26TH INTERNATIONAL CONFERENCE ON COMPUTING IN HIGH ENERGY & NUCLEAR PHYSICS (CHEP2023)

Solutions for non-web OAuth Authorisation at CERN

Not scheduled

1h

Hampton Roads Ballroom and Foyer Area (Norfolk Waterside Marriott)

Poster Poster Poster Session

Speaker

Aguado Corman, Asier (CERN)

Description

Researchers are now well accustomed to the convenience of Single Sign-On for their web applications. A significant proportion of researchers' and laboratory staff's daily work, however, is not performed on the web today - to support these workflows we must go beyond the well understood web flows for SAML and OAuth2 and find ways to provision tokens on the command line. This paper will showcase methods being used at CERN to enable command line workflows with CERN's OAuth Token Issuer, while integrating them with web Single Sign-On. As well as describing solutions for generalised use cases we will highlight specific examples of services that are already in place such as token based authentication to Openshift command line tools.

Presentation materials

chep-poster-cli-2023-0.8.pdf

Peer reviewing

Paper

Accepted on Dec 7, 2023 by Fernando Barreiro Megino

Solutions_for_non_web_OAuth_2_0_authorisation_at_CERN.pdf