Last modified 12 years ago
  • Q: Can i use two or more authentication methods in one service instance
    • A: Yes. Simply repeat the <sm:Module xsi:type="sm:ecm_gsoap.service"> in the <sm:Transport> section. Example: 
                              <sm:Transport>
                                <sm:Module xsi:type="sm:ecm_gsoap.service">
                                                <sm:Host>qcg.example.com</sm:Host>
                                                <sm:Port>19021</sm:Port>
                                                <sm:KeepAlive>false</sm:KeepAlive>
                                                <sm:Authentication>
                                                                <sm:Module xsi:type="sm:atc_transport_ssl.service">
                                                                        <sm:ServiceAuthentication>
                                                                                <sm:X509CertKeyFile>/opt/plgrid/qcg/etc/qcg-comp/certs/qcgcertkey.pem</sm:X509CertKeyFile>
                                                                        </sm:ServiceAuthentication>
                                                                </sm:Module>
                                                                <sm:Module xsi:type="sm:atc_msg_wsse_username.service">
                                                                        <sm:UserdirModule>
                                                                                <sm:Module xsi:type="sm:userdir_pam"/>
                                                                        </sm:UserdirModule>
                                                                </sm:Module>
                                                </sm:Authentication>
                                                <sm:Authorization>
                                                                <sm:Module xsi:type="sm:atz_username"/>
                                                </sm:Authorization>
                                </sm:Module>
                                <sm:Module xsi:type="sm:ecm_gsoap.service">
                                                <sm:Host>qcg.example.com</sm:Host>
                                                <sm:Port>19022</sm:Port>
                                                <sm:KeepAlive>false</sm:KeepAlive>
                                                <sm:Authentication>
                                                                <sm:Module xsi:type="sm:atc_transport_ssl.service">
                                                                        <sm:MutualAuthentication>
                                                                                <sm:X509CertKeyFile>/opt//qcg/etc/qcg-comp/certs/qcgcertkey.pem</sm:X509CertKeyFile>
                                                                                <sm:TrustedCAPath>/etc/grid-security/certificates</sm:TrustedCAPath>
                                                                        </sm:MutualAuthentication>
                                                                </sm:Module>
                                                </sm:Authentication>
                                                <sm:Authorization>
                                                                <sm:Module xsi:type="sm:atz_mapfile">
                                                                                <sm:Mapfile>/etc/grid-security/grid-mapfile</sm:Mapfile>
                                                                </sm:Module>
                                                </sm:Authorization>
                                </sm:Module>
                                <sm:Module xsi:type="smc:qcg-comp-service"/>
                        </sm:Transport