A. Costa, P. Massimino, C. Vuerli, U. Becciani INAF CTA Gateway Prototype Based on gUSE/WS-PGRADE and Single-Sign-On (SSO)

Slides:



Advertisements
Similar presentations
LEAD Portal: a TeraGrid Gateway and Application Service Architecture Marcus Christie and Suresh Marru Indiana University LEAD Project (
Advertisements

CLARIN AAI, Web Services Security Requirements
© 2006 Open Grid Forum The Astro Community and DCIs in Europe and the role of Astro-CG C. Vuerli - INAF.
Introduction on Science Gateway Understanding access and functionalities Catania, 09/06/2014Riccardo Rotondo
P-GRADE and WS-PGRADE portals supporting desktop grids and clouds Peter Kacsuk MTA SZTAKI
WS-PGRADE: Supporting parameter sweep applications in workflows Péter Kacsuk, Krisztián Karóczkai, Gábor Hermann, Gergely Sipos, and József Kovács MTA.
Shibboleth & IMPETUS 1.What are they? 2.Demo. Shibboleth - A system to support the sharing of Web resources among organisations IMPETUS - Infrastructure.
WebFTS as a first WLCG/HEP FIM pilot
Catania Science Gateway Framework Motivations, architecture, features Catania, 09/06/2014Riccardo Rotondo
1 Application Specific Module for P-GRADE Portal 2.7 Application Specific Module overview Akos Balasko MTA-SZTAKI LPDS
Shibboleth 2.0 IdP Training: Basics and Installation January, 2009.
SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI WS-PGRADE/gUSE Supporting e-Science communities in Europe Zoltan Farkas.
SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI Workflow-Oriented Science Gateway for Astrophysical Visualization Eva.
CloudBroker integration to WS- PGRADE/gUSE Zoltán Farkas MTA SZTAKI LPDS
INAF - National Institute for Astrophysics The National Institute for Astrophysics coordinates and participates in the Astronomy and Astrophysics (A&A)
1 Developing domain specific gateways based on the WS- PGRADE/gUSE framework Peter Kacsuk MTA SZTAKI Start date: Duration:
07/06/11 New Features of WS-PGRADE (and gUSE) 2010 Q Q2 Miklós Kozlovszky MTA SZTAKI LPDS.
SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI Creating the Autodock gateway from WS-PGRADE/gUSE and making it cloud-enabled.
From P-GRADE to SCI-BUS Peter Kacsuk, Zoltan Farkas and Miklos Kozlovszky MTA SZTAKI - Computer and Automation Research Institute of the Hungarian Academy.
GILDA testbed GILDA Certification Authority GILDA Certification Authority User Support and Training Services in IGI IGI Site Administrators IGI Users IGI.
STAR net, Resources and VOs C. Vuerli, A. Costa, U. Becciani, P. Massimino, G. Castelli.
Introduction to WS-PGRADE and gUSE Tutorial Akos Balasko 04/17/
Grid Execution Management for Legacy Code Applications Grid Enabling Legacy Code Applications Tamas Kiss Centre for Parallel.
Portal-based Access to Advanced Security Infrastructures John Watt UK e-Science All Hands Meeting September 11 th 2008.
Using Enterprise Logins in Portal for ArcGIS via SAML Greg Ponto & Tom Shippee.
Convert generic gUSE Portal into a science gateway Akos Balasko 02/07/
Holding slide prior to starting show. A Portlet Interface for Computational Electromagnetics on the Grid Maria Lin and David Walker Cardiff University.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Development of e-Science Application Portal on GAP WeiLong Ueng Academia Sinica Grid Computing
Using the ARCS Grid and Compute Cloud Jim McGovern.
