-
I noticed that when we build xrootd `5.5.X` with `-DXRDCL_ONLY=TRUE` then `SciTokens` are disabled[a]. Does this mean our build of xrootd is not goodto use tokens for authentication?
[a]
```
--…
-
Hi XRootD team,
Our user that initially reported https://github.com/xrootd/xrootd/issues/2143 is noticing infrequent segfaults under a different scenario after upgrading to XRootD 5.6.4. They have…
-
Hi,
I found a weird interaction with CMS tokens.
RAL uses lfn2pfn mapping to map cms's /store root folder to the pfn cms:/store.
Testing with a user token, I've confirmed the correct permissions a…
-
In the OSDF, parts of the namespace are managed via X509 client certificates and not tokens. The X509-based authentication is authorized via entries in the Authfile.
We consider the X509-based aut…
-
After the functionality of these features is sound, generate a unit test for them. Waiting for Emma to fix a bug with the scitokens config and the xrootd issuer config, issue #390
-
Currently, a re-check interval of 600 seconds is hardcoded here:
https://github.com/scitokens/scitokens-cpp/blob/7d9c77bd0fd238a8db000acd8229616e786ba273/src/scitokens_internal.cpp#L407-L413
It …
-
According to the [RFC](https://datatracker.ietf.org/doc/html/rfc8725#section-3.9), if the token audience validation fails, the token should be fully rejected, i.e., leading to a 401 HTTP response stat…
-
Hi folks,
We've got a user with a server crash after copying a file using tokens. The first copy works but subsequent copies appear to hang. Their server is EL8; here's their traceback:
```
N…
-
Pelican Version: 7.5.6
Pelican Service:
- [ ] Client
- [ ] Plugin
- [ ] Registry
- [x] Director
- [x] Origin
- [x] Cache
- [ ] Other (please give the detail)
**Describe the bug**
When se…
-
Any **user** can register client with **arbitrary** non-restricted (unknown) **scope name** like `my_personal_scope`. I see several issues with this behavior
* difficult to catch misspelled scope nam…
vokac updated
9 months ago