XSEDE Capability Delivery Plan for "CAN-09: User Management"
Use Case CAN-09: User ManagementArea: Enabling Functions
Executive Summary: A researcher needs to register with XSEDE, maintain an XSEDE user profile, and define groups of users who are associated with his/her research on XSEDE systems.
First CDP: 2017-08-24
- Disabling one’s own identity
- Verification of quality attributes
|Component||User facing?||Component’s role in the capability|
|Globus Auth||yes||A cloud service provided by the Globus team at University of Chicago; provides the user authentication function used by the XUP and the ability for end users to link their XSEDE identities with nonXSEDE identities (e.g., InCommon campus identities, DOE and other agency identities, etc.)|
|Kerberos||no||The repository that stores XSEDE usernames and passwords and authenticates XSEDE identities for XSEDE OIDC|
|XSEDE Central Database (XCDB)||no||The repository that stores XSEDE user profile data, including everything except usernames and passwords (see Kerberos, below) and links with nonXSEDE identities (see Globus Auth, below)|
|XSEDE User Portal (XUP)||yes||The frontend (web browser-based) user interface to the XSEDE system where individuals register with XSEDE, manage their user profile information, and request allocations to use XSEDE SP resources.|