GT 3.9.5 Component Fact Sheet: Community Authorization Service (CAS)

Brief component overview

CAS allows a virtual organization to express policy regarding resources distributed across a number of sites. A CAS server issues assertions to the virtual organization users, granting them fine-grained access rights to resources. Servers recognize and enforce the assertions. CAS is designed to be extensible to multiple services and is currently supported by the GridFTP server.

Summary of features

Features new in release 3.9.5

  • None

Other Supported Features

  • File-level access control for GridFTP
  • Issuance of SAML authorization decisions

Deprecated Features

  • None

Usability summary

Usability improvements for WS A&A CAS:

  • improvement #1
  • ...
  • improvement #n

Backward compatibility summary

Protocol changes in CAS since GT version 3.2

  • There is no backward compatibility with 3.2 because of the port from OGSI to WSRF.

API changes since GT version 3.2

  • None

Exception changes since GT version 3.2

  • None

Schema changes since GT version 3.2

  • WSDL reflects the port to WSRF from OGSI.

Technology dependencies

The CAS service depends on the following GT components:

  • WS Authentication and Authorization
  • Java WS Core

The CAS GridFTP authorization module depends on the following GT components:

  • Pre-WS Authentication and Authorization

The CAS service depends on the following 3rd party software:

  • OpenSAML

The CAS GridFTP authorization module depends on the following 3rd party software:

  • libxml

Tested platforms

Tested Platforms for CAS

  • Windows XP
  • Linux (Red Hat 7.3)

For More Information

Click here for more information about this component.