1GFAL-TOKEN(1)               General Commands Manual              GFAL-TOKEN(1)
2
3
4

NAME

6       gfal-token - retrieve SE-issued token for a given path
7

SYNOPSIS

9       gfal-token [ OPTION ]...  PATH [ ACTIVITY ]...
10
11

DESCRIPTION

13       gfal-token  This command retrieves a Storage Element issued token for a
14       given path. Additionally, a token issuer URL may be passed.   The  com‐
15       mand  can  take  either a list of user-defined activities or use prede‐
16       fined activities for the read/write access flag.   Behind  the  scenes,
17       Gfal2 will try to first retrieve a SciTokens-style token, followed by a
18       macaroon-style token.  If at any point, a  token  is  successfully  re‐
19       trieved, operation stops and the token is printed.
20
21

OPTIONS

23       -h, --help
24              show help about the command.
25
26       -V, --version
27              output version information and exit.
28
29       -v, --verbose
30              verbose mode. Repeat up to 3 times for the most verbose mode.
31
32       -D, --definition DEFINITION
33              define properties for gfal2. Definitions have the following syn‐
34              tax: "CONFIG_GROUP:KEY=VALUE"
35
36       -t, --timeout TIMEOUT
37              global timeout for the execution of the command. Command is  in‐
38              terrupted  if time expires before it finishes. Note: A grace pe‐
39              riod of 30 seconds is given to the global timeout.
40
41       -E, --cert CERT
42              user  certificate.  (This  option  takes   effect   only   after
43              X509_USER_PROXY     environment     variable     and     default
44              /tmp/x509up_u`id -u` location cannot provide a certificate)
45
46       --key KEY
47              user private key.
48
49       -4     forces Gfal2 to use IPv4 addresses only. (Option valid only  for
50              GridFTP protocol)
51
52       -6     forces  Gfal2 to use IPv6 addresses only. (Option valid only for
53              GridFTP protocol)
54
55       -C, --client-info CLIENT_INFO
56              provide custom client-side information.
57
58       --log-file LOG_FILE
59              write Gfal2 library logs to the given file location.
60
61       --issuer ISSUER
62              token issuer endpoint.
63
64       --validity VALIDITY
65              token validity expressed in minutes.
66
67       -w, --write
68              token read/write access flag. Default activities associated with
69              these flags: read = [LIST,DOWNLOAD], write = [LIST,DOWNLOAD,MAN‐
70              AGE,UPLOAD,DELETE]
71
72       PATH   resource URI for which token is requested.
73
74       ACTIVITY
75              optional argument, user-specified activity list. This list takes
76              precedence over the read/write access flag default activities.
77
78

EXAMPLES

80       Retrieve a SE-issued token using default write activities
81              gfal-token --write https://endpoint.cern.ch/path/file
82
83       Retrieve a SE-issued token using custom activities
84              gfal-token https://endpoint.cern.ch/path/file LIST MANAGE UPLOAD
85
86

FILES

88       /etc/gfal2.d/*
89              All configuration files in this directory affect the behavior of
90              the underlying gfal2.
91
92

AUTHORS

94       Duarte Meneses <duarte.meneses@cern.ch>
95       Adrien Devresse <adrien.devresse@cern.ch>
96       Alejandro Alvarez Ayllon <alejandro.alvarez.ayllon@cern.ch>
97       Andrea Manzi <andrea.manzi@cern.ch>
98       Mihai Patrascoiu <mihai.patrascoiu@cern.ch>
99       Joao Lopes <joao.pedro.batista.lopes@cern.ch>
100
101

SEE ALSO

103       gfal-cat(1), gfal-chmod(1),  gfal-copy(1),  gfal-ls(1),  gfal-mkdir(1),
104       gfal-rename(1),  gfal-rm(1),  gfal-save(1),  gfal-stat(1), gfal-sum(1),
105       gfal-token(1), gfal-xattr(1), gfal-evict(1), gfal-bringonline(1), gfal-
106       archivepoll(1)
107
108
109
110v1.7.1                            March 2022                     GFAL-TOKEN(1)
Impressum