... | ... | @@ -2,7 +2,7 @@ |
|
|
http://eudat.eu/services/userdoc
|
|
|
|
|
|
## Authentication
|
|
|
The B2SAFE service relies on the [authentication mechanisms supported by iRODS](https://docs.irods.org/master/plugins/pluggable_authentication/).
|
|
|
The B2SAFE service relies on the [authentication mechanisms supported by iRODS](https://docs.irods.org/master/plugins/pluggable_authentication/). Moreover, it is possible to enable the support for oauth2 token, deploying and configuring the [PAM OAuth2 module](https://github.com/EUDAT-B2SAFE/pam-oauth2). As described in the related documentation, the module follows this approach: it assumes that an oauth2 token is available to the user. The user have to login to iRODS using the PAM authentication and replacing the password of the local account with the oauth2 token of the global account. Then B2SAFE queries, server-side, the OAuth2 provider and get the attributes to map the global account to the local one.
|
|
|
|
|
|
## Authorization
|
|
|
B2SAFE supports unix-like ACLs on the stored data.
|
... | ... | |