Chapter 15. Access Control with Gridmaps

Gridmaps are one of the forms of server-side GSI authorization. They allow us to control access to our grid services, and also play an important roles in higher level services. A gridmap is basically an ACL (Access Control List) that allows us to specify what users have access to a service.

Adding gridmap authorization is easy. We just have to add two lines to the WSDD (plus create the gridmap file). Although we could directly reuse most of the code of the previous two sections, we're going to start working in a new directory ($TUTORIAL_DIR/org/globus/progtutorial/services/security/gridmap/) since this example will also be used in the next section (credential delegation).