Enable SSL auth as last-ditch auth for the HTCondor-CE

Description

There's no current way to READ from a HTCondor-CE with encryption and without some sort of client credential.

Let's add SSL auth to the authentication mechanisms for the CE. Since it allows anonymous auth, it'll often succeed - meaning it should go last on the list.

Activity

Show:
Brian Lin
March 26, 2021, 3:29 PM

Per Brian’s request in the PR, I’ve also added SSL to the end of the SchedD/Collector WRITE authN list. This will allow CE admins to add SSL mappings for job submission:

Brian Bockelman
March 26, 2021, 3:56 AM

Review done – appears to do as requested.

What version will this be released in (I was guessing 5.1.0…)? And is there any chance the hosted CEs can run that version?

Time remaining

0m

Assignee

Brian Lin

Is PATh development

Yes