Version 3 (modified by pjkersha, 10 years ago) (diff)


[wiki/Security/ Security] / ndg_security


These pages give the details of the Python code base for NDG Security. It uses the ndg_saml, ndg_xacml and MyProxyClient packages. For an overview of NDG Security see wiki:.

NDG Security uses a modular server side architecture based on the Python WSGI. WSGI filters front applications to be protected enforcing access control. Attribute and Authorisation web services, OpenID applications are all built around the WSGI specification. Using PasteDeploy, it is possible to make a flexibile configuration at deployment by arranging the filters and applications by following a simple ini file syntax.

For server deployment, Apache2 with mod_wsgi are the recommended containers for running applications and filters. Installation configuratipn details are given below.



Adds integration with XACML 2.0 implementation ndg_xacml, and SAML authorisation service interface.

1.5.x Branch

Maintained for some existing deployments. Uses custom authorisation interface.



For server side components, the recommended configuration is with mod_wsgi with Apache2:

Apache2 and mod_wsgi configuration

See wiki:ndg_security/Apache2?.