GT 4.0 Component Fact Sheet: the Workspace Management Service (Contribution)

Table of Contents

1. Brief component overview
2. Summary of features
3. Backward compatibility summary
4. Technology dependencies
5. Tested platforms
6. Associated standards
7. For More Information

1. Brief component overview

The Workspace Management Service allows a Grid client to dynamically create and manage a workspace, currently implemented as a Unix account, on a remote site. The infrastructure is composed of a factory service that allows an authorized Grid client to create individual accounts or groups of accounts, and an account service that allows an authorized Grid client to manage individual account properties, such as account access policy or time to live (TTL). These concepts are represented as WSRF services and implemented using the GT4 implementation of WSRF.

The workspace service code consists of a front-end implementing protocols for the creation and management of workspaces and a back-end implementation. Workspace creation and management can be implemented in different ways according to site policies and preferences. At this point, our implementation supports two such of such "back-ends": (1) true dynamic creation using the Unix "adduser" command, and (2) an account pooling implementation based on Andrew McNab's gridmapdir patch and the gLite LCMAPS system.

2. Summary of features

Features new in release GT 4.0:

  • Authorized client can create and manage accounts dynamically.
  • The service accepts VOMS credentials; attributes from VOMS credentials can be used for authorization as well as customization of accounts.
  • Account assignment is authorized based on access control lists (ACLs) which can be DN-based or attribute-based.
  • The account assignment back-end is implemented using an account pool: LCMAPS implementation is currently our primary account pooling implementation but we also support independent account pools and accounts created dynamically as needed.
  • The account assignment back-end implements highly configurable account management including a modifiable account recycling process and account quarantine.

Other Supported Features

  • None.

Deprecated Features

  • None.

3. Backward compatibility summary

Protocol changes since GT version 3.2:

  • N/A as this is a new component.

API changes since GT version 3.2:

  • N/A

Exception changes since GT version 3.2:

  • N/A

Schema changes since GT version 3.2:

  • N/A

4. Technology dependencies

The Workspace Management Service depends on the following GT components:

  • Java WS Core

The Workspace Management Service depends on the following 3rd party software:

  • LCMAPS (only for the LCMAPS back end)
  • Java VOMS parsing libraries from the gLite cvs. A binary can be downloaded separately, see the administrator's guide.

5. Tested platforms

Tested Platforms for the Workspace Management Service

  • Linux

6. Associated standards

Associated standards for WMS:

7. For More Information

Click here for more information about this component.