Authentication Rest API¶
Overview
Resource | Operation | Description |
---|---|---|
GSS | GET /auth/gss | Authenticate with GSS token |
SSH | GET /auth/ssh | Authenticate with SSH key exchange. |
SSHChallengeToken | GET /auth/ssh_challenge_token | Request SSH Challenge Token |
UserPass | GET /auth/userpass | Authenticate with username/password |
Validate | GET /auth/validate | Validate a Rucio Auth Token. |
x509 | GET /auth/x509 | Authenticate with x509 certificate. |
GET /auth/x509_proxy |
Details
-
GET
/auth/ssh_challenge_token
¶ Request a challenge token for SSH authentication
Request Headers: - Rucio-Account – Account identifier as a string.
- Rucio-AppID – Application identifier as a string.
Response Headers: - Access-Control-Allow-Origin –
- Access-Control-Allow-Headers –
- Access-Control-Allow-Methods –
- Access-Control-Allow-Credentials –
- Access-Control-Expose-Headers –
- X-Rucio-Auth-Token – The authentication token
Status Codes: - 200 OK – Successfully authenticated
- 404 Not Found – Invalid credentials
-
GET
/auth/x509
¶
-
GET
/auth/x509_proxy
¶ Authenticate a Rucio account temporarily via an x509 certificate.
Request Headers: - Rucio-Account – Account identifier as a string.
- Rucio-AppID – Application identifier as a string.
- SSLStdEnv – Apache mod_ssl SSL Standard Env Variables.
Response Headers: - Access-Control-Allow-Origin –
- Access-Control-Allow-Headers –
- Access-Control-Allow-Methods –
- Access-Control-Allow-Credentials –
- Access-Control-Expose-Headers –
- X-Rucio-Auth-Token – The authentication token
Status Codes: - 200 OK – Successfully authenticated
- 404 Not Found – Invalid credentials
-
GET
/auth/userpass
¶ Authenticate a Rucio account temporarily via username and password.
Request Headers: - X-Rucio-Account – Account identifier as a string.
- X-Rucio-Username – Username as a string.
- X-Rucio-Password – SHA1 hash of the password as a string.
- X-Rucio-AppID – Application identifier as a string.
Response Headers: - Access-Control-Allow-Origin –
- Access-Control-Allow-Headers –
- Access-Control-Allow-Methods –
- Access-Control-Allow-Credentials –
- Access-Control-Expose-Headers –
- X-Rucio-Auth-Token – The authentication token
Status Codes: - 200 OK – Successfully authenticated
- 404 Not Found – Invalid credentials
-
GET
/auth/validate
¶ Validate a Rucio Auth Token.
Request Headers: - Rucio-Auth-Token – as a variable-length string.
Returns: Tuple(account name, token lifetime).
-
GET
/auth/gss
¶ Authenticate a Rucio account temporarily via a GSS token.
Request Headers: - Rucio-Account – Account identifier as a string.
- Rucio-AppID – Application identifier as a string.
- SavedCredentials – Apache mod_auth_kerb SavedCredentials.
Response Headers: - Access-Control-Allow-Origin –
- Access-Control-Allow-Headers –
- Access-Control-Allow-Methods –
- Access-Control-Allow-Credentials –
- Access-Control-Expose-Headers –
- X-Rucio-Auth-Token – The authentication token
Status Codes: - 200 OK – Successfully authenticated
- 404 Not Found – Invalid credentials
-
GET
/auth/ssh
¶ Authenticate a Rucio account temporarily via SSH key exchange.
Request Headers: - Rucio-Account – Account identifier as a string.
- Rucio-SSH-Signature – Response to server challenge signed with SSH private key as a base64 encoded string.
- Rucio-AppID – Application identifier as a string.
Response Headers: - Access-Control-Allow-Origin –
- Access-Control-Allow-Headers –
- Access-Control-Allow-Methods –
- Access-Control-Allow-Credentials –
- Access-Control-Expose-Headers –
- X-Rucio-Auth-Token – The authentication token
Status Codes: - 200 OK – Successfully authenticated
- 404 Not Found – Invalid credentials