Presentation is loading. Please wait.

Presentation is loading. Please wait.

ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry.

Published byJoshua Byrne Modified over 10 years ago

Similar presentations

Presentation on theme: "ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry."— Presentation transcript:

1 ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry

2 Plan ESUP-Portail Storage Area for ESUP Portail WebDAV Architecture

3 ESUP-Portail Consortium of french universities Unique access point to a wide range of services Mail, news, information channels, CMS, and private storage area.

4 Protocol for file sharing Usual suspects (NFS, CIFS) dont like firewalls VPN complex with huge population WebDAV : on top of HTTP, standard, simple to use

5 Client Part OS integrated WebDAV filesystem (Windows XP Webfolders, Mac OS X, Linux webdavfs) Web applications, possibily on top of Uportal+CAS Heavyweight interfaces

6 User view of storage area Private place to store users documents Access conditions to grant/deny others access WebDAV aware

7 Server view of storage area Document + set of properties Properties : –Dublin Core (Author, Date, Language …) –Access Control –Others, depending on application, e.g. state of the document (draft, ready to publish) for a CMS Access Control to document AND properties, depending on users authentication and profile

8 WebDAV : HTTP + … : RFC2518 Properties : (name,value) like HTTP headers Collection : set of documents (like file directory) Documents : (file or collection) + set of properties WebDAV protocol requests & responses in XML Extension to HTTP : new type of messages, e.g. PROPFIND, PROPPATCH, MKCOL

9 Example of request PROPFIND /file HTTP/1.1 Host: doc.domain.org Content-type: text/xml; charset="utf8" Depth: 0 Content-Length: xxxx

10 Access Control : Authentication + Authorization Authentication : HTTP

11 Authorization (1/2) Principal : human or computer agent, represented as a webdav resource Group : principal with « group-member-set » property Privilege : property (in XML) associated with a set of WebDAV methods –DAV:read represents the privilege to GET or PROPFIND –DAV:read-acl represents the privilege to PROFIND an ACL

12 Authorization (2/2) Access Control Entity : relation (grant/deny) between a principal and a privilege ACL : set of ACE, property on a dav resource

13 Example PROPPATCH /path/to/resource HTTP/1.1 Host: doc.domain.org Content-Type: text/xml; charset="utf-8" Content-Length: xxxx

14 digital workspace storage component SSOtrust granting (ACP) user database protocol (DAV+ACP) SSO service grouping service classical authentication module security (SSL) physical media filesystem ACLs database Architecture

15 Implementation Version 1, available –Apache server with mod_dav for RFC2518 WebDAV capabilities –Mod_auth_ldap for classical authentication –Mod_cas for SSO authentication –Client : uportal channel, fully fonctionnal with basic webdav actions : get/retrieve files Version 2, 09/2004 –Based on Jakarta slide –Access control –LDAP backend for Users/Groups –Client with full webdav capabilities

16 Conclusion WebDAV : good solution for distant storage Access control Performances like HTTP

Download ppt "ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry."

Similar presentations

Whats New in Fireware XTM v11.5.2. New Features in Fireware XTM v11.5.2 Major Changes FireCluster with XTM 330 appliances Mobile VPN with SSL using multiple.

Whats New in Fireware XTM v New Features in Fireware XTM v Major Changes FireCluster with XTM 330 appliances Mobile VPN with SSL using multiple.
Data storage and CMS Raymond Bourges – University of Rennes 1 (coordination) Pascal Aubry – University of Rennes 1 (specification) Thomas Bellembois –

Data storage and CMS Raymond Bourges – University of Rennes 1 (coordination) Pascal Aubry – University of Rennes 1 (specification) Thomas Bellembois –
Open-source Single Sign-On with CAS (Central Authentication Service)

Open-source Single Sign-On with CAS (Central Authentication Service)
Open-source Single Sign-On with CAS (Central Authentication Service) Pascal Aubry, Vincent Mathieu & Julien Marchal Copyright © 2004 – ESUP-Portail consortium.

Open-source Single Sign-On with CAS (Central Authentication Service) Pascal Aubry, Vincent Mathieu & Julien Marchal Copyright © 2004 – ESUP-Portail consortium.
Copyright © 2006 ESUP-Portail consortium The ESUP-Portail project (in a few words) Pascal Aubry Consortium ESUP-Portail / University.

Copyright © 2006 ESUP-Portail consortium The ESUP-Portail project (in a few words) Pascal Aubry Consortium ESUP-Portail / University.
Enabling Secure Internet Access with ISA Server

Enabling Secure Internet Access with ISA Server
File Server Organization and Best Practices IT Partners June, 02, 2010.

File Server Organization and Best Practices IT Partners June, 02, 2010.
Web Services Nasrullah. Motivation about web service There are number of programms over the internet that need to communicate with other programms over.

Web Services Nasrullah. Motivation about web service There are number of programms over the internet that need to communicate with other programms over.
SOAP 20041094 Lee Jong-uk. Introduction What is SOAP? The features of SOAP The structure of SOAP SOAP exchange message model & message Examples of SOAP.

SOAP Lee Jong-uk. Introduction What is SOAP? The features of SOAP The structure of SOAP SOAP exchange message model & message Examples of SOAP.
Extending ForeFront beyond the limit www.AGATSolutions.com TMGUAG ISAIAG AG Security Suite.

Extending ForeFront beyond the limit TMGUAG ISAIAG AG Security Suite.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
ARCHIMÈDE Presented by Guy Teasdale Directeur, Services soutien et développement Bibliothèque de l’Université Laval CARL Workshop on Institutional Repositories.

ARCHIMÈDE Presented by Guy Teasdale Directeur, Services soutien et développement Bibliothèque de l’Université Laval CARL Workshop on Institutional Repositories.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Oracle Beehive Vivek Pavle Orabyte LLC www.orabyte.com Orabyte.

Oracle Beehive Vivek Pavle Orabyte LLC Orabyte.
Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?

Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?
Fawaz Alsaadi Fahad Alsolmai.  Secure information sharing across different organizations is an emerging issue for collaborative software development,

Fawaz Alsaadi Fahad Alsolmai.  Secure information sharing across different organizations is an emerging issue for collaborative software development,
Introduction To Windows NT ® Server And Internet Information Server.

Introduction To Windows NT ® Server And Internet Information Server.
Lesson 4: Configuring File and Share Access

Lesson 4: Configuring File and Share Access
 What is it ? What is it ?  URI,URN,URL URI,URN,URL  HTTP – methods HTTP – methods  HTTP Request Packets HTTP Request Packets  HTTP Request Headers.

 What is it ? What is it ?  URI,URN,URL URI,URN,URL  HTTP – methods HTTP – methods  HTTP Request Packets HTTP Request Packets  HTTP Request Headers.
Windows To WebDAV A File Server Case Study John F. Hall IT-User Services, University of Delaware MARC ‘05 Copyright John F. Hall 2005. This work is the.

Windows To WebDAV A File Server Case Study John F. Hall IT-User Services, University of Delaware MARC ‘05 Copyright John F. Hall This work is the.

Similar presentations

Ads by Google