...
1. | Initial page of the demo EGI fedCloud UI. User selects ELIXIR GUOCCI (w/ CILogon) | |
2. | User is requested to authenticate with ELIXIR Proxy IdP. User selects his/her home organisation from the list. | |
3. | User authenticates with his/her home organisation. | |
User is asked to consent attribute release to the RCAuth.eu service. | ||
User ends on the EGI fedCloud UI where he/she can manage virtual machines. EGI fedCloud UI calls remote cloud infrastructures and uses X.509 proxy certificate which was obtained in previous steps. X.509 proxy certificate contains VOMS extensions, therefore cloud infrastructures can do the authorisation decision based on the user VO membership. | ||
Detailed view on the X.509 proxy with VOMS extensions which is stored on the wuotan.ics.muni.cz, machine which hosts EGI fedCloud UI. | ||
EGI VOMS server (voms1.grid.cesnet.cz) is defined in ELIXIR Perun system. | ||
We can see successful propagation of users from VO vo.elixir-europe.org to the EGI VOMS servers. | ||
Via VOMS admin UI we can check that it contains information about users propagated by the Perun system. |
...