globus-credential-refresh

Home -> Toolkit -> Docs -> 4.0 -> Security -> Delegation	Website Email Lists Search:

Name

globus-credential-refresh — Delegation refresh client

Synopsis

globus-credential-refresh

Tool description

Used to refresh delegated credentials pointed to by the specified EPR. A new credential is generated and the one previously created by the delegation service is overwritten.

Command syntax

globus-credential-refresh [options]

Table 2. globus-credential-refresh options

`-help/--help`	Displays usage information.
`-c <credFile>`	Filename to read credential from. If not specified, then the default proxy location is used.
`-l <lifetime>`	Lifetime for the created delegated credential, specified in seconds. Defaults to 12 hours.
`-d <true/false>`	Determines type of delegation that needs to be done. If set to true full delegation is done, while if set to any other value limited delegation is done. If the option is not specified, it defaults to full delegation
`-m <security mechanism>`	Sets the security mechanism type. If set to 'msg' Secure Message is used, if set to 'conv' Secure Conversation is used or if set to 'trans' Secure Transport is used. Defaults to Secure Transport.
`-n <protection type>`	Sets the protection type. If set to 'sig' signature is used, while if set to 'enc' encryption is used. Defaults to signature.
`-a <authz>`	Type of client authorization to use. If set to "none" then no authorization is done, if set to "host" then host authorization is done, if set to "self" then self authorization is done. If set to none of the above then the string specified is used as the expected identity. Defaults to host authorization.
`-e <filename>`	Filename to read the EPR of the delegated credential resource from. Defaults to "delegatedCredEPR".