130 likes | 246 Vues
User Registration in the SeaDataNet V1 system by Dick M.A. Schaap – technical coordinator Oostende, June 08. Ifremer Database. S eaDataNet User’s portal schema V1. User registration. Data download. Status of request. General request. Metadata request. Data request. Project info.
 
                
                E N D
User Registration in the SeaDataNet V1 system by Dick M.A. Schaap – technical coordinator Oostende, June 08
Ifremer Database SeaDataNet User’s portal schema V1 User registration Data download Status of request General request Metadata request Data request Project info metadata data Registr. Standards Cross search My transact. CDI Requestsstatus manager Software EDIOS EDMED Shopping basket AAA Vocabularies CSR EDMERP EDMO Organisation +data source id User Register CSR EDIOS CDI EDMO EDMED BODC Database + EDMERP at BSH at BODC at MARIS BSH Database Metadata & Data catalogues Entry point for access hits ... services for metadata Data downloading services Download managers in Data centers Visualization services (WMS) for V2
Authentication, Authorization and Administration • Single Sign On system required for access to distributed system • User’s authentication information based on personal login / password • Central User Register, hosted at IFREMER • Login – password to give access to: • Submitting shopping basket orders by users • Checking the status of shopping requests and downloading of data sets via the personal Request Status Manager by users • Checking and validating the outstanding shopping requests via the Request Status Manager by Data centre managers • Checking the history of data requests via the Request Status Manager by Data centre managers • Login to the SeaDataNet extranet by SeaDataNet partners
Authentication and authorization implementation User Authentication 4 CAS CASauthenticationform login + password Access to controlled facilities User catalogue LDAP for authentication only SeaDataNet web portal(all distributed components with controlled access) user identifier, &full user information user identifier, password, SDN role SDN user directory WebService To get user informationor to get user rôle
User registration and registration validation process • User must register in order to get one login • Online request form to provide the necessary information • User agrees with the “SeaDataNet User Licence” which is part of the SeaDataNet Data Policy • User request form is forwarded to the SeaDataNet data centre of the country of the user • The national data centre must evaluate the request and effectuate the user registration, thereby giving ‘user role(s)’ • The ‘user roles’ are decisive for the authorisation process • After registration, the user will receive his/her login -password by email (email check) • So a Central User Register, but with decentralized management
User registration and registration validation process User User personal identifier (login) + password 3 NODCof the user’s country or SDN User Desk (default) SDN User Desk Registration request Validation SDN licence agreement + User information Validation of user registrationand SeaDataNet role assignment User directoryupdate 1 2 3 RegistrationWeb form ValidationWeb form+ SeaDataNetrole SeaDataNet user directory SeaDataNet web portal Transmission by email
=> Page 1 : Agreement on data license => Page 2 : User personal information 1 Registration request
1 Registration request Page 3 : Confirmation of registration request
=> Mail sent to NODC or SeaDataNet user desk => SeaDataNet role attribution and validation 2 Registration validation
2 Change in user’s information => A web form is available at https://www.ifremer.fr/AAARegistration/faces/UserPersonalInformation.jsp => The e-mail address can’t be changed (because linked to user’s login and id in the central registry)
Action by SeaDataNet national data centres • Each SeaDataNet national data centre must provide to the user desk (sdn-userdesk@seadatanet.org) at least one e-mail address, or better a list of addresses, of people in charge of SeaDataNet user registration validation for their country. • Each SeaDataNet national data centre must process registration requests from users from its country.