Convert generic gUSE Portal into a science gateway Akos Balasko.
SHIWA and Coarse-grained Workflow Interoperability Gabor Terstyanszky, University of Westminster Summer School Budapest July 2012 SHIWA is supported.
PROGRESS: GEW'2003 Using Resources of Multiple Grids with the Grid Service Provider Michał Kosiedowski.
Application Specific Module Tutorial Zoltán Farkas, Ákos Balaskó 03/27/
1 SCI-BUS: building e-Science gateways in Europe: building e-Science gateways in Europe Peter Kacsuk and Zoltan Farkas MTA SZTAKI.
1 WS-PGRADE/gUSE generic DCI gateway framework for EGI user communities Zoltan Farkas and Peter Kacsuk MTA SZTAKI SCI-BUS is supported.
SCI-BUS is supported by the FP7 Capacities Programme under contract nr RI MTA SZTAKI background for the DARIAH CC Zoltan Farkas MTA SZTAKI LPDS,
07/02/2012 WS-PGRADE/gUSE in use Lightweight introduction Zoltán Farkas MTA SZTAKI LPDS.
Grid Execution Management for Legacy Code Architecture Exposing legacy applications as Grid services: the GEMLCA approach Centre.
Tutorial on Science Gateways, Roma, Riccardo Rotondo Introduction on Science Gateway Understanding access and functionalities.
Tutorial on Science Gateways, Roma, Catania Science Gateway Framework Motivations, architecture, features Riccardo Rotondo.
AAI needs of the Distributed Computing Infrastructures - CLARIN Dieter Van Uytvanck Max Planck Institute for Psycholinguistics
Usage of WS-PGRADE and gUSE in European and national projects Peter Kacsuk 03/27/
RI EGI-InSPIRE RI Astronomy and Astrophysics Dr. Giuliano Taffoni Dr. Claudio Vuerli.
Science Gateway and Single Sign-On technology study for the Cherenkov Telescope Array C. Vuerli (INAF), Giovanni Lamanna (LAPP/IN2P3/CNRS), Nadine Neyroud.
Fermilab supports several authentication mechanisms for user and computer authentication. This talk will cover our authentication systems, design considerations,
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI Services for Distributed e-Infrastructure Access Tiziana Ferrari on behalf.
Science Gateway- 13 th May Science Gateway Use Cases/Interfaces D. Sanchez, N. Neyroud.
Convert generic gUSE Portal into a science gateway Akos Balasko.
Convert generic gUSE Portal into a science gateway Akos Balasko.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Exposing WS-PGRADE/gUSE for large user communities Peter Kacsuk, Zoltan Farkas, Krisztian Karoczkai, Istvan Marton, Akos Hajnal,
Building an European Research Community through Interoperable Workflow and Data Gabor Terstyanszky University of Westminster.
1 SCI-BUS gateway technology for a large variety of user communities Peter Kacsuk MTA SZTAKI SCI-BUS is supported by the FP7 Capacities.
Web SSO with Cloud Resources using AD Federation Services
Access Policy - Federation March 23, 2016
Accessing the VI-SEEM infrastructure
Using Your Own Authentication System with ArcGIS Online
Extending Authentication to Members of Social Networks
HMA Identity Management Status
Grid accounting system
Lightweight introduction
THE STEPS TO MANAGE THE GRID
Lightweight introduction
MIK 2.1 DBNS - introduction to WS-PGRADE, 2013
a Collaborative Environment for the Astrophysics Community
ESA Single Sign On (SSO) and Federated Identity Management
Office 365 Identity Management
EGI EPOS Competence Center
Introduction to the SHIWA Simulation Platform EGI User Forum,
Presentation transcript:

