001a11c1d2064873f60526b8d8c6 --001a11c1d2064873f60526b8d8c6 Content-Type: text/plain; charset=UTF-8 Hi Supun, Is there any changes required in term of hosted Airavata setup due to this mandatory field in SecurityToken for 16 branch? Thanks Pankaj On Fri, Dec 11, 2015 at 10:17 PM, Supun Nakandala wrote: > Hi devs, > > Currently in the Airavata API we use the gatewayId only for some API > methods like createExperiment, registerApplication etc.. I would like to > suggest that we move this field to SecurityToken and make it mandatory for > all API methods. For API methods which requires the gatewayId we can read > it from there. > > By making gatewayId a mandatory field in SecurityToken, in the API it is > easy to implement access control to the API in a multi tenanted scenario. > > Any Concerns? > > Thanks > Supun > --001a11c1d2064873f60526b8d8c6 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
Hi Supun,
Is there any changes required in term of hos= ted Airavata setup due to this mandatory field in SecurityToken for 16 bran= ch?

Thanks
Pankaj

On Fri, Dec 11, 2015 at 10:= 17 PM, Supun Nakandala <supun.nakandala@gmail.com> w= rote:
Hi devs,

Currently in the Airavata API we use the gatewayId onl= y for some API methods like createExperiment, registerApplication etc.. I w= ould like to suggest that we move this field to SecurityToken and make it m= andatory for all API methods. For API methods which requires the gatewayId = we can read it from there.

By making gatewayId a m= andatory field in SecurityToken, in the API it is easy to implement access = control to the API in a multi tenanted scenario.

A= ny Concerns?=C2=A0

Thanks
Supun

--001a11c1d2064873f60526b8d8c6--