Login

Workshop sul Calcolo nell'INFN: La Biodola, 26 - 30 maggio 2025

26–30 May 2025
Hotel Hermitage - Isola d'Elba
Europe/Rome timezone

Supporto

StoRM WebDAV Authorization with Open Policy Agent: Implementation and Performance Enhancements

Not scheduled
15m
Sala Maria Luisa (Hotel Hermitage - Isola d'Elba)

Sala Maria Luisa

Hotel Hermitage - Isola d'Elba

La Biodola 57037 Portoferraio (Li) Tel. +39.0565 9740 http://www.hotelhermitage.it/
Presentazione orale Calcolo distribuito Calcolo distribuito

Speaker

Federica Agostini (CNAF-INFN)

Description

StoRM WebDAV is a widely used storage service that provides WebDAV access to distributed storage systems. Initially, its authorization mechanism was simplistic, granting uniform access privileges to all members of trusted VOMS Virtual Organizations. With the introduction of support for trusted OpenID Connect/OAuth token issuers, starting from version 1.3.1, StoRM WebDAV includes a fine-grained authorization policy engine, enabling more detailed access control policies within storage areas.
In this work, we present an alternative approach by integrating StoRM WebDAV with Open Policy Agent (OPA), a flexible and scalable policy decision engine. This integration aims to provide a more dynamic and decoupled authorization mechanism, improving maintainability and extensibility.
We describe the implementation of the OPA-based authorization layer and evaluate its performance in comparison with the existing fine-grained StoRM WebDAV authorization engine. Our analysis focuses on request processing times and policy evaluation efficiency. This work aligns with the broader objective of establishing a uniform authorization layer within the Ri-SCALE project, in which the INFN is involved.

Primary author

Federica Agostini (CNAF-INFN)

Co-authors

Enrico Vianello (Istituto Nazionale di Fisica Nucleare) Francesco Giacomini (Istituto Nazionale di Fisica Nucleare) Jacopo Gasparetto (Istituto Nazionale di Fisica Nucleare) Luca Bassi (Istituto Nazionale di Fisica Nucleare) Roberta Miccoli (Istituto Nazionale di Fisica Nucleare)

Presentation materials

There are no materials yet.
Powered by Indico v3.3.3