Service providers

Materials of the 3rd. EOSC-hub tech-talk: Cloud, containers, orchestration

Training modules used duing the Security Workshop @ ISGC 2019

DEEP-Hybrid-DataCloud project aims to promote the integration of specialized, and expensive, hardware under a Hybrid Cloud platform, so it can be used on-demand by researchers of different communities.

XDC project aims at address high-level topics ranging from the federation of storage resources with standard protocols, the policy driven data management based on Quality of Service, data lifecycle management, metadata handling and manipulation, data preprocessing and encryption during ingestion, and smart caching solutions among remote locations.

This training session will provide practical overview on the solutions implemented both at the level of IaaS, PaaS and SaaS within the projects: INDIGO-DataCloud, eXtreme DataCloud (XDC) and DEEP-HybridDataCloud.

In the hands-on session, the participants will be provided with a VM infected with the 'malware' used in SSC-19.03. They will then be guided through the methods necessary to solve the challenges built into the simulated attack

The target group of the training is developers and administrators of services that want to integrate to ELIXIR AAI for user authentication and authorisation. The training has hands-on sessions for the participants to integrate their own service (or, a test service provided by the trainers) to ELIXIR AAI.

Keywords: AAI, OpenID Connect, Authentication

Target audience: service administrators in organizations that want to make use of ELIXIR AAI

Difficulty level: Intermediate

Authors: Michal Prochazka, Dominik Frantisek Bucik

https://docs.google.com/document/d/1LGL1Ax_iRcw5A15kgr_epZobsDExDmCqu6keGBY22Dg/edit

This webinar will describe the Reference Technical Architecture for EOSC proposed by EOSC-hub during the recent EOSC-hub Technical Workshop.

The proposed architecture is based on the concepts of service composability and interoperability. Service categories and relationships between them will be presented. The process to define interoperability guidelines for different technical areas will be also depicted.

Who should attend:

Service providers, Users, members of other EOSC implementation projects including EOSC cluster projects, members of EOSC working groups, European and national e-infrastructures, European and national research infrastructures

Key Takeaways for attendees

• EOSC Technical Reference architecture proposed by EOSC-hub
• Classification of services within EOSC
• Status of the EOSC-hub work to define interoperability guidelines for EOSC macro-features (Federating core, AAI, Cloud and Container computing, FAIR data management, etc.)

Training materials related to usage of cloud services for the fusion community and as a general service.

The main goal of the EOSC-hub project is to synergize the services and infrastructures from major European providers including EGI and EUDAT, enabling researchers to freedom of choice of the services, data and infrastructure necessary for their work.  Users from many communities have reported interest in being able to use resources provisioned by these 2 infrastructures simultaneously in a transparent fashion, i.e.:

• using single sign on mechanisms between infrastructures
• being able to transparently transfer data between infrastructures

EOSC-hub WP6 has been endeavoring to enable transparent data access between the infrastructures. The main data management components in EGI and EUDAT are respectively, EGI-DataHub based on Onedata platform and B2SAFE/B2STAGE based on iRODS. Currently no transparent mechanisms allowing users to move data between these infrastructures exists, the only options are manual transfers using such tools as GridFTP.

These two demo videos present the managment of data transfer across EGI, EUDAT, INDIGO data and compute services. 

The first demo video shows the how data can be transparently moved from EGI to EUDAT. It divided into 4 sections:

• Registration of B2STAGE storage in EGI-DataHub
• Creation of dsata space in EGI-DataHub supported by the B2STAGE storage
• Upload of some data to the data space
• Data access from GUI and command line

The second demo video presents import of existing data from EUDAT to EGI. The demo is divided into the following 4 sections:

• Registration of B2STAGE storage in EGI-DataHub
• Creation of data space in EGI-DataHub supported by the B2STAGE storage from which existing data is imported to EGI-DataHub
• Access of data from B2STAGE using EGI-DataHub user interface
• Automatic discovery of new data added on the B2STAGE storage

This set of training materials introduce ELIXIR AAI service for user authentication and authorisation. The service is developed by the ELIXIR Compence Center. The training is delivered during the ECCB 2019 conference. 

This training materilas is provided for the AAI training during EOSC-hub week 2019, 12 Apr 2019, Prague. This material provides an overview of the various integration workflows in support of resource providers’ needs for federated access through the EOSC-hub AAI. These workflows build on standards and open technologies, including SAML 2.0, OpenID Connect, and OAuth 2.0, in order to support the integration of web-based services. The training also covers more advanced workflows for addressing non-web-based access use cases (e.g. command line and API). In this context techniques for obtaining credentials on behalf of the end-user using OAuth tokens and X509 proxy certificates through online authorities will be presented.