A. Costa, P. Massimino, C. Vuerli, U. Becciani INAF CTA Gateway Prototype Based on gUSE/WS-PGRADE and Single-Sign-On (SSO) Authentication

Communities and Information Technology Knowledge Providers SCI-BUS ER-Flow Different scientific communities are involved in the ER-flow activities. INAF in the first project year is providing application support for these communities: INAF Astrophysical Observatory of Catania (OACT). INAF Astronomical Observatory of Trieste (OATS) INAF Astronomical Observatory of Teramo (OATE) University of Portsmouth (UoP) Slovak Academy of Sciences (SAS) 2

STAR net Gateway Federation -Scientific Communty support  New Science Gateways -INAF Astrophysical Obs. of Catania - VisIVO SG Astronomical Obs. of Trieste – Plank Mission Astronomical Obs. of Teramo – Franec/Basti -University of Portsmouth (UoP) -Cosmological Support (ICG) -Teaching and Learning Tools (CCI) -Slovak Academy of Sciences 3

STAR net Gateway Federation Definition - Technology. Liferay/WS-PGRADE, gUse, SHIWA Repository Local and distributed DCIs - Maintenance. FrontEnd/BackEnd Virtual Machines Master Virtual Machines with Local Customization included (configuration file Enab/Disab. Portlets and services) Master maintenance/update  INAF (OACT) - Shared Services Single Sign On (SSO) Workflows Sharing (SHIWA repository) Cloud Data - Local account Data will be preserved: each Federate SG mounts external DB exported by the physical machine (e.g. /mnt/STARnet) 4

Shared Storage Shared Storage Shared WF Repository Virtual Machine Liferay WSPGrade/gUSE Local DB Local Storage Local WF Repository Local DCIs Virtual Machine Liferay WSPGrade/gUSE Local DB Local Storage Local WF Repository Local DCIs Virtual Machine Liferay WSPGrade/gUSE Local DB Local Storage Local WF Repository Local DCIs Shared DCIs 5

A CTA gateway based on ws- pgrade gUSE: Portal Architecture 6

CTA users and SSO authentication the CTA IdP CTA Science Gateway Users: Guest observer Priviliged user (incl. principal investigators, archive managers, etc.) Archive user Privileged users will use CTA IdP Guest observers will use A federated IdP ‘Homeless users’ Local accounts in the science gateway Web SSO WAYF Service Federation 7

CTA IdP Connected to the the CTA LDAP 8

Currently implemented components at INAF CTA Science Gateway WAYF Service A CTA SG prototype based on WS-PGRADE-gUSE CTA IdP A CTA SP 9

INAF CTA SG: SAML Based SSO Model Trust CTA Identity Provider Service Provider SAML Request SAML Response CTA Gateway 10

INAF CTA SG: Login Page The portal user is presented with the CTA IdP login page 11

INAF CTA SG Standards The usage of standards increase – the long term sustainability – Modularity – Easiness of use Java Portlet Specification (JSR-168) Security Assertion Markup Language 2.0 (SAML 2.0) – Shibboleth implementation Open LDAP Usage of X509 certificates 12

Workflows The skeleton of a workflow is represented by a Graph. Jobs denote the activities, which envelop insulated computations Channels are directed edges of a graph, directed from the output ports towards the input ports. 13

UR-SG-0110: CTA gUSE/WS-PGRADE portal provides a workflow management system: “graph editor”. Workflows We can rely on a local and a public workflow repository. 14

Graph creation Concrete workflow creation Concrete workflow configuration Job types and corresponding properties Port properties Certificate handling Submission Log examination Submitted instance management Result evaluation Repository handling (export/import) Workflows 15

CTA Gateway Workflows instances 16

CTA Gateway Workflows instances 17

CTA Gateway: Adding a DCI to the portal 18

ACID (Astronomical & Physics Cloud Interactive Desktop) Is the cloud environment provided by our CTA gUSE/WS-PGRADE portal. It allows you to use many complex astrophysical software packages ACID can be used as a remote DCI (workflows) or interactively by a GUI. We use ownCloud It is possible to sync and share data seamlessly directly from the user Desktop. CTA Gateway Application and DATA in Cloud: ACID 19

Application in Cloud: ACID 20

Thanks for your attention CTA Gateway Prototype Based on gUSE/WS-PGRADE and Single-Sign-On (SSO) Authentication A.Costa, P. Massimino, U. Becciani, C. Vuerli INAF References: TECHNOLOGY STUDY FOR CTA VIRTUAL TEAM PROJECT Scientific Gateway User requirements 21

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.