MSO and multiple communities
Alasdair Allan
aa at astro.ex.ac.uk
Wed Jul 7 05:26:42 PDT 2004
Wil O'Mullane wrote:
> Guy Rixon wrote:
> > I don't think that IVOA is requiring this.
> >
> > The current position seems to be that you need to prove an individual
> > identity in order to prove a group membership in order to prove
> > authorization.
> >
> > Services will also need individual identities for logging.
> >
> > In Wil's MyDB system, data are owned by individuals, so authorization
> > has to be at the individual level. This is because it's a read-write
> > system. In a read-only archive, authorization at group level is still
> > OK in most cases. In the cases where it isn't, the operator of the
> > archive will want the finer-grained authorization to achive their own
> > ends.
>
> I agree.
Ditto.
Al.
--
Dr. A. Allan, School of Physics, University of Exeter
More information about the grid
mailing list