Dacs web services
These web services are part of the DACS suite.
The following is a list of DACS web services with a brief description of each. General aspects of DACS and its web services are discussed in \m[blue]dacs(1)\m\s-2\u\d\s+2. Individual web services are discussed in more detail elsewhere. By default, these CGI programs are installed in the dacs subdirectory of the Apachecgi-bin directory.
By convention, DACS web service names use underscores as word separators. Some web services have command counterparts; their names omit the underscores.
dacs_admin A low-level administration tool for DACS. [\m[blue]dacs_admin(8)\m\s-2\u\d\s+2]
dacs_auth_agent Authenticate by delegating responsibility to a trusted identity. [\m[blue]dacs_auth_agent(8)\m\s-2\u\d\s+2]
dacs_auth_transfer Transfer credentials between federations. [\m[blue]dacs_auth_transfer(8)\m\s-2\u\d\s+2]
dacs_authenticate The DACS authentication service. [\m[blue]dacs_authenticate(8)\m\s-2\u\d\s+2]
dacs_conf Process and display DACS configuration files. [\m[blue]dacs_conf(8)\m\s-2\u\d\s+2]
dacs_current_credentials Display elements of each set of credentials sent with the request. [\m[blue]dacs_current_credentials(8)\m\s-2\u\d\s+2]
dacs_group A DACS group administration tool. [\m[blue]dacs.groups(5)\m\s-2\u\d\s+2]
dacs_list_jurisdictions Display information about all jurisdictions in a federation. [\m[blue]dacs_list_jurisdictions(8)\m\s-2\u\d\s+2]
dacs_notices Notice presentation and acknowledgement handler. [\m[blue]dacs_notices(8)\m\s-2\u\d\s+2]
dacs_passwd Administration tool for passwords used by local_passwd_authenticate. [\m[blue]dacs_passwd(8)\m\s-2\u\d\s+2]
dacs_signout Typically called from a browser, this web services causes one or more cookies (each representing a DACS identity) to be deleted. Cookies are automatically deleted when a browser terminates, but it is sometimes useful to explicitly logoff. [\m[blue]dacs_signout(8)\m\s-2\u\d\s+2]
dacs_version Display version information. [\m[blue]dacsversion(8)\m\s-2\u\d\s+2]
dacs_vfs Manage items in the DACS virtual filestore. [\m[blue]dacs_vfs(8)\m\s-2\u\d\s+2]
local_*_authenticate Authentication modules used by \m[blue]dacs_authenticate(8)\m\s-2\u\d\s+2. Each one implements a particular authentication method and optionally returns role information.
local_*_roles Roles modules used by \m[blue]dacs_authenticate(8)\m\s-2\u\d\s+2.
The following set of CGI arguments are recognized by most DACS web services. When the document for a DACS web service says that it accepts "the standard CGI arguments", it is referring to the following arguments; not all of these arguments are necessarily meaningful to all web services, however.
In general, duplicate CGI argument names are not allowed; i.e., you cannot pass an argument named DACS_JURISDICTION more than once when calling a DACS web service, even if each occurrence of the argument has the same value.
This argument is required by most web services. It specifies the name of the jurisdiction to which the request is being sent. Web services will verify that the jurisdiction that receives the request is the same as the intended recipient.
If this argument is present, it specifies the major DACS version number (e.g., 1.4) expected by the client. The service request will fail if the DACS software does not support this version number. If not provided, no compatibility checks are performed.
Reserved for future use for file uploading. Requests content type application/x-dacs-credentials.
This optional argument requests a particular output format. The default value varies, but it is usually HTML. Not all formats are supported by every web service; refer to the manual page for details. The following values are recognized:
Requests content type text/html;
Used by the \m[blue]dacs_list_jurisdictions(8)\m\s-2\u\d\s+2 web service when its output is to processed by PHP;
Requests content type text/plain;
Like PLAIN except that no content type is specified;
Requests content type text/xml. If the DTD_BASE_URL directive is configured, a DOCTYPE element with the keyword SYSTEM followed by a value derived from DTD_BASE_URL is emitted; e.g.,
<!DOCTYPE foo SYSTEM "http://fedroot.com/dacs/dtd-xsd/foo.dtd">
If DTD_BASE_URL is not configured, an internal DTD is emitted. A default xmlns attribute is emitted in both cases;
Requests content type text/xml This emits an internal DTD and default xmlns attribute;
Requests content type text/xml. If the XSD_BASE_URL directive is configured, xmlns:xsi and xsi:schemaLocation attributes are emitted, the former having a compile-time value (e.g., "http://www.w3.org/2001/XMLSchema-instance") and the latter being a pair, the first having the same value as the value of the xmlns attribute and the second having a value derived from XSD_BASE_URL; e.g.,
<foo xmlns="http://fedroot.com/dacs/v1.4" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://fedroot.com/dacs/v1.4 http://amd.dss.bc.ca/dacs/dtd-xsd/foo.xsd">
The default xmlns attribute is also emitted. If XSD_BASE_URL is not configured, only the default xmlns attribute is emitted; and
Requests content type text/xml Neither a DTD (no DOCTYPE) nor a default xmlns attribute is emitted.
Also see the \m[blue]-format\m\s-2\u\d\s+2 command line flag (one of the \m[blue]dacsoptions\m\s-2\u\d\s+2).
Programs usually exit 0 if everything was fine, 1 if an error occurred.
Distributed Systems Software (\m[blue]www.dss.ca\m\s-2\u\d\s+2)
Copyright2003-2012 Distributed Systems Software. See the \m[blue]LICENSE\m\s-2\u\d\s+2 file that accompanies the distribution for licensing information.