XSEDE Capability Delivery Plan for "CAN-09: User Management"

Use Case CAN-09: Establish and manage a community identity

Area: Enabling Functions
URLs: Public, Review

Executive Summary: A community member needs to to establish, manage, and disable a community identity.

URLs: Public
First CDP: 2017-08-24
Current CDP: 
Current Implementation Status: 
Issues to be Addressed: 
Issues Remaining: 
  • Disabling one’s own identity
  • Verification of quality attributes
This capability is currently supported by the following 4 components:
Component User facing? Component’s role in the capability
Globus Auth yes A cloud service provided by the Globus team at University of Chicago; provides the user authentication function used by the XUP and the ability for end users to link their XSEDE identities with non­XSEDE identities (e.g., InCommon campus identities, DOE and other agency identities, etc.)
Kerberos no The repository that stores XSEDE usernames and passwords and authenticates XSEDE identities for XSEDE OIDC
XSEDE Central Database (XCDB) no The repository that stores XSEDE user profile data, including everything except usernames and passwords (see Kerberos, below) and links with non­XSEDE identities (see Globus Auth, below)
XSEDE User Portal (XUP) yes The front­end (web browser-­based) user interface to the XSEDE system where individuals register with XSEDE, manage their user profile information, and request allocations to use XSEDE SP resources.